Hej,
wyczytałem gdzieś na necie, że ten proces iexplore.exe to jakiś niepożądany syf. A ja myślałem cały czas, że to jakiś proces związany z przeglądarką …
Jakie jest wasze doświadczenie, co powinienem z tym zrobić. Może to jest wina, że komuter tak muli ?
Task Manager pokazuje, że najwięcej pamięci zabiera właśnie ten proces (4x więcej niż drugi w kolejce)
darekols
(darekols)
28 Marzec 2007 12:18
#2
i miałeś rację, a muli jak korzystasz z Internet Explorer’a.
A jeżeli nie korzystasz z IE, a nadal jest w pamięci to radze iexplore.exe poprostu zamknąć.
adam9870
(adam9870)
28 Marzec 2007 13:38
#3
Proces o nazwie iexplore.exe jest procesem przeglądarki internetowej Internet Explorer i jest on jak najbardziej w porządku. No chyba, że pomyliłeś którą literkę i to już mógłby być syf.
Dla wykluczenia syfu możesz pokazać log z ComboScan .
JNJN
(JNJN)
28 Marzec 2007 14:50
#4
Proszę zmienić temat postu na konkretny,opcja zmień i popraw.JNJN
A co wy na to:
http://www.liutilities.com/products/win … /iexplore/
To właśnie ta strona zasiała we mnie taki niepokój, jeśli chodzi o te proces.
Poniżej scan z ComboScan.
PS. Teraz np komuter chodzi bez zarzutu (tzn nie muli), ale wystarczy, że odpalę go jeszcze raz i może być zupełnie inaczej. Nigdy nie wiem od czego to zależy. A zazwyczaj nie włączam żadnych aplikacji poza Internet Explorer.
ComboScan v20070306.20 run by xxxxxxxxxxxxx on 2007-03-29 at 18:42:48 Computer is in Normal Mode. -------------------------------------------------------------------------------- – System Restore -------------------------------------------------------------- Successfully created ComboScan Restore Point. – Last 3 Restore Point(s) – 3: 2007-03-29 16:43:29 UTC - RP3 - ComboScan Restore Point 2: 2007-03-27 10:50:50 UTC - RP2 - Installed Microsoft Bootvis 1: 2007-03-27 10:28:52 UTC - RP1 - System Checkpoint Performed disk cleanup. – HijackThis (run as xxxxxxxxxxxxxxxxxx.exe) ------------------------------------ Logfile of HijackThis v1.99.1 Scan saved at 18:45:01, on 3/29/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16414) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Microsoft Windows OneCare Live\Antivirus\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe C:\WINDOWS\system32\cisvc.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\Norton AntiVirus\navapsvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Microsoft Windows OneCare Live\Firewall\msfwsvc.exe C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe C:\Program Files\Microsoft Windows OneCare Live\winss.exe C:\Program Files\Microsoft Windows OneCare Live\winssnotify.exe C:\WINDOWS\system32\cidaemon.exe C:\Documents and Settings\xxxxxxxxxxxxx\Local Settings\Temporary Internet Files\Content.IE5\R43IEBD7\comboscan[1].exe C:\PROGRA~1\HIJACK~1\xxxxxxxxxxxx.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll O4 - HKLM…\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM…\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM…\Run: [symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer O4 - HKLM…\Run: [ccRegVfy] “C:\Program Files\Common Files\Symantec Shared\ccRegVfy.exe” O4 - HKLM…\Run: [ccApp] “C:\Program Files\Common Files\Symantec Shared\ccApp.exe” O4 - HKLM…\Run: [!AVG Anti-Spyware] “C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe” /minimized O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\npjpi150_11.dll O9 - Extra ‘Tools’ menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\npjpi150_11.dll O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra ‘Tools’ menuitem: @xpsp3res.dll ,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O11 - Options group: [iNTERNATIONAL] International* O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O15 - Trusted Zone: http://arcaonline.arcabit.com O15 - Trusted Zone: http://www.mks.com.pl O15 - Trusted Zone: http://skaner.mks.pl O16 - DPF: {3D8700FB-86A4-4CB4-B738-6F0FC016AC7D} (MainControl Class) - http://arcaonline.arcabit.com/ArcaOnline.cab O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resour … se9602.