Deckard’s System Scanner v20070611.50
Run by kubiako on 2007-06-16 at 19:09:37
Computer is in Normal Mode.
– System Restore --------------------------------------------------------------
Successfully created a Deckard’s System Scanner Restore Point.
– Last 5 Restore Point(s) –
21: 2007-06-16 17:09:56 UTC - RP104 - Deckard’s System Scanner Restore Point
20: 2007-06-16 11:15:47 UTC - RP103 - Deckard’s System Scanner Restore Point
19: 2007-06-14 12:33:14 UTC - RP102 - Deckard’s System Scanner Restore Point
18: 2007-06-13 18:22:59 UTC - RP101 - Software Distribution Service 2.0
17: 2007-06-12 20:33:29 UTC - RP100 - Software Distribution Service 2.0
– First Restore Point –
1: 2007-06-10 10:57:41 UTC - RP84 - Zainstalowano Windows XP KB873339.
Performed disk cleanup.
– HijackThis (run as kubiako.exe) ---------------------------------------------
Logfile of HijackThis v1.99.1
Scan saved at 19:10:20, on 2007-06-16
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\savedump.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
D:\kaspersky\avp.exe
C:\WINDOWS\htpatch.exe
C:\WINDOWS\system32\RunDll32.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
D:\kaspersky\avp.exe
C:\WINDOWS\system32\ctfmon.exe
D:\Gadu-Gadu\gg.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\system32\rundll32.exe
C:\Documents and Settings\kubiako\Pulpit\dss.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\HIJACK~1\kubiako.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
R3 - URLSearchHook: (no name) - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O4 - HKLM…\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM…\Run: [siSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM…\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM…\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM…\Run: [nwiz] nwiz.exe /install
O4 - HKLM…\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM…\Run: [speedTouch USB Diagnostics] “C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe” /icon
O4 - HKLM…\Run: [AVP] “D:\kaspersky\avp.exe”
O4 - HKCU…\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU…\Run: [Gadu-Gadu] “D:\Gadu-Gadu\gg.exe” /tray
O8 - Extra context menu item: Dodaj do blokowanych banerów - D:\kaspersky\ie_banner_deny.htm
O9 - Extra button: Statystyki ochrony WWW - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - D:\kaspersky\scieplugin.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.pl/resources/virus … nicode.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda … 1154972156
O17 - HKLM\System\CCS\Services\Tcpip…{CE0E488A-E3D5-4BED-BF32-45A6B3A4EABD}: NameServer = 194.204.152.34 217.98.63.164
O20 - AppInit_DLLs: D:\KASPER~1\adialhk.dll
O20 - Winlogon Notify: klogon - C:\WINDOWS\System32\klogon.dll
O23 - Service: Kaspersky Internet Security 6.0 (AVP) - Kaspersky Lab - D:\kaspersky\avp.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
– File Associations -----------------------------------------------------------
.cpl - cplfile - shell\cplopen\command - rundll32.exe shell32.dll,Control_RunDLL “%1”,%*
.cpl - cplfile - shell\runas\command - rundll32.exe shell32.dll,Control_RunDLLAsUser “%1”,%*
– Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------
R0 VClone - c:\windows\system32\drivers\vclone.sys
R1 PQNTDrv - c:\windows\system32\drivers\pqntdrv.sys
R2 ElbyCDIO (ElbyCDIO Driver) - c:\windows\system32\drivers\elbycdio.sys
R3 Amps2prt (A4Tech PS/2 Port Mouse Driver) - c:\windows\system32\drivers\amps2prt.sys
R3 ElbyDelay - c:\windows\system32\drivers\elbydelay.sys
S3 msdirectxclicks - c:\documents and settings\kubiako\msdirectxclks.sys (file missing)
– Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------
S4 msdll - “c:\windows\system\msdll.exe” (file missing)
– Suspicious Process Modules --------------------------------------------------
C:\WINDOWS\explorer.exe (pid 1308)
2006-12-21 14:30:44 102400 --a------ D:\Gadu-Gadu\ggwhook.dll
C:\WINDOWS\system32\rundll32.exe (pid 1540)
2006-12-21 14:30:44 102400 --a------ D:\Gadu-Gadu\ggwhook.dll
C:\WINDOWS\system32\rundll32.exe (pid 1568)
