Czyściłem komputer i rejestr CCleanerem, Uniblue RegistryBoosterem i efektów niestety brak. Antywirus Avast!, a obecnie COMODO nic nie wykryły.
Ktoś ma jakieś pomysły co może być przyczyną? Wirus? Trojan?
Aktualizacje na programosy.pl:
Cyberduck • R-Drive Image • Qimage • Chromium • Kaspersky Rescue Disk • Vim • Free YouTube to MP3 Converter • Free YouTube Download • AIMP Skin Editor
-
- Ogłoszenie:
Problem z visualtooltip.dll i rocket dock
7 posty(ów) • Strona 1 z 1
Problem z visualtooltip.dll i rocket dock
przez exox 31 Lip 2011, 14:21
Czyściłem komputer i rejestr CCleanerem, Uniblue RegistryBoosterem i efektów niestety brak. Antywirus Avast!, a obecnie COMODO nic nie wykryły.
Ktoś ma jakieś pomysły co może być przyczyną? Wirus? Trojan?
Problem z visualtooltip.dll i rocket dock
przez wojtas 01 Sie 2011, 12:39
daj wymagane trzy logi... czy reinstalowałeś niedziałającą aplikację ?
-
wojtas - *mod
- Posty: 18165
- Dołączenie: 13 Sty 2006, 16:00
- Miejscowość: Krzeszyce
- Pochwały: 1656
Problem z visualtooltip.dll i rocket dock
przez exox 01 Sie 2011, 13:43
Jeśli można prosić, to logi wrzucę dopiero w piątek, ponieważ za chwilę wyjeżdżam nad jeziorko i nie będę miał możliwości wcześniej, prosiłbym także o nie zamykanie tematu na ten czas.
Tak, reinstalowałem dwukrotnie RocketDock'a, niestety nie przyniosło to efektów - program nie działał. Obecnie posiadam ObjectDock'a i działa. Komunikat o pliku VisualToolTip.dll nadal pojawia się przy uruchamianiu. Próbowałem także ten plik podmnieć, niestety nie przyniosło to efektu.
Dodatkowo zauważyłem, że plik ten znajduje się w C:\WINDOWS\VIPv3\Viptooltip\. Nie wiem czy to prawda, ale gdzieś słyszałem, że powinien on być raczej w folderze system32.
W folderze Viptooltip oprócz pliku VisualToolTip.dll znajduje się także VisualToolTip.exe i VisualTooltip.lng. Czy to jest prawidłowe?
Zauważyłem także, że plik VisualToolTip.exe stara się uzyskać dostęp do pamięci, jednak blokuje go antywirus.
Pozdrawiam.
Tak, reinstalowałem dwukrotnie RocketDock'a, niestety nie przyniosło to efektów - program nie działał. Obecnie posiadam ObjectDock'a i działa. Komunikat o pliku VisualToolTip.dll nadal pojawia się przy uruchamianiu. Próbowałem także ten plik podmnieć, niestety nie przyniosło to efektu.
Dodatkowo zauważyłem, że plik ten znajduje się w C:\WINDOWS\VIPv3\Viptooltip\. Nie wiem czy to prawda, ale gdzieś słyszałem, że powinien on być raczej w folderze system32.
W folderze Viptooltip oprócz pliku VisualToolTip.dll znajduje się także VisualToolTip.exe i VisualTooltip.lng. Czy to jest prawidłowe?
Zauważyłem także, że plik VisualToolTip.exe stara się uzyskać dostęp do pamięci, jednak blokuje go antywirus.
Pozdrawiam.
Problem z visualtooltip.dll i rocket dock
przez NieWiem 01 Sie 2011, 14:15
Ten plik już za samą swoją nazwę wygląda mi na szkodliwy.
Niestety bez logów nic nie poradzimy. Musimy widzieć co usuwać.
Niestety bez logów nic nie poradzimy. Musimy widzieć co usuwać.
1. Pomocy udzielam wyłącznie na licencji beerware!
2. Jeśli nie odpowiadam od razu w temacie, to znaczy że mam życie poza internetem. Uszanuj mój dobrowolnie poświęcony czas i nie oczekuj wszystkiego natychmiast. Jeśli nie odpowiadam przez 48 godzin, przyślij PW.
STOP ++> trollom, dzieciom neostrady, emo, Forestom, kotożercom i nienawiści [ nie dotyczy wymienionych wcześniej ]
2. Jeśli nie odpowiadam od razu w temacie, to znaczy że mam życie poza internetem. Uszanuj mój dobrowolnie poświęcony czas i nie oczekuj wszystkiego natychmiast. Jeśli nie odpowiadam przez 48 godzin, przyślij PW.
STOP ++> trollom, dzieciom neostrady, emo, Forestom, kotożercom i nienawiści [ nie dotyczy wymienionych wcześniej ]
-
NieWiem - ~user
- Posty: 2183
- Dołączenie: 19 Cze 2009, 17:01
- Miejscowość: Okolice Okolic
- Pochwały: 171
-
Problem z visualtooltip.dll i rocket dock
przez exox 21 Sie 2011, 13:03
Przepraszam, że trwało to tak długo, ale miałem pewne problemy, mniejsza z tym.
No więc tak na początek ściągnąłem ten program do usunięcia pliku sptd.sys, ale nie znalazł on tego pliku na moim komputerze była tylko opcja instalacji lub zamknięcia okienka.
Następnie ściągnąłem GMERa (bo mam Windowsa XP 32 bit). Niestety przy próbie uruchomienia pojawia się zawsze takie coś:
A potem to:
[IMG=http://img847.imageshack.us/img847/8403/gmer2.th.gif][/IMG]
Następnie ściągnąłem OTL i wygenerowałem logi:
Jakieś rady jak wygenerować logi z Gmera? A może ktoś coś powie już na podstawie tych logów?
Dzięikuję i pozdrawiam.
No więc tak na początek ściągnąłem ten program do usunięcia pliku sptd.sys, ale nie znalazł on tego pliku na moim komputerze była tylko opcja instalacji lub zamknięcia okienka.
Następnie ściągnąłem GMERa (bo mam Windowsa XP 32 bit). Niestety przy próbie uruchomienia pojawia się zawsze takie coś:
A potem to:
[IMG=http://img847.imageshack.us/img847/8403/gmer2.th.gif][/IMG]
![[IMG=http://img847.imageshack.us/img847/8403/gmer2.th.gif][/IMG]](http://imageshack.us/photo/my-images/847/gmer2.gif/){kind=link}
Następnie ściągnąłem OTL i wygenerowałem logi:
- Kod: Zaznacz wszystko
OTL logfile created on: 2011-08-21 12:59:05 - Run 2
OTL by OldTimer - Version 3.2.26.5 Folder = C:\Documents and Settings\user\Pulpit
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
3,50 Gb Total Physical Memory | 2,82 Gb Available Physical Memory | 80,72% Memory free
5,34 Gb Paging File | 4,63 Gb Available in Paging File | 86,70% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 735,90 Gb Total Space | 610,74 Gb Free Space | 82,99% Space Free | Partition Type: FAT32
Drive H: | 0,38 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive I: | 195,43 Gb Total Space | 170,37 Gb Free Space | 87,18% Space Free | Partition Type: NTFS
Computer Name: KOUTA | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2011-08-21 12:33:38 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\user\Pulpit\OTL.exe
PRC - [2011-07-31 09:10:54 | 000,025,976 | ---- | M] (Uniblue Systems Limited) -- C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe
PRC - [2011-07-10 00:56:06 | 000,947,056 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2011-06-30 09:37:28 | 001,793,712 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
PRC - [2011-05-26 05:43:20 | 000,986,936 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO GeekBuddy\CLPS.exe
PRC - [2011-05-26 05:43:20 | 000,154,424 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe
PRC - [2011-01-17 18:01:46 | 011,322,880 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
PRC - [2011-01-17 18:01:46 | 011,314,688 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
PRC - [2010-08-14 11:12:20 | 000,557,056 | ---- | M] (BitLeader) -- C:\Program Files\lg_fwupdate\fwupdate.exe
PRC - [2009-11-05 18:25:42 | 000,238,952 | ---- | M] (Teruten) -- C:\WINDOWS\System32\FsUsbExService.Exe
PRC - [2009-11-05 18:25:16 | 000,116,056 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
PRC - [2009-07-01 18:37:06 | 000,037,888 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe
PRC - [2009-04-29 11:02:02 | 000,270,336 | R--- | M] (LG Electronics) -- C:\Documents and Settings\user\Bluebirds\BlueBirds.exe
PRC - [2008-11-10 16:49:56 | 001,748,992 | ---- | M] (Ovislink Corp.) -- C:\Program Files\Ovislink\Common\AirLiveUI.exe
PRC - [2008-07-09 18:33:38 | 000,069,632 | ---- | M] (Ralink Technology, Corp.) -- C:\Program Files\Ovislink\Common\RalinkRegistryWriter.exe
PRC - [2007-07-26 11:08:30 | 000,790,528 | ---- | M] (TP-LINK TECHNOLOGIES CO., LTD.) -- C:\Program Files\TP-LINK\TL-WN313G_353G_353GD\RtWLan.exe
PRC - [2007-04-30 19:43:54 | 003,450,608 | ---- | M] (Stardock) -- C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
PRC - [2004-08-03 22:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE
[color=#E56717]========== Modules (No Company Name) ==========[/color]
MOD - [2011-08-14 11:04:58 | 000,985,088 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\program\libxml2.dll
MOD - [2011-07-31 12:58:42 | 000,331,776 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3427.27802__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll
MOD - [2011-07-31 12:58:42 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3427.27815__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll
MOD - [2011-07-31 12:58:42 | 000,011,776 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.HydraVision.Runtime\2.0.3427.27902__90ba9c70f846762e\CLI.Caste.HydraVision.Runtime.dll
MOD - [2011-07-31 12:58:42 | 000,008,704 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.HydraVision.Shared\2.0.3427.27902__90ba9c70f846762e\CLI.Caste.HydraVision.Shared.dll
MOD - [2011-07-31 12:58:42 | 000,007,680 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.HydraVision.Wizard\2.0.3427.27906__90ba9c70f846762e\CLI.Caste.HydraVision.Wizard.dll
MOD - [2011-07-31 12:58:42 | 000,007,680 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.HydraVision.Dashboard\2.0.3427.27902__90ba9c70f846762e\CLI.Caste.HydraVision.Dashboard.dll
MOD - [2011-07-31 12:58:40 | 000,204,800 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3427.27821__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
MOD - [2011-07-31 12:58:32 | 001,728,512 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.3427.27820__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll
MOD - [2011-07-31 12:58:32 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3427.27810__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
MOD - [2011-07-31 12:58:28 | 000,077,824 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3427.27872__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
MOD - [2011-07-31 12:58:28 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3427.27853__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
MOD - [2011-07-31 12:58:28 | 000,036,864 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3427.27844__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
MOD - [2011-07-31 12:58:26 | 000,491,520 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3427.27890__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll
