Brak ikon i paska

[Fever]

i jest kolejny problem z moim genialnym lapem, powoli sie przyzwyczajam. tak wiem, problem maglowany w internecie all around the world milion pięćset razy, poszukalem trochę, sciagalem jakies magiczne programy ktore nic nie zdziałały, costam wpisywalem w rejestrze w winlogon/shell. nic nie pomoglo, więc mam podstawy sądzić ze jednak logi się przydadzą, toteż udaję się po pomoc expertów.
od razu mówię że to nie jest problem z pokaż/ukryj ikony i że próbowałem też uruchamiać explorera przez menedżera. przywracanie systemu także lipa. obecnie siedzę w awaryjnym bo poruszanie się za pomocą menedżera jest dość nużące..
RSIT:

Kod: Zaznacz wszystko

Logfile of random's system information tool 1.06 (written by random/random)
Run by matwiej at 2009-10-17 10:50:03
Microsoft Windows XP Professional Dodatek Service Pack 3
System drive C: has 65 GB (85%) free of 76 GB
Total RAM: 502 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:50:08, on 2009-10-17
Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16915)
Boot mode: Safe mode with network support

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\matwiej\Pulpit\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\matwiej.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE /auto
O4 - HKCU\..\Run: [Nowe Gadu-Gadu] "C:\Program Files\Nowe Gadu-Gadu\gg.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\matwiej\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Odkurzacz-MCD] C:\Program Files\Odkurzacz\odk_mcd.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user')
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe

--
End of file - 2988 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-776561741-1972579041-1606980848-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-776561741-1972579041-1606980848-1003UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll [2003-11-04 54248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-06-28 41368]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2004-11-02 155648]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2004-11-02 126976]
"LtMoh"=C:\Program Files\ltmoh\Ltmoh.exe [2005-04-12 184320]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-05-14 2029640]
"MSConfig"=C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE [2008-04-14 171520]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Nowe Gadu-Gadu"=C:\Program Files\Nowe Gadu-Gadu\gg.exe [2009-08-31 11391592]
"Google Update"=C:\Documents and Settings\matwiej\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2009-09-29 133104]
"Odkurzacz-MCD"=C:\Program Files\Odkurzacz\odk_mcd.exe [2008-08-16 264704]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BearShare]
C:\Program Files\BearShare\BearShare.exe /pause []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\daemon.exe [2008-07-24 490952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (reboot)]
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2009-09-10 1312080]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [2009-03-09 37888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Program sieciowy dla SAGEM Wi-Fi 11g USB adapter.lnk]
C:\PROGRA~1\SAGEMW~1\WLANUTL.exe [2006-01-19 925696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxsrvc.dll [2004-11-02 348160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2008-05-08 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Nowe Gadu-Gadu\gg.exe"="C:\Program Files\Nowe Gadu-Gadu\gg.exe:*:Enabled:Nowe Gadu-Gadu"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2009-10-17 10:50:03 ----D---- C:\rsit
2009-10-17 10:01:51 ----A---- C:\WINDOWS\ntbtlog.txt
2009-10-17 09:50:44 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-10-17 09:37:13 ----SHD---- C:\WINDOWS\CSC
2009-10-16 11:22:14 ----D---- C:\Program Files\Odkurzacz
2009-10-01 17:23:00 ----D---- C:\_OTL
2009-10-01 12:20:52 ----D---- C:\Documents and Settings\matwiej\Dane aplikacji\ESET
2009-10-01 12:15:01 ----D---- C:\Program Files\ESET
2009-10-01 12:15:01 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\ESET
2009-10-01 09:54:21 ----A---- C:\WINDOWS\system32\MRT.exe
2009-09-30 19:23:03 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Last.fm
2009-09-30 19:22:24 ----D---- C:\Program Files\Last.fm
2009-09-30 13:51:24 ----SHD---- C:\RECYCLER
2009-09-30 13:15:59 ----D---- C:\Documents and Settings\matwiej\Dane aplikacji\Malwarebytes
2009-09-30 13:15:53 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-09-30 13:15:53 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
2009-09-30 10:03:32 ----A---- C:\WINDOWS\system32\MFC71.dll
2009-09-30 10:03:29 ----D---- C:\Program Files\Alwil Software
2009-09-30 10:00:33 ----A---- C:\Program Files\setuppol.exe
2009-09-30 09:52:38 ----D---- C:\WINDOWS\temp
2009-09-30 09:45:30 ----RASHD---- C:\cmdcons
2009-09-30 09:44:52 ----A---- C:\WINDOWS\PEV.exe
2009-09-30 09:44:31 ----D---- C:\WINDOWS\ERDNT
2009-09-29 08:52:30 ----A---- C:\Program Files\ChromeSetup.exe
2009-09-29 05:16:58 ----D---- C:\Program Files\Trend Micro
2009-09-29 05:16:39 ----A---- C:\Program Files\HJTInstall.exe
2009-09-29 05:09:43 ----D---- C:\WINDOWS\pss
2009-09-29 04:56:08 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Windows Genuine Advantage
2009-09-29 04:43:07 ----D---- C:\Program Files\CCleaner

