• Ogłoszenie:

Duża liczba aktywnych procesów, wolny komputer

Bezpieczeństwo systemów, usuwanie wirusów, dobieranie programów antywirusowych. Obowiązkowe logi w tym dziale: trzy z FRST + Gmer.

Duża liczba aktywnych procesów, wolny komputer

Postprzez breidak 08 Lut 2010, 11:39

reklama
WITAM,

Komputer bardzo długo się uruchamia. A podczas pracy ciągle pracują jakieś procesy\ które mocno go obciążają.

Kod: Zaznacz wszystko
OTL Extras logfile created on: 2010-02-08 10:51:25 - Run 1
OTL by OldTimer - Version 3.1.28.0     Folder = C:\Documents and Settings\Toshiba\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

511,00 Mb Total Physical Memory | 129,00 Mb Available Physical Memory | 25,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 64,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 24,41 Gb Total Space | 8,38 Gb Free Space | 34,31% Space Free | Partition Type: NTFS
Drive D: | 50,11 Gb Total Space | 32,56 Gb Free Space | 64,98% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: TOSHIBA_113
Current User Name: Toshiba
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-1708537768-1677128483-1343024091-1004\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office10\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office10\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1947:TCP" = 1947:TCP:*:Enabled:HASP SRM
"1947:UDP" = 1947:UDP:*:Enabled:HASP SRM
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"E:\Installation\Setupx.exe" = E:\Installation\Setupx.exe:*:Enabled:Nero ProductSetup -- File not found
"C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- (Apple Inc.)
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"\\s9serwer.mech.pk.edu.pl\Kopia\Instalki\DOS\Ghost\Symantec\Ghost7\GhostSrv.exe" = \\s9serwer.mech.pk.edu.pl\Kopia\Instalki\DOS\Ghost\Symantec\Ghost7\GhostSrv.exe:*:Enabled:GhostSrv.exe
"C:\Documents and Settings\Toshiba\Pulpit\Ghost7\GhostSrv.exe" = C:\Documents and Settings\Toshiba\Pulpit\Ghost7\GhostSrv.exe:*:Enabled:Symantec Ghost Multicast Server for Windows -- File not found
"C:\Program Files\National Instruments\LabVIEW 7.1\LabVIEW.exe" = C:\Program Files\National Instruments\LabVIEW 7.1\LabVIEW.exe:*:Enabled:LabVIEW 7.1 Development System -- ()
"C:\Program Files\MATLAB\R2006b\bin\win32\MATLAB.exe" = C:\Program Files\MATLAB\R2006b\bin\win32\MATLAB.exe:*:Enabled:MATLAB -- File not found
"C:\Program Files\National Instruments\Shared\Example Finder\1.0\BIN\NIExampleFinder.exe" = C:\Program Files\National Instruments\Shared\Example Finder\1.0\BIN\NIExampleFinder.exe:*:Enabled:National Instruments Example Finder -- (National Instruments)
"E:\setup\HPZNET01.EXE" = E:\setup\HPZNET01.EXE:*:Enabled:hpznet01.exe -- File not found
"E:\setup\HPPAPD.EXE" = E:\setup\HPPAPD.EXE:*:Enabled:hppapd.exe -- File not found
"E:\setup\HPNTWKEXE.EXE" = E:\setup\HPNTWKEXE.EXE:*:Enabled:hpntwkexe.exe -- File not found
"C:\Program Files\Nowe Gadu-Gadu\gg.exe" = C:\Program Files\Nowe Gadu-Gadu\gg.exe:*:Enabled:Nowe Gadu-Gadu -- File not found
"C:\Program Files\Skype\Plugin Manager\skypePM.exe" = C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager -- File not found