MOD - [2011-07-31 12:58:26 | 000,073,728 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3427.27810__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll
MOD - [2011-07-31 12:58:24 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Dashboard\2.0.3427.27820__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Dashboard.dll
MOD - [2011-07-31 12:58:24 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3427.27892__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll
MOD - [2011-07-31 12:58:24 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Runtime\2.0.3427.27820__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Runtime.dll
MOD - [2011-07-31 12:58:22 | 000,348,160 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3427.27858__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
MOD - [2011-07-31 12:58:22 | 000,094,208 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3427.27859__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
MOD - [2011-07-31 12:58:22 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3427.27858__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
MOD - [2011-07-31 12:58:18 | 000,643,072 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Dashboard\2.0.3427.27901__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Dashboard.dll
MOD - [2011-07-31 12:58:16 | 000,077,824 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Runtime\2.0.3427.27900__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Runtime.dll
MOD - [2011-07-31 12:58:12 | 000,782,336 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3427.27847__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
MOD - [2011-07-31 12:58:12 | 000,405,504 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3427.27866__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll
MOD - [2011-07-31 12:58:12 | 000,196,608 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3427.27821__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
MOD - [2011-07-31 12:58:12 | 000,094,208 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3427.27851__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
MOD - [2011-07-31 12:58:12 | 000,081,920 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3427.27846__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll
MOD - [2011-07-31 12:58:12 | 000,036,864 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3427.27851__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
MOD - [2011-07-31 12:58:10 | 000,573,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3427.27822__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
MOD - [2011-07-31 12:58:10 | 000,409,600 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.3427.27811__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll
MOD - [2011-07-31 12:58:10 | 000,393,216 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3427.27845__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
MOD - [2011-07-31 12:58:10 | 000,360,448 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Dashboard\2.0.3427.27841__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll
MOD - [2011-07-31 12:58:10 | 000,270,336 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
MOD - [2011-07-31 12:58:10 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3427.27845__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
MOD - [2011-07-31 12:58:10 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3427.27825__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
MOD - [2011-07-31 12:58:10 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3427.27846__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
MOD - [2011-07-31 12:58:10 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3427.27852__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
MOD - [2011-07-31 12:58:08 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll
MOD - [2011-07-31 12:58:08 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.3400.34755__90ba9c70f846762e\LOG.Foundation.dll
MOD - [2011-07-31 12:58:08 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3400.34756__90ba9c70f846762e\NEWAEM.Foundation.dll
MOD - [2011-07-31 12:58:08 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3400.34807__90ba9c70f846762e\CLI.Foundation.XManifest.dll
MOD - [2011-07-31 12:58:08 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0703\2.0.2651.18802__90ba9c70f846762e\DEM.Graphics.I0703.dll
MOD - [2011-07-31 12:58:08 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3400.34767__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll
MOD - [2011-07-31 12:58:08 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3400.34762__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll
MOD - [2011-07-31 12:58:08 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.3400.34774__90ba9c70f846762e\MOM.Foundation.dll
MOD - [2011-07-31 12:58:08 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll
MOD - [2011-07-31 12:58:08 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics\2.0.3400.34789__90ba9c70f846762e\DEM.Graphics.dll
MOD - [2011-07-31 12:58:08 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll
MOD - [2011-07-31 12:58:08 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3400.34777__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll
MOD - [2011-07-31 12:58:08 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.REG.Shared\2.0.3400.34792__90ba9c70f846762e\AEM.Plugin.REG.Shared.dll
MOD - [2011-07-31 12:58:08 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3400.34791__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll
MOD - [2011-07-31 12:58:08 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3400.34775__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll
MOD - [2011-07-31 12:58:08 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3400.34791__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll
MOD - [2011-07-31 12:58:08 | 000,007,168 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll
MOD - [2011-07-31 12:58:06 | 000,094,208 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation\2.0.3400.34760__90ba9c70f846762e\CLI.Foundation.dll
MOD - [2011-07-31 12:58:06 | 000,090,112 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3400.34770__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll
MOD - [2011-07-31 12:58:06 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3400.34783__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll
MOD - [2011-07-31 12:58:06 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Shared\2.0.3400.34792__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Shared.dll
MOD - [2011-07-31 12:58:06 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3400.34782__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll
MOD - [2011-07-31 12:58:06 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3400.34781__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll
MOD - [2011-07-31 12:58:06 | 000,049,152 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3400.34780__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
MOD - [2011-07-31 12:58:06 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3400.34788__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll
MOD - [2011-07-31 12:58:06 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3400.34773__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
MOD - [2011-07-31 12:58:06 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3400.34779__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
MOD - [2011-07-31 12:58:06 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3400.34778__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
MOD - [2011-07-31 12:58:06 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3400.34768__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll
MOD - [2011-07-31 12:58:06 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3400.34781__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
MOD - [2011-07-31 12:58:06 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3400.34770__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll
MOD - [2011-07-31 12:58:06 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3400.34764__90ba9c70f846762e\CLI.Component.Client.Shared.dll
MOD - [2011-07-31 12:58:06 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Shared\2.0.3400.34779__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Shared.dll
MOD - [2011-07-31 12:58:06 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3400.34778__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
MOD - [2011-07-31 12:58:06 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3400.34767__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll
MOD - [2011-07-31 12:58:06 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3400.34779__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll
MOD - [2011-07-31 12:58:06 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3400.34778__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll
MOD - [2011-07-31 12:58:04 | 000,602,112 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ResourceManagement.Foundation.Implementation\2.0.3427.27914__90ba9c70f846762e\ResourceManagement.Foundation.Implementation.dll
MOD - [2011-07-31 12:58:04 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3400.34781__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll
MOD - [2011-07-31 12:58:04 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3427.27896__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll
MOD - [2011-07-31 12:58:04 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3400.34782__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll
MOD - [2011-07-31 12:58:04 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3400.34776__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll
MOD - [2011-07-31 12:58:04 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\APM.Foundation\2.0.3400.34775__90ba9c70f846762e\APM.Foundation.dll
MOD - [2011-07-31 12:58:04 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3400.34767__90ba9c70f846762e\AEM.Server.Shared.dll
