Aktualizacje na programosy.pl:
USB Drive Letter Manager (USBDLM) • Vidyard GoVideo • USB Device Tree Viewer • Mailbird • WinUAE • DBeaver • MKVToolNix Portable • MKVToolnix (mkvmerge GUI) • Rainlendar
-
- Ogłoszenie:
Duży ping w grach, zamulony internet
10 posty(ów) • Strona 1 z 1
Duży ping w grach, zamulony internet
przez cinek383 07 Lut 2010, 18:53
Corsair 550W , Caviar 250GB , DVD-REC Pioneer , DDR2 4096MB (4GB) PC800 DUAL 2x 2048 , Core 2 Duo E4500 2.2GHZ LGA775 , GeForce 8800GTS 640mb , Xp professional (: Creative Sounds Blaster
CANNABIS
CANNABIS
-
cinek383 - ~user
- Posty: 2116
- Dołączenie: 22 Sty 2006, 23:29
- Miejscowość: Legionowo :)
- Pochwały: 60
Duży ping w grach, zamulony internet
przez jarski185 07 Lut 2010, 19:05
Może masz syfa-daj logi. Jeśli będzie czysto to napisz jaki masz internet, jak podłączony(modem, router), itd....
-
jarski185 - ~user
- Posty: 4459
- Dołączenie: 10 Lut 2008, 18:49
- Pochwały: 285
Duży ping w grach, zamulony internet
przez cinek383 07 Lut 2010, 19:13
- Kod: Zaznacz wszystko
OTL logfile created on: 2010-02-07 18:09:28 - Run 1
OTL by OldTimer - Version 3.1.28.0 Folder = C:\Documents and Settings\cwks\Moje dokumenty\Pobieranie
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
1 015,00 Mb Total Physical Memory | 351,00 Mb Available Physical Memory | 35,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 75,00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 31,25 Gb Total Space | 7,28 Gb Free Space | 23,31% Space Free | Partition Type: NTFS
Drive D: | 1,19 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
E: Drive not present or media not loaded
Drive F: | 80,54 Gb Total Space | 62,12 Gb Free Space | 77,13% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: LAPEK
Current User Name: cwks
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: On
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2010-02-07 18:08:11 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\cwks\Moje dokumenty\Pobieranie\OTL.exe
PRC - [2010-02-04 09:45:30 | 001,217,808 | ---- | M] (Valve Corporation) -- F:\Program Files\Valve\Steam\Steam.exe
PRC - [2010-01-09 16:51:13 | 000,908,248 | ---- | M] (Mozilla Corporation) -- F:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009-10-28 13:44:08 | 011,539,048 | ---- | M] (GG Network S.A.) -- F:\Program Files\Nowe Gadu-Gadu\gg.exe
PRC - [2009-10-28 12:43:06 | 000,077,824 | ---- | M] () -- F:\Program Files\Nowe Gadu-Gadu\spellchecker_gg.exe
PRC - [2009-03-14 15:04:29 | 000,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2009-03-14 15:04:29 | 000,148,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009-03-13 11:37:38 | 001,871,872 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\system32\WLTRAY.EXE
PRC - [2009-03-13 11:37:38 | 001,613,824 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\system32\BCMWLTRY.EXE
PRC - [2009-03-13 11:37:38 | 000,024,064 | ---- | M] () -- C:\WINDOWS\system32\WLTRYSVC.EXE
PRC - [2009-02-05 22:08:45 | 000,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2009-02-05 22:08:40 | 000,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2009-02-05 22:08:26 | 000,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2009-02-05 22:01:25 | 000,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2008-06-03 16:40:08 | 000,177,456 | ---- | M] ( Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
PRC - [2008-05-22 21:40:44 | 000,141,848 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxtray.exe
PRC - [2008-05-22 21:40:40 | 000,256,536 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxsrvc.exe
PRC - [2008-05-22 21:40:38 | 000,137,752 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxpers.exe
PRC - [2008-05-22 21:40:28 | 000,166,424 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\hkcmd.exe
PRC - [2008-05-01 16:25:56 | 000,165,192 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
PRC - [2008-04-03 11:33:26 | 000,193,840 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
PRC - [2008-03-27 18:28:50 | 001,040,384 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
PRC - [2007-12-11 12:15:04 | 000,012,800 | ---- | M] (Agere Systems) -- C:\WINDOWS\system32\agrsmsvc.exe
PRC - [2007-03-31 10:15:08 | 000,474,112 | R--- | M] (OF.PL sp.z .o.o.) -- C:\Program Files\Netia\Net\netianet.exe
PRC - [2007-01-05 17:36:48 | 000,872,448 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe
PRC - [2004-08-03 23:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2003-05-14 13:02:04 | 000,962,667 | ---- | M] () -- C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
[color=#E56717]========== Modules (SafeList) ==========[/color]
MOD - [2010-02-07 18:08:11 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\cwks\Moje dokumenty\Pobieranie\OTL.exe
MOD - [2004-08-03 23:42:34 | 001,050,624 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - [2009-08-24 15:55:04 | 000,072,704 | ---- | M] (Adobe Systems) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe -- (adobe lm service)
SRV - [2009-03-14 15:04:29 | 000,152,984 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2009-03-13 11:37:38 | 000,024,064 | ---- | M] () [Auto | Running] -- C:\WINDOWS\System32\WLTRYSVC.EXE -- (wltrysvc)
SRV - [2009-02-05 22:08:40 | 000,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)
SRV - [2009-02-05 22:08:26 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV - [2009-02-05 22:06:04 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Stopped] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV - [2009-02-05 22:01:25 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)