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{02D998AF-9E04-4B94-8EF8-33FA1561A5AC}" = NI Remote PXI Provider for MAX
"{03178905-E40F-4FF3-AD16-D9310A89D8A6}" = NI Distribution Information - PDS English
"{05847CB0-F6C5-4081-BE14-C3AAF43B4D54}" = NI-ORB 1.2.0f0
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}" = HiJackThis
"{0AB0A4B5-5A09-4AC1-B4A6-7DC85EC9604B}" = NI Assistant Framework LabVIEW Code Generator 7.0
"{0C5DFF67-E58B-47E6-A57E-79E64A31D106}" = NI-RPC 3.2.0f0
"{1084B41C-4C5E-439F-8CDE-9589B667431E}" = NI VI Logger 2.0
"{11188AF1-6BBF-41E0-B09B-82AF6BC23C5E}" = NI PXI Provider for MAX 1.4.1
"{11A8F66F-7B73-422C-88B6-7187BEF92AE7}" = NI LabVIEW 7.1 Core Essentials
"{135BA9A6-495A-4FE9-B1A1-AB4DA449CAB1}" = hppLJP2015
"{1421412D-E1DD-420E-AE55-EFA52F703B0A}" = NI DSC Common Tools 7.1
"{162B71B8-8464-4680-A086-601D555B331D}" = Apple Mobile Device Support
"{16EF2381-DAB4-4D6E-8DA3-E89F5F0A81BD}" = NI-DAQ C and VB6 API 7.5
"{17BCC44A-67EC-4F69-903E-1A62E4BF93F4}" = NI SCXI 1.2.0
"{1A55480E-26E3-40A8-B51A-4397B4FAFB6D}" = NI-VXI Support for LabVIEW 1.2.1f0
"{1D4C2F2A-236A-42F4-97A0-EC944E78EBDC}" = NI LabVIEW Run-Time Engine 7.0
"{1F73D672-6175-4A1D-B3C1-420439D03D0F}" = Product_SF_Full_QFolder
"{2033EC37-ADA2-42A7-B306-1E03C9FACB18}" = NI Assistant Framework LabVIEW Code Generator 7.1
"{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}" = QuickTime
"{218AC241-61AF-42A0-B1D6-E29477451B24}" = NI-DAQmx Switch Core 1.5.0
"{251F8A77-7ACB-47BB-98CE-9F671B69D90F}" = NI Example Finder 2.0
"{25E7DBD7-81D6-450E-B5ED-D16A1ED544BA}" = Traditional NI-DAQ Documentation 1.0.3
"{2678AD44-25CB-47AF-9E70-A39BF9304D78}" = NI-DAQmx Documentation 1.1.1
"{2878CD7B-FD12-4ADE-9B90-11DF678EF18C}" = NI Instrument IO Assistant for LabVIEW 7.1
"{2AFF2951-86B1-3C53-B34D-B440F11E7D0A}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - PLK
"{2C224D3E-41C5-4A7F-8994-FB6EB883A01B}" = NI-DAQmx MAX Support 1.3.0
"{2CAD8398-1E78-4615-81A8-EE5B755382FD}" = NI DAQ Assistant 1.4.0
"{2DC7FEF0-C808-4EEF-881E-4E575F5A0EE3}" = NI-DAQmx DSA Support 1.4.0
"{32B1B526-2D76-486C-B527-BA993A2BBC4C}" = NI-653x Support
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35C9F9CA-B2C0-4C81-AD54-32F55E413529}" = NI License Manager
"{395D5342-81E0-46B7-8AF7-1EEC37C006B4}" = NI-DAQ Document Set 1.0.5
"{3B77F9F1-56FA-4DF9-9B5A-BEF0071126A7}" = NI-VISA 3.1
"{3BE480ED-E17A-431A-981C-5C2EDDBCD3BF}" = Macromedia Flash MX
"{3CA1BED8-F427-4369-9A5C-A2EBA60D9C69}" = NI-RPC 3.1.1f0 for PharLap
"{3CF0858D-1AC5-4308-9DE7-AD15288A8BDC}" = TOSHIBA Console
"{414C803A-6115-4DB6-BD4E-FD81EA6BC71C}" = Product_SF_Min_QFolder
"{46893F4E-733A-426D-80BE-929A5A269646}" = NI LVBrokerAux71