MOD - [2011-07-31 12:58:04 | 000,007,168 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3427.27797__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll
MOD - [2011-07-31 12:58:02 | 000,544,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.3427.27880__90ba9c70f846762e\CLI.Component.Systemtray.dll
MOD - [2011-07-31 12:58:02 | 000,405,504 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3427.27815__90ba9c70f846762e\CLI.Component.Wizard.dll
MOD - [2011-07-31 12:58:02 | 000,106,496 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.3427.27885__90ba9c70f846762e\MOM.Implementation.dll
MOD - [2011-07-31 12:58:02 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3427.27884__90ba9c70f846762e\LOG.Foundation.Implementation.dll
MOD - [2011-07-31 12:58:02 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3400.34762__90ba9c70f846762e\CLI.Foundation.Private.dll
MOD - [2011-07-31 12:58:02 | 000,036,864 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3400.34764__90ba9c70f846762e\LOG.Foundation.Private.dll
MOD - [2011-07-31 12:58:02 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3400.34776__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll
MOD - [2011-07-31 12:58:02 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ResourceManagement.Foundation.Private\2.0.3400.34766__90ba9c70f846762e\ResourceManagement.Foundation.Private.dll
MOD - [2011-07-31 12:58:02 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3400.34775__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll
MOD - [2011-07-31 12:58:02 | 000,014,848 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll
MOD - [2011-07-31 12:58:02 | 000,013,312 | ---- | M] () -- C:\WINDOWS\assembly\GAC\Interop.WBOCXLib\1.0.0.0__90ba9c70f846762e\Interop.WBOCXLib.dll
MOD - [2011-07-31 12:58:00 | 001,208,320 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3427.27806__90ba9c70f846762e\CLI.Component.Dashboard.dll
MOD - [2011-07-31 12:58:00 | 000,057,344 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3427.27801__90ba9c70f846762e\CLI.Component.SkinFactory.dll
MOD - [2011-07-31 12:58:00 | 000,057,344 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3427.27800__90ba9c70f846762e\CLI.Component.Runtime.dll
MOD - [2011-07-31 12:58:00 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3400.34776__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll
MOD - [2011-07-31 12:58:00 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3400.34774__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll
MOD - [2011-07-31 12:57:58 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\APM.Server\2.0.3427.27799__90ba9c70f846762e\APM.Server.dll
MOD - [2011-07-31 12:57:58 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3400.34772__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll
MOD - [2011-07-31 12:57:58 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll
MOD - [2011-07-31 12:57:58 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3400.34783__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll
MOD - [2011-07-31 12:57:58 | 000,019,456 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.3427.27885__90ba9c70f846762e\CCC.Implementation.dll
MOD - [2011-07-31 12:57:56 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Server\2.0.3427.27798__90ba9c70f846762e\AEM.Server.dll
MOD - [2011-07-31 12:53:54 | 000,815,104 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\e1709cc4ebf321469282bd74c3ff1e78\System.Runtime.Remoting.ni.dll
MOD - [2011-07-31 12:53:50 | 011,808,768 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\369b6809666fc04280774baa62a6993b\System.Web.ni.dll
MOD - [2011-07-31 12:53:38 | 000,026,624 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\d7df5a323764af4c979a7f41a0ca63da\Accessibility.ni.dll
MOD - [2011-07-31 12:53:36 | 000,962,560 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\5aa130aef4e0db4a97a4ca9789030726\System.Configuration.ni.dll
MOD - [2011-07-31 12:46:50 | 005,640,192 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\4ac8282986c47b4086c7258be2891922\System.Xml.ni.dll
MOD - [2011-07-31 12:46:46 | 013,107,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\fe9827e98e25184b9ed85c52dd42254d\System.Windows.Forms.ni.dll
MOD - [2011-07-31 12:46:38 | 001,626,112 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\77d03990333bcf499a748e570e5d852d\System.Drawing.ni.dll
MOD - [2011-07-31 12:46:36 | 008,093,696 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\e73c440c4e1303499a93a2e0603c8e15\System.ni.dll
MOD - [2011-07-31 12:46:24 | 011,411,456 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\1706828a095e324ca27ae6c50c3f4b35\mscorlib.ni.dll
MOD - [2011-05-26 05:43:26 | 001,764,664 | ---- | M] () -- C:\Program Files\COMODO\COMODO GeekBuddy\Components\Core\Socket\Export.dll
MOD - [2011-05-26 05:43:24 | 004,284,728 | ---- | M] () -- C:\Program Files\COMODO\COMODO GeekBuddy\Components\Core\Socket\Adaptor.dll
MOD - [2011-05-26 05:43:24 | 002,086,200 | ---- | M] () -- C:\Program Files\COMODO\COMODO GeekBuddy\Components\Core\GuiListener\export.dll
MOD - [2011-05-26 05:43:24 | 000,339,768 | ---- | M] () -- C:\Program Files\COMODO\COMODO GeekBuddy\Components\Core\RemoteDesktop\Export.dll
MOD - [2011-05-26 05:43:24 | 000,328,504 | ---- | M] () -- C:\Program Files\COMODO\COMODO GeekBuddy\Components\Core\EventMonitor\export.dll
MOD - [2011-05-26 05:43:24 | 000,126,776 | ---- | M] () -- C:\Program Files\COMODO\COMODO GeekBuddy\Components\Core\EventMonitor\EventMonitor.dll
MOD - [2011-05-26 05:43:24 | 000,049,976 | ---- | M] () -- C:\Program Files\COMODO\COMODO GeekBuddy\Components\Core\RemoteDesktop\ShHook.dll
MOD - [2011-05-26 05:43:22 | 001,131,320 | ---- | M] () -- C:\Program Files\COMODO\COMODO GeekBuddy\CLPS_RES.dll
MOD - [2011-05-26 05:43:22 | 000,464,184 | ---- | M] () -- C:\Program Files\COMODO\COMODO GeekBuddy\Components\Core\CRF\export.dll
MOD - [2011-05-26 05:43:20 | 000,019,768 | ---- | M] () -- C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLANG.dll
MOD - [2010-11-26 19:33:16 | 000,047,616 | ---- | M] () -- C:\Program Files\Uniblue\RegistryBooster\cache.dll
MOD - [2010-06-28 12:35:10 | 005,612,496 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2009-07-01 18:37:06 | 000,037,888 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe
MOD - [2008-10-30 14:39:12 | 000,016,384 | R--- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
MOD - [2008-07-09 18:33:40 | 001,163,264 | ---- | M] () -- C:\Program Files\Ovislink\Common\acAuth.dll
MOD - [2007-04-30 19:18:50 | 000,112,400 | ---- | M] () -- C:\Program Files\Stardock\ObjectDock\DockShellHook.dll
MOD - [2007-04-21 13:47:52 | 000,059,592 | ---- | M] () -- C:\Program Files\Stardock\ObjectDock\zlib.dll
MOD - [2007-04-19 14:23:48 | 000,095,944 | ---- | M] () -- C:\Program Files\Stardock\ObjectDock\CrashRpt.dll
MOD - [2006-10-26 22:30:12 | 000,131,072 | ---- | M] () -- C:\Program Files\TP-LINK\TL-WN313G_353G_353GD\EnumDevLib.dll
MOD - [2005-07-20 04:53:04 | 000,966,765 | ---- | M] () -- C:\Program Files\TP-LINK\TL-WN313G_353G_353GD\acAuth.dll
MOD - [2002-11-19 14:11:40 | 000,139,264 | ---- | M] () -- C:\Program Files\Common Files\Stardock\ODimg.dll
MOD - [2002-03-13 19:46:32 | 000,118,784 | ---- | M] () -- C:\Program Files\Stardock\ObjectDock\ODimg.dll
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - File not found [On_Demand | Stopped] -- -- (MSDTC)
SRV - [2011-06-30 09:37:28 | 001,793,712 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV - [2011-05-26 05:43:20 | 000,154,424 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe -- (CLPSLS)
SRV - [2009-11-05 18:25:42 | 000,238,952 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\System32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2008-07-09 18:33:38 | 000,069,632 | ---- | M] (Ralink Technology, Corp.) [Auto | Running] -- C:\Program Files\Ovislink\Common\RalinkRegistryWriter.exe -- (RalinkRegistryWriter)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - [2011-06-30 09:38:14 | 000,242,600 | ---- | M] (COMODO) [File_System | System | Running] -- C:\WINDOWS\System32\DRIVERS\cmdguard.sys -- (cmdGuard)
DRV - [2011-06-30 09:38:12 | 000,017,416 | ---- | M] (COMODO) [File_System | System | Running] -- C:\WINDOWS\System32\DRIVERS\cmderd.sys -- (cmderd)
DRV - [2010-05-03 13:55:00 | 000,281,760 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\System32\DRIVERS\atksgt.sys -- (atksgt)
DRV - [2010-05-03 13:55:00 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\System32\DRIVERS\lirsgt.sys -- (lirsgt)
DRV - [2009-11-02 09:39:30 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\FsUsbExDisk.SYS -- (FsUsbExDisk)
DRV - [2009-09-21 09:55:36 | 000,121,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\ss_bmdm.sys -- (ss_bmdm)
DRV - [2009-09-21 09:55:36 | 000,090,112 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM)
DRV - [2009-09-21 09:55:36 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter)
DRV - [2009-08-24 18:49:08 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv)
DRV - [2009-05-16 05:58:44 | 004,069,888 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\DRIVERS\ati2mtag.sys -- (ati2mtag)
DRV - [2009-04-22 14:28:08 | 000,008,704 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\epmntdrv.sys -- (epmntdrv)
DRV - [2009-04-22 14:28:06 | 000,003,072 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\EuGdiDrv.sys -- (EuGdiDrv)
DRV - [2008-12-11 11:24:20 | 004,959,232 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008-07-09 18:33:38 | 000,463,616 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\DRIVERS\rt73.sys -- (RT73)
DRV - [2007-04-16 16:46:34 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\System32\DRIVERS\AmdPPM.sys -- (AmdPPM)
DRV - [2004-08-03 22:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\RTL8139.SYS -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1644491937-1417001333-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://vshare.toolbarhome.com/?hp=df
IE - HKU\S-1-5-21-1644491937-1417001333-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..browser.search.defaultenginename: "Web Search..."
