• Ogłoszenie:

Wolny komputer, taskmgr.exe

Bezpieczeństwo systemów, usuwanie wirusów, dobieranie programów antywirusowych. Obowiązkowe logi w tym dziale: trzy z FRST + Gmer.

Wolny komputer, taskmgr.exe

Postprzez breidak 04 Gru 2009, 12:46

reklama
Witam,

problemy:
- coraz wolniej chodzi komputer,
- panda online wykrywa coraz więcej syfu i nie wiem jak go usunąć,
- za każdym razem uruchamiania systemu na początku mam okno z pytaniem "Czy uruchomić program taskmgr.exe?" jak daje nie system idzie dalej. Oczywiście po ponownym uruchomieniu system pyta mnie ponownie. Więc odznaczyłem "nie pytaj mnie ponownie" i dałem "nie". I co dalej właczam komputer i znowu to samo pytanie. Daje tym razem "tak" i znou opcje jak powyżej "nie pytaj mnie ponownie". A onkno jak na dzień dobry było tak jest dalej.

Log z HijackThis poniżej:

Kod: Zaznacz wszystko
Logfile of HijackThis v1.99.1
Scan saved at 11:35:03, on 2009-12-04
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\VM303_STI.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\taskmrg.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
E:\Programy\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.interia.pl/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [Internet Security Service] taskmrg.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
O4 - HKLM\..\RunServices: [Internet Security Service] taskmrg.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\gg.exe" /tray
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Internet Security Service] taskmrg.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International
O16 - DPF: {1F831FAC-42FC-11D4-95A6-0080AD30DCE1} (InstaFred) - file:///C:/Program%20Files/AutoCAD%20LT%202002%20Plk/InstFred.ocx
O16 - DPF: {78AF2F24-A9C3-11D3-BF8C-0060B0FCC122} (AcDcToday) - file:///C:/Program%20Files/AutoCAD%20LT%202002%20Plk/AcDcToday.ocx
O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab
O16 - DPF: {92ECE6FA-AC2E-4042-BFAE-0C8608E52A43} (SignActivX Control) - https://www.bph.pl/sezam/components/SignActivX.cab
O16 - DPF: {AE56372C-B4F5-11D4-A415-00108302FDFD} (NOXLATE-BANR) - file:///C:/Program%20Files/AutoCAD%20LT%202002%20Plk/InstBanr.ocx
O16 - DPF: {D4003189-95B1-4A2F-9A87-F2B03665960D} (VodClient Control Class) - http://www.vexcast.com/download/vexcast.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {F281A59C-7B65-11D3-8617-0010830243BD} (AcPreview Control) - file:///C:/Program%20Files/AutoCAD%20LT%202002%20Plk/AcPreview.ocx
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe


z góry dzięki. Pozdrawiam
breidak
~user
 
Posty: 50
Dołączenie: 05 Sie 2005, 15:57



Wolny komputer, taskmgr.exe

Postprzez NieWiem 04 Gru 2009, 14:00

HiJack to martwy program.

Image
  • Pobierz aplikację OTL i zapisz ją na pulpicie.
  • Kliknij dwukrotnie na ikonę, aby uruchomić program (użytkownicy systemów Vista oraz Se7en => prawoklik oraz wybrać opcję Uruchom jako Administrator).
  • Gdy pojawi sie okno, skonfiguruj go następująco:
    • Zaznacz opcje LOP Check i Purity Check
    • Zaznacz opcje Scan All Users.
    • Upewnij się, że w okienku Extra Registry jest zaznaczone Use Safelist.
  • Upewnij się, że wszystkie pozostałe okna są zamknięte i pozwól mu pracować bez zakłóceń - nie stukaj w klawiaturę, nie ruszaj myszką.
  • Kliknij Run Scan i poczekaj cierpliwie aż program wykona swoje.
  • Kiedy skanowanie sie skończy, pojawią sie 2 okna notatnika, zatytułowane OTL.txt i Extras.txt. Będą one zapisane w tym samym miejscu, co aplikacja OTL.
  • Skopiuj (Edycja => Zaznacz wszystko, Edycja => Kopiuj) zawartość tych plików i wklej na http://www.wklej.org lub w poście w tagach [code].
1. Pomocy udzielam wyłącznie na licencji beerware!
2. Jeśli nie odpowiadam od razu w temacie, to znaczy że mam życie poza internetem. Uszanuj mój dobrowolnie poświęcony czas i nie oczekuj wszystkiego natychmiast. Jeśli nie odpowiadam przez 48 godzin, przyślij PW.

STOP ++> trollom, dzieciom neostrady, emo, Forestom, kotożercom i nienawiści [ nie dotyczy wymienionych wcześniej ]
Image
Awatar użytkownika
NieWiem
~user
 
Posty: 2183
Dołączenie: 19 Cze 2009, 17:01
Miejscowość: Okolice Okolic
Pochwały: 171



Wolny komputer, taskmgr.exe

Postprzez breidak 04 Gru 2009, 15:23

Pytanie 1. Co masz na myśli "martwy" program? Czy to znaczy, że na tym forum już go nie używać?

Pytanie 2. wyniki poniżej

OTL

Kod: Zaznacz wszystko

OTL logfile created on: 2009-12-04 14:03:16 - Run 1
OTL by OldTimer - Version 3.1.11.4     Folder = C:\Documents and Settings\breidak\Pulpit
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

255,53 Mb Total Physical Memory | 125,50 Mb Available Physical Memory | 49,11% Memory free
618,25 Mb Paging File | 462,57 Mb Available in Paging File | 74,82% Paging File free
Paging file location(s): C:\pagefile.sys 384 768 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 12,70 Gb Total Space | 1,74 Gb Free Space | 13,72% Space Free | Partition Type: NTFS
Drive D: | 11,71 Gb Total Space | 3,71 Gb Free Space | 31,67% Space Free | Partition Type: FAT32
Drive E: | 12,83 Gb Total Space | 0,67 Gb Free Space | 5,24% Space Free | Partition Type: FAT32
Drive F: | 410,88 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: HOME
Current User Name: breidak
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2009-12-04 14:01:39 | 00,535,552 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\breidak\Pulpit\OTL.exe
PRC - [2009-11-07 16:55:14 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2006-10-22 12:22:00 | 00,159,810 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2006-03-02 13:00:00 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006-03-02 13:00:00 | 00,637,684 | RHS- | M] () -- C:\WINDOWS\system32\taskmrg.exe
PRC - [2006-03-02 13:00:00 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe
PRC - [2005-10-25 12:56:00 | 00,061,440 | ---- | M] (Vimicro) -- C:\WINDOWS\VM303_STI.exe
PRC - [2002-09-20 16:50:10 | 00,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe


[color=#E56717]========== Modules (SafeList) ==========[/color]

MOD - [2009-12-04 14:01:39 | 00,535,552 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\breidak\Pulpit\OTL.exe
MOD - [2006-03-02 13:00:00 | 01,050,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
MOD - [2002-11-06 20:00:38 | 00,040,820 | ---- | M] (SoundMAX) -- C:\WINDOWS\system32\Syncor11.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2009-11-07 16:55:14 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2009-09-24 10:59:26 | 01,695,368 | ---- | M] (NanJing Nagasoft Co, LTD.) -- C:\WINDOWS\system32\nagasoft\vjocx.dll -- (vvdsvc)
SRV - [2006-10-22 12:22:00 | 00,159,810 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc)
SRV - [2003-07-28 12:28:22 | 00,089,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2003-02-20 19:19:38 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe -- (aspnet_state)
SRV - [2002-09-20 16:50:10 | 00,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default))