2006-12-21 14:30:44 102400 --a------ D:\Gadu-Gadu\ggwhook.dll
– Files created between 2007-05-16 and 2007-06-16 -----------------------------
2007-06-10 13:06:55 0 d-------- C:\WINDOWS\Prefetch
2007-06-10 13:05:53 0 d–hs---- C:\found.000
2007-06-10 12:51:44 0 d-------- C:\WINDOWS\peernet
2007-06-10 12:51:43 0 d-------- C:\WINDOWS\provisioning
2007-06-10 12:48:40 0 d-------- C:\WINDOWS\ServicePackFiles
2007-06-10 12:38:44 0 d-------- C:\WINDOWS\EHome
2007-06-09 16:55:26 217088 --a------ C:\WINDOWS\system32\yv12vfw.dll http://www.helixcommunity.org; Helix YV12 YUV Codec>
2007-06-09 16:55:26 144384 --a------ C:\WINDOWS\system32\Iacenc.dll
2007-06-09 16:55:26 217088 --a------ C:\WINDOWS\system32\i420vfw.dll http://www.helixcommunity.org; Helix I420 YUV Codec>
2007-06-09 16:55:26 39936 --a------ C:\WINDOWS\system32\huffyuv.dll
2007-06-09 16:55:25 548864 --a------ C:\WINDOWS\system32\x264vfw.dll
2007-06-09 16:55:25 630784 --a------ C:\WINDOWS\system32\vp7vfw.dll
2007-06-09 16:55:25 438272 --a------ C:\WINDOWS\system32\vp6vfw.dll
2007-06-09 16:55:23 180224 --a------ C:\WINDOWS\system32\xvidvfw.dll
2007-06-09 16:55:22 10752 --a------ C:\WINDOWS\system32\ff_vfw.dll
2007-06-08 18:31:15 26112 --a------ C:\WINDOWS\system32\xpsp1hfm.exe
2007-06-08 18:25:21 171280 --a------ C:\WINDOWS\system32\jit.dll
2007-06-08 18:25:21 46352 --a------ C:\WINDOWS\setdebug.exe
2007-06-08 18:25:20 139536 --a------ C:\WINDOWS\system32\javaee.dll
2007-06-08 18:25:20 313856 --a------ C:\WINDOWS\system32\dx3j.dll
2007-06-08 18:25:20 6550 --a------ C:\WINDOWS\jautoexp.dat
2007-06-08 18:25:15 113 --a------ C:\WINDOWS\system32\zonedon.reg
2007-06-08 18:25:14 113 --a------ C:\WINDOWS\system32\zonedoff.reg
2007-06-08 18:25:14 171792 --a------ C:\WINDOWS\system32\wjview.exe
2007-06-08 18:25:14 286992 --a------ C:\WINDOWS\system32\vmhelper.dll
2007-06-08 18:25:14 21264 --a------ C:\WINDOWS\system32\msjdbc10.dll
2007-06-08 18:25:14 947472 --a------ C:\WINDOWS\system32\msjava.dll
2007-06-08 18:25:13 154384 --a------ C:\WINDOWS\system32\msawt.dll
2007-06-08 18:25:13 172304 --a------ C:\WINDOWS\system32\jview.exe
2007-06-08 18:25:13 15120 --a------ C:\WINDOWS\system32\jdbgmgr.exe
2007-06-08 18:25:13 404752 --a------ C:\WINDOWS\system32\javart.dll
2007-06-08 18:25:13 63248 --a------ C:\WINDOWS\system32\javaprxy.dll
2007-06-08 18:25:12 187152 --a------ C:\WINDOWS\system32\javacypt.dll
2007-06-08 18:25:11 49424 --a------ C:\WINDOWS\system32\clspack.exe
2007-06-08 15:21:26 82258 --a------ C:\WINDOWS\system32\drivers\klin.dat
2007-06-08 15:21:26 82258 --a------ C:\WINDOWS\system32\drivers\klick.dat
2007-06-08 15:21:12 178720 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.dat
2007-06-08 15:21:12 4367136 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat
2007-06-07 23:16:37 0 d-------- C:\WINDOWS\system32\Kaspersky Lab
2007-06-06 22:31:19 0 d-------- C:\Program Files\GameSpy Arcade
2007-06-06 22:19:26 0 d-------- C:\WINDOWS\system32\bits
2007-06-06 22:19:00 0 d-------- C:\WINDOWS\system32\PreInstall
2007-06-06 22:18:57 0 d–h----- C:\WINDOWS$hf_mig$
2007-06-06 22:08:42 43520 --a------ C:\WINDOWS\system32\CmdLineExt03.dll
2007-06-06 21:21:38 74880 --a------ C:\WINDOWS\system32\dload.exe
2007-06-06 20:42:58 237568 --a------ C:\WINDOWS\system32\OggDS.dll
2007-06-06 20:42:50 921600 --a------ C:\WINDOWS\system32\vorbisenc.dll
2007-06-06 20:42:15 188416 --a------ C:\WINDOWS\system32\vorbis.dll
2007-06-06 20:42:09 45056 --a------ C:\WINDOWS\system32\ogg.dll
2007-06-06 20:42:07 1415680 --a------ C:\WINDOWS\system32\WMV9VCM.dll
2007-06-06 20:41:02 245760 --a------ C:\WINDOWS\system32\mplvpx.dll
2007-06-06 20:40:43 9216 --a------ C:\WINDOWS\system32\cpuinf32.dll
2007-06-06 20:37:51 593920 --a------ C:\WINDOWS\system32\xvidcore.dll
2007-06-06 20:36:23 0 d-------- C:\WINDOWS\SoftwareDistribution
2007-06-06 19:34:09 0 --a------ C:\WINDOWS\nsreg.dat
2007-06-06 19:20:45 29696 -----n— C:\crypts.dll
2007-06-06 19:20:40 68608 --a------ C:\helpmsw.exe
2007-06-06 19:14:24 0 d-------- C:\WINDOWS
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\WinSxS
2007-06-06 19:14:24 0 dr------- C:\WINDOWS\Web