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://wp.pl/"
FF - prefs.js..extensions.enabledItems: {DDC359D1-844A-42a7-9AA1-88A850A938A8}:2.0.1
FF - prefs.js..extensions.enabledItems: firesokker@firesokker.meran.org:0.3.1b
FF - prefs.js..extensions.enabledItems: firebug@software.joehewitt.com:1.6.2
FF - prefs.js..extensions.enabledItems: osokker@bluezero:0.1.15
FF - prefs.js..extensions.enabledItems: {07b2a769-ed19-4483-87ce-c643914c81bb}:3.0.0.91
FF - prefs.js..keyword.URL: "http://vshare.toolbarhome.com/search.aspx?srch=ku&q="
FF - prefs.js..network.proxy.http: "174.142.24.201"
FF - prefs.js..network.proxy.http_port: 3128
FF - prefs.js..network.proxy.type: 0
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\3.0.50106.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@veetle.com/vbp;version=0.9.17: C:\Program Files\Veetle\VLCBroadcast\npvbp.dll File not found
FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\Program Files\Mozilla Firefox\plugins\npyaxmpb.dll (Yahoo! Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-08-25 11:23:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-08-25 11:23:16 | 000,000,000 | ---D | M]
[2009-08-25 11:23:24 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Extensions
[2009-08-25 11:23:24 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\y0gw4ftu.default\extensions
[2010-08-22 12:20:24 | 000,000,000 | ---D | M] (Vista-aero) -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\y0gw4ftu.default\extensions\{07b2a769-ed19-4483-87ce-c643914c81bb}
[2009-08-26 10:37:16 | 000,000,000 | ---D | M] ("FireSokker") -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\y0gw4ftu.default\extensions\firesokker@firesokker.meran.org
[2011-02-27 17:14:50 | 000,000,000 | ---D | M] (vShare) -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\y0gw4ftu.default\extensions\vshare@toolbar
[2010-08-22 12:20:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\y0gw4ftu.default\extensions\{07b2a769-ed19-4483-87ce-c643914c81bb}\chrome\mozapps\extensions
[2009-09-18 17:28:18 | 000,001,979 | ---- | M] () -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\y0gw4ftu.default\searchplugins\wrzuta.xml
[2011-07-23 17:33:40 | 000,002,075 | ---- | M] () -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\y0gw4ftu.default\searchplugins\wyszukiwanie-filmw-wideo-w-youtube.xml
[2009-08-25 11:23:16 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) --
() (No name found) -- C:\DOCUMENTS AND SETTINGS\USER\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\Y0GW4FTU.DEFAULT\EXTENSIONS\{DDC359D1-844A-42A7-9AA1-88A850A938A8}.XPI
() (No name found) -- C:\DOCUMENTS AND SETTINGS\USER\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\Y0GW4FTU.DEFAULT\EXTENSIONS\FIREBUG@SOFTWARE.JOEHEWITT.COM.XPI
() (No name found) -- C:\DOCUMENTS AND SETTINGS\USER\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\Y0GW4FTU.DEFAULT\EXTENSIONS\OSOKKER@BLUEZERO.XPI
[2011-08-19 21:53:34 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2007-03-10 01:16:44 | 000,189,496 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\mozilla firefox\plugins\npyaxmpb.dll
[2010-03-27 19:26:32 | 000,002,386 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\zwangie134.xml
[2010-03-27 20:03:24 | 000,002,386 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\zwangie135.xml
[2011-04-21 10:40:54 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2011-04-21 10:40:54 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2011-04-21 10:40:54 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2011-04-21 10:40:54 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2011-04-21 10:40:54 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2011-04-21 10:40:54 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
O1 HOSTS File: ([2001-10-26 17:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O3 - HKLM\..\Toolbar: (StylerToolBar) - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - C:\Program Files\Styler\TB\StylerTB.dll (StyleFantasist)
O3 - HKU\S-1-5-21-1644491937-1417001333-839522115-1003\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-8287-79A187E26987} - No CLSID value found.
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [COMODO] C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLA.exe (COMODO)
O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4 - HKLM..\Run: [CPA] C:\Program Files\COMODO\COMODO GeekBuddy\VALA.exe (COMODO)
O4 - HKLM..\Run: [LGODDFU] C:\Program Files\lg_fwupdate\fwupdate.exe (BitLeader)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NPSStartup] File not found
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [UpdatePSTShortCut] C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe ()
O4 - HKU\S-1-5-21-1644491937-1417001333-839522115-1003..\Run: [AQQ] C:\PROGRA~1\WapSter\WAPSTE~1\AQQ.exe (Creative Team S.A.)
O4 - HKU\S-1-5-21-1644491937-1417001333-839522115-1003..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKU\S-1-5-21-1644491937-1417001333-839522115-1003..\Run: [bluebirds] C:\Documents and Settings\user\Bluebirds\BlueBirds.exe (LG Electronics)
O4 - HKU\S-1-5-21-1644491937-1417001333-839522115-1003..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\System32\Macromed\Flash\FlashUtil10h_Plugin.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Documents and Settings\user\Menu Start\Programy\Autostart\Autostart\Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exe (Stardock)
O4 - Startup: C:\Documents and Settings\user\Menu Start\Programy\Autostart\Autostart\OpenOffice.org 3.3.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1644491937-1417001333-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: 使用快车3下载 - C:\Documents and Settings\user\Dane aplikacji\FlashGetBHO\GetUrl.htm ()
O8 - Extra context menu item: 使用快车3下载全部链接 - C:\Documents and Settings\user\Dane aplikacji\FlashGetBHO\GetAllUrl.htm ()
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.169.125.10
O20 - AppInit_DLLs: (C:\WINDOWS\system32\guard32.dll) - C:\WINDOWS\system32\guard32.dll (COMODO)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\System32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008-10-10 20:42:12 | 000,000,711 | ---- | M] () - C:\AUTOEXEC.BAT -- [ FAT32 ]
O32 - AutoRun File - [2009-04-29 11:02:01 | 000,000,055 | R--- | M] () - H:\autorun.inf -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2011-08-21 12:33:30 | 000,580,096 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\user\Pulpit\OTL.exe
[2011-08-21 12:24:16 | 000,607,288 | ---- | C] (Duplex Secure Ltd.) -- C:\Documents and Settings\user\Pulpit\SPTDinst-v178-x86.exe
[2011-08-21 01:43:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Pulpit\czcionki
[2011-08-19 21:51:52 | 000,000,000 | -HSD | C] -- C:\FOUND.063
[2011-08-17 21:13:27 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\user\Recent
[2011-08-17 16:49:34 | 000,000,000 | -HSD | C] -- C:\FOUND.062
[2011-08-15 01:37:04 | 000,000,000 | -HSD | C] -- C:\FOUND.061
[2011-08-14 11:05:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\OpenOffice.org
[2011-08-14 11:04:54 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\OpenOffice.org 3.3
[2011-08-14 11:04:31 | 000,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3
[2011-08-14 11:03:29 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011-08-08 15:24:04 | 000,000,000 | -HSD | C] -- C:\FOUND.060
[2011-08-07 15:10:00 | 000,000,000 | ---D | C] -- C:\Program Files\RMF FM Miasto Muzyki
[2011-08-07 15:10:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\RMF FM Miasto Muzyki
[2011-08-06 00:27:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Moje dokumenty\My eBooks
[2011-08-01 21:15:44 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedCrunchPortable
[2011-08-01 14:25:34 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\GroupPolicy
[2011-08-01 13:09:38 | 000,057,344 | ---- | C] (Christian Salmon) -- C:\Documents and Settings\user\Pulpit\VisualTooltip.dll
[2011-07-31 15:41:53 | 000,000,000 | ---D | C] -- C:\Program Files\Pascal Borland
[2011-07-31 15:38:53 | 000,000,000 | ---D | C] -- C:\Program Files\Power Point
[2011-07-31 15:01:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe
[2011-07-31 14:59:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Adobe
[2011-07-31 14:46:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Stardock
[2011-07-31 14:46:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Moje dokumenty\Stardock
[2011-07-31 14:46:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Stardock
[2011-07-31 14:46:03 | 000,000,000 | ---D | C] -- C:\Program Files\Stardock
[2011-07-31 14:46:03 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Stardock
[2011-07-31 12:59:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ATI