======List of files/folders modified in the last 1 months======

2009-10-17 10:36:13 ----D---- C:\Program Files\Mozilla Firefox
2009-10-17 10:01:51 ----D---- C:\WINDOWS
2009-10-17 09:59:02 ----D---- C:\WINDOWS\Prefetch
2009-10-17 09:55:39 ----RASH---- C:\boot.ini
2009-10-17 09:55:39 ----A---- C:\WINDOWS\win.ini
2009-10-17 09:55:39 ----A---- C:\WINDOWS\system.ini
2009-10-17 03:13:19 ----D---- C:\WINDOWS\system32
2009-10-17 03:01:47 ----HD---- C:\WINDOWS\inf
2009-10-17 03:01:26 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-10-17 03:01:20 ----D---- C:\WINDOWS\system32\pl-pl
2009-10-17 03:01:19 ----D---- C:\Program Files\Internet Explorer
2009-10-17 03:01:08 ----D---- C:\WINDOWS\system32\CatRoot2
2009-10-16 16:25:10 ----D---- C:\WINDOWS\Debug
2009-10-16 11:29:30 ----D---- C:\WINDOWS\system32\CatRoot
2009-10-16 11:29:30 ----D---- C:\Program Files\DarkSwords
2009-10-16 11:29:29 ----D---- C:\WINDOWS\system32\config
2009-10-16 11:29:29 ----D---- C:\Program Files\NAPI-PROJEKT
2009-10-16 11:22:14 ----RD---- C:\Program Files
2009-10-16 03:02:04 ----D---- C:\WINDOWS\WinSxS
2009-10-14 23:09:17 ----HD---- C:\WINDOWS\$hf_mig$
2009-10-12 07:26:17 ----D---- C:\WINDOWS\ie7updates
2009-10-12 00:46:28 ----D---- C:\Program Files\Nowe Gadu-Gadu
2009-10-03 20:15:18 ----D---- C:\Documents and Settings\matwiej\Dane aplikacji\Nowe Gadu-Gadu
2009-10-01 12:18:45 ----SHD---- C:\WINDOWS\Installer
2009-10-01 12:17:30 ----D---- C:\WINDOWS\system32\drivers
2009-10-01 12:12:08 ----HD---- C:\Program Files\InstallShield Installation Information
2009-10-01 12:12:06 ----D---- C:\Program Files\Atheros
2009-10-01 12:12:00 ----A---- C:\WINDOWS\system32\results.txt
2009-10-01 10:14:43 ----SHD---- C:\System Volume Information
2009-10-01 10:14:43 ----D---- C:\WINDOWS\system32\Restore
2009-10-01 09:32:36 ----D---- C:\Documents and Settings
2009-09-30 19:23:09 ----D---- C:\Program Files\Windows Media Player
2009-09-30 18:00:00 ----D---- C:\Documents and Settings\matwiej\Dane aplikacji\Winamp
2009-09-30 13:05:11 ----D---- C:\WINDOWS\AppPatch
2009-09-30 13:05:05 ----D---- C:\Program Files\Common Files
2009-09-29 08:54:40 ----D---- C:\Program Files\Common Files\Microsoft Shared
2009-09-29 08:53:26 ----SD---- C:\WINDOWS\Tasks
2009-09-29 04:46:31 ----D---- C:\Program Files\BS.Player ControlBar
2009-09-29 04:44:06 ----D---- C:\WINDOWS\Minidump
2009-09-29 04:39:19 ----D---- C:\Program Files\Java