"{4702451F-0229-4D3D-ACDE-6EA5948EFACA}" = NI-RPC 3.2.0f0 for Phar Lap ETS
"{4B278E30-F8A2-4841-B8D4-AF1EC8DE7157}" = NI-DAQmx 7.5
"{4CEE515B-8F33-4926-B6D4-0A88577434E3}" = NI DDSP
"{4D826618-59C6-11D4-976E-00C04F8EEB39}" = Macromedia FreeHand 10
"{4E5921B6-B308-4082-A67A-8F5B5E89267C}" = NI DataSocket 4.2
"{52A0629C-FBD8-4829-B804-2340178CBA09}" = NI LabVIEW Run-Time Engine 7.1
"{54CED721-471C-4F40-914C-4630DE07CE8D}" = NI LVBroker
"{561D20B1-766E-4EA5-8A1D-B7357D903673}" = hppIOFiles
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{58ECE031-9AAD-4011-B34A-BC78E77527E2}" = hppMSRedist
"{5A0866F2-ADC6-422C-868F-8C82594BE290}" = NI Measurements eXtensions for PAL 1.3.0
"{5A0DDC27-88E5-3CAD-BC3D-28FFD05CA6B9}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - PLK
"{5B475B9C-C4DF-4B29-BD1F-8B57A05EA457}" = NI Measurement Studio for VS2003 Update 7.1.0.308
"{607C8C4E-5FEC-4656-9DA1-3D6D6B7DE0ED}" = NI LabVIEW Advanced Analysis 7.1
"{6441FECE-0E73-4326-81BF-68503E897820}" = CorePLS_Min_QFolder
"{64CB2553-C109-4132-AA51-1F421B515FD1}" = Microsoft .NET Framework 1.1 Polish Language Pack
"{664FF011-D057-4758-B2C1-78B0B78DD823}" = Solid Edge V16
"{674AF63E-13CA-4C78-ADD1-FE4008868A80}" = Grapher 7
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69E6C13B-CF6B-47A6-B7A5-77FE82B2CB40}" = hppFonts
"{6B297090-F507-4988-9586-2CEF0F03709F}" = NI-MXDF 1.3.0f0
"{6D5AD6D8-B42F-4798-A702-5C1A2EC92378}" = NI-PAL 1.9.2f0
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{76E46F23-8DFB-4993-895E-80D95FEE6E86}" = Atheros Client Utility
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7959721D-8268-4565-9E0E-C41A9F4848A9}" = SigmaTel AC97 Audio Drivers
"{7A178F2E-92F6-437C-A709-69685D1C0F2B}" = hppTLBXFXP2015
"{7B7AFA74-1A64-42B4-9D4A-A55472D868A7}" = NI-VISA Server 3.1
"{7E4F4F5D-DCD7-4890-B506-5691257F05D3}" = NI Fusion Standard Library
"{7EB0D766-982D-4187-88A7-6E0780BAA69F}" = NI LabVIEW Professional Tools 7.1
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{84D0BDE5-5871-4EC8-8D31-63354170BF55}" = NI LabVIEW Picture Control and CIN Tools 7.1
"{85376E80-1A9D-4b13-92FE-5B0797FFB7DA}" = Intel(R) PROSet for Wireless
"{87559825-87E5-400E-A8DC-D10A50C990FE}" = NI-MDBG 1.2.0f0
"{88D80694-C429-11D6-9B3E-006008CECC9A}" = NI-488.2 1.74
"{89C491E5-AA98-4BD7-A85D-5FC5C3D40278}" = NI Assistant Framework
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8B4AB829-DFD3-436D-B808-D9733D76C590}" = Macromedia Dreamweaver MX
"{8C0118CC-F720-45FF-A4DA-44AD77B2E73C}" = CorePLS_Full_QFolder
"{8CC5833C-418A-40BB-9B16-D8F26B606BF5}" = ESET NOD32 Antivirus
"{8E72B982-D54F-486F-B35A-C24B6F171045}" = Nero 7 Essentials