SRV - [2008-05-01 16:25:56 | 000,165,192 | ---- | M] (Hewlett-Packard Development Company, L.P.) [On_Demand | Running] -- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe -- (hpqwmiex)
SRV - [2008-04-03 11:33:26 | 000,193,840 | ---- | M] (Hewlett-Packard Development Company, L.P.) [On_Demand | Running] -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe -- (Com4QLBEx)
SRV - [2007-12-11 12:15:04 | 000,012,800 | ---- | M] (Agere Systems) [Auto | Running] -- C:\WINDOWS\system32\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2006-10-27 00:47:54 | 000,065,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- F:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (microsoft office groove audit service)
SRV - [2006-10-26 19:49:34 | 000,441,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2006-10-26 13:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - [2009-09-10 16:21:15 | 000,721,904 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009-04-28 21:20:06 | 000,044,944 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (pxhelp20)
DRV - [2009-03-13 11:37:38 | 001,287,552 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2009-02-05 22:08:10 | 000,094,032 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2009-02-05 22:07:23 | 000,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
DRV - [2009-02-05 22:07:12 | 000,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2009-02-05 22:06:20 | 000,051,376 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2009-02-05 22:06:10 | 000,023,152 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2009-02-05 22:05:11 | 000,026,944 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2008-04-28 15:22:10 | 000,009,344 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CPQBttn.sys -- (HBtnKey)
DRV - [2008-04-24 14:28:08 | 000,281,600 | ---- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ADIHdAud.sys -- (ADIHdAudAddService)
DRV - [2008-03-27 18:14:06 | 000,224,672 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SynTP.sys -- (SynTP)
DRV - [2008-03-17 21:45:50 | 005,955,872 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\igxpmp32.sys -- (ialm)
DRV - [2008-02-29 16:13:38 | 001,202,560 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2007-07-13 10:26:12 | 000,094,976 | ---- | M] (Andrea Electronics Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aeaudio.sys -- (AEAudio)
DRV - [2007-06-18 17:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV - [2007-04-12 14:26:08 | 000,250,776 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\e1e5132.sys -- (e1express) Intel(R)
DRV - [2005-01-07 17:07:18 | 000,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)
DRV - [2004-07-17 10:36:38 | 000,027,440 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2003-03-27 13:38:44 | 000,127,145 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\adiusbaw.sys -- (adiusbaw)
DRV - [2003-03-25 17:02:12 | 000,046,455 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\adildr.sys -- (ADILOADER) General Purpose USB Driver (adildr.sys)
DRV - [2001-10-30 13:00:00 | 000,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKU\.default\.default\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\s-1-5-18\s-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\s-1-5-21-1993962763-1715567821-682003330-1007\s-1-5-21-1993962763-1715567821-682003330-1007\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..browser.startup.homepage: "www.google.pl"
FF - prefs.js..extensions.enabledItems: {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}:2.0.0.66311
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - HKLM\software\mozilla\mozilla firefox 3.5.7\extensions\\Components: F:\Program Files\Mozilla Firefox\components [2010-01-09 19:33:42 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\mozilla firefox 3.5.7\extensions\\Plugins: F:\Program Files\Mozilla Firefox\plugins [2010-01-09 16:51:18 | 000,000,000 | ---D | M]
[2010-01-02 14:43:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\cwks\Dane aplikacji\Mozilla\Extensions
[2010-01-02 14:43:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\cwks\Dane aplikacji\Mozilla\Firefox\Profiles\k3zw3v5l.default\extensions
O1 HOSTS File: ([2001-10-30 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - F:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (UrlHelper Class) - {74322bf9-df26-493f-b0da-6d2fc5e6429e} - C:\Program Files\BearShare Applications\BearShare\BearShareIEHelper.dll ()
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O2 - BHO: (IEPluginBHO Class) - {f5cc7f02-6f4e-4462-b5b1-394a57fd3e0d} - C:\Documents and Settings\Hwdp\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (GG Network S.A.)
O3 - HKLM\..\Toolbar: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare)
O4 - HKLM..\Run: [adiras] File not found
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.EXE (Broadcom Corporation)
O4 - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe (Intel Corporation)
O4 - HKLM..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe (Intel Corporation)
O4 - HKLM..\Run: [l33t] C:\WINDOWS\system\iexplore.exe ()
O4 - HKLM..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe ( Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
O4 - HKU\s-1-5-21-1993962763-1715567821-682003330-1007..\Run: [NETIANET] C:\Program Files\Netia\Net\netianet.exe (OF.PL sp.z .o.o.)
O4 - HKU\s-1-5-21-1993962763-1715567821-682003330-1007..\Run: [Nowe Gadu-Gadu] F:\Program Files\Nowe Gadu-Gadu\gg.exe (GG Network S.A.)