[2011-07-31 12:59:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\ATI
[2011-07-31 12:59:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\ATI
[2011-07-31 12:54:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\UAB
[2011-07-31 12:54:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\PC_Drivers_Headquarters
[2011-07-31 12:54:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Drivers HeadQuarters
[2011-07-31 12:53:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Driver Detective
[2011-07-31 12:52:59 | 000,000,000 | ---D | C] -- C:\Program Files\PC Drivers HeadQuarters
[2011-07-31 12:45:57 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2011-07-31 12:45:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2011-07-31 12:38:36 | 000,319,488 | ---- | C] (Christian Salmon) -- C:\Documents and Settings\user\Pulpit\VisualToolTip.exe
[2011-07-31 09:10:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\Uniblue
[2011-07-31 09:10:42 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\{F03307B7-E779-4F5E-A32E-9A73D8D6E0F2}
[2011-07-31 09:10:40 | 000,000,000 | ---D | C] -- C:\Program Files\Uniblue
[2011-07-31 09:10:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Uniblue
[2011-07-31 09:06:23 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42}
[2011-07-31 08:22:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\PackageAware
[2011-07-31 08:04:02 | 000,000,000 | -HSD | C] -- C:\FOUND.059
[2011-07-30 20:46:39 | 000,000,000 | -H-D | C] -- C:\VritualRoot
[2011-07-29 10:59:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\COMODO
[2011-07-29 10:57:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\COMODO
[2011-07-29 10:57:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Comodo
[2011-07-29 10:57:22 | 000,000,000 | ---D | C] -- C:\Program Files\COMODO
[2011-07-29 10:57:21 | 001,700,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\gdiplus.dll
[2011-07-29 10:57:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Comodo Downloader
[2011-07-29 10:39:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\CCleaner
[2011-07-27 10:41:58 | 000,000,000 | -HSD | C] -- C:\FOUND.058
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2011-08-21 12:56:00 | 000,043,699 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\gmer2.gif
[2011-08-21 12:55:30 | 000,032,858 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\gmer1.gif
[2011-08-21 12:51:04 | 000,302,592 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\ropnl7qe.exe
[2011-08-21 12:33:38 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\user\Pulpit\OTL.exe
[2011-08-21 12:24:20 | 000,607,288 | ---- | M] (Duplex Secure Ltd.) -- C:\Documents and Settings\user\Pulpit\SPTDinst-v178-x86.exe
[2011-08-21 11:56:38 | 000,000,337 | ---- | M] () -- C:\WINDOWS\lgfwup.ini
[2011-08-21 11:56:24 | 000,000,262 | ---- | M] () -- C:\WINDOWS\tasks\RegistryBooster.job
[2011-08-21 11:56:22 | 000,178,544 | ---- | M] () -- C:\WINDOWS\System32\ativvaxx.cap
[2011-08-21 11:56:22 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-08-20 01:13:50 | 000,016,853 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\cwiczenia.ods
[2011-08-19 21:54:46 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011-08-19 12:34:58 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-08-15 01:37:36 | 000,253,960 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-08-14 11:06:20 | 000,000,781 | ---- | M] () -- C:\Documents and Settings\user\Menu Start\Programy\Autostart\Autostart\OpenOffice.org 3.3.lnk
[2011-08-11 00:56:00 | 000,144,896 | ---- | M] () -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-08-01 14:26:56 | 000,000,486 | RHS- | M] () -- C:\Documents and Settings\user\ntuser.pol
[2011-08-01 13:08:46 | 000,006,704 | ---- | M] () -- C:\WINDOWS\System32\drivers\sfi.dat
[2011-07-31 15:28:38 | 000,000,301 | ---- | M] () -- C:\WINDOWS\elegancik.INI
[2011-07-31 14:46:14 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\user\Menu Start\Programy\Autostart\Autostart\Stardock ObjectDock.lnk
[2011-07-31 12:56:36 | 000,000,666 | ---- | M] () -- C:\WINDOWS\VisualTooltip.ini
[2011-07-31 12:47:06 | 000,448,334 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2011-07-31 12:47:06 | 000,392,432 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011-07-31 12:47:06 | 000,074,434 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2011-07-31 12:47:06 | 000,058,732 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011-07-31 12:31:16 | 000,000,286 | ---- | M] () -- C:\WINDOWS\reimage.ini
[2011-07-31 08:56:28 | 000,057,344 | ---- | M] (Christian Salmon) -- C:\Documents and Settings\user\Pulpit\VisualTooltip.dll
[2011-07-29 10:57:24 | 001,700,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\gdiplus.dll
[2011-07-29 10:54:18 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011-07-23 11:48:54 | 000,006,299 | ---- | M] () -- C:\Documents and Settings\user\Moje dokumenty\Kontakty_6383486.xml
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2011-08-21 12:55:55 | 000,043,699 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\gmer2.gif
[2011-08-21 12:55:25 | 000,032,858 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\gmer1.gif
[2011-08-21 12:51:02 | 000,302,592 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\ropnl7qe.exe
[2011-08-14 11:09:19 | 000,016,853 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\cwiczenia.ods
[2011-08-14 11:06:18 | 000,000,781 | ---- | C] () -- C:\Documents and Settings\user\Menu Start\Programy\Autostart\Autostart\OpenOffice.org 3.3.lnk
[2011-08-01 14:26:01 | 000,000,486 | RHS- | C] () -- C:\Documents and Settings\user\ntuser.pol
[2011-07-31 15:28:37 | 000,000,301 | ---- | C] () -- C:\WINDOWS\elegancik.INI
[2011-07-31 14:46:12 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\user\Menu Start\Programy\Autostart\Autostart\Stardock ObjectDock.lnk
[2011-07-31 12:56:35 | 000,000,666 | ---- | C] () -- C:\WINDOWS\VisualTooltip.ini
[2011-07-31 12:23:56 | 000,000,286 | ---- | C] () -- C:\WINDOWS\reimage.ini
[2011-07-31 09:10:55 | 000,000,262 | ---- | C] () -- C:\WINDOWS\tasks\RegistryBooster.job
[2011-07-29 10:59:37 | 000,006,704 | ---- | C] () -- C:\WINDOWS\System32\drivers\sfi.dat
[2010-10-16 00:54:02 | 000,000,891 | ---- | C] () -- C:\WINDOWS\System32\secushr.dat
[2010-10-16 00:47:04 | 000,000,025 | ---- | C] () -- C:\WINDOWS\libem.INI
[2010-09-03 23:48:32 | 000,032,768 | ---- | C] () -- C:\Documents and Settings\user\Dane aplikacji\Adobe
[2010-05-03 13:54:58 | 000,281,760 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2010-05-03 13:54:58 | 000,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2010-03-27 19:43:22 | 007,176,120 | ---- | C] () -- C:\WINDOWS\System32\VIPv3_EXT.dll
[2010-03-27 19:43:17 | 000,000,096 | ---- | C] () -- C:\WINDOWS\docs.ini
[2010-03-27 19:06:03 | 000,111,104 | ---- | C] () -- C:\WINDOWS\System32\uharc.exe
[2010-02-26 16:06:20 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
[2010-02-26 16:06:20 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
[2010-02-26 16:06:15 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\user\Dane aplikacji\$_hpcst$.hpc
[2010-01-18 18:33:46 | 000,376,832 | ---- | C] () -- C:\WINDOWS\System32\AegisI5Installer.exe
[2009-11-07 00:43:44 | 001,663,488 | ---- | C] () -- C:\WINDOWS\System32\BootMan.exe
[2009-11-07 00:43:44 | 000,086,408 | ---- | C] () -- C:\WINDOWS\System32\setupempdrv03.exe
[2009-11-07 00:43:44 | 000,014,848 | ---- | C] () -- C:\WINDOWS\System32\EuEpmGdi.dll
[2009-11-07 00:43:44 | 000,008,704 | ---- | C] () -- C:\WINDOWS\System32\epmntdrv.sys
[2009-11-07 00:43:44 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\EuGdiDrv.sys
[2009-09-15 20:26:14 | 000,045,939 | ---- | C] () -- C:\WINDOWS\php.ini
[2009-09-15 20:26:14 | 000,000,486 | ---- | C] () -- C:\WINDOWS\my.ini
[2009-08-29 21:00:34 | 000,016,384 | ---- | C] () -- C:\WINDOWS\System32\FileOps.exe
[2009-08-28 15:14:25 | 000,144,896 | ---- | C] () -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-08-26 16:46:34 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009-08-25 11:31:53 | 000,013,312 | ---- | C] () -- C:\Documents and Settings\user\Dane aplikacji\Settings.cfg
[2009-08-25 11:23:19 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009-08-24 16:24:13 | 000,000,376 | ---- | C] () -- C:\WINDOWS\mozregistry.dat
[2009-08-24 16:13:25 | 000,000,337 | ---- | C] () -- C:\WINDOWS\lgfwup.ini
[2009-08-24 16:01:10 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2009-08-24 15:56:34 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
