Logi


(system) #1

Komp zawiesza się, wyskakują jakieś błędy mozilli potem niebieski ekran z jakimiś napisami i reset... Mam mało czasu. Logi z OTLa:

OTL logfile created on: 2009-09-14 21:54:17 - Run 1

OTL by OldTimer - Version 3.0.11.0 Folder = C:\Documents and Settings\Admin\Pulpit

Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 6.0.2900.5512)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd


2,00 Gb Total Physical Memory | 1,62 Gb Available Physical Memory | 81,15% Memory free

3,85 Gb Paging File | 3,65 Gb Available in Paging File | 94,75% Paging File free

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]


%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 29,29 Gb Total Space | 5,53 Gb Free Space | 18,87% Space Free | Partition Type: NTFS

Drive D: | 134,28 Gb Total Space | 104,75 Gb Free Space | 78,01% Space Free | Partition Type: NTFS

Drive E: | 134,51 Gb Total Space | 114,70 Gb Free Space | 85,27% Space Free | Partition Type: NTFS

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded


Computer Name: USER-BF6D7FDC8D

Current User Name: Admin

Logged in as Administrator.


Current Boot Mode: Normal

Scan Mode: All users

Company Name Whitelist: Off

Skip Microsoft Files: Off

File Age = 30 Days

Output = Standard


[color=#E56717]========== Processes (SafeList) ==========[/color]


PRC - [2008-04-14 19:21:16 | 01,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE

PRC - [2006-12-18 15:34:36 | 00,868,352 | R--- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe

PRC - [2005-03-17 15:25:54 | 00,057,393 | ---- | M] (ScanSoft, Inc.) -- C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe

PRC - [2006-03-28 16:48:54 | 00,622,592 | R--- | M] () -- C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe

PRC - [2005-12-10 16:57:19 | 00,133,016 | ---- | M] (DT Soft Ltd.) -- C:\Program Files\DAEMON Tools\daemon.exe

PRC - [2006-04-24 20:23:42 | 00,339,968 | ---- | M] (Brother Industries, Ltd.) -- C:\Program Files\Brother\ControlCenter3\brccMCtl.exe

PRC - [2007-12-05 02:41:00 | 00,155,716 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe

PRC - [2009-03-12 18:42:22 | 00,075,064 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrA.exe

PRC - [2004-08-11 01:45:04 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfmgr.exe

PRC - [2008-05-30 00:45:02 | 00,307,712 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe

PRC - [2009-09-14 21:53:16 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]


SRV - [2008-04-14 19:20:44 | 00,038,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running])

SRV - [2007-12-05 02:41:00 | 00,155,716 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe -- (NVSvc [Auto | Running])

SRV - [2009-03-12 18:42:22 | 00,075,064 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrA.exe -- (PnkBstrA [Auto | Running])

SRV - [2008-08-07 11:17:30 | 00,575,488 | ---- | M] (Nokia.) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer [On_Demand | Stopped])

SRV - [2004-08-11 01:45:04 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfmgr.exe -- (umwdf [Auto | Running])


[color=#E56717]========== Driver Services (SafeList) ==========[/color]


DRV - [2007-01-16 03:09:06 | 00,293,888 | R--- | M] (Analog Devices, Inc.) -- C:\WINDOWS\System32\drivers\ADIHdAud.sys -- (ADIHdAudAddService [On_Demand | Running])

DRV - [2006-08-07 00:57:30 | 00,093,952 | R--- | M] (Andrea Electronics Corporation) -- C:\WINDOWS\System32\drivers\AEAudio.sys -- (AEAudio [On_Demand | Running])

DRV - [2004-10-15 13:50:20 | 00,015,295 | ---- | M] (Brother Industries Ltd.) -- C:\WINDOWS\System32\DRIVERS\BrScnUsb.sys -- (BrScnUsb [On_Demand | Stopped])

DRV - [2007-12-11 09:40:16 | 00,223,128 | ---- | M] () -- C:\WINDOWS\System32\Drivers\dtscsi.sys -- (dtscsi [On_Demand | Running])

DRV - [2009-02-06 14:24:24 | 00,093,336 | ---- | M] (ESET) -- C:\WINDOWS\System32\DRIVERS\epfwtdir.sys -- (epfwtdir [System | Running])

DRV - [2007-09-04 18:13:14 | 00,010,345 | ---- | M] (Applied Networking Inc.) -- C:\WINDOWS\System32\DRIVERS\hamachi.sys -- (hamachi [On_Demand | Running])

DRV - [2008-04-13 18:36:05 | 00,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\System32\DRIVERS\HDAudBus.sys -- (HDAudBus [On_Demand | Running])