O4 - HKU\s-1-5-21-1993962763-1715567821-682003330-1007..\Run: [Steam] F:\Program Files\Valve\Steam\Steam.exe (Valve Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe ()
O4 - Startup: C:\Documents and Settings\Hwdp\Menu Start\Programy\Autostart\Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.default\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\s-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\s-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\s-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\s-1-5-21-1993962763-1715567821-682003330-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: e&ksportuj do programu microsoft excel - F:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Wyślij do programu OneNote - {2670000a-7350-4f3c-8081-5663ee0c6c49} - F:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000a-7350-4f3c-8081-5663ee0c6c49} - F:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780b25-18cc-41c8-b9be-3c9c571a8263} - F:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab (Java Plug-in 1.6.0_12)
O16 - DPF: {CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA} http://java.sun.com/products/plugin/1.3.1/jinstall-131_03-win.cab (Java Plug-in 1.3.1_03)
O16 - DPF: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab (Java Plug-in 1.6.0_12)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab (Java Plug-in 1.6.0_12)
O16 - DPF: {d27cdb6e-ae6d-11cf-96b8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O18 - Protocol\Handler\groovelocalgws {88FED34C-F0CA-4636-A375-3CB6248B04CD} - F:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\cwks\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\cwks\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - F:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-03-13 09:48:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2005-08-23 05:52:07 | 000,028,672 | R--- | M] (Dipl.-Ing. Stefan Krueger <skrueger@installsite.org>) - D:\autorun.exe -- [ CDFS ]
O32 - AutoRun File - [2005-08-23 05:52:07 | 000,000,047 | R--- | M] () - D:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2005-08-23 05:52:07 | 000,001,042 | R--- | M] () - D:\autorun.ini -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2010-01-16 16:02:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\cwks\Dane aplikacji\DAEMON Tools Lite
[2009-03-13 09:53:10 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft
[2009-03-13 09:53:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2009-03-13 09:52:04 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft
[2009-03-13 09:52:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2010-02-07 18:12:40 | 000,091,326 | ---- | M] () -- C:\WINDOWS\System32\drivers\37f6e956.sys
[2010-02-07 16:46:39 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job
[2010-02-07 16:45:04 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-02-07 16:44:57 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-02-07 16:12:09 | 003,145,728 | -H-- | M] () -- C:\Documents and Settings\cwks\NTUSER.DAT
[2010-02-07 14:24:33 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\cwks\ntuser.ini
[2010-02-07 14:24:20 | 001,575,312 | -H-- | M] () -- C:\Documents and Settings\cwks\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-02-07 12:27:49 | 000,000,049 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-02-07 11:37:46 | 000,012,800 | ---- | M] () -- C:\Documents and Settings\cwks\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-02-06 09:00:26 | 000,993,526 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-02-06 09:00:26 | 000,451,934 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-02-06 09:00:26 | 000,395,534 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-02-06 09:00:26 | 000,075,904 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-02-06 09:00:26 | 000,059,774 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-02-06 08:55:50 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-02-04 09:44:49 | 000,001,505 | ---- | M] () -- C:\Documents and Settings\cwks\Pulpit\Condition Zero Deleted Scenes.lnk
[2010-02-04 09:44:49 | 000,001,503 | ---- | M] () -- C:\Documents and Settings\cwks\Pulpit\Counter-Strike.lnk
[2010-02-04 09:44:49 | 000,001,503 | ---- | M] () -- C:\Documents and Settings\cwks\Pulpit\Condition Zero.lnk
[2010-02-04 09:39:47 | 000,000,453 | ---- | M] () -- C:\Documents and Settings\cwks\Pulpit\Steam.lnk
[2010-02-04 00:54:31 | 000,000,158 | ---- | M] () -- C:\WINDOWS\l33td.ini
[2010-02-03 18:33:19 | 000,034,820 | ---- | M] () -- C:\WINDOWS\System\iexplore.exe
[2010-02-03 18:33:19 | 000,017,920 | ---- | M] () -- C:\WINDOWS\System\smss.exe
[2010-02-03 18:33:18 | 000,403,047 | ---- | M] () -- C:\WINDOWS\fishing_bot_1.3.exe
[2010-02-03 13:08:11 | 000,000,083 | ---- | M] () -- C:\WINDOWS\WWP.INI
[2010-01-20 13:22:14 | 002,237,452 | ---- | M] () -- C:\Documents and Settings\cwks\Pulpit\Groovebusterz - Talk To Me.mp3
[2010-01-10 11:50:53 | 000,020,855 | ---- | M] () -- C:\Documents and Settings\cwks\Moje dokumenty\walentynka natalia.docx
[2010-01-10 11:47:30 | 000,069,240 | ---- | M] () -- C:\Documents and Settings\cwks\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-01-08 20:41:01 | 000,000,001 | R--- | M] () -- C:\Documents and Settings\cwks\serverport
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2010-02-04 09:44:49 | 000,001,505 | ---- | C] () -- C:\Documents and Settings\cwks\Pulpit\Condition Zero Deleted Scenes.lnk
[2010-02-04 09:44:49 | 000,001,503 | ---- | C] () -- C:\Documents and Settings\cwks\Pulpit\Counter-Strike.lnk
[2010-02-04 09:44:49 | 000,001,503 | ---- | C] () -- C:\Documents and Settings\cwks\Pulpit\Condition Zero.lnk
[2010-02-04 09:39:46 | 000,000,453 | ---- | C] () -- C:\Documents and Settings\cwks\Pulpit\Steam.lnk
[2010-02-03 13:08:11 | 000,000,083 | ---- | C] () -- C:\WINDOWS\WWP.INI
[2010-01-25 20:29:37 | 000,034,820 | ---- | C] () -- C:\WINDOWS\System\iexplore.exe
[2010-01-25 20:29:37 | 000,017,920 | ---- | C] () -- C:\WINDOWS\System\smss.exe
[2010-01-25 20:29:35 | 000,403,047 | ---- | C] () -- C:\WINDOWS\fishing_bot_1.3.exe
[2010-01-25 20:29:35 | 000,000,158 | ---- | C] () -- C:\WINDOWS\l33td.ini
[2010-01-20 13:18:20 | 002,237,452 | ---- | C] () -- C:\Documents and Settings\cwks\Pulpit\Groovebusterz - Talk To Me.mp3
[2010-01-10 11:50:52 | 000,020,855 | ---- | C] () -- C:\Documents and Settings\cwks\Moje dokumenty\walentynka natalia.docx
[2010-01-02 15:32:49 | 000,012,800 | ---- | C] () -- C:\Documents and Settings\cwks\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-01-02 14:40:22 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\cwks\Ustawienia lokalne\Dane aplikacji\QSwitch.txt