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2009-06-30 09:37:16 | 00,028,552 | ---- | M] (Panda Security, S.L.) -- C:\WINDOWS\system32\drivers\pavboot.sys -- (pavboot)
DRV - [2006-10-22 12:22:00 | 03,994,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2006-03-02 13:00:00 | 00,027,440 | ---- | M] () -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2006-03-02 13:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
DRV - [2005-10-27 14:34:06 | 00,390,849 | ---- | M] (Vimicro Corporation) -- C:\WINDOWS\system32\drivers\usbVM303.sys -- (ZSMC303)
DRV - [2004-08-04 00:08:22 | 00,010,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2003-07-15 16:00:00 | 00,578,368 | ---- | M] (Analog Devices, Inc.) -- C:\WINDOWS\system32\drivers\smwdm.sys -- (smwdm)
DRV - [2003-07-02 04:42:00 | 00,027,904 | ---- | M] (VIA Technologies, Inc.) -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1)
DRV - [2003-01-16 05:17:00 | 00,040,960 | R--- | M] (VIA Technologies, Inc.              ) -- C:\WINDOWS\system32\drivers\fetnd5b.sys -- (FETNDISB)
DRV - [2002-09-13 01:29:00 | 00,006,016 | R--- | M] (VIA Technologies, Inc.              ) -- C:\WINDOWS\system32\ntsim.sys -- (NTSIM)
DRV - [2002-04-01 07:15:00 | 00,004,816 | ---- | M] (Andrea Electronics Corporation) -- C:\WINDOWS\system32\drivers\aeaudio.sys -- (aeaudio)
DRV - [2001-08-17 23:00:04 | 00,002,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
DRV - [2001-08-17 21:13:08 | 00,027,165 | ---- | M] (VIA Technologies, Inc.              ) -- C:\WINDOWS\system32\drivers\fetnd5.sys -- (FETNDIS)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]



IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-789336058-583907252-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.interia.pl/
IE - HKU\S-1-5-21-789336058-583907252-725345543-1003\S-1-5-21-789336058-583907252-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



O1 HOSTS File: (742 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (no name) -  - No CLSID value found.
O4 - HKLM..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE (Vimicro)
O4 - HKLM..\Run: [Internet Security Service] C:\WINDOWS\System32\taskmrg.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKU\S-1-5-21-789336058-583907252-725345543-1003..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu Sp. z oo)
O4 - HKU\S-1-5-21-789336058-583907252-725345543-1003..\Run: [Internet Security Service] C:\WINDOWS\System32\taskmrg.exe ()
O4 - HKU\S-1-5-21-789336058-583907252-725345543-1003..\Run: [PowerBar]  File not found
O4 - HKU\S-1-5-21-789336058-583907252-725345543-1003..\Run: [Skype] C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKLM..\RunServices: [Internet Security Service] C:\WINDOWS\System32\taskmrg.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-789336058-583907252-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office10\EXCEL.EXE (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {1F831FAC-42FC-11D4-95A6-0080AD30DCE1} file:///C:/Program%20Files/AutoCAD%20LT%202002%20Plk/InstFred.ocx (InstaFred)
O16 - DPF: {78AF2F24-A9C3-11D3-BF8C-0060B0FCC122} file:///C:/Program%20Files/AutoCAD%20LT%202002%20Plk/AcDcToday.ocx (AcDcToday)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab (ActiveScan 2.0 Installer Class)
O16 - DPF: {92ECE6FA-AC2E-4042-BFAE-0C8608E52A43} https://www.bph.pl/sezam/components/SignActivX.cab (SignActivX Control)
O16 - DPF: {AE56372C-B4F5-11D4-A415-00108302FDFD} file:///C:/Program%20Files/AutoCAD%20LT%202002%20Plk/InstBanr.ocx (NOXLATE-BANR)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {D4003189-95B1-4A2F-9A87-F2B03665960D} http://www.vexcast.com/download/vexcast.cab (VodClient Control Class)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {F281A59C-7B65-11D3-8617-0010830243BD} file:///C:/Program%20Files/AutoCAD%20LT%202002%20Plk/AcPreview.ocx (AcPreview Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.254
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-10-27 11:00:03 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck) -  File not found
O34 - HKLM BootExecute: (*) -  File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2009-12-04 14:01:39 | 00,535,552 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\breidak\Pulpit\OTL.exe
[2009-12-01 08:49:38 | 00,028,552 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\pavboot.sys
[2009-12-01 08:49:25 | 00,000,000 | ---D | C] -- C:\Program Files\Panda Security
[2009-11-29 20:52:54 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\nagasoft
[2009-11-27 10:06:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\breidak\Pulpit\new
[2009-11-20 00:13:18 | 00,000,000 | ---D | C] -- C:\Documents and Settings\breidak\Dane aplikacji\MechSoft
[2009-11-20 00:12:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\breidak\Dane aplikacji\Unigraphics Solutions
[2009-11-19 14:51:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings\breidak\Dane aplikacji\Media Player Classic
[2009-11-14 00:03:43 | 00,000,000 | ---D | C] -- C:\Documents and Settings\breidak\Dane aplikacji\Autodesk
[2009-11-07 16:56:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2009-11-07 16:55:42 | 00,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2009-11-07 16:55:42 | 00,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2009-11-07 16:55:42 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2009-11-07 16:55:42 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2009-11-07 16:55:42 | 00,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2009-11-07 16:55:06 | 00,000,000 | ---D | C] -- C:\Program Files\Java
[2009-11-07 16:54:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\breidak\Dane aplikacji\Sun
[2009-11-06 20:35:04 | 00,000,000 | ---D | C] -- C:\Program Files\SopFilter
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2009-12-04 14:01:39 | 00,535,552 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\breidak\Pulpit\OTL.exe
[2009-12-04 09:53:03 | 02,621,440 | -H-- | M] () -- C:\Documents and Settings\breidak\NTUSER.DAT
[2009-12-04 09:41:16 | 00,088,566 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2009-12-04 09:40:59 | 00,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009-12-04 09:40:48 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009-12-04 09:40:46 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009-12-04 09:40:45 | 26,801,3568 | -HS- | M] () -- C:\hiberfil.sys
[2009-12-04 00:57:23 | 00,000,188 | -HS- | M] () -- C:\Documents and Settings\breidak\ntuser.ini
[2009-12-04 00:56:58 | 06,944,260 | -H-- | M] () -- C:\Documents and Settings\breidak\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2009-12-04 00:04:47 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2009-12-03 23:48:52 | 01,036,172 | ---- | M] () -- C:\Documents and Settings\breidak\Pulpit\Macierze_DH.pdf
[2009-12-01 23:41:00 | 00,197,497 | ---- | M] () -- C:\Documents and Settings\breidak\Pulpit\Rysunek1.dwg
[2009-11-29 23:59:04 | 00,000,000 | ---- | M] () -- C:\WINDOWS\lgfwup.ini
[2009-11-28 03:32:20 | 00,069,120 | ---- | M] () -- C:\Documents and Settings\breidak\Pulpit\Drawing2.vsd
[2009-11-28 02:52:59 | 00,197,550 | ---- | M] () -- C:\Documents and Settings\breidak\Pulpit\cw5a.pdf
[2009-11-27 11:29:40 | 00,094,949 | ---- | M] () -- C:\Documents and Settings\breidak\Pulpit\Rysunek1.bak
[2009-11-21 21:31:04 | 00,004,608 | ---- | M] () -- C:\Documents and Settings\breidak\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-11-13 23:29:51 | 00,000,772 | ---- | M] () -- C:\WINDOWS\win.ini
[2009-11-11 00:04:58 | 00,043,008 | ---- | M] () -- C:\Documents and Settings\breidak\Pulpit\Abstract_pol.doc
[2009-11-07 16:55:14 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2009-11-07 16:55:14 | 00,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2009-11-07 16:55:14 | 00,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2009-11-07 16:55:14 | 00,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2009-11-07 16:55:13 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2009-11-06 23:09:09 | 00,057,240 | ---- | M] () -- C:\Documents and Settings\breidak\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2009-12-03 23:48:52 | 01,036,172 | ---- | C] () -- C:\Documents and Settings\breidak\Pulpit\Macierze_DH.pdf
[2009-11-28 03:32:15 | 00,069,120 | ---- | C] () -- C:\Documents and Settings\breidak\Pulpit\Drawing2.vsd
[2009-11-28 02:52:59 | 00,197,550 | ---- | C] () -- C:\Documents and Settings\breidak\Pulpit\cw5a.pdf
[2009-11-26 19:33:55 | 00,197,497 | ---- | C] () -- C:\Documents and Settings\breidak\Pulpit\Rysunek1.dwg
[2009-11-26 19:33:55 | 00,094,949 | ---- | C] () -- C:\Documents and Settings\breidak\Pulpit\Rysunek1.bak
[2009-11-12 18:59:30 | 00,004,608 | ---- | C] () -- C:\Documents and Settings\breidak\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-11-10 23:19:40 | 00,043,008 | ---- | C] () -- C:\Documents and Settings\breidak\Pulpit\Abstract_pol.doc
[2009-11-02 14:11:39 | 00,593,920 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2009-11-02 14:11:39 | 00,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009-11-02 14:11:38 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2009-11-02 14:11:37 | 00,010,752 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009-11-02 14:11:37 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2009-10-30 16:10:32 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009-10-29 21:17:02 | 00,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll
[2009-10-27 13:57:28 | 00,000,135 | ---- | C] () -- C:\Documents and Settings\breidak\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2009-10-27 13:21:22 | 00,000,784 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009-10-27 11:49:25 | 00,024,576 | ---- | C] () -- C:\WINDOWS\VMPipe.dll
[2009-10-27 11:43:32 | 00,000,000 | ---- | C] () -- C:\WINDOWS\lgfwup.ini
[2009-10-27 11:38:15 | 00,040,960 | ---- | C] () -- C:\Program Files\Uninstall_CDS.exe
[2009-10-27 11:22:02 | 00,000,044 | ---- | C] () -- C:\WINDOWS\System32\msssc.dll
[2009-10-27 11:17:35 | 00,003,289 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2009-10-27 11:17:32 | 00,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2006-10-22 12:22:00 | 01,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006-10-22 12:22:00 | 01,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2006-10-22 12:22:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006-10-22 12:22:00 | 00,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006-10-22 12:22:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2006-10-22 12:22:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006-10-22 12:22:00 | 00,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2006-03-02 13:00:00 | 00,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2000-09-19 01:50:28 | 00,202,752 | ---- | C] () -- C:\WINDOWS\System32\Zlib.dll