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda … 6552661529 O16 - DPF: {65D72393-E210-4A2A-B8E0-10AC45986770} (GWebInstallControl Object) - http://megapanel.gem.pl/WebInstaller.dll O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} (MksSkanerOnline Class) - http://www.mks.com.pl/skaner/SkanerOnline.cab O16 - DPF: {6CB5E471-C305-11D3-99A8-000086395495} (Google Activate) - http://toolbar.google.com/data/pl/big/1 … gleNav.cab O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan … asinst.cab O16 - DPF: {B49C4597-8721-4789-9250-315DFBD9F525} (IWinAmpActiveX Class) - http://cdn.digitalcity.com/radio/ampx/a … _en_dl.cab O16 - DPF: {E7544C6C-CFD6-43EA-B4E9-360CEE20BDF7} (MainControl Class) - http://skaner.mks.com.pl/SkanerOnline.cab O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol … _en_dl.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: textwareilluminatorbase - {CE5CD329-1650-414A-8DB0-4CBF72FAED87} - C:\WINDOWS\System32\textwareilluminatorbaseProtocol.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Password Validation Service (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe O23 - Service: Interbase Guardian (InterbaseGuardian) - FirebirdSQL Project - C:\InterBase\bin\ibguard.exe O23 - Service: InterBase Server (InterBaseServer) - FirebirdSQL Project - C:\InterBase\bin\ibserver.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe – File Associations ----------------------------------------------------------- .bat - batfile - “%1” %* .chm - chm.file - “C:\WINDOWS\hh.exe” %1 .cmd - cmdfile - “%1” %* .com - comfile - “%1” %* .exe - exefile - “%1” %* .hlp - hlpfile - %SystemRoot%\System32\winhlp32.exe %1 .inf - inffile - %SystemRoot%\System32\NOTEPAD.EXE %1 .ini - inifile - %SystemRoot%\System32\NOTEPAD.EXE %1 .js - JSFile - %SystemRoot%\System32\WScript.exe “%1” %* .lnk - lnkfile - {00021401-0000-0000-C000-000000000046} .pif - piffile - “%1” %* .reg - regfile - regedit.exe “%1” .scr - scrfile - “%1” /S .txt - txtfile - %SystemRoot%\system32\NOTEPAD.EXE %1 .vbs - VBSFile - %SystemRoot%\System32\WScript.exe “%1” %* – Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------- 4S agpCPQ (Compaq AGP Bus Filter) - C:\WINDOWS\SYSTEM32\DRIVERS\agpcpq.sys 4S alim1541 (ALI AGP Bus Filter) - C:\WINDOWS\SYSTEM32\DRIVERS\alim1541.sys 4S amdagp (AMD AGP Bus Filter Driver) - C:\WINDOWS\SYSTEM32\DRIVERS\amdagp.sys 3R Arp1394 (1394 ARP Client Protocol) - C:\WINDOWS\SYSTEM32\DRIVERS\arp1394.sys 3R ati2mtag - C:\WINDOWS\SYSTEM32\DRIVERS\ati2mtag.sys 3S ATWPKT2 - C:\Program Files\America Online 8.0\ATWPKT2.SYS (not found) 1R AVG Anti-Spyware Driver - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys 1R AvgAsCln (AVG Anti-Spyware Clean Driver) - C:\WINDOWS\SYSTEM32\DRIVERS\AvgAsCln.sys 3R bcm4sbxp (Broadcom 440x 10/100 Integrated Controller XP Driver) - C:\WINDOWS\SYSTEM32\DRIVERS\bcm4sbxp.sys 3R BCMModem (BCM V.92 56K Modem) - C:\WINDOWS\SYSTEM32\DRIVERS\BCMSM.sys 4S cbidf - C:\WINDOWS\SYSTEM32\DRIVERS\cbidf2k.sys 1R Cdr4_xp - C:\WINDOWS\SYSTEM32\DRIVERS\cdr4_xp.sys 1R Cdralw2k - C:\WINDOWS\SYSTEM32\DRIVERS\cdralw2k.sys 1R cdudf_xp - C:\WINDOWS\SYSTEM32\DRIVERS\Cdudf_xp.sys 4S dac2w2k - C:\WINDOWS\SYSTEM32\DRIVERS\dac2w2k.sys 3S dvd_2K - C:\WINDOWS\SYSTEM32\DRIVERS\Dvd_2k.sys 3S EL90XBC (3Com EtherLink XL 90XB/C Adapter Driver) - C:\WINDOWS\system32\DRIVERS\el90xbc5.sys (not found) 3S i81x - C:\WINDOWS\SYSTEM32\DRIVERS\i81xnt5.sys 3S iAimFP0 - C:\WINDOWS\SYSTEM32\DRIVERS\wadv01nt.sys 3S iAimFP1 - C:\WINDOWS\SYSTEM32\DRIVERS\wadv02nt.sys 3S iAimFP2 - C:\WINDOWS\SYSTEM32\DRIVERS\wadv05nt.sys 3S iAimFP3 - C:\WINDOWS\SYSTEM32\DRIVERS\wsiintxx.sys 3S iAimFP4 - C:\WINDOWS\SYSTEM32\DRIVERS\wvchntxx.sys 3S iAimTV0 - C:\WINDOWS\SYSTEM32\DRIVERS\watv01nt.sys 3S iAimTV1 - C:\WINDOWS\SYSTEM32\DRIVERS\watv02nt.sys 3S iAimTV2 - C:\WINDOWS\system32\DRIVERS\wATV03nt.sys (not found) 3S iAimTV3 - C:\WINDOWS\SYSTEM32\DRIVERS\watv04nt.sys 3S iAimTV4 - C:\WINDOWS\SYSTEM32\DRIVERS\wch7xxnt.sys 1R intelppm (Intel Processor Driver) - C:\WINDOWS\SYSTEM32\DRIVERS\intelppm.sys 2R irda (IrDA Protocol) - C:\WINDOWS\SYSTEM32\DRIVERS\irda.sys 3S KS-959 (MA-620 USB Infrared Adapter) - C:\WINDOWS\SYSTEM32\DRIVERS\KS-959.sys 3S mmc_2K - C:\WINDOWS\SYSTEM32\DRIVERS\Mmc_2k.sys 3R MpFilter (Microsoft Malware Protection Driver) - C:\WINDOWS\SYSTEM32\DRIVERS\MpFilter.sys 2R MSFWDrv - C:\WINDOWS\SYSTEM32\DRIVERS\msfwdrv.sys 1R MSFWHLPR - C:\WINDOWS\SYSTEM32\DRIVERS\msfwhlpr.sys 3S MSIRCOMM (Microsoft IR Communications Driver) - C:\WINDOWS\SYSTEM32\DRIVERS\MSIRCOMM.sys 3R NAVENG - C:\Program Files\Common Files\Symantec Shared\VirusDefs\20061227.017\NAVENG.SYS 3R NAVEX15 - C:\Program Files\Common Files\Symantec Shared\VirusDefs\20061227.017\NAVEX15.SYS 3R NIC1394 (1394 Net Driver) - C:\WINDOWS\SYSTEM32\DRIVERS\nic1394.sys 3S nv - C:\WINDOWS\SYSTEM32\DRIVERS\nv4_mini.sys 0R ohci1394 (Texas Instruments OHCI Compliant IEEE 1394 Host Controller) - C:\WINDOWS\SYSTEM32\DRIVERS\ohci1394.sys 1R omci (OMCI WDM Device Driver) - C:\WINDOWS\SYSTEM32\DRIVERS\omci.sys 1S P3 (Intel PentiumIII Processor Driver) - C:\WINDOWS\SYSTEM32\DRIVERS\p3.sys 1R pwd_2k - C:\WINDOWS\SYSTEM32\DRIVERS\pwd_2K.sys 0R PxHelp20 - C:\WINDOWS\SYSTEM32\DRIVERS\pxhelp20.sys 3R Rasirda (WAN Miniport (IrDA)) - C:\WINDOWS\SYSTEM32\DRIVERS\rasirda.sys 3R SAVRT - C:\WINDOWS\SYSTEM32\DRIVERS\SAVRT.SYS 2R SAVRTPEL - C:\WINDOWS\SYSTEM32\DRIVERS\SAVRTPEL.SYS 4S sisagp (SIS AGP Bus Filter) - C:\WINDOWS\SYSTEM32\DRIVERS\sisagp.sys 3S SONYPVU1 (Sony USB Filter Driver (SONYPVU1)) - C:\WINDOWS\SYSTEM32\DRIVERS\SONYPVU1.SYS 3R STAC97 (Audio Driver (WDM) - SigmaTel CODEC) - C:\WINDOWS\SYSTEM32\DRIVERS\STAC97.sys 3S STIrUsb (SigmaTel USB-IrDA Dongle) - C:\WINDOWS\SYSTEM32\DRIVERS\irstusb.sys 3R SymEvent - C:\Program Files\Symantec\SYMEVENT.SYS 3R SYMREDRV - C:\WINDOWS\SYSTEM32\DRIVERS\symredrv.sys 1R SYMTDI - C:\WINDOWS\SYSTEM32\DRIVERS\symtdi.sys 3R SynTP (Synaptics TouchPad Driver) - C:\WINDOWS\SYSTEM32\DRIVERS\SynTP.sys 1R UdfReadr_xp - C:\WINDOWS\SYSTEM32\DRIVERS\UdfReadr_xp.sys 3R usbehci (Microsoft USB 2.0 Enhanced Host Controller Miniport Driver) - C:\WINDOWS\SYSTEM32\DRIVERS\usbehci.sys 3S usbprint (Microsoft USB PRINTER Class) - C:\WINDOWS\SYSTEM32\DRIVERS\usbprint.sys 3S usbscan (USB Scanner Driver) - C:\WINDOWS\SYSTEM32\DRIVERS\usbscan.sys 3S USBSTOR (USB Mass Storage Driver) - C:\WINDOWS\SYSTEM32\DRIVERS\usbstor.sys 4S viaagp (VIA AGP Bus Filter) - C:\WINDOWS\SYSTEM32\DRIVERS\viaagp.sys 3S wanatw (WAN Miniport (ATW)) - C:\WINDOWS\system32\DRIVERS\wanatw4.sys (not found) 4S WS2IFSL (Windows Socket 2.0 Non-IFS Service Provider Support Environment) - C:\WINDOWS\SYSTEM32\DRIVERS\ws2ifsl.sys – Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled -------------------- 3S aspnet_state (ASP.NET State Service) - C:\WINDOWS\Microsoft.NET \Framework\v2.0.50727\aspnet_state.exe 2R Ati HotKey Poller - C:\WINDOWS\System32\Ati2evxx.exe 2R Automatic LiveUpdate Scheduler - “C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe” 2R AVG Anti-Spyware Guard - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe 2R ccEvtMgr (Symantec Event Manager) - “C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe” 3S ccPwdSvc (Symantec Password Validation Service) - “C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe” 3S clr_optimization_v2.0.50727_32 (.NET Runtime Optimization Service v2.0.50727_X86) - C:\WINDOWS\Microsoft.NET \Framework\v2.0.50727\mscorsvw.exe 2S InterbaseGuardian (Interbase Guardian) - C:\InterBase\bin\ibguard.exe -s 3S InterBaseServer (InterBase Server) - C:\InterBase\bin\ibserver -s 2R Irmon (Infrared Monitor) - C:\WINDOWS\System32\svchost.exe -k netsvcs 3S LiveUpdate - “C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE” 2R msfwsvc (OneCare Firewall) - “C:\Program Files\Microsoft Windows OneCare Live\Firewall\msfwsvc.exe” 2R navapsvc (Norton AntiVirus Auto Protect Service) - “C:\Program Files\Norton AntiVirus\navapsvc.exe” 2R OneCareMP (OneCare AntiSpyware and AntiVirus) - “C:\Program Files\Microsoft Windows OneCare Live\Antivirus\MsMpEng.exe” 3S ose (Office Source Engine) - “C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE” 2S SBService (ScriptBlocking Service) - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe 3S SNDSrvc (Symantec Network Drivers Service) - “C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe” 2R SymWSC (SymWMI Service) - “C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe” 2R UMWdf (Windows User Mode Driver Framework) - C:\WINDOWS\system32\wdfmgr.exe 2S WinDefend (Windows Defender) - “C:\Program Files\Windows Defender\MsMpEng.exe” 2R winss (Windows Live OneCare) - C:\Program Files\Microsoft Windows OneCare Live\winss.exe – Scheduled Tasks ------------------------------------------------------------- 2007-03-29 18:44:01 366 --a------ C:\WINDOWS\Tasks\Symantec NetDetect.job 2007-03-29 17:17:28 384 --ah----- C:\WINDOWS\Tasks\MP Scheduled Signature Update.job 2007-03-29 17:17:27 402 --ah----- C:\WINDOWS\Tasks\MP Scheduled Quick Scan.job 2007-03-29 17:17:25 378 --ah----- C:\WINDOWS\Tasks\MP Scheduled Scan.job 2007-03-23 21:00:00 464 --a------ C:\WINDOWS\Tasks\Norton AntiVirus - Scan my computer.job 2007-03-20 21:53:03 362 --a------ C:\WINDOWS\Tasks\WebReg 20050324205320.job 2004-07-09 