"{90110415-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional
"{91CC68A4-531E-4AC7-BE0C-EF8D79A0FB4F}" = NI-VISA Runtime 3.1
"{928BF1DA-CBF0-4BF7-A351-8E0F9EC77337}" = NI Spy 2.1.0f0
"{930B2432-43D4-11D5-9871-00C04F8EEB39}" = Macromedia Fireworks MX
"{932078BD-8576-449D-A6B5-CC9A84AA0612}" = NI-MRU 2.3.0f0
"{93C069D4-2F86-4570-A6DF-BFABBA1E4AFD}" = hpzTLBXFX
"{94435A21-A597-41AC-85BA-680E8348EB50}" = NI LabVIEW Application Builder 7.1
"{9503403E-4FC7-45FC-AB48-F1F1D939AE6E}" = NI Legacy DAQmxRF
"{951BAE8C-D04C-4742-9FB4-659FEC299916}" = NI Remote Provider for MAX
"{985EF2B3-913B-4260-86E7-6C710D99B8F6}" = NI-DAQ Provider for MAX
"{98E8A2EF-4EAE-43B8-A172-74842B764777}" = InterVideo WinDVD 4
"{9CED486E-968D-4821-B379-594B04F4B476}" = NI Uninstaller
"{9EFDFBA8-9174-3C61-8645-28376C5CA994}" = Microsoft .NET Framework 3.5 Language Pack SP1 - plk
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A3E1134C-5AB6-4FD6-B11B-407B7D97FBD0}" = NI LVBrokerAux1071
"{A5BA14E0-7384-11D4-BAE7-00409631A2C8}" = Macromedia Extension Manager
"{A6690C0E-B96E-4F0F-A8EB-D5B332454AC6}" = TOSHIBA Controls
"{A6EF300B-81DD-4B08-BEEB-7FD0223AD04E}" = NI-DAQmx support for LabVIEW
"{A9C61320-FA84-4B54-AEAA-3BEFE95B6FA8}" = NI LabWindows/CVI 7.0 Code Generator
"{AAA11090-6E99-4655-AAF5-57EB5F677D0C}" = MarketResearch
"{B6905B64-2494-4367-84E6-53C77B3F74E1}" = NI Assistant Framework LabVIEW Code Generator 6.1
"{B6A40705-5D98-4820-A6C2-66CE2BF30FF5}" = NI Measurement Studio Recipe Processor
"{B9C78D5B-665C-4DCB-BE82-3F71DD263968}" = NI Instrument IO Assistant
"{BB36E39E-ED11-43A3-A7FA-B4E550FFA35E}" = NI LVBrokerAux70
"{BC508FA4-E58D-42EE-AAEA-661A9B260B42}" = NI MIO Device Drivers 1.6.0
"{BDD83DC9-BEE9-4654-A5DA-CC46C250088D}" = TOSHIBA ConfigFree
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C26B06A9-27BB-45B0-9873-9C623EC2BA38}" = iTunes
"{C6C39548-7827-4CC6-AE09-C23A39DC6B6E}" = NI Timing 1.4.1
"{CA72FBFF-071C-4BCD-84D5-C125AFF85E1B}" = NI Measurement & Automation Explorer 3.1.1
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC4A73BF-938E-4C19-A553-853C035C9BA1}" = LightScribe System Software  1.10.13.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CFB61D8C-D651-4D7C-80B4-C78676A0AF1F}" = hppusgP2015
"{D16533C5-4A6B-48FF-BA0A-6E98BE54EEB7}" = NI GPIB Provider for MAX
"{D190BA95-EE40-47B6-9C91-2318F7074149}" = NI-VISA Provider 3.1 for MAX
"{D3BA79B7-823E-437A-A7E0-BDB2CB62C7BE}" = NI LabVIEW 7.1
"{D66DE96B-E66A-4AE4-BA7F-468C0276B4BF}" = NI Common Digital 1.2.0
"{D72A69EB-6549-472B-8AEE-2115418C3AD4}" = NI STC 1.2.0
"{E0E8B3D1-E032-4A2B-9394-E27B22E8E6C4}" = MTpro 2.0
"{E4F5DCC3-149B-4A79-B118-7100807C4A05}" = NI Citadel 5.1.1
"{E862BC9A-A1C6-4863-BB20-B5F39051A18A}" = NI Calibration Provider for MAX