[color=#E56717]========== LOP Check ==========[/color]

[2009-11-14 00:03:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\breidak\Dane aplikacji\Autodesk
[2009-11-20 00:13:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\breidak\Dane aplikacji\MechSoft
[2009-11-20 00:12:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\breidak\Dane aplikacji\Unigraphics Solutions

[color=#E56717]========== Purity Check ==========[/color]


< End of report >


Extras

Kod: Zaznacz wszystko
OTL Extras logfile created on: 2009-12-04 14:03:17 - Run 1
OTL by OldTimer - Version 3.1.11.4     Folder = C:\Documents and Settings\breidak\Pulpit
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

255,53 Mb Total Physical Memory | 125,50 Mb Available Physical Memory | 49,11% Memory free
618,25 Mb Paging File | 462,57 Mb Available in Paging File | 74,82% Paging File free
Paging file location(s): C:\pagefile.sys 384 768 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 12,70 Gb Total Space | 1,74 Gb Free Space | 13,72% Space Free | Partition Type: NTFS
Drive D: | 11,71 Gb Total Space | 3,71 Gb Free Space | 31,67% Space Free | Partition Type: FAT32
Drive E: | 12,83 Gb Total Space | 0,67 Gb Free Space | 5,24% Space Free | Partition Type: FAT32
Drive F: | 410,88 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: HOME
Current User Name: breidak
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Gadu-Gadu\gg.exe" = C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program glowny -- (Gadu-Gadu Sp. z oo)
"C:\Program Files\Skype\Plugin Manager\skypePM.exe" = C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager -- (Skype Technologies)
"C:\WINDOWS\system32\taskmrg.exe" = C:\WINDOWS\system32\taskmrg.exe:*:Enabled:taskmrg -- ()
"C:\Program Files\Internet Explorer\iexplore.exe" = C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer -- (Microsoft Corporation)
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)


[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = Multimedia Launcher
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 17
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features
"{5783F2D7-0109-0415-0000-0060B0CE6BBA}" = AutoCAD LT 2002 Polski
"{664FF011-D057-4758-B2C1-78B0B78DD823}" = Solid Edge V16
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{80280415-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional z programem FrontPage - Beta
"{90120000-0020-0415-0000-0000000FF1CE}" = Pakiet zgodności dla systemu Office 2007
"{90510409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Visio Professional 2003
"{AC76BA86-7AD7-1045-7B44-A92000000001}" = Adobe Reader 9.2 - Polish
"{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = PowerProducer
"{B97CF5C3-0487-11D8-A36E-0050BAE317E1}" = DVD Solution
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE3B8E96-B0AF-4871-9178-1519B58E3A93}" = A4 TECH USB PC Camera H
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{E0E8B3D1-E032-4A2B-9394-E27B22E8E6C4}" = MTpro 2.0
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"ActiveScan 2.0" = Panda ActiveScan 2.0
"AnswerWorks" = AnswerWorks Runtime
"ET3" = English Translator 3
"Gadu-Gadu" = Gadu-Gadu 7.0
"HijackThis" = HijackThis 1.99.1
"ie8" = Windows Internet Explorer 8
"InstallShield_{E0E8B3D1-E032-4A2B-9394-E27B22E8E6C4}" = MTpro 2.0
"KLiteCodecPack_is1" = K-Lite Codec Pack 3.2.0 Full
"Nero - Burning Rom!UninstallKey" = Nero OEM
"NVIDIA Drivers" = NVIDIA Drivers
"SopFilter" = SopFilter 3.0.5
"WinRAR archiver" = Archiwizator WinRAR

[color=#E56717]========== Last 10 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2009-11-20 21:11:43 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca msimn.exe, wersja 6.0.2900.2180, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-11-23 07:39:19 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-11-23 07:40:07 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-11-23 07:40:07 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-11-23 07:40:19 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-11-27 11:45:58 | Computer Name = HOME | Source = PerfNet | ID = 2004
Description = Nie można otworzyć usługi Server. Dane wydajności usługi Server nie
zostaną  zwrócone. Zwrócony kod stanu to dane DWORD 0.

Error - 2009-11-29 10:21:19 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-11-30 15:27:45 | Computer Name = HOME | Source = crypt32 | ID = 131083
Description = Nie można wyodrębnić głównej listy innych firm z pliku cab automatycznej
aktualizacji z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>,
wystąpił błąd: Wystąpił wewnętrzny błąd obsługi łańcucha certyfikatów. 

Error - 2009-12-02 17:52:49 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-12-02 17:52:49 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

[ System Events ]
Error - 2009-11-20 09:07:49 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:07:53 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:07:57 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:08:01 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:32:50 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:32:55 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:33:00 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:33:04 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:33:09 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-24 15:04:13 | Computer Name = HOME | Source = ipnathlp | ID = 32003
Description = Translator adresów sieciowych (NAT) nie może zażądać wykonania operacji
przez
moduł tłumaczący, pracujący w trybie jądra.  Może to wskazywać na błąd konfiguracji,
niewystarczające zasoby  lub na błąd wewnętrzny.  Dane zawierają kod błędu.


< End of report >
breidak
~user
 
Posty: 50
Dołączenie: 05 Sie 2005, 15:57



Wolny komputer, taskmgr.exe

Postprzez wojtas 04 Gru 2009, 17:56

Uruchom OTL i w oknie Custom Scans/Fixes wklej :

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Internet Security Service] C:\WINDOWS\System32\taskmrg.exe ()
O4 - HKU\S-1-5-21-789336058-583907252-725345543-1003..\Run: [Internet Security Service] C:\WINDOWS\System32\taskmrg.exe ()
O4 - HKU\S-1-5-21-789336058-583907252-725345543-1003..\Run: [PowerBar] File not found
O4 - HKLM..\RunServices: [Internet Security Service] C:\WINDOWS\System32\taskmrg.exe ()

:Files
C:\WINDOWS\System32\taskmrg.exe

:Commands
[emptytemp]
[start explorer]
[Reboot]


Kliknij w Run Fix. I potwierdz reset kompa .