20:13:24 406 --a------ C:\WINDOWS\Tasks\Norton AntiVirus - Fast_Scan.job – Files created between 2007-02-28 and 2007-03-29 ----------------------------- 2007-03-27 14:55:46 0 d-------- C:\Documents and Settings\xxxxxxxx\Application Data\Smart PC Solutions 2007-03-27 14:55:33 0 d-------- C:\Program Files\Smart PC Solutions 2007-03-27 08:56:48 0 d-------- C:\WINDOWS\system32\LogFiles 2007-03-27 08:44:23 0 d-------- C:\Program Files\Microsoft Bootvis 2007-03-23 19:45:50 25992 --a------ C:\WINDOWS\system32\pgdfgsvc.exe 2007-03-14 22:44:43 0 d-------- C:\Documents and Settings\xxxxxxxxxxx\Application Data\Uniblue 2007-03-14 18:31:04 0 d-------- C:\Documents and Settings\xxxxxxxxxx\Application Data\Media Player Classic 2007-03-14 18:26:57 10752 --a------ C:\WINDOWS\system32\ff_vfw.dll 2007-03-14 18:26:51 0 d-------- C:\Program Files\K-Lite Codec Pack 2007-03-07 21:11:17 0 d-------- C:\WINDOWS\pss 2007-03-03 21:55:42 3968 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys 2007-03-03 21:55:01 0 d-------- C:\Program Files\Grisoft – Find3M Report --------------------------------------------------------------- 2060-08-19 03:02:22 1496064 --a------ C:\WINDOWS\system32\CC3250MT.DLL 2060-08-19 02:40:44 909824 --a------ C:\WINDOWS\system32\CP3245MT.DLL 2007-03-29 17:17:20 0 d-------- C:\Program Files\Common Files\Symantec Shared 2007-03-29 07:30:18 0 d-------- C:\Program Files\Microsoft Windows OneCare Live 2007-03-28 17:54:10 0 d-------- C:\Program Files\Windows Defender 2007-03-28 17:46:07 0 d-------- C:\Program Files\Norton AntiVirus 2007-03-27 21:15:00 0 d-------- C:\Documents and Settings\xxxxxxxx\Application Data\Skype 2007-03-27 12:51:14 0 d—s---- C:\Documents and Settings\xxxxxxxx\Application Data\Microsoft 2007-03-19 22:26:33 0 d-------- C:\Program Files\eMule 2007-03-16 21:16:49 0 d-------- C:\Program Files\SkanerOnline 2007-03-07 21:58:56 0 d–h----- C:\Program Files\InstallShield Installation Information 2007-03-07 21:42:35 0 d-------- C:\Program Files\Messenger 2007-03-01 18:36:10 0 d-------- C:\Program Files\Java 2007-02-18 22:18:38 0 d-------- C:\Program Files\ToniArts 2007-02-17 18:38:07 0 d-------- C:\Program Files\Common Files\Adobe 2007-02-17 18:37:59 0 d-------- C:\Documents and Settings\xxxxxxxxxx\Application Data\AdobeUM 2007-02-10 23:40:17 0 d-------- C:\Program Files\Microsoft Works 2007-02-09 19:30:35 0 d-------- C:\Documents and Settings\xxxxxxxxxxxx\Application Data\Global Forex Trading 2007-02-09 19:25:21 0 d-------- C:\Program Files\DealBook 360 2007-02-03 23:09:11 262 --a------ C:\Documents and Settings\xxxxxxxxxxx\Application Data\WinssCookie.txt 2007-02-03 22:37:32 0 d-------- C:\Program Files\Windows Live Safety Center 2007-02-03 18:57:47 0 d-------- C:\Documents and Settings\xxxxxxxxxxxx\Application Data\ppstream 2007-02-03 18:57:38 0 d-------- C:\Program Files\PPMate 2007-02-03 18:39:12 0 d-------- C:\Documents and Settings\xxxxxxxxxxxx\Application Data\PPMate 2007-02-03 18:38:45 0 d-------- C:\Program Files\Common Files\Synacast 2007-02-03 02:49:05 0 --a------ C:\WINDOWS\appxe32.dll 2007-02-02 19:06:45 0 d-------- C:\Program Files\Microsoft AntiSpyware 2007-02-01 11:39:53 0 --a------ C:\WINDOWS\system32\mspb32.dll 2007-01-30 05:17:42 0 --a------ C:\WINDOWS\system32\appyu32.dll 2007-01-29 10:58:06 60416 -----n— C:\WINDOWS\system32\tzchange.exe 2007-01-27 17:20:24 0 --a------ C:\WINDOWS\system32\mslm32.dll 2007-01-25 00:02:46 0 --a------ C:\WINDOWS\appoi.dll 2007-01-22 13:00:36 719088 --a------ C:\WINDOWS\system32\SkanerOnline.dll 2007-01-22 07:42:25 68608 --ahs---- C:\WINDOWS\uqzon.dll 2007-01-19 10:40:42 89088 --a------ C:\WINDOWS\system32\SkanerOnlineUninstall.exe 2007-01-19 02:17:49 0 --a------ C:\WINDOWS\winzr.dll 2007-01-16 10:01:53 0 --a------ C:\WINDOWS\system32\ierw.dll 2007-01-16 08:11:54 0 --a------ C:\WINDOWS\appuj.dll 2007-01-12 10:27:42 232960 --a------ C:\WINDOWS\system32\webcheck.dll 2007-01-12 10:27:42 51712 -----n— C:\WINDOWS\system32\msfeedsbs.dll 2007-01-12 10:27:42 458752 --a------ C:\WINDOWS\system32\msfeeds.dll 2007-01-12 10:27:42 6054400 --a------ C:\WINDOWS\system32\ieframe.dll 2007-01-08 20:04:54 105984 --a------ C:\WINDOWS\system32\url.dll 2007-01-08 20:04:08 102400 --a------ C:\WINDOWS\system32\occache.dll 2007-01-08 20:02:04 266752 --a------ C:\WINDOWS\system32\iertutil.dll 2007-01-08 20:02:04 44544 --a------ C:\WINDOWS\system32\iernonce.dll 2007-01-08 20:02:02 384000 --a------ C:\WINDOWS\system32\iedkcs32.dll 