[2010-01-02 14:40:22 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\cwks\Ustawienia lokalne\Dane aplikacji\DSwitch.txt
[2010-01-02 14:40:22 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\cwks\Ustawienia lokalne\Dane aplikacji\AtStart.txt
[2009-09-17 22:34:12 | 000,000,056 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2009-09-10 16:21:14 | 000,721,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2009-07-01 21:32:22 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2009-06-07 09:54:10 | 000,091,326 | ---- | C] () -- C:\WINDOWS\System32\drivers\37f6e956.sys
[2009-06-03 15:57:57 | 000,000,049 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009-05-30 14:48:02 | 000,000,687 | ---- | C] () -- C:\WINDOWS\mamba.ini
[2009-03-31 16:11:37 | 000,000,154 | ---- | C] () -- C:\WINDOWS\adidsl.ini
[2009-03-31 16:11:34 | 000,000,342 | ---- | C] () -- C:\WINDOWS\adiras.ini
[2009-03-31 16:11:32 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\coclassfast.dll
[2009-03-31 16:11:32 | 000,046,892 | ---- | C] () -- C:\WINDOWS\System32\adadix16.dll
[2009-03-13 12:26:56 | 000,000,095 | ---- | C] () -- C:\WINDOWS\winamp.ini
[2009-03-13 12:09:29 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009-03-13 11:38:50 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4935.dll
[2009-03-13 11:37:42 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\preflib.dll
[2009-03-13 11:37:41 | 000,753,664 | ---- | C] () -- C:\WINDOWS\System32\bcm1xsup.dll
[2004-07-17 10:36:38 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2002-10-06 18:42:58 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2002-10-04 23:04:26 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2002-10-04 23:04:26 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2002-10-04 23:04:18 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[color=#E56717]========== LOP Check ==========[/color]
[2010-01-08 13:23:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\189C
[2009-09-10 16:25:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2009-05-23 09:36:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\IsolatedStorage
[2009-09-08 10:29:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2010-01-21 09:27:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2010-02-07 14:24:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\cwks\Dane aplikacji\BitTorrent
[2010-01-16 16:03:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\cwks\Dane aplikacji\DAEMON Tools Lite
[2010-01-05 12:52:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\cwks\Dane aplikacji\Nowe Gadu-Gadu
[2009-09-17 20:36:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hwdp\Dane aplikacji\Atari
[2010-01-31 11:40:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hwdp\Dane aplikacji\BitTorrent
[2009-09-10 23:04:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hwdp\Dane aplikacji\DAEMON Tools Lite
[2010-02-07 16:11:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hwdp\Dane aplikacji\DNA
[2009-08-07 15:15:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hwdp\Dane aplikacji\FreeCall
[2009-11-03 14:54:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hwdp\Dane aplikacji\GanymedeNet
[2010-01-21 07:11:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hwdp\Dane aplikacji\Nowe Gadu-Gadu
[2009-08-13 19:22:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hwdp\Dane aplikacji\OpenFM
[2009-05-23 09:38:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hwdp\Dane aplikacji\sizling
[2010-02-07 16:46:39 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\WGASetup.job
[color=#E56717]========== Purity Check ==========[/color]
[color=#E56717]========== Alternate Data Streams ==========[/color]
@Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:671329E4
< End of report >
Corsair 550W , Caviar 250GB , DVD-REC Pioneer , DDR2 4096MB (4GB) PC800 DUAL 2x 2048 , Core 2 Duo E4500 2.2GHZ LGA775 , GeForce 8800GTS 640mb , Xp professional (: Creative Sounds Blaster
CANNABIS
CANNABIS
-
cinek383 - ~user
- Posty: 2116
- Dołączenie: 22 Sty 2006, 23:29
- Miejscowość: Legionowo :)
- Pochwały: 60
-
Duży ping w grach, zamulony internet
przez wojtas 07 Lut 2010, 19:20
Uruchom OTL i w oknie Custom Scans/Fixes wklej :
Kliknij w Run Fix. I potwierdz reset kompa .
Następnie uruchamiasz OTL z opcją Run Scan. Pokazujesz nowy log OTL.txt oraz raport z czyszczenia komputera
:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O2 - BHO: (UrlHelper Class) - {74322bf9-df26-493f-b0da-6d2fc5e6429e} - C:\Program Files\BearShare Applications\BearShare\BearShareIEHelper.dll ()
O3 - HKLM\..\Toolbar: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare)
O4 - HKLM..\Run: [l33t] C:\WINDOWS\system\iexplore.exe ()
O32 - AutoRun File - [2005-08-23 05:52:07 | 000,000,047 | R--- | M] () - D:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2005-08-23 05:52:07 | 000,001,042 | R--- | M] () - D:\autorun.ini -- [ CDFS ]
:Files
C:\Program Files\BearShare Applications\BearShare MediaBar
C:\WINDOWS\l33td.ini
C:\WINDOWS\system\iexplore.exe
C:\WINDOWS\System\smss.exe
C:\WINDOWS\fishing_bot_1.3.exe
:Commands
[emptytemp]
Kliknij w Run Fix. I potwierdz reset kompa .
Następnie uruchamiasz OTL z opcją Run Scan. Pokazujesz nowy log OTL.txt oraz raport z czyszczenia komputera
-
wojtas - *mod
- Posty: 18165
- Dołączenie: 13 Sty 2006, 16:00
- Miejscowość: Krzeszyce
- Pochwały: 1656
-
Duży ping w grach, zamulony internet
przez jarski185 07 Lut 2010, 19:26
wojtas napisał(a):C:\Program Files\BearShare
Po wykonaniu poleceń wojtasa sprawdź czy misiek nie wysyła czegoś w najlepsze...to może powodować jazdy z pingiem
-
jarski185 - ~user
- Posty: 4459
- Dołączenie: 10 Lut 2008, 18:49
- Pochwały: 285
-
Duży ping w grach, zamulony internet
przez cinek383 07 Lut 2010, 19:42
- Kod: Zaznacz wszystko
All processes killed
========== OTL ==========
No active process named explorer.exe was found!
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{74322bf9-df26-493f-b0da-6d2fc5e6429e}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{74322bf9-df26-493f-b0da-6d2fc5e6429e}\ deleted successfully.
C:\Program Files\BearShare Applications\BearShare\BearShareIEHelper.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}\ deleted successfully.
C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\l33t deleted successfully.
C:\WINDOWS\system\iexplore.exe moved successfully.
File move failed. D:\autorun.inf scheduled to be moved on reboot.
File move failed. D:\autorun.ini scheduled to be moved on reboot.
========== FILES ==========
C:\Program Files\BearShare Applications\BearShare MediaBar folder moved successfully.
C:\WINDOWS\l33td.ini moved successfully.
File\Folder C:\WINDOWS\system\iexplore.exe not found.
C:\WINDOWS\System\smss.exe moved successfully.