Następnie uruchamiasz OTL z opcją Run Scan. Pokazujesz nowy log OTL.txt oraz raport z czyszczenia kompa
Image
Awatar użytkownika
wojtas
*mod
 
Posty: 18165
Dołączenie: 13 Sty 2006, 16:00
Miejscowość: Krzeszyce
Pochwały: 1656



Wolny komputer, taskmgr.exe

Postprzez breidak 04 Gru 2009, 23:51

Poniżej wszystkie wyniki:

OTL
Kod: Zaznacz wszystko
OTL logfile created on: 2009-12-04 22:38:38 - Run 2
OTL by OldTimer - Version 3.1.11.4     Folder = C:\Documents and Settings\breidak\Pulpit
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

255,53 Mb Total Physical Memory | 155,54 Mb Available Physical Memory | 60,87% Memory free
618,25 Mb Paging File | 467,72 Mb Available in Paging File | 75,65% Paging File free
Paging file location(s): C:\pagefile.sys 384 768 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 12,70 Gb Total Space | 1,91 Gb Free Space | 15,05% Space Free | Partition Type: NTFS
Drive D: | 11,71 Gb Total Space | 3,71 Gb Free Space | 31,67% Space Free | Partition Type: FAT32
Drive E: | 12,83 Gb Total Space | 0,67 Gb Free Space | 5,24% Space Free | Partition Type: FAT32
Drive F: | 410,88 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: HOME
Current User Name: breidak
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2009-12-04 14:01:39 | 00,535,552 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\breidak\Pulpit\OTL.exe
PRC - [2009-11-07 16:55:14 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2006-10-22 12:22:00 | 00,159,810 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2006-03-02 13:00:00 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006-03-02 13:00:00 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe
PRC - [2005-10-25 12:56:00 | 00,061,440 | ---- | M] (Vimicro) -- C:\WINDOWS\VM303_STI.exe
PRC - [2002-09-20 16:50:10 | 00,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe


[color=#E56717]========== Modules (SafeList) ==========[/color]

MOD - [2009-12-04 14:01:39 | 00,535,552 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\breidak\Pulpit\OTL.exe
MOD - [2006-03-02 13:00:00 | 01,050,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
MOD - [2002-11-06 20:00:38 | 00,040,820 | ---- | M] (SoundMAX) -- C:\WINDOWS\system32\Syncor11.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2009-11-07 16:55:14 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2009-09-24 10:59:26 | 01,695,368 | ---- | M] (NanJing Nagasoft Co, LTD.) -- C:\WINDOWS\system32\nagasoft\vjocx.dll -- (vvdsvc)
SRV - [2006-10-22 12:22:00 | 00,159,810 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc)
SRV - [2003-07-28 12:28:22 | 00,089,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2003-02-20 19:19:38 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe -- (aspnet_state)
SRV - [2002-09-20 16:50:10 | 00,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default))


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2009-06-30 09:37:16 | 00,028,552 | ---- | M] (Panda Security, S.L.) -- C:\WINDOWS\system32\drivers\pavboot.sys -- (pavboot)
DRV - [2006-10-22 12:22:00 | 03,994,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2006-03-02 13:00:00 | 00,027,440 | ---- | M] () -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2006-03-02 13:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
DRV - [2005-10-27 14:34:06 | 00,390,849 | ---- | M] (Vimicro Corporation) -- C:\WINDOWS\system32\drivers\usbVM303.sys -- (ZSMC303)
DRV - [2004-08-04 00:08:22 | 00,010,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2003-07-15 16:00:00 | 00,578,368 | ---- | M] (Analog Devices, Inc.) -- C:\WINDOWS\system32\drivers\smwdm.sys -- (smwdm)
DRV - [2003-07-02 04:42:00 | 00,027,904 | ---- | M] (VIA Technologies, Inc.) -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1)
DRV - [2003-01-16 05:17:00 | 00,040,960 | R--- | M] (VIA Technologies, Inc.              ) -- C:\WINDOWS\system32\drivers\fetnd5b.sys -- (FETNDISB)
DRV - [2002-09-13 01:29:00 | 00,006,016 | R--- | M] (VIA Technologies, Inc.              ) -- C:\WINDOWS\system32\ntsim.sys -- (NTSIM)
DRV - [2002-04-01 07:15:00 | 00,004,816 | ---- | M] (Andrea Electronics Corporation) -- C:\WINDOWS\system32\drivers\aeaudio.sys -- (aeaudio)
DRV - [2001-08-17 23:00:04 | 00,002,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
DRV - [2001-08-17 21:13:08 | 00,027,165 | ---- | M] (VIA Technologies, Inc.              ) -- C:\WINDOWS\system32\drivers\fetnd5.sys -- (FETNDIS)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]



IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-789336058-583907252-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.interia.pl/
IE - HKU\S-1-5-21-789336058-583907252-725345543-1003\S-1-5-21-789336058-583907252-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



O1 HOSTS File: (742 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (no name) -  - No CLSID value found.
O4 - HKLM..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE (Vimicro)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKU\S-1-5-21-789336058-583907252-725345543-1003..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu Sp. z oo)
O4 - HKU\S-1-5-21-789336058-583907252-725345543-1003..\Run: [Skype] C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-789336058-583907252-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office10\EXCEL.EXE (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {1F831FAC-42FC-11D4-95A6-0080AD30DCE1} file:///C:/Program%20Files/AutoCAD%20LT%202002%20Plk/InstFred.ocx (InstaFred)
O16 - DPF: {78AF2F24-A9C3-11D3-BF8C-0060B0FCC122} file:///C:/Program%20Files/AutoCAD%20LT%202002%20Plk/AcDcToday.ocx (AcDcToday)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab (ActiveScan 2.0 Installer Class)
O16 - DPF: {92ECE6FA-AC2E-4042-BFAE-0C8608E52A43} https://www.bph.pl/sezam/components/SignActivX.cab (SignActivX Control)
O16 - DPF: {AE56372C-B4F5-11D4-A415-00108302FDFD} file:///C:/Program%20Files/AutoCAD%20LT%202002%20Plk/InstBanr.ocx (NOXLATE-BANR)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {D4003189-95B1-4A2F-9A87-F2B03665960D} http://www.vexcast.com/download/vexcast.cab (VodClient Control Class)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {F281A59C-7B65-11D3-8617-0010830243BD} file:///C:/Program%20Files/AutoCAD%20LT%202002%20Plk/AcPreview.ocx (AcPreview Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.254
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-10-27 11:00:03 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck) -  File not found
O34 - HKLM BootExecute: (*) -  File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2009-12-04 17:10:20 | 00,000,000 | ---D | C] -- C:\_OTL
[2009-12-04 14:01:39 | 00,535,552 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\breidak\Pulpit\OTL.exe
[2009-12-01 08:49:38 | 00,028,552 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\pavboot.sys
[2009-12-01 08:49:25 | 00,000,000 | ---D | C] -- C:\Program Files\Panda Security
[2009-11-29 20:52:54 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\nagasoft
[2009-11-27 10:06:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\breidak\Pulpit\new
[2009-11-20 00:13:18 | 00,000,000 | ---D | C] -- C:\Documents and Settings\breidak\Dane aplikacji\MechSoft
[2009-11-20 00:12:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\breidak\Dane aplikacji\Unigraphics Solutions
[2009-11-19 14:51:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings\breidak\Dane aplikacji\Media Player Classic
[2009-11-14 00:03:43 | 00,000,000 | ---D | C] -- C:\Documents and Settings\breidak\Dane aplikacji\Autodesk
[2009-11-07 16:56:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2009-11-07 16:55:42 | 00,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2009-11-07 16:55:42 | 00,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2009-11-07 16:55:42 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2009-11-07 16:55:42 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2009-11-07 16:55:42 | 00,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2009-11-07 16:55:06 | 00,000,000 | ---D | C] -- C:\Program Files\Java
[2009-11-07 16:54:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\breidak\Dane aplikacji\Sun
[2009-11-06 20:35:04 | 00,000,000 | ---D | C] -- C:\Program Files\SopFilter