"{E901B3E8-8499-42CA-8B70-3E28B28BB4FA}" = NI Software Provider for MAX
"{EAB8E65F-96AD-45F8-B0D7-54DE0158F542}" = NI-DAQ INF Files
"{EBD8ED30-4E38-4F21-A109-722D16B8D86C}" = NI PXI Platform Services for Windows 1.3.2
"{EC60B018-251A-47E7-A838-CECB70AE46EF}" = NI LabVIEW Service Locator 1.0
"{EC8A7018-174B-45AE-AF28-D34D3F4C0564}" = NI Historical Data Viewer 5.0.1
"{ECF84A22-943E-4073-9FE8-981CE8FA8704}" = NI-DIM 1.2.1f0
"{ECFDD6BD-E0C0-41CC-A171-E6D6AF4C0E93}" = HP Software Update
"{EDAE4F43-833C-443B-8DB5-129F897DF3E8}" = hppWebRegMM
"{F1E11179-CE85-49F6-9478-6D6146FD7FDC}" = NI-DAQ 7.2, Traditional
"{F38D0F99-1BFC-47AB-AC36-8D9D43700CFB}" = hppManualsP2015
"{F67F48B3-B868-47A4-8CD9-058B8F17FBE6}" = NI Logos 4.5.2
"{F7BCD5CA-0E96-4F60-9613-E23E87131833}" = NI DPPH
"{FCC9BA43-E00A-4269-B0CA-6708ED300914}" = NI LabVIEW Full 7.1
"ActiveScan 2.0" = Panda ActiveScan 2.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AMA" = AutoCAD 2000 Migration Assistance
"AutoCAD 2000 - Polski - odinstalowanie" = AutoCAD 2000 - Polski
"AutoCAD LT 2000 Uninstall" = AutoCAD LT 2000
"ezHTML_doklejki_is1" = Edytor Znaczników HTML 2.0PR1 Alef
"GOM Player" = GOM Player
"HP LaserJet P2015" = HP LaserJet P2015 Series 1.0
"HPExtendedCapabilities" = HP Extended Capabilities 6.0
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{E0E8B3D1-E032-4A2B-9394-E27B22E8E6C4}" = MTpro 2.0
"MatlabR2008b" = MATLAB R2008b
"MatlabR2009b" = MATLAB R2009b
"Microsoft .NET Framework 1.1  (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - plk" = Pakiet językowy programu Microsoft .NET Framework 3.5 z dodatkiem SP1 — PLK
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.0.15)" = Mozilla Firefox (3.0.15)
"Mozilla Thunderbird (2.0.0.21)" = Mozilla Thunderbird (2.0.0.21)
"NI Uninstaller" = National Instruments Software
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA" = NVIDIA Windows 2000/XP Display Drivers
"PowerDVD" = PowerDVD
"PROSet" = Intel(R) PRO Network Adapters and Drivers
"RealAlt_is1" = Real Alternative 1.9.0
"ST6UNST #1" = motrona OS 3.2
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TDspBtn" = Narzędzie TOSHIBA do zmiany wyświetlacza
"TFNF5" = Toshiba Hotkey Utility for Display Devices
"TOSHIBA Software Modem" = TOSHIBA Software Modem
"TOSHIBA Utilities" = TOSHIBA Utilities
"Totalcmd" = Total Commander (Remove or Repair)
"tv_enua" = Lernout & Hauspie TruVoice American English TTS Engine
"WIC" = Windows Imaging Component
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows XP Service Pack" = Windows XP Service Pack 3
"winscp3_is1" = WinSCP 4.2.1 beta
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0