[2009-08-24 15:56:23 | 000,887,724 | R--- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2009-08-24 15:56:23 | 000,189,051 | R--- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2009-08-24 15:56:23 | 000,000,003 | R--- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2009-08-24 15:50:51 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2009-08-24 15:45:44 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2009-08-24 15:38:54 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009-08-24 15:37:53 | 000,253,960 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009-08-21 16:58:40 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\AitVirtualComInstall.exe
[2009-07-20 20:10:48 | 000,307,200 | ---- | C] () -- C:\WINDOWS\System32\InstallVCOM.exe
[2009-02-18 19:55:20 | 000,294,912 | ---- | C] () -- C:\WINDOWS\System32\ATIODE.exe
[2009-02-03 22:52:02 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ATIODCLI.exe
[2008-05-04 17:39:34 | 000,002,560 | ---- | C] () -- C:\WINDOWS\System32\ViaClassCoInstaller.dll
[2007-10-25 17:26:10 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2004-08-12 23:33:48 | 000,233,472 | ---- | C] () -- C:\WINDOWS\System32\libmysql.dll
[2004-08-03 22:56:48 | 000,001,788 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2004-08-03 22:44:00 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[2004-08-02 12:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2001-10-26 18:15:16 | 000,448,334 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat
[2001-10-26 18:15:16 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat
[2001-10-26 18:15:16 | 000,074,434 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat
[2001-10-26 18:15:16 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat
[2001-08-23 15:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2001-08-23 15:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2001-08-17 23:30:24 | 000,392,432 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2001-08-17 23:30:24 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2001-08-17 23:30:24 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2001-08-17 23:30:22 | 000,058,732 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2001-08-17 23:15:38 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2001-07-22 00:36:48 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2001-07-22 00:36:04 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2001-07-22 00:24:16 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[color=#E56717]========== LOP Check ==========[/color]
[2009-08-24 16:07:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Temp
[2009-08-25 11:31:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\EmailNotifier
[2011-07-31 12:54:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\UAB
[2010-12-13 14:35:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2011-07-31 09:06:24 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42}
[2011-07-31 09:10:44 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{F03307B7-E779-4F5E-A32E-9A73D8D6E0F2}
[2011-07-31 12:54:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Drivers HeadQuarters
[2009-10-15 18:24:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\IconTweaker
[2010-02-06 17:25:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Z-Software
[2010-02-26 16:07:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Samsung
[2010-05-03 17:34:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Tages
[2010-10-16 00:47:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\BITS
[2009-08-25 11:31:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\EmailNotifier
[2009-08-25 11:31:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\SiteClasses
[2009-08-25 11:31:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Sites
[2009-08-25 11:31:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Dynamic
[2010-05-03 17:42:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Ubisoft
[2009-08-26 16:37:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Leadertech
[2010-08-31 22:59:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Opera
[2010-09-26 15:31:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\eXPert PDF Editor
[2009-09-05 23:04:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\FileZilla
[2010-10-16 00:46:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\FlashGetBHO
[2010-10-16 00:47:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\FlashGet
[2011-07-31 09:10:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Uniblue
[2011-08-14 11:05:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\OpenOffice.org
[2009-09-28 16:09:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Visicom Media
[2009-10-15 17:01:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Thinstall
[2009-10-15 18:24:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\IconTweaker
[2009-11-01 12:42:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\VitySoft
[2010-02-06 17:15:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\EurekaLog
[2010-02-06 18:30:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Z-Software
[2010-02-26 16:06:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Samsung
[2010-03-24 23:05:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Macromddia
[2010-03-27 20:28:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Styler
[2011-08-21 11:56:24 | 000,000,262 | ---- | M] () -- C:\WINDOWS\Tasks\RegistryBooster.job
[color=#E56717]========== Purity Check ==========[/color]
< End of report >
- Kod: Zaznacz wszystko
OTL Extras logfile created on: 2011-08-21 12:59:05 - Run 2
OTL by OldTimer - Version 3.2.26.5 Folder = C:\Documents and Settings\user\Pulpit
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
3,50 Gb Total Physical Memory | 2,82 Gb Available Physical Memory | 80,72% Memory free
5,34 Gb Paging File | 4,63 Gb Available in Paging File | 86,70% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 735,90 Gb Total Space | 610,74 Gb Free Space | 82,99% Space Free | Partition Type: FAT32
Drive H: | 0,38 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive I: | 195,43 Gb Total Space | 170,37 Gb Free Space | 87,18% Space Free | Partition Type: NTFS
Computer Name: KOUTA | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
[color=#E56717]========== File Associations ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software)
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l
[HKEY_USERS\S-1-5-21-1644491937-1417001333-839522115-1003\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software)
[color=#E56717]========== Shell Spawning ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files\Opera\Opera.exe" "%1" (Opera Software)
InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[color=#E56717]========== Security Center Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[color=#E56717]========== System Restore Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
[color=#E56717]========== Firewall Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002
[color=#E56717]========== Authorized Applications List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\WINDOWS\System32\usmt\migwiz.exe" = C:\WINDOWS\System32\usmt\migwiz.exe:*:Enabled:Kreator transferu plików i ustawień -- (Microsoft Corporation)
"C:\Program Files\WapSter\WapSter AQQ\AQQ.exe" = C:\Program Files\WapSter\WapSter AQQ\AQQ.exe:*:Enabled:AQQ Communicator -- (Creative Team S.A.)
"C:\usr\apache\Apache.exe" = C:\usr\apache\Apache.exe:*:Enabled:Apache
"C:\usr\SMTP Server\localsrv.exe" = C:\usr\SMTP Server\localsrv.exe:*:Enabled:localsrv
"C:\Program Files\WebServ\ftp\WebServ(ftp).exe" = C:\Program Files\WebServ\ftp\WebServ(ftp).exe:*:Enabled:WebServ(ftp) -- ()
"C:\Program Files\WebServ\mysql\bin\WebServ(mysqld).exe" = C:\Program Files\WebServ\mysql\bin\WebServ(mysqld).exe:*:Enabled:WebServ(mysqld) -- ()
"C:\Program Files\WebServ\apache2\bin\WebServ(apache).exe" = C:\Program Files\WebServ\apache2\bin\WebServ(apache).exe:*:Enabled:Apache HTTP Server -- (Apache Software Foundation)
"C:\Program Files\Java\JRE6\launch4j-tmp\frd.exe" = C:\Program Files\Java\JRE6\launch4j-tmp\frd.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\Program Files\Java\JRE6\BIN\javaw.exe" = C:\Program Files\Java\JRE6\BIN\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\Program Files\Java\jre6\bin\java.exe" = C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server -- (PeeringPortal)
"C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server -- (PeeringPortal)
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation)
"I:\Anno 1404\Anno4.exe" = I:\Anno 1404\Anno4.exe:*:Enabled:ANNO 1404 -- ()
"I:\Anno 1404\tools\Anno4Web.exe" = I:\Anno 1404\tools\Anno4Web.exe:*:Enabled:ANNO 1404 Web -- ()
"C:\Program Files\Visicom Media\AceFTP 3 Freeware\aceftp3free.exe" = C:\Program Files\Visicom Media\AceFTP 3 Freeware\aceftp3free.exe:*:Enabled:AceFTP v3 -- (Visicom Media Inc.)