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\twain_32
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\wins
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\wbem
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\usmt
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\spool
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\ShellExt
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\Setup
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\ras
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\oobe
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\npp
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\mui
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\inetsrv
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\IME
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\icsxml
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\ias
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\export
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\drivers
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\drivers\etc
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\drivers\disdn
2007-06-06 19:14:24 0 dr-hs–c- C:\WINDOWS\system32\dllcache
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\dhcp
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\config
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\3com_dmi
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\3076
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\2052
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\1054
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\1045
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\1042
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\1041
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\1037
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\1033
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\1031
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\1028
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system32\1025
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\system
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\security
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\Resources
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\repair
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\mui
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\msapps
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\msagent
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\Media
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\java
2007-06-06 19:14:24 0 d–h----- C:\WINDOWS\inf
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\ime
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\Help
2007-06-06 19:14:24 0 dr–s---- C:\WINDOWS\Fonts
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\Driver Cache
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\Debug
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\Cursors
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\Connection Wizard
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\Config
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\AppPatch
2007-06-06 19:14:24 0 d-------- C:\WINDOWS\addins
2007-06-06 19:12:16 0 -ra------ C:\WINDOWS\system32\TFTP368
2007-06-06 19:10:04 119 --a------ C:\WINDOWS\system32\tolotg.bat
2007-06-06 18:59:47 32768 --a------ C:\WINDOWS\system32\WooDial2000.dll
2007-06-06 18:59:11 0 d-------- C:\Program Files\Thomson
2007-06-06 18:58:10 0 d-------- C:\Program Files\Neostrada TP
2007-06-06 18:54:39 0 d-------- C:\Program Files\Winamp
2007-06-06 18:53:22 107132 --a------ C:\WINDOWS\UninstallThunderbird.exe
2007-06-06 18:52:56 3192 --a------ C:\WINDOWS\mozver.dat
2007-06-06 18:47:55 0 d-------- C:\Program Files\Google
2007-06-06 18:46:34 0 d-------- C:\Program Files\MyGlobalSearch
2007-06-06 18:40:25 0 d-------- C:\Program Files\EPSON
2007-06-06 18:19:34 0 d-------- C:\Program Files\Common Files\ODBC
2007-06-06 18:19:31 0 dr------- C:\Program Files
2007-06-06 18:19:31 0 d-------- C:\Program Files\Common Files\SpeechEngines