[color=#E56717]========== Last 10 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2009-05-04 06:38:08 | Computer Name = TOSHIBA_113 | Source = MsiInstaller | ID = 1013
Description = Product: NI Uninstaller -- You already have a higher version of Measurement
& Automation Explorer in your system. You must uninstall it before installing NI
Uninstaller.

Error - 2009-05-04 06:38:08 | Computer Name = TOSHIBA_113 | Source = MsiInstaller | ID = 1013
Description = Product: NI Uninstaller -- Installation aborted:  A higher version
of this product is already installed.

Error - 2009-05-04 06:38:08 | Computer Name = TOSHIBA_113 | Source = MsiInstaller | ID = 1013
Description = Product: NI Uninstaller -- You have a higher version of NI SCXI Core
installed in your system. You must uninstall it before installing NI Uninstaller.

Error - 2009-07-07 08:31:53 | Computer Name = TOSHIBA_113 | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca LabVIEW.exe, wersja 7.1.0.4000, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-07-08 17:11:12 | Computer Name = TOSHIBA_113 | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca Dreamweaver.exe, wersja 6.0.1722.0, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-11-09 16:17:44 | Computer Name = TOSHIBA_113 | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca WINWORD.EXE, wersja 10.0.6854.0, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-11-09 16:17:44 | Computer Name = TOSHIBA_113 | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca WINWORD.EXE, wersja 10.0.6854.0, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-11-09 16:18:28 | Computer Name = TOSHIBA_113 | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca POWERPNT.EXE, wersja 10.0.6853.0, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-11-10 07:25:01 | Computer Name = TOSHIBA_113 | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca ShowTime.exe, wersja 3.10.1.0, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-11-11 04:24:18 | Computer Name = TOSHIBA_113 | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca thunderbird.exe, wersja 1.8.20090.30215, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

[ System Events ]
Error - 2010-01-08 07:34:27 | Computer Name = TOSHIBA_113 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Sentinel z powodu następującego błędu:
  %%20

Error - 2010-01-08 07:47:41 | Computer Name = TOSHIBA_113 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Sentinel z powodu następującego błędu:
  %%20

Error - 2010-01-12 06:12:47 | Computer Name = TOSHIBA_113 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Sentinel z powodu następującego błędu:
  %%20

Error - 2010-01-12 06:14:27 | Computer Name = TOSHIBA_113 | Source = Windows Update Agent | ID = 16
Description = Nie można nawiązać połączenia: System Windows nie może połączyć się
z usługą aktualizacji automatycznych i dlatego nie można pobrać i zainstalować
aktualizacji zgodnie z ustalonym harmonogramem. System Windows będzie kontynuował
próby ustanowienia połączenia.

Error - 2010-01-17 05:08:14 | Computer Name = TOSHIBA_113 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Sentinel z powodu następującego błędu:
  %%20

Error - 2010-01-17 05:09:44 | Computer Name = TOSHIBA_113 | Source = Windows Update Agent | ID = 16
Description = Nie można nawiązać połączenia: System Windows nie może połączyć się
z usługą aktualizacji automatycznych i dlatego nie można pobrać i zainstalować
aktualizacji zgodnie z ustalonym harmonogramem. System Windows będzie kontynuował
próby ustanowienia połączenia.

Error - 2010-01-23 12:59:30 | Computer Name = TOSHIBA_113 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Sentinel z powodu następującego błędu:
  %%20

Error - 2010-01-23 13:00:26 | Computer Name = TOSHIBA_113 | Source = Windows Update Agent | ID = 16
Description = Nie można nawiązać połączenia: System Windows nie może połączyć się
z usługą aktualizacji automatycznych i dlatego nie można pobrać i zainstalować
aktualizacji zgodnie z ustalonym harmonogramem. System Windows będzie kontynuował
próby ustanowienia połączenia.