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2009-12-04 22:34:50 | 02,621,440 | -H-- | M] () -- C:\Documents and Settings\breidak\NTUSER.DAT
[2009-12-04 22:33:15 | 00,088,566 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2009-12-04 22:32:30 | 00,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009-12-04 22:32:11 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009-12-04 22:32:09 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009-12-04 22:32:08 | 26,801,3568 | -HS- | M] () -- C:\hiberfil.sys
[2009-12-04 17:12:07 | 00,000,188 | -HS- | M] () -- C:\Documents and Settings\breidak\ntuser.ini
[2009-12-04 14:01:39 | 00,535,552 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\breidak\Pulpit\OTL.exe
[2009-12-04 00:56:58 | 06,944,260 | -H-- | M] () -- C:\Documents and Settings\breidak\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2009-12-04 00:04:47 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2009-12-03 23:48:52 | 01,036,172 | ---- | M] () -- C:\Documents and Settings\breidak\Pulpit\Macierze_DH.pdf
[2009-12-01 23:41:00 | 00,197,497 | ---- | M] () -- C:\Documents and Settings\breidak\Pulpit\Rysunek1.dwg
[2009-11-29 23:59:04 | 00,000,000 | ---- | M] () -- C:\WINDOWS\lgfwup.ini
[2009-11-28 03:32:20 | 00,069,120 | ---- | M] () -- C:\Documents and Settings\breidak\Pulpit\Drawing2.vsd
[2009-11-28 02:52:59 | 00,197,550 | ---- | M] () -- C:\Documents and Settings\breidak\Pulpit\cw5a.pdf
[2009-11-27 11:29:40 | 00,094,949 | ---- | M] () -- C:\Documents and Settings\breidak\Pulpit\Rysunek1.bak
[2009-11-21 21:31:04 | 00,004,608 | ---- | M] () -- C:\Documents and Settings\breidak\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-11-13 23:29:51 | 00,000,772 | ---- | M] () -- C:\WINDOWS\win.ini
[2009-11-11 00:04:58 | 00,043,008 | ---- | M] () -- C:\Documents and Settings\breidak\Pulpit\Abstract_pol.doc
[2009-11-07 16:55:14 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2009-11-07 16:55:14 | 00,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2009-11-07 16:55:14 | 00,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2009-11-07 16:55:14 | 00,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2009-11-07 16:55:13 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2009-11-06 23:09:09 | 00,057,240 | ---- | M] () -- C:\Documents and Settings\breidak\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2009-12-03 23:48:52 | 01,036,172 | ---- | C] () -- C:\Documents and Settings\breidak\Pulpit\Macierze_DH.pdf
[2009-11-28 03:32:15 | 00,069,120 | ---- | C] () -- C:\Documents and Settings\breidak\Pulpit\Drawing2.vsd
[2009-11-28 02:52:59 | 00,197,550 | ---- | C] () -- C:\Documents and Settings\breidak\Pulpit\cw5a.pdf
[2009-11-26 19:33:55 | 00,197,497 | ---- | C] () -- C:\Documents and Settings\breidak\Pulpit\Rysunek1.dwg
[2009-11-26 19:33:55 | 00,094,949 | ---- | C] () -- C:\Documents and Settings\breidak\Pulpit\Rysunek1.bak
[2009-11-12 18:59:30 | 00,004,608 | ---- | C] () -- C:\Documents and Settings\breidak\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-11-10 23:19:40 | 00,043,008 | ---- | C] () -- C:\Documents and Settings\breidak\Pulpit\Abstract_pol.doc
[2009-11-02 14:11:39 | 00,593,920 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2009-11-02 14:11:39 | 00,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009-11-02 14:11:38 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2009-11-02 14:11:37 | 00,010,752 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009-11-02 14:11:37 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2009-10-30 16:10:32 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009-10-29 21:17:02 | 00,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll
[2009-10-27 13:57:28 | 00,000,135 | ---- | C] () -- C:\Documents and Settings\breidak\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2009-10-27 13:21:22 | 00,000,784 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009-10-27 11:49:25 | 00,024,576 | ---- | C] () -- C:\WINDOWS\VMPipe.dll
[2009-10-27 11:43:32 | 00,000,000 | ---- | C] () -- C:\WINDOWS\lgfwup.ini
[2009-10-27 11:38:15 | 00,040,960 | ---- | C] () -- C:\Program Files\Uninstall_CDS.exe
[2009-10-27 11:22:02 | 00,000,044 | ---- | C] () -- C:\WINDOWS\System32\msssc.dll
[2009-10-27 11:17:35 | 00,003,289 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2009-10-27 11:17:32 | 00,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2006-10-22 12:22:00 | 01,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006-10-22 12:22:00 | 01,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2006-10-22 12:22:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006-10-22 12:22:00 | 00,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006-10-22 12:22:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2006-10-22 12:22:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006-10-22 12:22:00 | 00,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2006-03-02 13:00:00 | 00,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2000-09-19 01:50:28 | 00,202,752 | ---- | C] () -- C:\WINDOWS\System32\Zlib.dll

[color=#E56717]========== LOP Check ==========[/color]

[2009-11-14 00:03:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\breidak\Dane aplikacji\Autodesk
[2009-11-20 00:13:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\breidak\Dane aplikacji\MechSoft
[2009-11-20 00:12:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\breidak\Dane aplikacji\Unigraphics Solutions

[color=#E56717]========== Purity Check ==========[/color]


< End of report >


Extras
Kod: Zaznacz wszystko
OTL Extras logfile created on: 2009-12-04 22:38:38 - Run 2
OTL by OldTimer - Version 3.1.11.4     Folder = C:\Documents and Settings\breidak\Pulpit
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

255,53 Mb Total Physical Memory | 155,54 Mb Available Physical Memory | 60,87% Memory free
618,25 Mb Paging File | 467,72 Mb Available in Paging File | 75,65% Paging File free
Paging file location(s): C:\pagefile.sys 384 768 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 12,70 Gb Total Space | 1,91 Gb Free Space | 15,05% Space Free | Partition Type: NTFS
Drive D: | 11,71 Gb Total Space | 3,71 Gb Free Space | 31,67% Space Free | Partition Type: FAT32
Drive E: | 12,83 Gb Total Space | 0,67 Gb Free Space | 5,24% Space Free | Partition Type: FAT32
Drive F: | 410,88 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: HOME
Current User Name: breidak
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Gadu-Gadu\gg.exe" = C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program glowny -- (Gadu-Gadu Sp. z oo)
"C:\Program Files\Skype\Plugin Manager\skypePM.exe" = C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager -- (Skype Technologies)
"C:\WINDOWS\system32\taskmrg.exe" = C:\WINDOWS\system32\taskmrg.exe:*:Enabled:taskmrg -- File not found
"C:\Program Files\Internet Explorer\iexplore.exe" = C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer -- (Microsoft Corporation)
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)


[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = Multimedia Launcher
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 17
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features
"{5783F2D7-0109-0415-0000-0060B0CE6BBA}" = AutoCAD LT 2002 Polski
"{664FF011-D057-4758-B2C1-78B0B78DD823}" = Solid Edge V16
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{80280415-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional z programem FrontPage - Beta
"{90120000-0020-0415-0000-0000000FF1CE}" = Pakiet zgodności dla systemu Office 2007
"{90510409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Visio Professional 2003
"{AC76BA86-7AD7-1045-7B44-A92000000001}" = Adobe Reader 9.2 - Polish
"{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = PowerProducer
"{B97CF5C3-0487-11D8-A36E-0050BAE317E1}" = DVD Solution
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE3B8E96-B0AF-4871-9178-1519B58E3A93}" = A4 TECH USB PC Camera H
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{E0E8B3D1-E032-4A2B-9394-E27B22E8E6C4}" = MTpro 2.0
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"ActiveScan 2.0" = Panda ActiveScan 2.0
"AnswerWorks" = AnswerWorks Runtime
"ET3" = English Translator 3
"Gadu-Gadu" = Gadu-Gadu 7.0
"HijackThis" = HijackThis 1.99.1
"ie8" = Windows Internet Explorer 8
"InstallShield_{E0E8B3D1-E032-4A2B-9394-E27B22E8E6C4}" = MTpro 2.0
"KLiteCodecPack_is1" = K-Lite Codec Pack 3.2.0 Full
"Nero - Burning Rom!UninstallKey" = Nero OEM
"NVIDIA Drivers" = NVIDIA Drivers
"SopFilter" = SopFilter 3.0.5
"WinRAR archiver" = Archiwizator WinRAR

[color=#E56717]========== Last 10 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2009-11-20 21:11:43 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca msimn.exe, wersja 6.0.2900.2180, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-11-23 07:39:19 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-11-23 07:40:07 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-11-23 07:40:07 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-11-23 07:40:19 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-11-27 11:45:58 | Computer Name = HOME | Source = PerfNet | ID = 2004
Description = Nie można otworzyć usługi Server. Dane wydajności usługi Server nie
zostaną  zwrócone. Zwrócony kod stanu to dane DWORD 0.

Error - 2009-11-29 10:21:19 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-11-30 15:27:45 | Computer Name = HOME | Source = crypt32 | ID = 131083
Description = Nie można wyodrębnić głównej listy innych firm z pliku cab automatycznej
aktualizacji z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>,
wystąpił błąd: Wystąpił wewnętrzny błąd obsługi łańcucha certyfikatów. 

Error - 2009-12-02 17:52:49 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-12-02 17:52:49 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

[ System Events ]
Error - 2009-11-20 09:07:49 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:07:53 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:07:57 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:08:01 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:32:50 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:32:55 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:33:00 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:33:04 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:33:09 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-24 15:04:13 | Computer Name = HOME | Source = ipnathlp | ID = 32003
Description = Translator adresów sieciowych (NAT) nie może zażądać wykonania operacji
przez
moduł tłumaczący, pracujący w trybie jądra.  Może to wskazywać na błąd konfiguracji,
niewystarczające zasoby  lub na błąd wewnętrzny.  Dane zawierają kod błędu.