2007-06-06 18:18:43 9984 -ra------ C:\WINDOWS\system32\drivers\Amps2prt.sys
2007-06-06 18:18:38 0 d-------- C:\WINDOWS\system32\CatRoot2
2007-06-06 18:18:38 0 d-------- C:\WINDOWS\system32\CatRoot
2007-06-06 18:18:37 0 d-------- C:\Program Files\A4Tech
2007-06-06 18:18:16 0 d-------- C:\Documents and Settings
2007-06-06 18:11:18 49152 -----n— C:\WINDOWS\system32\MultiSZ.dll info@nero.com; MultiSZ/ACL Installation Library>
2007-06-06 18:11:14 106496 --a------ C:\WINDOWS\system32\TwnLib20.dll
2007-06-06 18:11:14 35328 --a------ C:\WINDOWS\system32\picn20.dll
2007-06-06 18:11:14 532480 --a------ C:\WINDOWS\system32\imagx5.dll
2007-06-06 18:11:14 507904 --a------ C:\WINDOWS\system32\imagr5.dll
2007-06-06 18:11:13 155648 --a------ C:\WINDOWS\system32\NeroCheck.exe
2007-06-06 18:07:11 0 d—s---- C:\WINDOWS\system32\Microsoft
2007-06-06 17:59:07 0 d–h----- C:\Program Files\InstallShield Installation Information
2007-06-06 17:58:28 0 d-------- C:\Program Files\PowerQuest
2007-06-06 17:55:27 0 d-------- C:\WINDOWS\RegisteredPackages
2007-06-06 17:54:36 0 d-------- C:\WINDOWS\nview
2007-06-06 17:54:26 0 d-------- C:\Program Files\Common Files\InstallShield
2007-06-06 17:53:44 0 d-------- C:\WINDOWS\Profiles
2007-06-06 17:53:43 0 d-------- C:\WINDOWS\system32\Adobe
2007-06-06 17:53:43 0 d-------- C:\Program Files\Common Files\Adobe
2007-06-06 17:53:06 237568 --a------ C:\WINDOWS\CMIUninstall.exe
2007-06-06 17:53:06 212992 --a------ C:\WINDOWS\CmiRmRedundDir.exe
2007-06-06 17:53:06 28672 --a------ C:\WINDOWS\CMIRmDriver.dll
2007-06-06 17:53:05 0 d-------- C:\Program Files\C-Media 3D Audio
2007-06-06 17:52:58 306688 --a------ C:\WINDOWS\IsUninst.exe
2007-06-06 17:52:48 0 d-------- C:\Program Files\SiSLan
2007-06-06 17:52:33 3072 -ra------ C:\WINDOWS\winio.sys
2007-06-06 17:52:33 45056 -ra------ C:\WINDOWS\winio.dll http://www.internals.com; WinIo>
2007-06-06 17:52:33 106496 --a------ C:\WINDOWS\SiSUSBrg.exe
2007-06-06 17:52:33 3583 --a------ C:\WINDOWS\SiSport.sys
2007-06-06 17:52:33 32768 --a------ C:\WINDOWS\SIS_LIB.DLL
2007-06-06 17:52:33 28672 -ra------ C:\WINDOWS\htpatch.exe
2007-06-06 17:52:31 30848 -ra------ C:\WINDOWS\system32\drivers\SISAGPX.SYS
2007-06-06 17:52:30 0 d-------- C:\WINDOWS\system32\ReinstallBackups
2007-06-06 17:52:08 304640 --a------ C:\WINDOWS\IsUn0415.exe
2007-06-06 17:50:55 5824 --a------ C:\WINDOWS\system32\drivers\ASUSHWIO.SYS
2007-06-06 17:50:20 0 d–hs---- C:\WINDOWS\Installer
2007-06-06 17:49:25 0 d–hs---- C:\System Volume Information
2007-06-06 17:46:43 0 d-------- C:\WINDOWS\system32\xircom
2007-06-06 17:46:43 0 d-------- C:\Program Files\microsoft frontpage
2007-06-06 17:46:23 0 -rahs---- C:\MSDOS.SYS
2007-06-06 17:46:23 0 -rahs---- C:\IO.SYS
2007-06-06 17:46:23 0 --a------ C:\CONFIG.SYS
2007-06-06 17:46:23 0 --a------ C:\AUTOEXEC.BAT
2007-06-06 17:45:36 0 dr------- C:\WINDOWS\Offline Web Pages
2007-06-06 17:45:36 0 d—s---- C:\WINDOWS\Downloaded Program Files
2007-06-06 17:45:15 0 d-------- C:\WINDOWS\system32\DirectX
2007-06-06 17:44:37 0 d—s---- C:\WINDOWS\Tasks
2007-06-06 17:44:35 0 d-------- C:\Program Files\Common Files\MSSoap
2007-06-06 17:44:30 0 d-------- C:\WINDOWS\system32\Macromed
2007-06-06 17:44:30 0 d-------- C:\WINDOWS\srchasst
2007-06-06 17:44:28 0 d-------- C:\Program Files\Movie Maker
2007-06-06 17:44:25 0 d-------- C:\WINDOWS\PCHealth
2007-06-06 17:44:24 0 d-------- C:\WINDOWS\system32\Restore
2007-06-06 17:43:53 21856 --a------ C:\WINDOWS\system32\emptyregdb.dat
2007-06-06 17:43:50 0 d-------- C:\WINDOWS\Registration
2007-06-06 17:43:48 0 d–h----- C:\Program Files\WindowsUpdate
2007-06-06 17:43:48 0 d-------- C:\Program Files\Usługi online
2007-06-06 17:43:45 0 d-------- C:\Program Files\Messenger
2007-06-06 17:43:41 0 d-------- C:\Program Files\MSN Gaming Zone
2007-06-06 17:43:13 0 d-------- C:\Program Files\Windows NT
2007-06-06 17:43:10 0 d-------- C:\WINDOWS\system32\MsDtc
2007-06-06 17:43:10 0 d-------- C:\WINDOWS\system32\Com
– Find3M Report ---------------------------------------------------------------