2007-01-08 20:02:02 383488 --a------ C:\WINDOWS\system32\ieapfltr.dll 2007-01-08 20:02:02 161792 --a------ C:\WINDOWS\system32\ieakui.dll 2007-01-08 20:02:02 230400 --a------ C:\WINDOWS\system32\ieaksie.dll 2007-01-08 20:02:02 153088 --a------ C:\WINDOWS\system32\ieakeng.dll 2007-01-08 20:01:14 17408 --a------ C:\WINDOWS\system32\corpol.dll 2007-01-08 20:00:48 124928 --a------ C:\WINDOWS\system32\advpack.dll 2007-01-08 19:08:14 56832 --a------ C:\WINDOWS\system32\ie4uinit.exe 2007-01-08 19:08:10 13824 --a------ C:\WINDOWS\system32\ieudinit.exe 2007-01-08 03:55:20 0 --a------ C:\WINDOWS\system32\sysbg.dll 2007-01-07 03:33:10 0 --a------ C:\WINDOWS\system32\netjv32.dll – Registry Dump --------------------------------------------------------------- [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run] “SynTPLpr”=“C:\Program Files\Synaptics\SynTP\SynTPLpr.exe” “SynTPEnh”=“C:\Program Files\Synaptics\SynTP\SynTPEnh.exe” “Symantec NetDriver Monitor”=“C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer” “ccRegVfy”="“C:\Program Files\Common Files\Symantec Shared\ccRegVfy.exe”" “ccApp”="“C:\Program Files\Common Files\Symantec Shared\ccApp.exe”" “!AVG Anti-Spyware”="“C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe” /minimized" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL] “Installed”=“1” [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI] “Installed”=“1” “NoChange”=“1” [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS] “Installed”=“1” [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg!AVG Anti-Spyware] “key”=“SOFTWARE\Microsoft\Windows\CurrentVersion\Run” “item”=“avgas” “hkey”=“HKLM” “command”="“C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe” /minimized" “inimapping”=“0” [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdaptecDirectCD] “key”=“SOFTWARE\Microsoft\Windows\CurrentVersion\Run” “item”=“DirectCD” “hkey”=“HKLM” “command”="“C:\Program Files\Adaptec\Easy CD Creator 5\DirectCD\DirectCD.exe”" “inimapping”=“0” [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIModeChange] “key”=“SOFTWARE\Microsoft\Windows\CurrentVersion\Run” “item”=“Ati2mdxx” “hkey”=“HKLM” “command”=“Ati2mdxx.exe” “inimapping”=“0” [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA] “key”=“SOFTWARE\Microsoft\Windows\CurrentVersion\Run” “item”=“atiptaxx” “hkey”=“HKLM” “command”=“C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe” “inimapping”=“0” [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCMSMMSG] “key”=“SOFTWARE\Microsoft\Windows\CurrentVersion\Run” “item”=“BCMSMMSG” “hkey”=“HKLM” “command”=“BCMSMMSG.exe” “inimapping”=“0” [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DellSupport] “key”=“SOFTWARE\Microsoft\Windows\CurrentVersion\Run” “item”=“DSAgnt” “hkey”=“HKCU” “command”="“C:\Program Files\Dell Support\DSAgnt.exe” /startup" “inimapping”=“0” [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DVDSentry] “key”=“SOFTWARE\Microsoft\Windows\CurrentVersion\Run” “item”=“DSentry” “hkey”=“HKLM” “command”=“C:\WINDOWS\System32\DSentry.exe” “inimapping”=“0” [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Component Manager] “key”=“SOFTWARE\Microsoft\Windows\CurrentVersion\Run” “item”=“hpcmpmgr” “hkey”=“HKLM” “command”="“C:\Program Files\HP\hpcoretech\hpcmpmgr.exe”" “inimapping”=“0” [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update] “key”=“SOFTWARE\Microsoft\Windows\CurrentVersion\Run” “item”=“HPWuSchd2” “hkey”=“HKLM” “command”="“C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe”" “inimapping”=“0” [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPDJ Taskbar Utility] “key”=“SOFTWARE\Microsoft\Windows\CurrentVersion\Run” “item”=“hpztsb10” “hkey”=“HKLM” “command”=“C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe” “inimapping”=“0” [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mmtask] “key”=“SOFTWARE\Microsoft\Windows\CurrentVersion\Run” “item”=“mmtask” “hkey”=“HKLM” “command”="“C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe”" “inimapping”=“0” [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] “key”=“SOFTWARE\Microsoft\Windows\CurrentVersion\Run” “item”=“NeroCheck” “hkey”=“HKLM” “command”=“C:\WINDOWS\system32\NeroCheck.exe” “inimapping”=“0” [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OneCareUI] “key”=“SOFTWARE\Microsoft\Windows\CurrentVersion\Run” “item”=“winssnotify” “hkey”=“HKLM” “command”="“C:\Program Files\Microsoft Windows OneCare