C:\WINDOWS\fishing_bot_1.3.exe moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: cwks
->Temp folder emptied: 89392065 bytes
->Temporary Internet Files folder emptied: 5400435 bytes
->Java cache emptied: 25802215 bytes
->FireFox cache emptied: 89191144 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Hwdp
->Temp folder emptied: 78112012 bytes
->Temporary Internet Files folder emptied: 133460034 bytes
->Java cache emptied: 78245576 bytes
->FireFox cache emptied: 55291521 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Mama
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 402 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2114584 bytes
%systemroot%\System32 .tmp files removed: 2596 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 5972154 bytes
RecycleBin emptied: 29596 bytes
Total Files Cleaned = 537,00 mb
OTL by OldTimer - Version 3.1.28.0 log created on 02072010_182622
Files\Folders moved on Reboot...
File move failed. D:\autorun.inf scheduled to be moved on reboot.
File move failed. D:\autorun.ini scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\Perflib_Perfdata_644.dat scheduled to be moved on reboot.
Registry entries deleted on Reboot...
- Kod: Zaznacz wszystko
OTL logfile created on: 2010-02-07 18:38:25 - Run 2
OTL by OldTimer - Version 3.1.28.0 Folder = C:\Documents and Settings\cwks\Moje dokumenty\Pobieranie
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
1 015,00 Mb Total Physical Memory | 622,00 Mb Available Physical Memory | 61,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 85,00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 31,25 Gb Total Space | 7,79 Gb Free Space | 24,93% Space Free | Partition Type: NTFS
Drive D: | 1,19 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
E: Drive not present or media not loaded
Drive F: | 80,54 Gb Total Space | 62,12 Gb Free Space | 77,13% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: LAPEK
Current User Name: cwks
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: On
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2010-02-07 18:08:11 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\cwks\Moje dokumenty\Pobieranie\OTL.exe
PRC - [2010-01-09 16:51:13 | 000,908,248 | ---- | M] (Mozilla Corporation) -- F:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009-03-14 15:04:29 | 000,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2009-03-14 15:04:29 | 000,148,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009-03-13 11:37:38 | 001,871,872 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\system32\WLTRAY.EXE
PRC - [2009-03-13 11:37:38 | 001,613,824 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\system32\BCMWLTRY.EXE
PRC - [2009-03-13 11:37:38 | 000,024,064 | ---- | M] () -- C:\WINDOWS\system32\WLTRYSVC.EXE
PRC - [2009-02-05 22:08:45 | 000,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2009-02-05 22:08:40 | 000,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2009-02-05 22:08:26 | 000,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2009-02-05 22:01:25 | 000,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2008-06-03 16:40:08 | 000,177,456 | ---- | M] ( Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
PRC - [2008-05-22 21:40:44 | 000,141,848 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxtray.exe
PRC - [2008-05-22 21:40:40 | 000,256,536 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxsrvc.exe
PRC - [2008-05-22 21:40:38 | 000,137,752 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxpers.exe
PRC - [2008-05-22 21:40:28 | 000,166,424 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\hkcmd.exe
PRC - [2008-05-01 16:25:56 | 000,165,192 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
PRC - [2008-04-03 11:33:26 | 000,193,840 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
PRC - [2008-03-27 18:28:50 | 001,040,384 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
PRC - [2007-12-11 12:15:04 | 000,012,800 | ---- | M] (Agere Systems) -- C:\WINDOWS\system32\agrsmsvc.exe
PRC - [2007-03-31 10:15:08 | 000,474,112 | R--- | M] (OF.PL sp.z .o.o.) -- C:\Program Files\Netia\Net\netianet.exe
PRC - [2007-01-05 17:36:48 | 000,872,448 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe
PRC - [2004-08-03 23:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2003-05-14 13:02:04 | 000,962,667 | ---- | M] () -- C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
[color=#E56717]========== Modules (SafeList) ==========[/color]
MOD - [2010-02-07 18:08:11 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\cwks\Moje dokumenty\Pobieranie\OTL.exe
MOD - [2004-08-03 23:42:34 | 001,050,624 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - [2009-08-24 15:55:04 | 000,072,704 | ---- | M] (Adobe Systems) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe -- (adobe lm service)
SRV - [2009-03-14 15:04:29 | 000,152,984 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2009-03-13 11:37:38 | 000,024,064 | ---- | M] () [Auto | Running] -- C:\WINDOWS\System32\WLTRYSVC.EXE -- (wltrysvc)
SRV - [2009-02-05 22:08:40 | 000,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)
SRV - [2009-02-05 22:08:26 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV - [2009-02-05 22:06:04 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Stopped] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV - [2009-02-05 22:01:25 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)
SRV - [2008-05-01 16:25:56 | 000,165,192 | ---- | M] (Hewlett-Packard Development Company, L.P.) [On_Demand | Running] -- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe -- (hpqwmiex)
SRV - [2008-04-03 11:33:26 | 000,193,840 | ---- | M] (Hewlett-Packard Development Company, L.P.) [On_Demand | Running] -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe -- (Com4QLBEx)
SRV - [2007-12-11 12:15:04 | 000,012,800 | ---- | M] (Agere Systems) [Auto | Running] -- C:\WINDOWS\system32\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2006-10-27 00:47:54 | 000,065,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- F:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (microsoft office groove audit service)