"C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe" = C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\Gry\Fifa 2009\FIFA09.exe" = C:\Gry\Fifa 2009\FIFA09.exe:*:Enabled:FIFA09 -- ()
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0141D498-16DA-4221-A529-1D7A64BE8B05}" = OpenOffice.org 3.3
"{01EDE11B-EB21-2701-FF66-AADA744E182B}" = ccc-core-static
"{024715BE-F78D-41F9-901D-49BA6B544BA2}" = CCC Help Turkish
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{09CF6AF5-9206-4FD7-9B08-BA6819FB47E3}" = Anno 1404
"{09FF4DB8-7DE9-4D47-B7DB-915DB7D9A8CA}" = Uniblue RegistryBooster
"{0AB4AFD4-476A-3E44-9416-6112708379AE}" = CCC Help Thai
"{14E8D0B1-FB60-A872-73E9-F52C87513F57}" = Catalyst Control Center Graphics Full New
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = LG Power Tools
"{207EB480-FA5B-B609-F9CD-5F63F243D629}" = ccc-utility
"{2315B23D-3E21-4920-837D-AE6460934ECB}" = FIFA 09
"{259C0ABB-A3B2-4D70-008F-BF7EE491B70B}" = Need for Speed™ Carbon
"{262F9FEE-D77E-38B5-61DE-66F5EC7EE03A}" = CCC Help Russian
"{267206F7-2E69-B677-05D6-55EBBB5E4371}" = CCC Help Greek
"{26A24AE4-039D-4CA4-87B4-2F83216015FF}" = Java(TM) 6 Update 18
"{32477761-57AE-4D26-A493-9AA1658B6615}" = ATI AVIVO Codecs
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}" = ANNO 1404
"{44335D10-4726-48EC-5648-3EF042A1B6D8}" = CCC Help Dutch
"{4640FDE1-B83A-4376-84ED-86F86BEE2D41}" = Driver Detective
"{487C2D48-A9E3-4F34-92BD-B6A847025C16}" = Free eXPert PDF Reader
"{49507D91-E5D7-1775-1120-41C70E8B90A5}" = CCC Help Spanish
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4BDDFD80-871F-1C7D-2C3E-C26F9DBF9AFF}" = CCC Help Portuguese
"{4CECCA9F-E57A-4A9A-EB17-8748BA14CACE}" = CCC Help Hungarian
"{5257E54B-FD62-5880-250F-8E0B78389B56}" = Catalyst Control Center Graphics Light
"{567C9882-843D-4188-A181-00E2CC3E1045}" = LG Burning Tools
"{56AEF944-DC3C-6666-1E7A-8ED7C5DFBCF4}" = CCC Help Danish
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5CAC0A4E-F179-4229-92DB-FCA9F5BEAB7A}" = TP-LINK Wireless Adapter Driver and Utility
"{6179550A-3E7C-499E-BCC9-9E8113E0A285}" = LG ODD Auto Oprogramowanie
"{61ECE122-6F83-11D4-850D-00A0C9B344A1}" = eRacer
"{6271E4B9-5590-42A7-9D2F-54909BC25055}_is1" = RMF FM Miasto Muzyki 1.30
"{68A6B421-C509-86D8-D272-0EDCC32EE7FC}" = Catalyst Control Center Graphics Full Existing
"{68EB2C37-083A-4303-B5D8-41FA67E50B8F}_is1" = Poedit
"{6E715460-12AB-5099-C134-8286198B8484}" = CCC Help Norwegian
"{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8EAA4E86-5F00-C12A-89F7-0B6E500BF335}" = CCC Help English
"{90B1AA2E-6FAC-CDAD-4993-45BD23B6ED8A}" = CCC Help Czech
"{93FCF917-B49C-E998-F2C8-B907FEBDA5C9}" = CCC Help Korean
"{94F55336-14AB-9449-7C40-6326C08F793E}" = ccc-core-preinstall
"{A6CE82F8-3B48-7995-6910-4895C75C02A5}" = CCC Help Finnish
"{A873F7D0-83E1-2E1D-DEAF-D6D8FF8A75F6}" = CCC Help Chinese Standard
"{ADD5DB49-72CF-11D8-9D75-000129760D75}" = LG CyberLink PowerBackup
"{AF4F36AA-3D86-41AD-A383-022393B79F27}" = Soccer Manager
"{AF7E85DC-317C-47F5-810E-B82EE093A612}" = Samsung New PC Studio USB Driver Installer
"{B203EC06-151B-36D7-EBD5-E1FD49398C3E}" = CCC Help German
"{B5A3E5C8-0509-4671-83C1-D16140E4A42F}" = ELI 2.0 Demo
"{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = LG CyberLink PowerProducer
"{B7FB9063-8386-6DA7-883A-57C8E00495FC}" = CCC Help Swedish
"{B91263B8-012B-928A-AA69-ABCC271A33BD}" = Catalyst Control Center Graphics Previews Common
"{B99F2C0C-244A-4A41-1CF8-878FAEA1E7E3}" = CCC Help Japanese
"{C151CE54-E7EA-4804-854B-F515368B0798}" = AMD Processor Driver
"{C6114354-6063-A72B-F6DB-9920CC8347E6}" = Catalyst Control Center HydraVision Full
"{C67ED8BC-1A34-19F8-5C0F-EB1CCAD54865}" = Catalyst Control Center Core Implementation
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{D3B1C799-CB73-42DE-BA0F-2344793A095C}" = Catalyst Control Center - Branding
"{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas
"{D4B082E3-4026-C93A-9693-6DB10BCE9190}" = CCC Help Polish
"{E91E8912-769D-42F0-8408-0E329443BABC}" = AirLive WT-2000USB
"{E9ECF354-2422-4FDB-9ABF-D8ADAC0EF941}" = Styler
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"{F3CD42A1-DACD-B720-EE07-90171647A1D2}" = CCC Help Italian
"{F66714D7-5775-50C6-AC24-9FF334BC01A6}" = Catalyst Control Center Localization All
"{F77F95C8-C493-11D8-88E4-0004769F25D1}" = Mroczne Wieki
"{F86B8D60-D28D-E501-9F7A-B2DEF3BA1687}" = CCC Help Chinese Traditional
"{FD8E178D-8B4E-42DA-B434-EFF270329B1C}" = COMODO Internet Security
"{FF6FD920-4041-6DC0-F8E9-E39F601C0A87}" = CCC Help French
"AceFTP 3 Freeware" = AceFTP 3 Freeware
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"All ATI Software" = Narzędzie Software Uninstall Utility firmy ATI
"AQQ" = WapSter AQQ
"ATI Display Driver" = ATI Display Driver
"Avisynth" = AviSynth 2.5
"CCleaner" = CCleaner
"COMODO GeekBuddy" = COMODO GeekBuddy
"Deluxe Ski Jump 3_is1" = Deluxe Ski Jump 3 v1.7.0
"EASEUS Partition Master Home Edition_is1" = EASEUS Partition Master 4.0 Home Edition
"InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = LG Power Tools
"InstallShield_{AF7E85DC-317C-47F5-810E-B82EE093A612}" = Samsung New PC Studio USB Driver Installer
"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0
"Mozilla Firefox 6.0 (x86 pl)" = Mozilla Firefox 6.0 (x86 pl)
"ObjectDock" = ObjectDock
"Opera 11.50.1074" = Opera 11.50
"The KMPlayer" = The KMPlayer (remove only)
"Uniblue RegistryBooster" = Uniblue RegistryBooster
"WebServ_is1" = WebServ 2.0
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format Runtime
"WinRAR archiver" = Archiwizator WinRAR
[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]
[HKEY_USERS\S-1-5-21-1644491937-1417001333-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"IconTweaker" = IconTweaker 1.11
[color=#E56717]========== Last 10 Event Log Errors ==========[/color]
[ Application Events ]
Error - 2011-02-24 05:25:02 | Computer Name = KOUTA | Source = PerfNet | ID = 2004
Description = Nie można otworzyć usługi Server. Dane wydajności usługi Server nie
zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0.
Error - 2011-03-01 09:42:00 | Computer Name = KOUTA | Source = PerfNet | ID = 2004
Description = Nie można otworzyć usługi Server. Dane wydajności usługi Server nie
zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0.
Error - 2011-03-08 13:13:54 | Computer Name = KOUTA | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd acrord32.exe, wersja 6.0.1.1091, moduł powodujący
błąd unknown, wersja 0.0.0.0, adres błędu 0x0002c563.
Error - 2011-03-08 13:14:11 | Computer Name = KOUTA | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca opera.exe, wersja 11.1.1190.0, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.
Error - 2011-03-12 06:26:01 | Computer Name = KOUTA | Source = PerfNet | ID = 2004
Description = Nie można otworzyć usługi Server. Dane wydajności usługi Server nie
zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0.
Error - 2011-03-13 15:20:32 | Computer Name = KOUTA | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd prawkob.exe, wersja 0.0.0.0, moduł powodujący
błąd , wersja 0.0.0.0, adres błędu 0x00000000.
Error - 2011-03-14 15:33:28 | Computer Name = KOUTA | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd prawkob.exe, wersja 0.0.0.0, moduł powodujący
błąd , wersja 0.0.0.0, adres błędu 0x00000000.
Error - 2011-03-15 13:10:51 | Computer Name = KOUTA | Source = PerfNet | ID = 2004
Description = Nie można otworzyć usługi Server. Dane wydajności usługi Server nie
zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0.
Error - 2011-03-16 13:02:47 | Computer Name = KOUTA | Source = PerfNet | ID = 2004
Description = Nie można otworzyć usługi Server. Dane wydajności usługi Server nie
zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0.