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2009-05-14 55768]
R3 AR5211;Atheros Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2004-12-22 393600]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2009-05-14 33096]
R3 hidusb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160]
R3 usbehci;Sterownik Miniport rozszerzonego kontrolera hosta USB 2.0 Microsoft; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Koncentrator z obsługą USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2005-03-30 230400]
S1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-05-14 107256]
S1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40448]
S2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-05-14 114472]
S2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2009-05-14 133000]
S3 AgereSoftModem;TOSHIBA V92 Software Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2005-04-12 1066278]
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-04-19 2317504]
S3 an9o5sii;an9o5sii; C:\WINDOWS\system32\drivers\an9o5sii.sys []
S3 CmBatt;Sterownik baterii Microsoft o metodzie kontroli ACPI; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-14 13952]
S3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2004-11-02 773565]
S3 PCANDIS5;PCANDIS5 Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
S3 SG762_XP;SAGEM 802.11g XG762 1211B Driver; C:\WINDOWS\system32\DRIVERS\WlanBZXP.sys [2005-12-22 402432]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-05-08 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-05-08 82944]
S3 ZDCndis5;ZDCndis5 Protocol Driver; \??\C:\WINDOWS\system32\ZDCndis5.SYS []
S3 ZDPSp50;ZDPSp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\ZDPSp50.sys [2006-01-18 17664]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

S2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-05-14 731840]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-05-14 20680]
S3 WMPNetworkSvc;Usługa udostępniania w sieci programu Windows Media Player; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-12-01 918016]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