SRV - [2006-10-26 19:49:34 | 000,441,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2006-10-26 13:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - [2009-09-10 16:21:15 | 000,721,904 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009-04-28 21:20:06 | 000,044,944 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (pxhelp20)
DRV - [2009-03-13 11:37:38 | 001,287,552 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2009-02-05 22:08:10 | 000,094,032 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2009-02-05 22:07:23 | 000,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
DRV - [2009-02-05 22:07:12 | 000,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2009-02-05 22:06:20 | 000,051,376 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2009-02-05 22:06:10 | 000,023,152 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2009-02-05 22:05:11 | 000,026,944 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2008-04-28 15:22:10 | 000,009,344 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CPQBttn.sys -- (HBtnKey)
DRV - [2008-04-24 14:28:08 | 000,281,600 | ---- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ADIHdAud.sys -- (ADIHdAudAddService)
DRV - [2008-03-27 18:14:06 | 000,224,672 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SynTP.sys -- (SynTP)
DRV - [2008-03-17 21:45:50 | 005,955,872 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\igxpmp32.sys -- (ialm)
DRV - [2008-02-29 16:13:38 | 001,202,560 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2007-07-13 10:26:12 | 000,094,976 | ---- | M] (Andrea Electronics Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aeaudio.sys -- (AEAudio)
DRV - [2007-06-18 17:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV - [2007-04-12 14:26:08 | 000,250,776 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\e1e5132.sys -- (e1express) Intel(R)
DRV - [2005-01-07 17:07:18 | 000,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)
DRV - [2004-07-17 10:36:38 | 000,027,440 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2003-03-27 13:38:44 | 000,127,145 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\adiusbaw.sys -- (adiusbaw)
DRV - [2003-03-25 17:02:12 | 000,046,455 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\adildr.sys -- (ADILOADER) General Purpose USB Driver (adildr.sys)
DRV - [2001-10-30 13:00:00 | 000,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKU\.default\.default\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\s-1-5-18\s-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\s-1-5-21-1993962763-1715567821-682003330-1007\s-1-5-21-1993962763-1715567821-682003330-1007\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..browser.startup.homepage: "www.google.pl"
FF - prefs.js..extensions.enabledItems: {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}:2.0.0.66311
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - HKLM\software\mozilla\mozilla firefox 3.5.7\extensions\\Components: F:\Program Files\Mozilla Firefox\components [2010-01-09 19:33:42 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\mozilla firefox 3.5.7\extensions\\Plugins: F:\Program Files\Mozilla Firefox\plugins [2010-01-09 16:51:18 | 000,000,000 | ---D | M]
[2010-01-02 14:43:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\cwks\Dane aplikacji\Mozilla\Extensions
[2010-01-02 14:43:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\cwks\Dane aplikacji\Mozilla\Firefox\Profiles\k3zw3v5l.default\extensions
O1 HOSTS File: ([2001-10-30 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - F:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O2 - BHO: (IEPluginBHO Class) - {f5cc7f02-6f4e-4462-b5b1-394a57fd3e0d} - C:\Documents and Settings\Hwdp\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (GG Network S.A.)
O4 - HKLM..\Run: [adiras] File not found
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.EXE (Broadcom Corporation)
O4 - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe (Intel Corporation)
O4 - HKLM..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe (Intel Corporation)
O4 - HKLM..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe ( Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
O4 - HKU\s-1-5-21-1993962763-1715567821-682003330-1007..\Run: [NETIANET] C:\Program Files\Netia\Net\netianet.exe (OF.PL sp.z .o.o.)
O4 - HKU\s-1-5-21-1993962763-1715567821-682003330-1007..\Run: [Nowe Gadu-Gadu] F:\Program Files\Nowe Gadu-Gadu\gg.exe (GG Network S.A.)
O4 - HKU\s-1-5-21-1993962763-1715567821-682003330-1007..\Run: [Steam] F:\Program Files\Valve\Steam\Steam.exe (Valve Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe ()
O4 - Startup: C:\Documents and Settings\Hwdp\Menu Start\Programy\Autostart\Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.default\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\s-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\s-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\s-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\s-1-5-21-1993962763-1715567821-682003330-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: e&ksportuj do programu microsoft excel - F:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Wyślij do programu OneNote - {2670000a-7350-4f3c-8081-5663ee0c6c49} - F:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000a-7350-4f3c-8081-5663ee0c6c49} - F:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780b25-18cc-41c8-b9be-3c9c571a8263} - F:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab (Java Plug-in 1.6.0_12)
O16 - DPF: {CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA} http://java.sun.com/products/plugin/1.3.1/jinstall-131_03-win.cab (Java Plug-in 1.3.1_03)
O16 - DPF: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab (Java Plug-in 1.6.0_12)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab (Java Plug-in 1.6.0_12)
O16 - DPF: {d27cdb6e-ae6d-11cf-96b8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O18 - Protocol\Handler\groovelocalgws {88FED34C-F0CA-4636-A375-3CB6248B04CD} - F:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\cwks\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\cwks\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - F:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-03-13 09:48:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2005-08-23 05:52:07 | 000,028,672 | R--- | M] (Dipl.-Ing. Stefan Krueger <skrueger@installsite.org>) - D:\autorun.exe -- [ CDFS ]