Live\winssnotify.exe”" “inimapping”=“0” [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] “key”=“SOFTWARE\Microsoft\Windows\CurrentVersion\Run” “item”=“qttask” “hkey”=“HKLM” “command”="“C:\Program Files\QuickTime\qttask.exe” -atboottime" “inimapping”=“0” [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] “key”=“SOFTWARE\Microsoft\Windows\CurrentVersion\Run” “item”=“realsched” “hkey”=“HKLM” “command”="“C:\Program Files\Common Files\Real\Update_OB\realsched.exe” -osboot" “inimapping”=“0” [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender] “key”=“SOFTWARE\Microsoft\Windows\CurrentVersion\Run” “item”=“MSASCui” “hkey”=“HKLM” “command”="“C:\Program Files\Windows Defender\MSASCui.exe” -hide" “inimapping”=“0” [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler] “{fa19bd7e-50bc-4203-80ac-c4edc81ca9a3}”=“hirtellous” [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks] “{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}”=“Microsoft AntiMalware ShellExecuteHook” “{57B86673-276A-48B2-BAE7-C6DBB3020EB8}”=“AVG Anti-Spyware 7.5” [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system] “DisableRegistryTools”=dword:00000000 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] “NoCDBurning”=dword:00000000 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer\Run] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] “SecurityProviders”=“msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll” HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\OneCareMP [HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost] LocalService REG_MULTI_SZ Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0 NetworkService REG_MULTI_SZ DnsCache\0\0 rpcss REG_MULTI_SZ RpcSs\0\0 imgsvc REG_MULTI_SZ StiSvc\0\0 termsvcs REG_MULTI_SZ TermService\0\0 HTTPFilter REG_MULTI_SZ HTTPFilter\0\0 DcomLaunch REG_MULTI_SZ DcomLaunch\0TermService\0\0 – End of ComboScan: finished at 2007-03-29 at 18:46:02 ------------------------
Aha i jeszcze Supplementary log:
ComboScan v20070306.20 run by xxxxxx on 2007-03-29 at 18:42:48 Supplementary logfile - please post this as an attachment with your post. -------------------------------------------------------------------------------- – System Information ---------------------------------------------------------- Microsoft Windows XP Home Edition (build 2600) SP 2.0 Architecture: X86; Language: English CPU 0: Intel® Pentium® 4 CPU 2.40GHz Percentage of Memory in Use: 80% Physical Memory (total/avail): 255.33 MiB / 49.13 MiB Pagefile Memory (total/avail): 618 MiB / 292.87 MiB Virtual Memory (total/avail): 2047.88 MiB / 1981.82 MiB C: is Fixed (NTFS) - 37.21 GiB total, 17.69 GiB free. D: is CDROM (No Media) – Security Center ------------------------------------------------------------- AUOptions is scheduled to auto-install. Windows Internal Firewall is disabled. AntiVirusDisableNotify is set. FW: Windows Live OneCare Firewall v1.0.0 (Microsoft Corporation) AV: Norton AntiVirus v2003 (Symantec Corporation) Outdated AV: Windows Live OneCare v1.0.0 (Microsoft Corporation) – Environment Variables ------------------------------------------------------- ALLUSERSPROFILE=C:\Documents and Settings\All Users APPDATA=C:\Documents and Settings\xxxxxxxxxx\Application Data CLIENTNAME=Console CommonProgramFiles=C:\Program Files\Common Files COMPUTERNAME=zzzzzzzzzzzz ComSpec=C:\WINDOWS\system32\cmd.exe FP_NO_HOST_CHECK=NO HOMEDRIVE=C: HOMEPATH=\Documents and Settings\xxxxxxxxx LOGONSERVER=\zzzzzzzzzzzz NUMBER_OF_PROCESSORS=1 OS=Windows_NT Path=C:\Program Files\Internet Explorer;;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\system32\WBEM;C:\Program Files\ATI Technologies\ATI Control Panel;C:\Program Files\Common Files\Adaptec Shared\System PATHEXT=.COM ;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH PROCESSOR_ARCHITECTURE=x86 PROCESSOR_IDENTIFIER=x86 Family 15 Model 2 Stepping 9, GenuineIntel PROCESSOR_LEVEL=15 PROCESSOR_REVISION=0209 ProgramFiles=C:\Program Files PROMPT=$P$G SESSIONNAME=Console SystemDrive=C: SystemRoot=C:\WINDOWS TEMP=C:\DOCUME~1\LESZEK~1\LOCALS~1\Temp TMP=C:\DOCUME~1\LESZEK~1\LOCALS~1\Temp USERDOMAIN=zzzzzzzzz USERNAME=xxxxxxxxxx USERPROFILE=C:\Documents and Settings\xxxxxxxxxxxxxxx windir=C:\WINDOWS – User Profiles --------------------------------------------------------------- xxxxxxxxxxxxxx (admin) Administrator (admin) – Add/Remove Programs --------------------------------------------------------- --> C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 --> C:\WINDOWS\IsUninst.exe -fC:\WINDOWS\orun32.isu --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{BB82A76F-C3A1-4EBE-9788-148240FFDEE6}\SETUP.EXE” -l0x9 --> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf ACE Mega CoDecs Pack V4.00 --> C:\WINDOWS\System32\rundll32.exe setupapi,InstallHinfSection Remove_DivX 132 C:\WINDOWS\INF\ACEMCP.inf Ad-Aware SE Personal --> C:\PROGRA~1\Lavasoft\AD-AWA~1\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~1\INSTALL.LOG Adobe Photoshop Album 2.0 Starter Edition --> MsiExec.exe /I{11B569C2-4BF6-4ED0-9D17-A4273943CB24} Adobe Reader 6.0.1 --> MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A00000000001} ALLPlayer V2.2 --> C:\Program Files\MarBit\ALLPlayer\UnGins.exe “C:\Program Files\MarBit\ALLPlayer\install.log” ArcaOnline - ArcaBit Online Scanner --> C:\WINDOWS\system32\ArcaOnlineUninstall.exe Archiwizator WinRAR --> C:\Program Files\WinRAR\uninstall.exe ATI Control Panel --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe” ATI Display Driver --> rundll32 C:\WINDOWS\System32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean AVG Anti-Spyware 7.5 --> C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Uninstall.exe BCM V.92 56K Modem --> C:\WINDOWS\BCMSMU.exe quiet Broadcom Advanced Control Suite --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{89EE857B-8970-4F9F-AB58-A1C873AC72B3} /l1033 ButcherDemo --> MsiExec.exe /I{4924685D-9E35-47AC-ABDA-89B78C09C9D4} Cambridge Advanced Learner’s Dictionary - GW --> C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Cambridge\CAL099CP\Uninst.isu" Clean My Registry 4.2 --> “C:\Program Files\Smart PC Solutions\Clean My Registry\unins000.exe” DAO --> MsiExec.exe /I{64116298-93C5-401D-B06C-39D8E3338508} Data Access Objects (DAO) 3.5 --> C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Common Files\Microsoft Shared\DAO\Uninst.isu" DealBook 360 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{C4F1AEBC-6259-459B-BF23-201335038F3F}\Setup.exe” -l0x9 Dell Digital Jukebox Driver --> C:\Program Files\Dell\Digital Jukebox Drivers\DrvUnins.exe /s Dell Picture Studio - Dell Image Expert --> MsiExec.exe /I{151C555A-A9E7-4A2E-B6D7-165D04A3C956} Dell ResourceCD --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{D78653C3-A8FF-415F-92E6-D774E634FF2D}\setup.exe” Dell Solution Center --> MsiExec.exe /X{11F1920A-56A2-4642-B6E0-3B31A12C9288} Dell Support 5.0.0 (766) --> rundll32 C:\PROGRA~1\DELLSU~1\AUInst.dll,ExUninstall Devil Inside --> C:\WINDOWS\IsUn0415.exe -fc:\Uninst.isu DivX 5.0.2 Pro Bundle --> C:\WINDOWS\unvise32.exe C:\Program Files\DivX\uninstal.log DVDSentry --> MsiExec.exe /I{98DF85D9-96C0-4F57-A92E-C3539477EF5E} EarthLink Setup Files --> MsiExec.exe /X{9B2CFE3B-7F55-4786-A20D-BB244914F6D8} Easy CD Creator 5 Platinum --> MsiExec.exe /I{8851E12C-0EF9-11D4-A788-009027ABA5D0} EasyCleaner --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{F5346614-B7C4-4E94-826A-E2363155233D}\setup.exe” -l0x9 eMule --> “C:\Program Files\eMule\Uninstall.exe” EuroPlus+ Angielski z Cambridge --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{B8E09B53-B28F-4DDA-8AE0-490E3129EFFF}\setup.exe” -l0x15 -uninst FCE Words --> C:\WINDOWS\IsUn0415.exe -f"c:\FCE Words\Uninst.isu" Gadu-Gadu 7.6 --> C:\Program Files\Gadu-Gadu\Setup.exe Google Toolbar for IE --> regsvr32 /u /s “C:\WINDOWS\Downloaded Program Files\googlenav.dll” HijackThis 1.99.1 --> C:\DOCUME~1\LESZEK~1\LOCALS~1\Temp\Rar$EX02.404\HijackThis.exe /uninstall HP Deskjet 3840 --> msiexec /x{B1591C79-1C35-4E09-AA15-F7D6923AFB96} HP Software Update --> MsiExec.exe /X{B81023A5-71ED-46EB-BE3B-9F974D1155F1} InterVideo WinDVD --> “C:\Program Files\InstallShield Installation Information{98E8A2EF-4EAE-43B8-A172-74842B764777}\setup.exe” REMOVEALL J2SE Runtime Environment 5.0 Update 10 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150100} J2SE Runtime Environment 5.0 Update 11 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150110} J2SE Runtime Environment 5.0 Update 5 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150050} J2SE Runtime Environment 5.0 Update 6 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060} J2SE Runtime Environment 5.0 Update 9 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150090} Java 2 Runtime Environment, SE v1.4.2_04 --> MsiExec.exe /I{7148F0A8-6813-11D6-A77B-00B0D0142040} Java Web Start --> “C:\Program