DRV - [2004-03-29 17:28:24 | 00,014,531 | ---- | M] (iRiver, Inc.) -- C:\WINDOWS\system32\drivers\ifp700.sys -- (IFP700 [Boot | Running])

DRV - [2007-09-28 09:24:32 | 00,065,152 | ---- | M] (JMicron Technology Corp.) -- C:\WINDOWS\system32\DRIVERS\jraid.sys -- (JRAID [Boot | Running])

DRV - [2004-08-13 04:56:20 | 00,005,810 | R--- | M] () -- C:\WINDOWS\System32\DRIVERS\ASACPI.sys -- (MTsensor [On_Demand | Running])

DRV - [2008-05-07 07:38:20 | 00,017,536 | ---- | M] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmb.sys -- (nmwcd [On_Demand | Stopped])

DRV - [2008-05-07 07:38:20 | 00,020,864 | ---- | M] (Nokia) -- C:\WINDOWS\System32\drivers\ccdcmbo.sys -- (nmwcdc [On_Demand | Stopped])

DRV - [2007-12-05 02:41:00 | 07,435,392 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\nv4_mini.sys -- (nv [On_Demand | Running])

DRV - [2007-09-17 15:53:26 | 00,021,632 | ---- | M] (Nokia) -- C:\WINDOWS\System32\DRIVERS\pccsmcfd.sys -- (pccsmcfd [On_Demand | Stopped])

DRV - [2004-08-04 14:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])

DRV - [2006-07-27 03:49:10 | 00,083,712 | R--- | M] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\System32\DRIVERS\Rtenicxp.sys -- (RTLE8023xp [On_Demand | Running])

DRV - [2008-04-13 18:39:16 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\System32\DRIVERS\secdrv.sys -- (Secdrv [Auto | Running])

DRV - [2006-03-17 11:18:58 | 00,392,960 | R--- | M] (Sensaura) -- C:\WINDOWS\System32\drivers\Senfilt.sys -- (SenFiltService [On_Demand | Running])

DRV - [2008-02-26 22:35:54 | 00,716,272 | ---- | M] () -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd [Boot | Running])

DRV - [2008-06-06 09:24:44 | 00,008,064 | ---- | M] (Windows (R) Codename Longhorn DDK provider) -- C:\WINDOWS\System32\DRIVERS\usbser_lowerflt.sys -- (upperdev [On_Demand | Stopped])

DRV - [2008-04-13 20:45:36 | 00,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbser.sys -- (usbser [On_Demand | Stopped])

DRV - [2008-05-07 07:38:36 | 00,008,064 | ---- | M] (Windows (R) Codename Longhorn DDK provider) -- C:\WINDOWS\System32\DRIVERS\usbser_lowerfltj.sys -- (UsbserFilt [On_Demand | Stopped])


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]



[color=#E56717]========== Internet Explorer ==========[/color]


IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm



IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome


IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome




IE - HKU\S-1-5-21-1708537768-562591055-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm

IE - HKU\S-1-5-21-1708537768-562591055-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

IE - HKU\S-1-5-21-1708537768-562591055-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

IE - HKU\S-1-5-21-1708537768-562591055-839522115-1004\S-1-5-21-1708537768-562591055-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[color=#E56717]========== FireFox ==========[/color]


FF - prefs.js..extensions.enabledItems: bkmrksync@nokia.com:1.0.0.658

FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0

FF - prefs.js..extensions.enabledItems: nasanightlaunch@example.com:0.6.20090630


FF - HKLM\software\mozilla\Mozilla Firefox 3.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-09-14 20:18:06 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-09-14 20:17:47 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird


[2008-06-19 09:07:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\mozilla\Extensions

[2008-06-19 09:07:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}

[2009-09-13 20:08:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\mozilla\Firefox\Profiles\8h6w2amy.default\extensions

[2007-10-21 18:58:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\mozilla\Firefox\Profiles\8h6w2amy.default\extensions\{4A207596-AED2-4223-929F-BBE1D691B7CD}

[2008-09-23 20:36:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\mozilla\Firefox\Profiles\8h6w2amy.default\extensions\bkmrksync@nokia.com

[2009-09-10 14:04:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\mozilla\Firefox\Profiles\8h6w2amy.default\extensions\nasanightlaunch@example.com

[2009-09-14 20:18:04 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions

[2009-09-14 20:18:04 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

[2008-05-30 00:45:04 | 00,023,040 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll

[2008-05-30 00:45:04 | 00,134,144 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll

[2008-03-19 19:23:20 | 00,114,688 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\mozilla firefox\plugins\np32dsw.dll

[2008-05-30 00:45:04 | 00,065,536 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll

[2009-02-27 12:13:42 | 00,103,792 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll

[2007-09-04 17:49:12 | 02,115,816 | ---- | M] () -- C:\Program Files\mozilla firefox\plugins\NPSWF32.dll

[2006-06-03 18:43:22 | 00,000,896 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml

[2008-04-03 19:19:08 | 00,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml

[2008-04-16 06:08:20 | 00,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml

[2007-03-31 19:11:54 | 00,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml

[2006-06-03 18:43:22 | 00,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml

[2008-03-28 23:36:04 | 00,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml

[2007-01-05 13:40:56 | 00,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml


O1 HOSTS File: (27 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

O2 - BHO: (IeCatch2 Class) - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\Program Files\FlashGet\Jccatch.dll (Amaze Soft)

O3 - HKLM\..\Toolbar: (FlashGet Bar) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\Program Files\FlashGet\fgiebar.dll (Amaze Soft)

O4 - HKLM..\Run: [36X Raid Configurer] C:\WINDOWS\System32\xRaidSetup.exe (JMicron Technology Corp.)

O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)

O4 - HKLM..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe ()

O4 - HKLM..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.)

O4 - HKLM..\Run: [DAEMON Tools] C:\Program Files\DAEMON Tools\daemon.exe (DT Soft Ltd.)

O4 - HKLM..\Run: [IndexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe (ScanSoft, Inc.)

O4 - HKLM..\Run: [JMB36X IDE Setup] C:\WINDOWS\RaidTool\xInsIDE.exe ()

O4 - HKLM..\Run: [KernelFaultCheck] File not found

O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\System32\NeroCheck.exe (Nero AG)

O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)

O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)

O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()

O4 - HKLM..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe (ScanSoft, Inc.)

O4 - HKLM..\Run: [SetDefPrt] C:\Program Files\Brother\Brmfl06a\BrStDvPt.exe (Brother Industories, Ltd.)

O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)

O4 - HKLM..\Run: [SSBkgdUpdate] C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe (Scansoft, Inc.)

O4 - HKU\S-1-5-21-1708537768-562591055-839522115-1004..\Run: [Steam] d:\steam\steam.exe (Valve Corporation)

O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = 

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = 

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0

O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\control panel present

O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\control panel present

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\control panel present

O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-19_Classes\Software\Policies\Microsoft\Internet Explorer\control panel present

O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\control panel present

O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-20_Classes\Software\Policies\Microsoft\Internet Explorer\control panel present

O7 - HKU\S-1-5-21-1708537768-562591055-839522115-1004\Software\Policies\Microsoft\Internet Explorer\control panel present

O7 - HKU\S-1-5-21-1708537768-562591055-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O7 - HKU\S-1-5-21-1708537768-562591055-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O7 - HKU\S-1-5-21-1708537768-562591055-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0

O7 - HKU\S-1-5-21-1708537768-562591055-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0

O7 - HKU\S-1-5-21-1708537768-562591055-839522115-1004_Classes\Software\Policies\Microsoft\Internet Explorer\control panel present

O8 - Extra context menu item: Download All by FlashGet - C:\Program Files\FlashGet\jc_all.htm ()

O8 - Extra context menu item: Download using FlashGet - C:\Program Files\FlashGet\jc_link.htm ()

O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found

O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\flashget.exe (Amaze Soft)

O9 - Extra 'Tools' menuitem : &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\flashget.exe (Amaze Soft)

O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)

O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)

O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\System32\rsvpsp.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\System32\rsvpsp.dll (Microsoft Corporation)

O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.

O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} http://www.eset.eu/buxus/docs/OnlineScanner.cab (Reg Error: Key error.)

O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/products/plugin/1.4/jinstall-14_01-windows-i586.cab (Java Plug-in 1.4.1_01)

O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)

O16 - DPF: {CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA} http://java.sun.com/products/plugin/1.4/jinstall-14_01-windows-i586.cab (Java Plug-in 1.4.1_01)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 82.139.8.7 88.156.63.9 88.156.96.61

O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)

O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)

O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)

O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)

O18 - Protocol\Handler\ipp - No CLSID value found

O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp - No CLSID value found

O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)

O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home

O31 - SafeBoot: AlternateShell - cmd.exe

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2007-09-03 16:36:51 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [NTFS]

O34 - HKLM BootExecute: (autocheck) - File not found

O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)

O34 - HKLM BootExecute: (*) - File not found


[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]