O32 - AutoRun File - [2005-08-23 05:52:07 | 000,000,047 | R--- | M] () - D:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2005-08-23 05:52:07 | 000,001,042 | R--- | M] () - D:\autorun.ini -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2010-02-07 18:26:22 | 000,000,000 | ---D | C] -- C:\_OTL
[2010-01-16 16:02:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\cwks\Dane aplikacji\DAEMON Tools Lite
[2009-03-13 09:53:10 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft
[2009-03-13 09:53:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2009-03-13 09:52:04 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft
[2009-03-13 09:52:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2010-02-07 18:41:12 | 000,091,326 | ---- | M] () -- C:\WINDOWS\System32\drivers\37f6e956.sys
[2010-02-07 18:33:26 | 000,000,000 | ---- | M] () -- C:\testwma.raw
[2010-02-07 18:30:26 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job
[2010-02-07 18:29:44 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-02-07 18:29:37 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-02-07 18:28:51 | 003,145,728 | -H-- | M] () -- C:\Documents and Settings\cwks\NTUSER.DAT
[2010-02-07 18:28:38 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\cwks\ntuser.ini
[2010-02-07 18:26:29 | 000,993,526 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-02-07 18:26:29 | 000,451,934 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-02-07 18:26:29 | 000,395,534 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-02-07 18:26:29 | 000,075,904 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-02-07 18:26:29 | 000,059,774 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-02-07 18:24:36 | 000,000,049 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-02-07 14:24:20 | 001,575,312 | -H-- | M] () -- C:\Documents and Settings\cwks\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-02-07 11:37:46 | 000,012,800 | ---- | M] () -- C:\Documents and Settings\cwks\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-02-06 08:55:50 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-02-04 09:44:49 | 000,001,505 | ---- | M] () -- C:\Documents and Settings\cwks\Pulpit\Condition Zero Deleted Scenes.lnk
[2010-02-04 09:44:49 | 000,001,503 | ---- | M] () -- C:\Documents and Settings\cwks\Pulpit\Counter-Strike.lnk
[2010-02-04 09:44:49 | 000,001,503 | ---- | M] () -- C:\Documents and Settings\cwks\Pulpit\Condition Zero.lnk
[2010-02-04 09:39:47 | 000,000,453 | ---- | M] () -- C:\Documents and Settings\cwks\Pulpit\Steam.lnk
[2010-02-03 13:08:11 | 000,000,083 | ---- | M] () -- C:\WINDOWS\WWP.INI
[2010-01-20 13:22:14 | 002,237,452 | ---- | M] () -- C:\Documents and Settings\cwks\Pulpit\Groovebusterz - Talk To Me.mp3
[2010-01-10 11:50:53 | 000,020,855 | ---- | M] () -- C:\Documents and Settings\cwks\Moje dokumenty\walentynka natalia.docx
[2010-01-10 11:47:30 | 000,069,240 | ---- | M] () -- C:\Documents and Settings\cwks\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-01-08 20:41:01 | 000,000,001 | R--- | M] () -- C:\Documents and Settings\cwks\serverport
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2010-02-04 09:44:49 | 000,001,505 | ---- | C] () -- C:\Documents and Settings\cwks\Pulpit\Condition Zero Deleted Scenes.lnk
[2010-02-04 09:44:49 | 000,001,503 | ---- | C] () -- C:\Documents and Settings\cwks\Pulpit\Counter-Strike.lnk
[2010-02-04 09:44:49 | 000,001,503 | ---- | C] () -- C:\Documents and Settings\cwks\Pulpit\Condition Zero.lnk
[2010-02-04 09:39:46 | 000,000,453 | ---- | C] () -- C:\Documents and Settings\cwks\Pulpit\Steam.lnk
[2010-02-03 13:08:11 | 000,000,083 | ---- | C] () -- C:\WINDOWS\WWP.INI
[2010-01-20 13:18:20 | 002,237,452 | ---- | C] () -- C:\Documents and Settings\cwks\Pulpit\Groovebusterz - Talk To Me.mp3
[2010-01-10 11:50:52 | 000,020,855 | ---- | C] () -- C:\Documents and Settings\cwks\Moje dokumenty\walentynka natalia.docx
[2010-01-02 15:32:49 | 000,012,800 | ---- | C] () -- C:\Documents and Settings\cwks\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-01-02 14:40:22 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\cwks\Ustawienia lokalne\Dane aplikacji\QSwitch.txt
[2010-01-02 14:40:22 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\cwks\Ustawienia lokalne\Dane aplikacji\DSwitch.txt
[2010-01-02 14:40:22 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\cwks\Ustawienia lokalne\Dane aplikacji\AtStart.txt
[2009-09-17 22:34:12 | 000,000,056 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2009-09-10 16:21:14 | 000,721,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2009-07-01 21:32:22 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2009-06-07 09:54:10 | 000,091,326 | ---- | C] () -- C:\WINDOWS\System32\drivers\37f6e956.sys
[2009-06-03 15:57:57 | 000,000,049 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009-05-30 14:48:02 | 000,000,687 | ---- | C] () -- C:\WINDOWS\mamba.ini
[2009-03-31 16:11:37 | 000,000,154 | ---- | C] () -- C:\WINDOWS\adidsl.ini
[2009-03-31 16:11:34 | 000,000,342 | ---- | C] () -- C:\WINDOWS\adiras.ini
[2009-03-31 16:11:32 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\coclassfast.dll
[2009-03-31 16:11:32 | 000,046,892 | ---- | C] () -- C:\WINDOWS\System32\adadix16.dll
[2009-03-13 12:26:56 | 000,000,095 | ---- | C] () -- C:\WINDOWS\winamp.ini
[2009-03-13 12:09:29 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009-03-13 11:38:50 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4935.dll
[2009-03-13 11:37:42 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\preflib.dll
[2009-03-13 11:37:41 | 000,753,664 | ---- | C] () -- C:\WINDOWS\System32\bcm1xsup.dll
[2004-07-17 10:36:38 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2002-10-06 18:42:58 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2002-10-04 23:04:26 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2002-10-04 23:04:26 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2002-10-04 23:04:18 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[color=#E56717]========== LOP Check ==========[/color]