Files\Java Web Start\uninst-javaws.exe” K-Lite Codec Pack 2.85 Standard --> “C:\Program Files\K-Lite Codec Pack\unins000.exe” LiveReg (Symantec Corporation) --> C:\Program Files\Common Files\Symantec Shared\LiveReg\VcSetup.exe /REMOVE LiveUpdate 3.0 (Symantec Corporation) --> “C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE” /U Macromedia Flash Player 8 --> RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\swflash.inf,DefaultUninstall,5 Microsoft Bootvis --> MsiExec.exe /I{0F9196C6-58B4-445B-B56E-B1200FECC151} Microsoft Office Professional Edition 2003 --> MsiExec.exe /I{90110415-6000-11D3-8CFE-0150048383C9} Microsoft Protection Service --> MsiExec.exe /I{1C1B6919-00D6-4A9C-B993-1EF82F956530} Microsoft Windows Live OneCare Resources v1.5.1890.26 --> MsiExec.exe /I{5660022E-F3F2-4126-8CC5-9726C47150EB} Microsoft Windows OneCare Live AntiSpyware and AntiVirus --> MsiExec.exe /I{395CF7B4-BE08-4156-97E1-EA1A570FAE77} Microsoft Windows OneCare Live v1.5.1890.18 Idcrl Install --> MsiExec.exe /I{3851147E-5A91-4469-BA4D-13FFFCC8A920} Microsoft Windows OneCare Live v1.5.1890.26 --> MsiExec.exe /I{D07A8E7E-D324-4945-BA8C-E532AD008FF3} Modem Helper --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{7F142D56-3326-11D5-B229-002078017FBF}\setup.exe” -l0x9 ControlPanel Multimedialny s³ownik polsko-niemiecki --> C:\Program Files\Leksykonia\Rzeczpospolita\TL6\bin\deinstal.exe Musicmatch® Jukebox --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{8EF1122E-E90C-4EE9-AB0C-7FDE2BA42C26}\setup.exe” -l0x9 -uninst Nero OEM --> C:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL NOMAD MuVo TX --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{BB82A76F-C3A1-4EBE-9788-148240FFDEE6}\SETUP.EXE” -l0x9 /remove Norton AntiVirus 2003 --> MsiExec.exe /I{EDCD4CE3-DE92-49A9-87F9-FE09B2FBA16C} Norton WMI Update --> MsiExec.exe /X{1526D87C-A955-4FAB-BF18-697BA457E352} Onet.pl - Skype 3.0 --> “C:\Program Files\Skype\Phone\unins000.exe” Paint Shop Pro 7 --> MsiExec.exe /I{D6DE02C7-1F47-11D4-9515-00105AE4B89A} Panda ActiveScan --> C:\WINDOWS\system32\ASUninst.exe Panda ActiveScan Picasa 2 --> “C:\Program Files\Picasa2\Uninstall.exe” Polish Your English - intro --> C:\WINDOWS\IsUn0415.exe -f"C:\Program Files\Polish Your English\Uninst.isu" Polish Your English - Kurs --> C:\WINDOWS\IsUn0415.exe -f"C:\Program Files\Polish Your English\Uninst.isu" PX Engine --> MsiExec.exe /I{6513E869-647F-40FD-A55D-CFC92579B9BA} Quicken 2002 New User Edition --> C:\WINDOWS\IsUninst.exe -f"C:\Program Files\QUICKENW\Uninst.isu" -c"C:\Program Files\QUICKENW\uninst.dll" QuickSet --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{C5074CC4-0E26-4716-A307-960272A90040}\setup.exe” -l0x9 UNINSTALL RealPlayer --> C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 Remove DivX Pro Codec --> C:\WINDOWS\unvise32.exe C:\Program Files\DivX\DivX Pro Codec\UninstalDivXProCodec.log Security Update for Step By Step Interactive Training (KB898458) --> “C:\WINDOWS$NtUninstallKB898458$\spuninst\spuninst.exe” Security Update for Step By Step Interactive Training (KB923723) --> “C:\WINDOWS$NtUninstallKB923723$\spuninst\spuninst.exe” Skaner on-line mks_vir --> C:\WINDOWS\system32\SkanerOnlineUninstall.exe Skype Plugin Manager --> MsiExec.exe /I{3D5E5C0A-5B36-4F98-99A7-287F7DBDCE03} Synaptics Pointing Device Driver --> rundll32.exe “C:\Program Files\Synaptics\SynTP\SynISDLL.dll”,standAloneUninstall System Alert Popup --> C:\DOCUME~1\LESZEK~1\LOCALS~1\Temp\laf9.tmp /del Viewpoint Media Player (Remove Only) --> C:\Program Files\Viewpoint\Viewpoint Experience Technology\mtsAxInstaller.exe /u Windows Defender --> MsiExec.exe /I{A06275F4-324B-4E85-95E6-87B2CD729401} Windows Live OneCare --> “C:\Program Files\Microsoft Windows OneCare Live\OCSetup.exe” /u Windows Live OneCare safety scanner --> RunDll32.exe “C:\Program Files\Windows Live Safety Center\wlscCore.dll”,UninstallFunction WLSC_SCANNER_PRODUCT WordPerfect Office 11 --> MsiExec.exe /I{54F90B55-BEB3-4F0D-8802-228822FA5921} X-Trader 4.00 --> “C:\Program Files\X-Trader 4 XTB\Uninstall.exe” “C:\Program Files\X-Trader 4 XTB\install.log” YDP Dictionary (German-Polish, Polish-German) --> C:\WINDOWS\IsUninst.exe -f"C:\Program Files\YDP\YdpDict\DeIsL1.isu" YDP Flash Speech Recognition Support 1.0 --> C:\Program Files\Common Files\YDP\FlashSpeechRecognitionSupport\uninst.exe
Złączono Posta : 02.04.2007 (Pon) 22:05
I co? Jak wyglądają te logi ???