-----------------EOF-----------------

Kod: Zaznacz wszystko

info.txt logfile of random's system information tool 1.06 2009-10-17 10:50:10

======Uninstall list======

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 6.0.2 CE-->MsiExec.exe /I{AC76BA86-7AD7-1038-7B44-CEA000000001}
Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 7 (KB938127-v2)-->"C:\WINDOWS\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 7 (KB969897)-->"C:\WINDOWS\ie7updates\KB969897-IE7\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 7 (KB974455)-->"C:\WINDOWS\ie7updates\KB974455-IE7\spuninst\spuninst.exe"
Atheros Wireless LAN MiniPCI card Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{05832D65-6EDB-4D32-BA78-BCD0E2B91C02}\Setup.exe" -l0x15
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
CM4-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{063DC326-B1D9-48DE-BE3F-9C15C6EC8508}
Codec 8.3d-->"C:\Program Files\Codec\Uninstall\unins000.exe"
Combined Community Codec Pack 2008-09-21 16:18-->"C:\Program Files\Combined Community Codec Pack\unins000.exe"
DAEMON Tools Toolbar-->C:\Program Files\DAEMON Tools Toolbar\uninst.exe
DS-Map, version 2.0-->"C:\Program Files\Neutral\DS-Map\uninstall.exe"
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Icewind Dale-->C:\WINDOWS\IsUn0415.exe -f"C:\Program Files\Black Isle\Icewind Dale\Uninst.isu"
Intel(R) Graphics Media Accelerator Driver for Mobile-->RUNDLL32.EXE C:\WINDOWS\system32\ialmrem.dll,UninstallW2KIGfx2ID PCI\VEN_8086&DEV_2792 PCI\VEN_8086&DEV_2592
Java(TM) 6 Update 14-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216014FF}
Larry 7-->C:\WINDOWS\IsUn0415.exe -f"C:\Program Files\Sierra\Larry 7\Uninst.isu"
Last.fm 1.5.4.24567-->"C:\Program Files\Last.fm\unins000.exe"
livebox tp-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FC7DDAAE-7F2B-4270-9BFD-5A130B667E9E}\Setup.exe" -l0x15
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
MDK-->C:\WINDOWS\IsUn0415.exe -f"C:\Program Files\Shiny\MDK\Uninst.isu"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Mozilla Firefox (3.5.3)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
NAPIPROJEKT 1.0.6.2-->"C:\Program Files\NAPI-PROJEKT\unins000.exe"
Nowe Gadu-Gadu-->C:\Program Files\Nowe Gadu-Gadu\Uninstall.exe
Odkurzacz 11.3-->"C:\Program Files\Odkurzacz\unins000.exe"
Paper Ball 2 v3.0.177-->"C:\Program Files\Megabyte\Paper Ball 2004\unins000.exe"
Real Alternative 1.9.0-->"C:\Program Files\Real Alternative\unins000.exe"
Realtek AC'97 Audio-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" REMOVE
Sagem Wi-Fi 11g USB adapter (driver)-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2ED60C17-4568-4CD5-830A-03C4688B09A1}\setup.exe" -l0x15
Sagem Wi-Fi 11g USB adapter (utility)-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AAFD22B6-A6C7-4134-AF4E-080BCBCD3493}\setup.exe" -l0x15
Settlers III - Złota Edycja-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AB2C9753-33AD-4F09-AA16-27C7F39BAF1F}\Setup.exe" -l0x15
Świątynia Pierwotnego Zła-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2DEA9136-9B32-4760-9D96-265A3FB95398}\SETUP.EXE" -l0x15
Texas Instruments PCIxx21/x515 drivers.-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{F47B2DF8-35EC-4B51-B5F2-0E03EF5F51DA} /l1033
TOSHIBA Software Modem-->Tosmreg -U
Winamp-->"C:\Program Files\Winamp\UninstWA.exe"

=====HijackThis Backups=====

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe [2009-09-29]
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2009-09-29]
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe [2009-09-29]
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.bearshare.com/pl/ [2009-09-29]
O4 - HKLM\..\Run: [ACU] "C:\Program Files\Atheros\ACU.exe" -nogui [2009-09-29]
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab [2009-09-29]
O23 - Service: Usługa konfiguracji Atheros (ACS) - Unknown owner - C:\WINDOWS\system32\acs.exe [2009-09-29]

======System event log======

Computer Name: HTRWHTRW-CF5795
Event Code: 7
Message: W urządzeniu \Device\Harddisk0\D wystąpił zły blok.

Record Number: 26701
Source Name: Disk
Time Written: 20091005001708.000000+120
Event Type: błąd
User:

Computer Name: HTRWHTRW-CF5795
Event Code: 7
Message: W urządzeniu \Device\Harddisk0\D wystąpił zły blok.

Record Number: 26700
Source Name: Disk
Time Written: 20091005001703.000000+120
Event Type: błąd
User:

Computer Name: HTRWHTRW-CF5795
Event Code: 7
Message: W urządzeniu \Device\Harddisk0\D wystąpił zły blok.

Record Number: 26699
Source Name: Disk
Time Written: 20091005001658.000000+120
Event Type: błąd
User:

Computer Name: HTRWHTRW-CF5795
Event Code: 7
Message: W urządzeniu \Device\Harddisk0\D wystąpił zły blok.