[2009-09-10 16:25:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2009-05-23 09:36:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\IsolatedStorage
[2009-09-08 10:29:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2010-01-21 09:27:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2010-02-07 14:24:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\cwks\Dane aplikacji\BitTorrent
[2010-01-16 16:03:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\cwks\Dane aplikacji\DAEMON Tools Lite
[2010-01-05 12:52:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\cwks\Dane aplikacji\Nowe Gadu-Gadu
[2009-09-17 20:36:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hwdp\Dane aplikacji\Atari
[2010-01-31 11:40:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hwdp\Dane aplikacji\BitTorrent
[2009-09-10 23:04:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hwdp\Dane aplikacji\DAEMON Tools Lite
[2010-02-07 16:11:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hwdp\Dane aplikacji\DNA
[2009-08-07 15:15:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hwdp\Dane aplikacji\FreeCall
[2009-11-03 14:54:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hwdp\Dane aplikacji\GanymedeNet
[2010-01-21 07:11:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hwdp\Dane aplikacji\Nowe Gadu-Gadu
[2009-08-13 19:22:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hwdp\Dane aplikacji\OpenFM
[2009-05-23 09:38:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Hwdp\Dane aplikacji\sizling
[2010-02-07 18:30:26 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\WGASetup.job
[color=#E56717]========== Purity Check ==========[/color]
[color=#E56717]========== Alternate Data Streams ==========[/color]
@Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:671329E4
< End of report >
Corsair 550W , Caviar 250GB , DVD-REC Pioneer , DDR2 4096MB (4GB) PC800 DUAL 2x 2048 , Core 2 Duo E4500 2.2GHZ LGA775 , GeForce 8800GTS 640mb , Xp professional (: Creative Sounds Blaster
CANNABIS
CANNABIS
-
cinek383 - ~user
- Posty: 2116
- Dołączenie: 22 Sty 2006, 23:29
- Miejscowość: Legionowo :)
- Pochwały: 60
-
Duży ping w grach, zamulony internet
przez wojtas 07 Lut 2010, 19:47
1.Uruchom OTL z opcji CleanUp
2. wykonaj optymalizację windowsa
3.Wyłącz przywracanie systemu ( właściwości mój komputer-zakładka przywracanie - wyłącz przywracanie na wszystkich dyskach). Po chwili włącz je powrotem]
4. zrób skan Malwarebytes Anti-Malware (zaktualizuj, usuń co znajdzie ) i daj raport ze skanu
2. wykonaj optymalizację windowsa
3.Wyłącz przywracanie systemu ( właściwości mój komputer-zakładka przywracanie - wyłącz przywracanie na wszystkich dyskach). Po chwili włącz je powrotem]
4. zrób skan Malwarebytes Anti-Malware (zaktualizuj, usuń co znajdzie ) i daj raport ze skanu
-
wojtas - *mod
- Posty: 18165
- Dołączenie: 13 Sty 2006, 16:00
- Miejscowość: Krzeszyce
- Pochwały: 1656
-
Duży ping w grach, zamulony internet
przez cinek383 07 Lut 2010, 20:52
- Kod: Zaznacz wszystko
Malwarebytes' Anti-Malware 1.44
Wersja bazy definicji: 3701
Windows 5.1.2600 Dodatek Service Pack 2
Internet Explorer 6.0.2900.2180
2010-02-07 19:53:03
mbam-log-2010-02-07 (19-52-56).txt
Typ skanowania: Pełne skanowanie (C:\|F:\|)
Przeskanowane obiekty: 173202
Upłynęło: 34 minute(s), 35 second(s)
Zainfekowane procesy w pamięci: 0
Zainfekowane moduły pamięci: 0
Zainfekowane klucze rejestru: 2
Zainfekowane wartości rejestru: 0
Zainfekowane pliki rejestru: 3
Zainfekowane foldery: 4
Zainfekowane pliki: 5
Zainfekowane procesy w pamięci:
(Nie wykryto groźnych plików)
Zainfekowane moduły pamięci:
(Nie wykryto groźnych plików)
Zainfekowane klucze rejestru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DbgMgr (Malware.Trace) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\MyGlobalSearch (Adware.BookedSpace) -> No action taken.
Zainfekowane wartości rejestru:
(Nie wykryto groźnych plików)
Zainfekowane pliki rejestru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\BITS\ImagePath (Hijack.WindowsUpdates) -> Bad: (%fystemRoot%\system32\svchost.exe -k netsvcs) Good: (%SystemRoot%\System32\svchost.exe -k netsvcs) -> No action taken.
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\wuauserv\ImagePath (Hijack.WindowsUpdates) -> Bad: (%fystemroot%\system32\svchost.exe -k netsvcs) Good: (%SystemRoot%\System32\svchost.exe -k netsvcs) -> No action taken.
Zainfekowane foldery:
C:\Program Files\MyGlobalSearch (Adware.MyWebSearch) -> No action taken.
C:\Program Files\MyGlobalSearch\bar (Adware.MyWebSearch) -> No action taken.
C:\Program Files\MyGlobalSearch\bar\History (Adware.MyWebSearch) -> No action taken.
C:\Program Files\MyGlobalSearch\bar\Settings (Adware.MyWebSearch) -> No action taken.
Zainfekowane pliki:
C:\WINDOWS\system32\drivers\37f6e956.sys (Rootkit.Agent) -> No action taken.
C:\Program Files\MyGlobalSearch\bar\History\search (Adware.MyWebSearch) -> No action taken.
C:\Documents and Settings\Hwdp\Dane aplikacji\wiaserva.log (Malware.Trace) -> No action taken.
C:\WINDOWS\system\smss.txt (Heuristics.Reserved.Word.Exploit) -> No action taken.
C:\WINDOWS\system\smss.txt2 (Heuristics.Reserved.Word.Exploit) -> No action taken.
Corsair 550W , Caviar 250GB , DVD-REC Pioneer , DDR2 4096MB (4GB) PC800 DUAL 2x 2048 , Core 2 Duo E4500 2.2GHZ LGA775 , GeForce 8800GTS 640mb , Xp professional (: Creative Sounds Blaster
CANNABIS
CANNABIS
-
cinek383 - ~user
- Posty: 2116
- Dołączenie: 22 Sty 2006, 23:29
- Miejscowość: Legionowo :)
- Pochwały: 60
-
Duży ping w grach, zamulony internet
przez wojtas 07 Lut 2010, 21:17
usuń co znajdzie i już będzie czysto
i już będzie czysto-
wojtas - *mod
- Posty: 18165
- Dołączenie: 13 Sty 2006, 16:00
- Miejscowość: Krzeszyce
- Pochwały: 1656
-
Duży ping w grach, zamulony internet
przez cinek383 09 Lut 2010, 16:29
dzięki
Corsair 550W , Caviar 250GB , DVD-REC Pioneer , DDR2 4096MB (4GB) PC800 DUAL 2x 2048 , Core 2 Duo E4500 2.2GHZ LGA775 , GeForce 8800GTS 640mb , Xp professional (: Creative Sounds Blaster
CANNABIS
CANNABIS
-
cinek383 - ~user
- Posty: 2116
- Dołączenie: 22 Sty 2006, 23:29
- Miejscowość: Legionowo :)
- Pochwały: 60
-
10 posty(ów) • Strona 1 z 1
Kto jest na forum
Użytkownicy przeglądający to forum: Brak zarejestrowanych użytkowników oraz 6 gości