2007-06-12 22:39:17 355486 --a------ C:\WINDOWS\system32\perfh015.dat
2007-06-12 22:39:17 49492 --a------ C:\WINDOWS\system32\perfc015.dat
2007-06-10 12:41:00 0 d-------- C:\Documents and Settings\kubiako\Dane aplikacji\Media Player Classic
2007-06-09 12:22:13 0 d-------- C:\Documents and Settings\kubiako\Dane aplikacji\DivX
2007-06-08 21:42:19 0 d-------- C:\Documents and Settings\kubiako\Dane aplikacji\Adobe
2007-06-06 20:49:26 0 d-------- C:\Documents and Settings\kubiako\Dane aplikacji\Lavasoft
2007-06-06 19:49:28 0 d-------- C:\Documents and Settings\kubiako\Dane aplikacji\Gadu-Gadu
2007-06-06 19:34:13 0 d-------- C:\Documents and Settings\kubiako\Dane aplikacji\Talkback
2007-06-06 19:34:09 0 d-------- C:\Documents and Settings\kubiako\Dane aplikacji\Mozilla
2007-06-06 19:34:08 0 d-------- C:\Documents and Settings\kubiako\Dane aplikacji\Thunderbird
2007-06-06 19:08:30 0 d-------- C:\Documents and Settings\kubiako\Dane aplikacji\Opera
2007-06-06 18:51:02 0 d-------- C:\Documents and Settings\kubiako\Dane aplikacji\Macromedia
2007-06-06 18:48:17 0 d-------- C:\Documents and Settings\kubiako\Dane aplikacji\Google
2007-06-06 18:20:05 0 d-------- C:\Documents and Settings\kubiako\Dane aplikacji\Help
2007-06-06 18:19:16 62 --ahs---- C:\Documents and Settings\kubiako\Dane aplikacji\desktop.ini
2007-06-06 17:53:43 0 d-------- C:\Documents and Settings\kubiako\Dane aplikacji\InterTrust
2007-06-06 17:50:18 0 d-------- C:\Documents and Settings\kubiako\Dane aplikacji\Identities
2007-04-23 02:15:29 3596288 --a------ C:\WINDOWS\system32\qt-dx331.dll
2007-04-23 02:02:34 196608 --a------ C:\WINDOWS\system32\dtu100.dll
2007-04-23 02:02:34 73728 --a------ C:\WINDOWS\system32\dpl100.dll
– Registry Dump ---------------------------------------------------------------
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
“HTpatch”=“C:\WINDOWS\htpatch.exe”
“SiSUSBRG”=“C:\WINDOWS\SiSUSBrg.exe”
“Cmaudio”=“RunDll32 cmicnfg.cpl,CMICtrlWnd”
“NvCplDaemon”=“RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup”
“nwiz”=“nwiz.exe /install”
“NvMediaCenter”=“RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit”
“SpeedTouch USB Diagnostics”="“C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe” /icon"
“AVP”="“D:\kaspersky\avp.exe”"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
“CTFMON.EXE”=“C:\WINDOWS\system32\ctfmon.exe”
“Gadu-Gadu”="“D:\Gadu-Gadu\gg.exe” /tray"
[HKEY_USERS.default\software\microsoft\windows\currentversion\run]
“CTFMON.EXE”=“C:\WINDOWS\System32\CTFMON.EXE”
“Windows Service Update”=“C:\WINDOWS\System32\mswsgs.exe”
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
“NoRecentDocsHistory”=dword:00000001
“StartMenuLogoff”=dword:00000001
“NoWelcomeScreen”=dword:00000001
“NoRecentDocsMenu”=dword:00000001
“NoFind”=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
“appinit_dlls”=“D:\KASPER~1\adialhk.dll”
HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa
Authentication Packages REG_MULTI_SZ msv1_0\0\0
Security Packages REG_MULTI_SZ kerberos\0msv1_0\0schannel\0wdigest\0\0
Notification Packages REG_MULTI_SZ scecli\0\0
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost]
LocalService REG_MULTI_SZ Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0
NetworkService REG_MULTI_SZ DnsCache\0\0
rpcss REG_MULTI_SZ RpcSs\0\0
imgsvc REG_MULTI_SZ StiSvc\0\0
termsvcs REG_MULTI_SZ TermService\0\0
HTTPFilter REG_MULTI_SZ HTTPFilter\0\0
DcomLaunch REG_MULTI_SZ DcomLaunch\0TermService\0\0
– End of Deckard’s System Scanner: finished at 2007-06-16 at 19:12:53 ---------
Deckard’s System Scanner v20070611.50
Extra logfile - please post this as an attachment with your post.
– System Information ----------------------------------------------------------
Microsoft Windows XP Professional (build 2600) SP 2.0
Architecture: X86; Language: Polish
CPU 0: AMD Athlon XP 2000+
Percentage of Memory in Use: 38%
Physical Memory (total/avail): 767.48 MiB / 475.02 MiB
Pagefile Memory (total/avail): 1876.23 MiB / 1641.44 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1966.43 MiB
A: is Removable (No Media)
C: is Fixed (NTFS) - 19.53 GiB total, 13.3 GiB free.