Record Number: 26698
Source Name: Disk
Time Written: 20091005001654.000000+120
Event Type: błąd
User:

Computer Name: HTRWHTRW-CF5795
Event Code: 7
Message: W urządzeniu \Device\Harddisk0\D wystąpił zły blok.

Record Number: 26697
Source Name: Disk
Time Written: 20091005001649.000000+120
Event Type: błąd
User:

=====Application event log=====

Computer Name: HTRWHTRW-CF5795
Event Code: 490
Message: svchost (1200) Próba otwarcia pliku "C:\WINDOWS\system32\CatRoot2\tmp.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 1392 (0x00000570): "Plik lub katalog jest uszkodzony i nieczytelny. ". Operacja otwierania pliku zostanie zakończona z błędem -1022 (0xfffffc02).

Record Number: 2621
Source Name: ESENT
Time Written: 20090828091023.000000+120
Event Type: błąd
User:

Computer Name: HTRWHTRW-CF5795
Event Code: 485
Message: svchost (1200) Próba usunięcia pliku "C:\WINDOWS\system32\CatRoot2\tmp.edb" zakończyła się niepomyślnie z błędem systemowym 1392 (0x00000570): "Plik lub katalog jest uszkodzony i nieczytelny. ". Operacja usuwania pliku zostanie zakończona z błędem -1022 (0xfffffc02).

Record Number: 2620
Source Name: ESENT
Time Written: 20090828091023.000000+120
Event Type: błąd
User:

Computer Name: HTRWHTRW-CF5795
Event Code: 485
Message: svchost (1200) Próba usunięcia pliku "C:\WINDOWS\system32\CatRoot2\tmp.edb" zakończyła się niepomyślnie z błędem systemowym 1392 (0x00000570): "Plik lub katalog jest uszkodzony i nieczytelny. ". Operacja usuwania pliku zostanie zakończona z błędem -1022 (0xfffffc02).

Record Number: 2619
Source Name: ESENT
Time Written: 20090828091023.000000+120
Event Type: błąd
User:

Computer Name: HTRWHTRW-CF5795
Event Code: 485
Message: svchost (1200) Próba usunięcia pliku "C:\WINDOWS\system32\CatRoot2\tmp.edb" zakończyła się niepomyślnie z błędem systemowym 1392 (0x00000570): "Plik lub katalog jest uszkodzony i nieczytelny. ". Operacja usuwania pliku zostanie zakończona z błędem -1022 (0xfffffc02).

Record Number: 2618
Source Name: ESENT
Time Written: 20090828091023.000000+120
Event Type: błąd
User:

Computer Name: HTRWHTRW-CF5795
Event Code: 485
Message: svchost (1200) Próba usunięcia pliku "C:\WINDOWS\system32\CatRoot2\tmp.edb" zakończyła się niepomyślnie z błędem systemowym 1392 (0x00000570): "Plik lub katalog jest uszkodzony i nieczytelny. ". Operacja usuwania pliku zostanie zakończona z błędem -1022 (0xfffffc02).

Record Number: 2617
Source Name: ESENT
Time Written: 20090828091023.000000+120
Event Type: błąd
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 13 Stepping 8, GenuineIntel
"PROCESSOR_REVISION"=0d08
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"SAFEBOOT_OPTION"=NETWORK

-----------------EOF-----------------


dodam też że mam problem z Dr Watsonem który wywala następujące błędy:
C:\Windows\system32\MRT.exe c0000006 mpengine(5A2C0F2E)
C:\Windows\SoftwareDistribution\Download\5af858cadf64362188f04df2f224be88\update\update.exe C0000006 msvcrt!wcsxfrm(77C383B7)
C:\Windows\SoftwareDistribution\Download\b6c878273e9fd93cae053537a5f2e16e\update\update.exe c0000005 update(01034266)
C:\Windows\Explorer.exe 80000007 ntdll!KiFastSystemCallRet(00000000)