[5 C:\WINDOWS\*.tmp files]

[2009-09-14 21:53:12 | 00,513,536 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe

[2009-09-14 21:46:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Mi

[2009-09-14 21:46:04 | 00,396,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF4704.exe

[2009-09-14 21:46:04 | 00,000,000 | --SD | C] -- C:\ComboFix

[2009-09-14 21:45:40 | 00,000,000 | -HSD | C] -- C:\RECYCLER

[2009-09-14 21:41:44 | 00,000,000 | -HSD | C] -- C:\Config.Msi

[2009-09-14 21:38:05 | 00,396,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF1316.exe

[2009-09-14 20:35:13 | 00,000,000 | ---D | C] -- C:\WINDOWS\temp

[2009-09-14 20:34:10 | 00,396,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF2799.exe

[2009-09-14 20:25:16 | 00,000,211 | ---- | C] () -- C:\Boot.bak

[2009-09-14 20:25:15 | 00,262,400 | ---- | C] () -- C:\cmldr

[2009-09-14 20:25:12 | 00,000,000 | RHSD | C] -- C:\cmdcons

[2009-09-14 20:18:07 | 00,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk

[2009-09-14 19:07:22 | 00,051,959 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\3.pdf

[2009-09-10 14:02:28 | 08,777,416 | ---- | C] (Mozilla) -- C:\Documents and Settings\Admin\Pulpit\Firefox Setup 3.5.3.exe

[2009-09-09 18:41:50 | 03,185,298 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\e nomine - vater unser.mp3

[2009-09-08 18:23:03 | 01,925,024 | ---- | C] (Adobe Systems Incorporated) -- C:\Documents and Settings\Admin\Pulpit\install_flash_player.exe

[2009-09-08 15:38:48 | 00,230,912 | ---- | C] () -- C:\WINDOWS\PEV.exe

[2009-09-08 15:38:48 | 00,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe

[2009-09-08 15:38:48 | 00,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe

[2009-09-08 15:38:48 | 00,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe

[2009-09-08 15:38:48 | 00,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe

[2009-09-08 15:38:48 | 00,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe

[2009-09-08 15:38:48 | 00,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe

[2009-09-08 15:38:48 | 00,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe

[2009-09-08 15:38:47 | 00,000,000 | ---D | C] -- C:\WINDOWS\ERDNT

[2009-09-08 15:10:55 | 00,050,688 | ---- | C] (Atribune.org) -- C:\Documents and Settings\Admin\Pulpit\ATF-Cleaner.exe

[2009-09-08 14:54:24 | 00,051,232 | ---- | C] (gkweb) -- C:\Documents and Settings\Admin\Pulpit\wwdc.exe

[2009-09-07 13:27:13 | 00,012,210 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Moby_-_Wait_For_Me_-_Pale_Horses_[CD_2009][Cov_2CD][Bubanee].4974340.TPB.torrent

[2009-09-06 18:59:49 | 00,002,728 | ---- | C] () -- C:\WINDOWS\System32\mini_spectrum2.swf

[2009-09-06 18:59:43 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Moje dokumenty\My Videos

[2009-09-06 18:59:43 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Moje dokumenty\My Music

[2009-09-06 18:56:06 | 00,000,815 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\iriver plus 3.lnk

[2009-09-06 18:55:35 | 00,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages

[2009-09-06 18:54:25 | 00,077,824 | ---- | C] () -- C:\WINDOWS\System32\csdlocalmon.dll

[2009-03-02 18:43:59 | 00,138,944 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys

[2009-02-09 18:01:28 | 00,057,344 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll

[2009-02-09 18:01:28 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest

[2008-09-01 19:47:55 | 00,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll

[2008-09-01 19:47:55 | 00,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll

[2008-09-01 19:47:55 | 00,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll

[2008-04-14 19:44:01 | 00,217,088 | ---- | C] () -- C:\WINDOWS\System32\libmySQL.dll

[2008-04-14 19:44:01 | 00,102,400 | ---- | C] () -- C:\WINDOWS\System32\TrackerNET.dll

[2008-02-27 17:09:52 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini

[2007-12-11 09:59:21 | 00,000,344 | ---- | C] () -- C:\WINDOWS\owp.ini

[2007-12-11 09:45:03 | 00,165,888 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll

[2007-12-11 09:40:16 | 00,223,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\dtscsi.sys

[2007-12-11 09:38:31 | 00,716,272 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys

[2007-11-06 12:37:17 | 00,000,404 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI

[2007-11-06 12:37:17 | 00,000,027 | ---- | C] () -- C:\WINDOWS\BRPP2KA.INI

[2007-11-06 12:33:24 | 00,027,019 | ---- | C] () -- C:\WINDOWS\maxlink.ini

[2007-09-04 18:26:41 | 00,000,427 | ---- | C] () -- C:\WINDOWS\ODBC.INI

[2007-09-04 18:21:11 | 00,006,688 | ---- | C] () -- C:\WINDOWS\System32\Digita.sys

[2007-09-04 18:21:09 | 00,335,872 | ---- | C] () -- C:\WINDOWS\System32\ldf252.dll

[2007-09-03 21:45:27 | 00,000,095 | ---- | C] () -- C:\WINDOWS\winamp.ini

[2007-09-03 16:41:21 | 00,015,010 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini

[2007-09-03 16:41:11 | 00,014,682 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini

[2007-09-03 16:41:10 | 00,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys

[2007-09-03 16:40:51 | 00,010,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS

[2007-05-15 10:07:10 | 00,069,632 | ---- | C] () -- C:\WINDOWS\System32\CSD_IRIVER_GEN.DLL

[2007-05-11 00:03:00 | 01,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll

[2007-05-11 00:03:00 | 01,474,560 | ---- | C] () -- C:\WINDOWS\System32\nview.dll

[2007-05-11 00:03:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll

[2007-05-11 00:03:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll

[2007-05-11 00:03:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll

[2007-03-29 23:00:40 | 00,203,264 | R--- | C] () -- C:\WINDOWS\System32\CddbCdda.dll

[2004-08-04 14:00:00 | 00,000,659 | ---- | C] () -- C:\WINDOWS\win.ini

[2004-08-04 14:00:00 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini

[2002-03-04 11:16:34 | 00,110,592 | R--- | C] () -- C:\WINDOWS\System32\Jpeg32.dll

[1999-01-22 20:46:58 | 00,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL


[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]


[1 C:\WINDOWS\System32\*.tmp files]

[5 C:\WINDOWS\*.tmp files]

[2009-09-14 21:53:16 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe

[2009-09-14 21:48:37 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT

[2009-09-14 21:48:36 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2009-09-14 21:45:59 | 00,396,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CF4704.exe

[2009-09-14 21:37:57 | 00,396,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CF1316.exe

[2009-09-14 21:16:44 | 00,002,013 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk

[2009-09-14 20:37:06 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini

[2009-09-14 20:36:20 | 00,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts

[2009-09-14 20:34:05 | 00,396,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CF2799.exe

[2009-09-14 20:25:16 | 00,000,281 | RHS- | M] () -- C:\boot.ini

[2009-09-14 20:18:10 | 00,000,095 | ---- | M] () -- C:\WINDOWS\winamp.ini

[2009-09-14 20:18:07 | 00,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk

[2009-09-14 19:07:23 | 00,051,959 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\3.pdf

[2009-09-13 17:51:10 | 00,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2009-09-10 19:15:32 | 02,643,860 | -H-- | M] () -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\IconCache.db

[2009-09-10 14:03:43 | 08,777,416 | ---- | M] (Mozilla) -- C:\Documents and Settings\Admin\Pulpit\Firefox Setup 3.5.3.exe

[2009-09-09 18:44:28 | 03,185,298 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\e nomine - vater unser.mp3

[2009-09-08 18:23:23 | 01,925,024 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\Admin\Pulpit\install_flash_player.exe

[2009-09-08 15:10:57 | 00,050,688 | ---- | M] (Atribune.org) -- C:\Documents and Settings\Admin\Pulpit\ATF-Cleaner.exe

[2009-09-08 14:54:25 | 00,051,232 | ---- | M] (gkweb) -- C:\Documents and Settings\Admin\Pulpit\wwdc.exe

[2009-09-07 13:27:14 | 00,012,210 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\Moby_-_Wait_For_Me_-_Pale_Horses_[CD_2009][Cov_2CD][Bubanee].4974340.TPB.torrent

[2009-09-06 18:56:06 | 00,000,815 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\iriver plus 3.lnk

[2009-09-06 18:55:50 | 00,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx

[2009-09-03 22:25:22 | 00,230,912 | ---- | M] () -- C:\WINDOWS\PEV.exe

< End of report >

Pomocy. ;]


(Asterisk) #2

Proszę zastosować się do tego Tematu i edytować własnego posta

w celu zmiany jego tytułu na konkretny .

W przeciwnym razie topic wyląduje w Śmietniku.

Logi wklejasz na http://wklej.eu lub na http://wklej.org,

a w poście dajesz tylko link