D: is Fixed (NTFS) - 39.07 GiB total, 18.98 GiB free.
E: is Fixed (NTFS) - 29.3 GiB total, 28.21 GiB free.
F: is Fixed (NTFS) - 19.53 GiB total, 18.98 GiB free.
G: is Fixed (NTFS) - 41.61 GiB total, 38.94 GiB free.
H: is CDROM (CDFS)
I: is CDROM (No Media)
– Security Center -------------------------------------------------------------
AUOptions is set to notify before install.
– Environment Variables -------------------------------------------------------
ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\Documents and Settings\kubiako\Dane aplikacji
CLASSPATH=.;D:\QUICK TIME\QTSYSTEM\QTJAVA.ZIP
CLIENTNAME=Console
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=KUBIAK
ComSpec=C:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\kubiako
LOGONSERVER=\KUBIAK
NUMBER_OF_PROCESSORS=1
OS=Windows_NT
Path=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;E:\quick time\QTSystem\
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 6 Model 10 Stepping 0, AuthenticAMD
PROCESSOR_LEVEL=6
PROCESSOR_REVISION=0a00
ProgramFiles=C:\Program Files
PROMPT=$P$G
QTJAVA=D:\QUICK TIME\QTSYSTEM\QTJAVA.ZIP
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\kubiako\USTAWI~1\Temp
TMP=C:\DOCUME~1\kubiako\USTAWI~1\Temp
USERDOMAIN=KUBIAK
USERNAME=kubiako
USERPROFILE=C:\Documents and Settings\kubiako
windir=C:\WINDOWS
__COMPAT_LAYER=DisableCicero
– User Profiles ---------------------------------------------------------------
kubiako (admin)
Administrator (admin)
– Add/Remove Programs ---------------------------------------------------------
–> D:\PROGRAMY SYSTEM\DIVX\CONVERTERUNINSTALL.EXE /CONVERTER
–> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Ad-Aware SE Personal --> D:\PROGRA~1\AD-AWA~1\UNWISE.EXE D:\PROGRA~1\AD-AWA~1\INSTALL.LOG
Adobe Acrobat 5.0 --> C:\WINDOWS\ISUNINST.EXE -f"C:\Program Files\Common Files\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Common Files\Adobe\Acrobat 5.0\NT\Uninst.dll"
Adobe Photoshop 7.0 --> C:\WINDOWS\ISUNINST.EXE -F"D:\ADOBE PHOTOSHOP 7\UNINST.ISU" -C"D:\ADOBE PHOTOSHOP 7\UNINST.DLL"
Ahead Nero - Burning Rom --> C:\WINDOWS\UNNERO.exe /UNINSTALL
Aktualizacja dla systemu Windows XP (KB898461) --> “C:\WINDOWS$NtUninstallKB898461$\spuninst\spuninst.exe”
Aktualizacja dla systemu Windows XP (KB900485) --> “C:\WINDOWS$NtUninstallKB900485$\spuninst\spuninst.exe”
Aktualizacja dla systemu Windows XP (KB908531) --> “C:\WINDOWS$NtUninstallKB908531$\spuninst\spuninst.exe”
Aktualizacja dla systemu Windows XP (KB910437) --> “C:\WINDOWS$NtUninstallKB910437$\spuninst\spuninst.exe”
Aktualizacja dla systemu Windows XP (KB911280) --> “C:\WINDOWS$NtUninstallKB911280$\spuninst\spuninst.exe”
Aktualizacja dla systemu Windows XP (KB922582) --> “C:\WINDOWS$NtUninstallKB922582$\spuninst\spuninst.exe”
Aktualizacja dla systemu Windows XP (KB927891) --> “C:\WINDOWS$NtUninstallKB927891$\spuninst\spuninst.exe”
Aktualizacja dla systemu Windows XP (KB931836) --> “C:\WINDOWS$NtUninstallKB931836$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB890046) --> “C:\WINDOWS$NtUninstallKB890046$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB893756) --> “C:\WINDOWS$NtUninstallKB893756$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB896358) --> “C:\WINDOWS$NtUninstallKB896358$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB896423) --> “C:\WINDOWS$NtUninstallKB896423$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB896424) --> “C:\WINDOWS$NtUninstallKB896424$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB896428) --> “C:\WINDOWS$NtUninstallKB896428$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB899587) --> “C:\WINDOWS$NtUninstallKB899587$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB899589) --> “C:\WINDOWS$NtUninstallKB899589$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB899591) --> “C:\WINDOWS$NtUninstallKB899591$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB900725) --> “C:\WINDOWS$NtUninstallKB900725$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB901017) --> “C:\WINDOWS$NtUninstallKB901017$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB901214) --> “C:\WINDOWS$NtUninstallKB901214$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB902400) --> “C:\WINDOWS$NtUninstallKB902400$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB904706) -->