< End of report >



raport

Kod: Zaznacz wszystko
All processes killed
========== OTL ==========
No active process named explorer.exe was found!
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Internet Security Service deleted successfully.
C:\WINDOWS\system32\taskmrg.exe moved successfully.
Registry value HKEY_USERS\S-1-5-21-789336058-583907252-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Run\\Internet Security Service deleted successfully.
File C:\WINDOWS\System32\taskmrg.exe not found.
Registry value HKEY_USERS\S-1-5-21-789336058-583907252-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Run\\PowerBar deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices\\Internet Security Service deleted successfully.
File C:\WINDOWS\System32\taskmrg.exe not found.
========== FILES ==========
File\Folder C:\WINDOWS\System32\taskmrg.exe not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: breidak
->Temp folder emptied: 58745197 bytes
->Temporary Internet Files folder emptied: 166433478 bytes
->Java cache emptied: 13758314 bytes

User: AFB21~1~GUZ

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 402 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2129157 bytes
%systemroot%\System32 .tmp files removed: 2596 bytes
Windows Temp folder emptied: 2538404 bytes
RecycleBin emptied: 570894 bytes

Total Files Cleaned = 232,93 mb


OTL by OldTimer - Version 3.1.11.4 log created on 12042009_171020

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...


Ogólnie zauważam szybszy komputer.

Czy któryś z procesów mogę wyłaczyć dodatkowo, tak aby nie włączał się odrazu przy starcie systemu?
breidak
~user
 
Posty: 50
Dołączenie: 05 Sie 2005, 15:57



Wolny komputer, taskmgr.exe

Postprzez NieWiem 05 Gru 2009, 00:40

Jeszcze takie coś wykonaj:

Kasacja folderu C:\_OTL

Malwarebytes Anti-Malware ++> ściągasz, odpalasz pełen skan, pokazujesz na forum raport.
1. Pomocy udzielam wyłącznie na licencji beerware!
2. Jeśli nie odpowiadam od razu w temacie, to znaczy że mam życie poza internetem. Uszanuj mój dobrowolnie poświęcony czas i nie oczekuj wszystkiego natychmiast. Jeśli nie odpowiadam przez 48 godzin, przyślij PW.

STOP ++> trollom, dzieciom neostrady, emo, Forestom, kotożercom i nienawiści [ nie dotyczy wymienionych wcześniej ]
Image
Awatar użytkownika
NieWiem
~user
 
Posty: 2183
Dołączenie: 19 Cze 2009, 17:01
Miejscowość: Okolice Okolic
Pochwały: 171



Wolny komputer, taskmgr.exe

Postprzez breidak 09 Gru 2009, 21:12

Witam, przepraszam, że takpo kilku dniach, ale czasu mało.
Zauważyłem, że komputer znowu powolno chodzi. Poniżej kod z Malwarebytes, a po pełnym skanowaniu jeszcze raz zrobiłem kody OTL, wyniki niżej.

Malwarebytes
Kod: Zaznacz wszystko
Malwarebytes' Anti-Malware 1.42
Wersja bazy definicji: 3331
Windows 5.1.2600 Dodatek Service Pack 2
Internet Explorer 8.0.6001.18702

2009-12-09 19:43:29
mbam-log-2009-12-09 (19-43-29).txt

Typ skanowania: Pełne skanowanie (C:\|D:\|E:\|)
Przeskanowane obiekty: 169493
Upłynęło: 51 minute(s), 45 second(s)

Zainfekowane procesy w pamięci: 0
Zainfekowane moduły pamięci: 0
Zainfekowane klucze rejestru: 0
Zainfekowane wartości rejestru: 0
Zainfekowane pliki rejestru: 0
Zainfekowane foldery: 0
Zainfekowane pliki: 1

Zainfekowane procesy w pamięci:
(Nie wykryto groźnych plików)

Zainfekowane moduły pamięci:
(Nie wykryto groźnych plików)

Zainfekowane klucze rejestru:
(Nie wykryto groźnych plików)

Zainfekowane wartości rejestru:
(Nie wykryto groźnych plików)

Zainfekowane pliki rejestru:
(Nie wykryto groźnych plików)

Zainfekowane foldery:
(Nie wykryto groźnych plików)

Zainfekowane pliki:
C:\System Volume Information\_restore{A31C6DC4-81C3-4B47-A306-073D0BE15A84}\RP48\A0007597.exe (Trojan.Generic) -> Quarantined and deleted successfully.


OTL
Kod: Zaznacz wszystko
OTL logfile created on: 2009-12-09 19:54:51 - Run 3
OTL by OldTimer - Version 3.1.12.0     Folder = C:\Documents and Settings\Breidak\Pulpit
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

255,53 Mb Total Physical Memory | 99,39 Mb Available Physical Memory | 38,90% Memory free
618,20 Mb Paging File | 405,32 Mb Available in Paging File | 65,56% Paging File free
Paging file location(s): C:\pagefile.sys 384 768 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 12,70 Gb Total Space | 1,79 Gb Free Space | 14,08% Space Free | Partition Type: NTFS
Drive D: | 11,71 Gb Total Space | 3,76 Gb Free Space | 32,13% Space Free | Partition Type: FAT32
Drive E: | 12,83 Gb Total Space | 0,67 Gb Free Space | 5,24% Space Free | Partition Type: FAT32
Drive F: | 431,01 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: HOME
Current User Name: Breidak
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2009-12-09 19:54:02 | 00,537,088 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Breidak\Pulpit\OTL.exe
PRC - [2009-11-07 16:55:14 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2009-03-08 14:09:26 | 00,638,816 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iexplore.exe
PRC - [2006-10-22 12:22:00 | 00,159,810 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2006-03-02 13:00:00 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006-03-02 13:00:00 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe
PRC - [2005-10-25 12:56:00 | 00,061,440 | ---- | M] (Vimicro) -- C:\WINDOWS\VM303_STI.exe
PRC - [2002-09-20 16:50:10 | 00,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe


[color=#E56717]========== Modules (SafeList) ==========[/color]

MOD - [2009-12-09 19:54:02 | 00,537,088 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Breidak\Pulpit\OTL.exe
MOD - [2006-03-02 13:00:00 | 01,050,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
MOD - [2002-11-06 20:00:38 | 00,040,820 | ---- | M] (SoundMAX) -- C:\WINDOWS\system32\Syncor11.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2009-11-07 16:55:14 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2009-09-24 10:59:26 | 01,695,368 | ---- | M] (NanJing Nagasoft Co, LTD.) -- C:\WINDOWS\system32\nagasoft\vjocx.dll -- (vvdsvc)
SRV - [2006-10-22 12:22:00 | 00,159,810 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc)
SRV - [2003-07-28 12:28:22 | 00,089,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2003-02-20 19:19:38 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe -- (aspnet_state)
SRV - [2002-09-20 16:50:10 | 00,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default))


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2009-06-30 09:37:16 | 00,028,552 | ---- | M] (Panda Security, S.L.) -- C:\WINDOWS\system32\drivers\pavboot.sys -- (pavboot)
DRV - [2006-10-22 12:22:00 | 03,994,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2006-03-02 13:00:00 | 00,027,440 | ---- | M] () -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2006-03-02 13:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
DRV - [2005-10-27 14:34:06 | 00,390,849 | ---- | M] (Vimicro Corporation) -- C:\WINDOWS\system32\drivers\usbVM303.sys -- (ZSMC303)
DRV - [2004-08-04 00:08:22 | 00,010,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2003-07-15 16:00:00 | 00,578,368 | ---- | M] (Analog Devices, Inc.) -- C:\WINDOWS\system32\drivers\smwdm.sys -- (smwdm)
DRV - [2003-07-02 04:42:00 | 00,027,904 | ---- | M] (VIA Technologies, Inc.) -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1)
DRV - [2003-01-16 05:17:00 | 00,040,960 | R--- | M] (VIA Technologies, Inc.              ) -- C:\WINDOWS\system32\drivers\fetnd5b.sys -- (FETNDISB)
DRV - [2002-09-13 01:29:00 | 00,006,016 | R--- | M] (VIA Technologies, Inc.              ) -- C:\WINDOWS\system32\ntsim.sys -- (NTSIM)
DRV - [2002-04-01 07:15:00 | 00,004,816 | ---- | M] (Andrea Electronics Corporation) -- C:\WINDOWS\system32\drivers\aeaudio.sys -- (aeaudio)
DRV - [2001-08-17 23:00:04 | 00,002,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
DRV - [2001-08-17 21:13:08 | 00,027,165 | ---- | M] (VIA Technologies, Inc.              ) -- C:\WINDOWS\system32\drivers\fetnd5.sys -- (FETNDIS)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]



IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-789336058-583907252-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.interia.pl/
IE - HKU\S-1-5-21-789336058-583907252-725345543-1003\S-1-5-21-789336058-583907252-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



O1 HOSTS File: (742 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (no name) -  - No CLSID value found.
O4 - HKLM..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE (Vimicro)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKU\S-1-5-21-789336058-583907252-725345543-1003..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu Sp. z oo)
O4 - HKU\S-1-5-21-789336058-583907252-725345543-1003..\Run: [Skype] C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-789336058-583907252-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office10\EXCEL.EXE (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {1F831FAC-42FC-11D4-95A6-0080AD30DCE1} file:///C:/Program%20Files/AutoCAD%20LT%202002%20Plk/InstFred.ocx (InstaFred)
O16 - DPF: {78AF2F24-A9C3-11D3-BF8C-0060B0FCC122} file:///C:/Program%20Files/AutoCAD%20LT%202002%20Plk/AcDcToday.ocx (AcDcToday)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab (ActiveScan 2.0 Installer Class)
O16 - DPF: {92ECE6FA-AC2E-4042-BFAE-0C8608E52A43} https://www.bph.pl/pi/components/bph/SignActivX.cab (SignActivX Control)
O16 - DPF: {AE56372C-B4F5-11D4-A415-00108302FDFD} file:///C:/Program%20Files/AutoCAD%20LT%202002%20Plk/InstBanr.ocx (NOXLATE-BANR)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {D4003189-95B1-4A2F-9A87-F2B03665960D} http://www.vexcast.com/download/vexcast.cab (VodClient Control Class)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {F281A59C-7B65-11D3-8617-0010830243BD} file:///C:/Program%20Files/AutoCAD%20LT%202002%20Plk/AcPreview.ocx (AcPreview Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.254
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-10-27 11:00:03 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2007-04-21 13:23:00 | 00,000,030 | R--- | M] () - F:\AUTORUN.INF -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2009-12-09 19:53:58 | 00,537,088 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Breidak\Pulpit\OTL.exe
[2009-12-07 00:45:31 | 00,000,000 | ---D | C] -- C:\Program Files\AvancePaint
[2009-12-07 00:39:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Breidak\Dane aplikacji\Artweaver
[2009-12-07 00:39:09 | 00,000,000 | ---D | C] -- C:\Program Files\Artweaver 1.0
[2009-12-07 00:39:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Artweaver
[2009-12-07 00:25:54 | 00,000,000 | ---D | C] -- C:\Program Files\DDSV2
[2009-12-06 23:06:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Breidak\Application Data
[2009-12-05 00:04:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Breidak\Dane aplikacji\Malwarebytes
[2009-12-05 00:04:06 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009-12-05 00:04:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
[2009-12-05 00:04:03 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009-12-05 00:04:03 | 00,000,000 | ---D | C] -- C:\Program Files\Anti-Malware
[2009-12-04 23:57:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Breidak\Pulpit\sprawko 1 bart janiga+instrukcja
[2009-12-04 23:56:08 | 04,844,296 | ---- | C] (Malwarebytes Corporation                                    ) -- C:\Documents and Settings\Breidak\Pulpit\mbam-setup.exe
[2009-12-04 23:28:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Breidak\Pulpit\gondek
[2009-12-04 23:19:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Breidak\Pulpit\zadanie proste
[2009-12-04 23:18:27 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Breidak\Pulpit\rrk
[2009-12-01 08:49:38 | 00,028,552 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\pavboot.sys
[2009-12-01 08:49:25 | 00,000,000 | ---D | C] -- C:\Program Files\Panda Security
[2009-11-29 20:52:54 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\nagasoft
[2009-11-27 10:06:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Breidak\Pulpit\new
[2009-11-20 00:13:18 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Breidak\Dane aplikacji\MechSoft
[2009-11-20 00:12:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Breidak\Dane aplikacji\Unigraphics Solutions
[2009-11-19 14:51:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Breidak\Dane aplikacji\Media Player Classic
[2009-11-14 00:03:43 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Breidak\Dane aplikacji\Autodesk

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2009-12-09 19:54:02 | 00,537,088 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Breidak\Pulpit\OTL.exe
[2009-12-09 19:48:53 | 00,088,566 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2009-12-09 19:48:48 | 00,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009-12-09 19:46:06 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009-12-09 19:46:04 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009-12-09 19:46:03 | 26,801,3568 | -HS- | M] () -- C:\hiberfil.sys
[2009-12-09 19:45:14 | 03,932,160 | -H-- | M] () -- C:\Documents and Settings\Breidak\NTUSER.DAT
[2009-12-09 19:44:56 | 00,000,188 | -HS- | M] () -- C:\Documents and Settings\Breidak\ntuser.ini
[2009-12-09 19:44:32 | 00,022,528 | ---- | M] () -- C:\Documents and Settings\Breidak\Pulpit\Malwarebytes.doc
[2009-12-09 01:07:58 | 06,948,464 | -H-- | M] () -- C:\Documents and Settings\Breidak\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2009-12-07 23:36:56 | 00,197,497 | ---- | M] () -- C:\Documents and Settings\Breidak\Pulpit\Rysunek1.dwg
[2009-12-07 23:25:33 | 00,007,168 | ---- | M] () -- C:\Documents and Settings\Breidak\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-12-07 14:55:29 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2009-12-07 00:45:41 | 00,000,020 | ---- | M] () -- C:\WINDOWS\rgsavpaint.rgk
[2009-12-04 23:57:09 | 00,260,863 | ---- | M] () -- C:\Documents and Settings\Breidak\Pulpit\Instr _CwNr1_EiUSR.pdf
[2009-12-04 23:56:22 | 04,844,296 | ---- | M] (Malwarebytes Corporation                                    ) -- C:\Documents and Settings\Breidak\Pulpit\mbam-setup.exe
[2009-12-04 23:24:46 | 01,784,675 | ---- | M] () -- C:\Documents and Settings\Breidak\Pulpit\prezentacja_Krupinski_Liput.pdf
[2009-12-03 23:48:52 | 01,036,172 | ---- | M] () -- C:\Documents and Settings\Breidak\Pulpit\Macierze_DH.pdf
[2009-12-03 16:14:06 | 00,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009-12-03 16:13:56 | 00,019,160 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009-12-01 23:41:00 | 00,197,497 | ---- | M] () -- C:\Documents and Settings\Breidak\Pulpit\Rysunek1.bak
[2009-11-29 23:59:04 | 00,000,000 | ---- | M] () -- C:\WINDOWS\lgfwup.ini
[2009-11-28 03:32:20 | 00,069,120 | ---- | M] () -- C:\Documents and Settings\Breidak\Pulpit\Drawing2.vsd
[2009-11-28 02:52:59 | 00,197,550 | ---- | M] () -- C:\Documents and Settings\Breidak\Pulpit\cw5a.pdf
[2009-11-13 23:29:51 | 00,000,772 | ---- | M] () -- C:\WINDOWS\win.ini