Error - 2011-03-18 17:21:51 | Computer Name = KOUTA | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd plugin-container.exe, wersja 1.9.2.4079,
moduł powodujący błąd ntdll.dll, wersja 5.1.2600.2180, adres błędu 0x00001010.
[ System Events ]
Error - 2011-08-17 15:07:58 | Computer Name = KOUTA | Source = System Error | ID = 1003
Description = Kod błędu 0000001a, parametr 1 00041284, parametr 2 1048e001, parametr
3 000087eb, parametr 4 c0883000.
Error - 2011-08-18 14:19:08 | Computer Name = KOUTA | Source = Service Control Manager | ID = 7034
Description = Usługa COMODO Internet Security Helper Service niespodziewanie zakończyła
pracę. Wystąpiło to razy: 1.
Error - 2011-08-19 07:11:06 | Computer Name = KOUTA | Source = Service Control Manager | ID = 7034
Description = Usługa COMODO Internet Security Helper Service niespodziewanie zakończyła
pracę. Wystąpiło to razy: 1.
Error - 2011-08-19 15:45:01 | Computer Name = KOUTA | Source = W32Time | ID = 39452689
Description = Dostawca czasu NtpClient: Wystąpił błąd podczas wyszukiwania serwera
DNS ręcznie skonfigurowanej końcówki „time.windows.com,0x1”. Klient NtpClient ponowi
próbę wyszukania serwera DNS za 15 min. Wystąpił błąd: Próba przeprowadzenia operacji,
wykonywanej przez gniazdo, na nieosiągalnym hoście. (0x80072751)
Error - 2011-08-19 15:45:01 | Computer Name = KOUTA | Source = W32Time | ID = 39452701
Description = Dostawca czasu NtpClient jest skonfigurowany, tak aby pobierać czas
z jednego lub kilku źródeł czasu, jednak żadne ze źródeł jest obecnie niedostępne.
Przez 14 min nie nastąpi próba kontaktu ze źródłem. NtpClient nie ma źródła dokładnego
czasu.
Error - 2011-08-19 15:53:09 | Computer Name = KOUTA | Source = System Error | ID = 1003
Description = Kod błędu 1000000a, parametr 1 00000028, parametr 2 00000002, parametr
3 00000000, parametr 4 805229d3.
Error - 2011-08-19 15:53:17 | Computer Name = KOUTA | Source = System Error | ID = 1003
Description = Kod błędu 0000001a, parametr 1 00041284, parametr 2 03c21001, parametr
3 000013eb, parametr 4 c0883000.
Error - 2011-08-20 05:58:39 | Computer Name = KOUTA | Source = Service Control Manager | ID = 7006
Description = Wywołanie ScRegSetValueExW dla Start nie powiodło się i wystąpił następujący
błąd: %%5.
Error - 2011-08-20 11:00:02 | Computer Name = KOUTA | Source = Service Control Manager | ID = 7034
Description = Usługa COMODO Internet Security Helper Service niespodziewanie zakończyła
pracę. Wystąpiło to razy: 1.
Error - 2011-08-20 18:00:01 | Computer Name = KOUTA | Source = Service Control Manager | ID = 7034
Description = Usługa COMODO Internet Security Helper Service niespodziewanie zakończyła
pracę. Wystąpiło to razy: 1.
< End of report >
Jakieś rady jak wygenerować logi z Gmera? A może ktoś coś powie już na podstawie tych logów?
Dzięikuję i pozdrawiam.
Problem z visualtooltip.dll i rocket dock
przez wojtas 21 Sie 2011, 22:09
DRV - [2010-05-03 13:55:00 | 000,281,760 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\System32\DRIVERS\atksgt.sys -- (atksgt)
DRV - [2010-05-03 13:55:00 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\System32\DRIVERS\lirsgt.sys -- (lirsgt)
te pliki mogą blokować Gmera.. są to pliki od jakiejś starej wersji Daemon Tools... jeśli one zostały możesz je skasować za pomocą :
http://technet.microsoft.com/pl-pl/sysinternals/bb963902%28en-us%29.aspx
w logach nie widać nic złego.,
pobierz http://www.programosy.pl/program,revo-uninstaller.html i w trybie rozszerzonym usuń program i ponownie zainstaluj...
-
wojtas - *mod
- Posty: 18165
- Dołączenie: 13 Sty 2006, 16:00
- Miejscowość: Krzeszyce
- Pochwały: 1656
-
Problem z visualtooltip.dll i rocket dock
przez kominekl 22 Sie 2011, 12:47
Jak powiedział poprzednik - kosmetyka.
Czy sam ustawiałeś proxy?
Uruchom OTL -> w oknie Własne opcje skanowania/skrypt wklej:
Klikasz Wykonaj skrypt. Dajesz log z usuwania. W OTL -> Sprzątanie.
Zainstaluj SP3 -> http://www.programosy.pl/program,windows-xp-service-pack-3.html.
Zaktualizuj IE do najnowszej wersji (nawet, jeśli Go nie używasz) -> http://www.programosy.pl/program,internet-explorer-8.html.
Przeczyść dysk i rejestr CCleaner`em -> http://www.programosy.pl/program,ccleaner.html.
Wykonaj pełne skanowanie Malwarebytes`em Anti-Malware -> http://www.programosy.pl/program,malwarebytes-anti-malware.html, jeśli coś znajdzie usuń i daj raport.
Odinstaluj starą wersję Java`y -> Java(TM) 6 Update 18 i zainstaluj najnowszą -> http://www.programosy.pl/program,java.html.
Czy sam ustawiałeś proxy?
Uruchom OTL -> w oknie Własne opcje skanowania/skrypt wklej:
:OTL
SRV - File not found [On_Demand | Stopped] -- -- (MSDTC)
IE - HKU\S-1-5-21-1644491937-1417001333-839522115-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://vshare.toolbarhome.com/?hp=df
FF - prefs.js..keyword.URL: "http://vshare.toolbarhome.com/search.aspx?srch=ku&q="
FF - HKLM\Software\MozillaPlugins\@veetle.com/vbp;version=0.9.17: C:\Program Files\Veetle\VLCBroadcast\npvbp.dll File not found
[2011-02-27 17:14:50 | 000,000,000 | ---D | M] (vShare) -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\y0gw4ftu.default\extensions\vshare@toolbar
[2010-03-27 19:26:32 | 000,002,386 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\zwangie134.xml
[2010-03-27 20:03:24 | 000,002,386 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\zwangie135.xml
O3 - HKU\S-1-5-21-1644491937-1417001333-839522115-1003\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-8287-79A187E26987} - No CLSID value found.
O4 - HKLM..\Run: [NPSStartup] File not found
O8 - Extra context menu item: 使用快车3下载 - C:\Documents and Settings\user\Dane aplikacji\FlashGetBHO\GetUrl.htm ()
O8 - Extra context menu item: 使用快车3下载全部链接 - C:\Documents and Settings\user\Dane aplikacji\FlashGetBHO\GetAllUrl.htm ()
[2011-08-21 11:56:24 | 000,000,262 | ---- | M] () -- C:\WINDOWS\tasks\RegistryBooster.job
:Files
C:\Documents and Settings\user\Menu Start\Programy\Autostart\Autostart\Stardock ObjectDock.lnk
C:\Documents and Settings\user\Menu Start\Programy\Autostart\Autostart\OpenOffice.org 3.3.lnk
:Reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Alcmtr"=-
"LGODDFU"=-
"NeroFilterCheck"=-
"StartCCC"=-
"UpdatePSTShortCut"=-
"WinampAgent"=-
[HKEY_USERS\S-1-5-21-1644491937-1417001333-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Run]
"AutoStartNPSAgent"=-
"bluebirds"=-
"FlashPlayerUpdate"=-
:Commands
[clearallrestorepoints]
[emptytemp]
Klikasz Wykonaj skrypt. Dajesz log z usuwania. W OTL -> Sprzątanie.
Zainstaluj SP3 -> http://www.programosy.pl/program,windows-xp-service-pack-3.html.
Zaktualizuj IE do najnowszej wersji (nawet, jeśli Go nie używasz) -> http://www.programosy.pl/program,internet-explorer-8.html.
Przeczyść dysk i rejestr CCleaner`em -> http://www.programosy.pl/program,ccleaner.html.
Wykonaj pełne skanowanie Malwarebytes`em Anti-Malware -> http://www.programosy.pl/program,malwarebytes-anti-malware.html, jeśli coś znajdzie usuń i daj raport.
Odinstaluj starą wersję Java`y -> Java(TM) 6 Update 18 i zainstaluj najnowszą -> http://www.programosy.pl/program,java.html.
- kominekl
- ~user
- Posty: 85
- Dołączenie: 20 Sie 2011, 12:43
- Pochwały: 2
-
7 posty(ów) • Strona 1 z 1
Kto jest na forum
Użytkownicy przeglądający to forum: Brak zarejestrowanych użytkowników oraz 8 gości