Aktualizacja zabezpieczeń dla systemu Windows XP (KB905414) --> “C:\WINDOWS$NtUninstallKB905414$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB905749) --> “C:\WINDOWS$NtUninstallKB905749$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB908519) --> “C:\WINDOWS$NtUninstallKB908519$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB911562) --> “C:\WINDOWS$NtUninstallKB911562$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB911927) --> “C:\WINDOWS$NtUninstallKB911927$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB912919) --> “C:\WINDOWS$NtUninstallKB912919$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB913580) --> “C:\WINDOWS$NtUninstallKB913580$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB914388) --> “C:\WINDOWS$NtUninstallKB914388$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB914389) --> “C:\WINDOWS$NtUninstallKB914389$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB917344) --> “C:\WINDOWS$NtUninstallKB917344$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB917422) --> “C:\WINDOWS$NtUninstallKB917422$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB917953) --> “C:\WINDOWS$NtUninstallKB917953$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB919007) --> “C:\WINDOWS$NtUninstallKB919007$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB920670) --> “C:\WINDOWS$NtUninstallKB920670$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB920683) --> “C:\WINDOWS$NtUninstallKB920683$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB920685) --> “C:\WINDOWS$NtUninstallKB920685$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB921398) --> “C:\WINDOWS$NtUninstallKB921398$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB921883) --> “C:\WINDOWS$NtUninstallKB921883$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB922616) --> “C:\WINDOWS$NtUninstallKB922616$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB922819) --> “C:\WINDOWS$NtUninstallKB922819$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB923191) --> “C:\WINDOWS$NtUninstallKB923191$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB923414) --> “C:\WINDOWS$NtUninstallKB923414$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB923789) --> C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Aktualizacja zabezpieczeń dla systemu Windows XP (KB923980) --> “C:\WINDOWS$NtUninstallKB923980$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB924191) --> “C:\WINDOWS$NtUninstallKB924191$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB924270) --> “C:\WINDOWS$NtUninstallKB924270$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB924496) --> “C:\WINDOWS$NtUninstallKB924496$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB924667) --> “C:\WINDOWS$NtUninstallKB924667$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB925902) --> “C:\WINDOWS$NtUninstallKB925902$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB927779) --> “C:\WINDOWS$NtUninstallKB927779$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB927802) --> “C:\WINDOWS$NtUninstallKB927802$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB928255) --> “C:\WINDOWS$NtUninstallKB928255$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB928843) --> “C:\WINDOWS$NtUninstallKB928843$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB929123) --> “C:\WINDOWS$NtUninstallKB929123$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB929969) --> “C:\WINDOWS$NtUninstallKB929969$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB931261) --> “C:\WINDOWS$NtUninstallKB931261$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB931784) --> “C:\WINDOWS$NtUninstallKB931784$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB933566) --> “C:\WINDOWS$NtUninstallKB933566$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB935839) --> “C:\WINDOWS$NtUninstallKB935839$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla systemu Windows XP (KB935840) --> “C:\WINDOWS$NtUninstallKB935840$\spuninst\spuninst.exe”