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2009-12-09 19:44:31 | 00,022,528 | ---- | C] () -- C:\Documents and Settings\Breidak\Pulpit\Malwarebytes.doc
[2009-12-07 00:45:36 | 00,000,020 | ---- | C] () -- C:\WINDOWS\rgsavpaint.rgk
[2009-12-04 23:57:09 | 00,260,863 | ---- | C] () -- C:\Documents and Settings\Breidak\Pulpit\Instr _CwNr1_EiUSR.pdf
[2009-12-04 23:24:46 | 01,784,675 | ---- | C] () -- C:\Documents and Settings\Breidak\Pulpit\prezentacja_Krupinski_Liput.pdf
[2009-12-03 23:48:52 | 01,036,172 | ---- | C] () -- C:\Documents and Settings\Breidak\Pulpit\Macierze_DH.pdf
[2009-11-28 03:32:15 | 00,069,120 | ---- | C] () -- C:\Documents and Settings\Breidak\Pulpit\Drawing2.vsd
[2009-11-28 02:52:59 | 00,197,550 | ---- | C] () -- C:\Documents and Settings\Breidak\Pulpit\cw5a.pdf
[2009-11-26 19:33:55 | 00,197,497 | ---- | C] () -- C:\Documents and Settings\Breidak\Pulpit\Rysunek1.dwg
[2009-11-26 19:33:55 | 00,197,497 | ---- | C] () -- C:\Documents and Settings\Breidak\Pulpit\Rysunek1.bak
[2009-11-12 18:59:30 | 00,007,168 | ---- | C] () -- C:\Documents and Settings\Breidak\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-11-02 14:11:39 | 00,593,920 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2009-11-02 14:11:39 | 00,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009-11-02 14:11:38 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2009-11-02 14:11:37 | 00,010,752 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009-11-02 14:11:37 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2009-10-30 16:10:32 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009-10-29 21:17:02 | 00,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll
[2009-10-27 13:57:28 | 00,000,135 | ---- | C] () -- C:\Documents and Settings\Breidak\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2009-10-27 13:21:22 | 00,000,784 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009-10-27 11:49:25 | 00,024,576 | ---- | C] () -- C:\WINDOWS\VMPipe.dll
[2009-10-27 11:43:32 | 00,000,000 | ---- | C] () -- C:\WINDOWS\lgfwup.ini
[2009-10-27 11:38:15 | 00,040,960 | ---- | C] () -- C:\Program Files\Uninstall_CDS.exe
[2009-10-27 11:22:02 | 00,000,044 | ---- | C] () -- C:\WINDOWS\System32\msssc.dll
[2009-10-27 11:17:35 | 00,003,289 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2009-10-27 11:17:32 | 00,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2006-10-22 12:22:00 | 01,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006-10-22 12:22:00 | 01,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2006-10-22 12:22:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006-10-22 12:22:00 | 00,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006-10-22 12:22:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2006-10-22 12:22:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006-10-22 12:22:00 | 00,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2006-03-02 13:00:00 | 00,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2000-09-19 01:50:28 | 00,202,752 | ---- | C] () -- C:\WINDOWS\System32\Zlib.dll

[color=#E56717]========== LOP Check ==========[/color]

[2009-12-07 00:39:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Breidak\Dane aplikacji\Artweaver
[2009-11-14 00:03:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Breidak\Dane aplikacji\Autodesk
[2009-11-20 00:13:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Breidak\Dane aplikacji\MechSoft
[2009-11-20 00:12:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Breidak\Dane aplikacji\Unigraphics Solutions
[2009-12-07 00:39:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Artweaver

[color=#E56717]========== Purity Check ==========[/color]


< End of report >


Extras

Kod: Zaznacz wszystko
OTL Extras logfile created on: 2009-12-09 19:54:51 - Run 3
OTL by OldTimer - Version 3.1.12.0     Folder = C:\Documents and Settings\Breidak\Pulpit
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

255,53 Mb Total Physical Memory | 99,39 Mb Available Physical Memory | 38,90% Memory free
618,20 Mb Paging File | 405,32 Mb Available in Paging File | 65,56% Paging File free
Paging file location(s): C:\pagefile.sys 384 768 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 12,70 Gb Total Space | 1,79 Gb Free Space | 14,08% Space Free | Partition Type: NTFS
Drive D: | 11,71 Gb Total Space | 3,76 Gb Free Space | 32,13% Space Free | Partition Type: FAT32
Drive E: | 12,83 Gb Total Space | 0,67 Gb Free Space | 5,24% Space Free | Partition Type: FAT32
Drive F: | 431,01 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: HOME
Current User Name: Breidak
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Gadu-Gadu\gg.exe" = C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program glowny -- (Gadu-Gadu Sp. z oo)
"C:\Program Files\Skype\Plugin Manager\skypePM.exe" = C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager -- (Skype Technologies)
"C:\WINDOWS\system32\taskmrg.exe" = C:\WINDOWS\system32\taskmrg.exe:*:Enabled:taskmrg -- File not found
"C:\Program Files\Internet Explorer\iexplore.exe" = C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer -- (Microsoft Corporation)
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)


[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = Multimedia Launcher
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 17
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features
"{5783F2D7-0109-0415-0000-0060B0CE6BBA}" = AutoCAD LT 2002 Polski
"{664FF011-D057-4758-B2C1-78B0B78DD823}" = Solid Edge V16
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{80280415-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional z programem FrontPage - Beta
"{90120000-0020-0415-0000-0000000FF1CE}" = Pakiet zgodności dla systemu Office 2007
"{90510409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Visio Professional 2003
"{AC76BA86-7AD7-1045-7B44-A92000000001}" = Adobe Reader 9.2 - Polish
"{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = PowerProducer
"{B97CF5C3-0487-11D8-A36E-0050BAE317E1}" = DVD Solution
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE3B8E96-B0AF-4871-9178-1519B58E3A93}" = A4 TECH USB PC Camera H
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{E0E8B3D1-E032-4A2B-9394-E27B22E8E6C4}" = MTpro 2.0
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"ActiveScan 2.0" = Panda ActiveScan 2.0
"AnswerWorks" = AnswerWorks Runtime
"ET3" = English Translator 3
"Gadu-Gadu" = Gadu-Gadu 7.0
"HijackThis" = HijackThis 1.99.1
"ie8" = Windows Internet Explorer 8
"InstallShield_{E0E8B3D1-E032-4A2B-9394-E27B22E8E6C4}" = MTpro 2.0
"KLiteCodecPack_is1" = K-Lite Codec Pack 3.2.0 Full
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Nero - Burning Rom!UninstallKey" = Nero OEM
"NVIDIA Drivers" = NVIDIA Drivers
"SopFilter" = SopFilter 3.0.5
"WinRAR archiver" = Archiwizator WinRAR

[color=#E56717]========== Last 10 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2009-12-02 17:52:49 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-12-02 17:52:49 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-12-06 08:13:57 | Computer Name = HOME | Source = crypt32 | ID = 131083
Description = Nie można wyodrębnić głównej listy innych firm z pliku cab automatycznej
aktualizacji z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>,
wystąpił błąd: Wystąpił wewnętrzny błąd obsługi łańcucha certyfikatów. 

Error - 2009-12-06 19:34:59 | Computer Name = HOME | Source = MsiInstaller | ID = 11931
Description = Product: 3D Canvas -- Error 1931. Usługa Instalator Windows nie może
zaktualizować pliku systemowego C:\WINDOWS\system32\dx7vb.dll, ponieważ jest on
zabezpieczony przez system Windows. Aby ten program działał poprawnie, może zajść
potrzeba zaktualizowania systemu operacyjnego. Wersja pakietu: 5.3.2600.2180, wersja
OS Protected: 5.3.2600.2180

Error - 2009-12-06 19:35:04 | Computer Name = HOME | Source = MsiInstaller | ID = 11931
Description = Product: 3D Canvas -- Error 1931. Usługa Instalator Windows nie może
zaktualizować pliku systemowego C:\WINDOWS\system32\dx7vb.dll, ponieważ jest on
zabezpieczony przez system Windows. Aby ten program działał poprawnie, może zajść
potrzeba zaktualizowania systemu operacyjnego. Wersja pakietu: 5.3.2600.2180, wersja
OS Protected: 5.3.2600.2180

Error - 2009-12-06 19:35:06 | Computer Name = HOME | Source = MsiInstaller | ID = 11931
Description = Product: 3D Canvas -- Error 1931. Usługa Instalator Windows nie może
zaktualizować pliku systemowego C:\WINDOWS\system32\dx7vb.dll, ponieważ jest on
zabezpieczony przez system Windows. Aby ten program działał poprawnie, może zajść
potrzeba zaktualizowania systemu operacyjnego. Wersja pakietu: 5.3.2600.2180, wersja
OS Protected: 5.3.2600.2180

Error - 2009-12-08 13:59:00 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-12-09 12:25:02 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-12-09 12:25:02 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-12-09 12:32:17 | Computer Name = HOME | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

[ System Events ]
Error - 2009-11-20 09:07:49 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:07:53 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:07:57 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:08:01 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:32:50 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:32:55 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:33:00 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:33:04 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-20 09:33:09 | Computer Name = HOME | Source = Cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-11-24 15:04:13 | Computer Name = HOME | Source = ipnathlp | ID = 32003
Description = Translator adresów sieciowych (NAT) nie może zażądać wykonania operacji
przez
moduł tłumaczący, pracujący w trybie jądra.  Może to wskazywać na błąd konfiguracji,
niewystarczające zasoby  lub na błąd wewnętrzny.  Dane zawierają kod błędu.


< End of report >
breidak
~user
 
Posty: 50
Dołączenie: 05 Sie 2005, 15:57




Powróć do Bezpieczeństwo

Kto jest na forum

Użytkownicy przeglądający to forum: Brak zarejestrowanych użytkowników oraz 7 gości