Aktualizacja zabezpieczeń dla Windows XP (KB923689) --> “C:\WINDOWS$NtUninstallKB923689$\spuninst\spuninst.exe”
ALLPlayer V2.4 --> “D:\ALLPLAYER\UNINS000.EXE”
Archiwizator WinRAR --> D:\PROGRAMY SYSTEM\WINRAR\UNINSTALL.EXE
AVIcodec (remove only) --> “D:\PROGRAMY SYSTEM\AVICODEC\UNINST.EXE”
C-Media 3D Audio --> C:\WINDOWS\CMIUnInstall.exe
CCleaner (remove only) --> “D:\PROGRAMY SYSTEM\CCLEANER\uninst.exe”
Counter-Strike: Condition Zero --> D:\CONDIT~1\UNWISE.EXE D:\CONDIT~1\INSTALL.LOG
DivX Content Uploader --> D:\PROGRAMY SYSTEM\DIVX\DIVXCONTENTUPLOADERUNINSTALL.EXE /CUPLOADER
DivX Converter --> D:\PROGRAMY SYSTEM\DIVX\CONVERTERUNINSTALL.EXE /CONVERTER
DivX Player --> D:\PROGRAMY SYSTEM\DIVX\DIVXPLAYERUNINSTALL.EXE /PLAYER
DivX Web Player --> D:\PROGRAMY SYSTEM\DIVX\DIVXWEBPLAYERUNINSTALL.EXE /PLUGIN
DoctorTweak XP v1.75 --> D:\PROGRAMY SYSTEM\DR TWEAK\UNINSTALL.EXE
Dokumentacja techniczna ESC66 --> C:\Program Files\EPSON\TPMANUAL\ESC66\REF_G\DOCUNINS.EXE
eMule --> “D:\EMULE\UNINSTALL.EXE”
English Translator 3 --> D:\ENGLISH TRANSLATOR 3\SETUP.EXE -UNINSTALL
Gadu-Gadu 7.7 --> D:\GADU-GADU\SETUP.EXE
Google Earth --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{3DE5E7D4-7B88-403C-A3FD-2017A8240C5B}\setup.exe” -l0x9 -removeonly
Gronzo ver 0.94 --> “D:\GRONZO\UNINS000.EXE”
HijackThis 1.99.1 --> C:\Program Files\HijackThis\HijackThis.exe /uninstall
iOfficeWorks 7.64 --> C:\Program Files\A4Tech\Mouse\Uninst32.exe
K-Lite Codec Pack 3.1.5 Full --> “D:\programy system\divx\K-Lite Codec Pack\unins000.exe”
Kaspersky Internet Security 6.0 --> MsiExec.exe /I{D0DCD54F-C829-41A5-AF32-71E632BB0E2C}
Kaspersky Internet Security 6.0 --> MsiExec.exe /I{D0DCD54F-C829-41A5-AF32-71E632BB0E2C}
Kaspersky Online Scanner --> C:\WINDOWS\System32\KASPER~1\KASPER~1\kavuninstall.exe
Macromedia Shockwave Player --> C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
Mozilla Thunderbird (1.5) --> C:\WINDOWS\UninstallThunderbird.exe /ua “1.5 (pl)”
NVIDIA Display Driver --> C:\WINDOWS\System32\nvudisp.exe Uninstall C:\WINDOWS\System32\nvdisp.nvu,NVIDIA Display Driver
Opera 9.10 --> MsiExec.exe /X{750B9AD1-4C63-4143-94C5-6FB304199BAD}
Oprogramowanie drukarki EPSON --> C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /r
Poprawka systemu Windows XP - KB873339 --> C:\WINDOWS$NtUninstallKB873339$\spuninst\spuninst.exe
Poprawka systemu Windows XP - KB885835 --> C:\WINDOWS$NtUninstallKB885835$\spuninst\spuninst.exe
Poprawka systemu Windows XP - KB885836 --> C:\WINDOWS$NtUninstallKB885836$\spuninst\spuninst.exe
Poprawka systemu Windows XP - KB885884 --> C:\WINDOWS$NtUninstallKB885884$\spuninst\spuninst.exe
Poprawka systemu Windows XP - KB886185 --> C:\WINDOWS$NtUninstallKB886185$\spuninst\spuninst.exe
Poprawka systemu Windows XP - KB887472 --> C:\WINDOWS$NtUninstallKB887472$\spuninst\spuninst.exe
Poprawka systemu Windows XP - KB888302 --> C:\WINDOWS$NtUninstallKB888302$\spuninst\spuninst.exe
Poprawka systemu Windows XP - KB890859 --> “C:\WINDOWS$NtUninstallKB890859$\spuninst\spuninst.exe”
Poprawka systemu Windows XP - KB891781 --> C:\WINDOWS$NtUninstallKB891781$\spuninst\spuninst.exe
PowerQuest PartitionMagic 8.0 --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}
Quake III Arena --> C:\WINDOWS\ISUNINST.EXE -FD:\QUAKE3\QIII.ISU
QuickTime --> MsiExec.exe /I{F07B861C-72B9-40A4-8B1A-AAED4C06A7E8}
SiS 900 PCI Fast Ethernet Adapter Driver --> C:\Progra~1\SiSLan\Uninst.exe
SpeedTouch USB Software --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{D41FAAA9-8048-4906-86B2-9AADEA1FA0B7}\setup.exe” /l0009 -Control_Panel
Spybot - Search & Destroy 1.4 --> “D:\PROGRAMY SYSTEM\SPYBOT - SEARCH & DESTROY\UNINS000.EXE”
Switch Off --> “D:\PROGRAMY SYSTEM\SWITCH OFF\UNINSTALL.EXE”
Tony Hawks Pro Skater 4 --> MsiExec.exe /X{E0F07676-2C60-4465-A727-20DE3BFCABAC}
VirtualCloneDrive --> “D:\VIRTUALCLONEDRIVE\VCD-UNINST.EXE” /D=“D:\VIRTUALCLONEDRIVE”
Winamp (remove only) --> “D:\WINAMP\UNINSTWA.EXE”
WinZip --> “D:\PROGRAMY SYSTEM\WINZIP\WINZIP32.EXE” /UNINSTALL
– End of Deckard’s System Scanner: finished at 2007-06-16 at 19:12:53 ---------