Error - 2010-02-08 05:14:23 | Computer Name = TOSHIBA_113 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Sentinel z powodu następującego błędu:
  %%20

Error - 2010-02-08 05:17:23 | Computer Name = TOSHIBA_113 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Sentinel z powodu następującego błędu:
  %%20


< End of report >



DZIĘKI
Ostatnio edytowany przez breidak 08 Lut 2010, 12:21, edytowano w sumie 2 razy
breidak
~user
 
Posty: 50
Dołączenie: 05 Sie 2005, 15:57



Wolny komputer

Postprzez Mikou@j 08 Lut 2010, 11:43

Proponuje najpierw przeczytać zasady-wstawiania-logow-vt93842.html
ASUS TUF Gaming FX505DT R5-3550H/16GB || XBOX ONE + LG 43UJ6307 || Nintendo Switch ||
Image
"Nothing is true, everything is permitted"
NIE POMAGAM NA PW :!:
Awatar użytkownika
Mikou@j
»ekspert
»ekspert
 
Posty: 12734
Dołączenie: 03 Sty 2006, 21:48
Miejscowość: Katowice
Pochwały: 1007



Wolny komputer

Postprzez breidak 08 Lut 2010, 11:58

Kod: Zaznacz wszystko
OTL logfile created on: 2010-02-08 10:51:25 - Run 1
OTL by OldTimer - Version 3.1.28.0     Folder = C:\Documents and Settings\Toshiba\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

511,00 Mb Total Physical Memory | 129,00 Mb Available Physical Memory | 25,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 64,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 24,41 Gb Total Space | 8,38 Gb Free Space | 34,31% Space Free | Partition Type: NTFS
Drive D: | 50,11 Gb Total Space | 32,56 Gb Free Space | 64,98% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: TOSHIBA_113
Current User Name: Toshiba
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2010-02-08 10:50:11 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Toshiba\Pulpit\OTL.exe
PRC - [2009-11-09 22:26:40 | 000,307,704 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009-03-12 19:56:58 | 000,342,312 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.exe
PRC - [2009-03-12 19:56:52 | 000,656,168 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe
PRC - [2009-03-05 23:04:30 | 000,132,424 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2008-12-12 10:17:38 | 000,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2008-10-24 20:51:16 | 000,468,224 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2008-10-24 20:50:00 | 001,451,264 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2008-07-17 15:37:44 | 002,549,248 | ---- | M] (Aladdin Knowledge Systems Ltd.) -- C:\WINDOWS\system32\hasplms.exe
PRC - [2008-04-14 18:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007-08-23 17:40:48 | 000,079,136 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe
PRC - [2007-08-23 17:36:30 | 000,455,968 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
PRC - [2007-06-27 19:04:00 | 001,213,736 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
PRC - [2007-06-27 19:04:00 | 000,279,848 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
PRC - [2007-06-27 19:03:40 | 000,152,872 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2007-06-25 08:47:24 | 001,629,480 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe
PRC - [2007-06-25 08:47:12 | 001,552,680 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
PRC - [2007-06-25 08:47:02 | 001,057,064 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\InCD\InCD.exe
PRC - [2006-06-15 07:43:20 | 000,049,152 | ---- | M] (HP) -- C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe
PRC - [2006-06-09 10:23:28 | 000,036,864 | ---- | M] ( ) -- C:\Program Files\HP\HP UT\bin\hppusg.exe
PRC - [2005-03-01 08:13:50 | 000,005,730 | ---- | M] (National Instruments Corporation) -- C:\WINDOWS\system32\nipalsm.exe
PRC - [2005-02-16 22:11:42 | 000,049,152 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
PRC - [2005-01-08 02:10:34 | 001,970,233 | ---- | M] (National Instruments, Inc.) -- C:\WINDOWS\system32\nicitdl5.exe
PRC - [2004-11-10 07:21:30 | 000,679,992 | ---- | M] (National Instruments, Inc.) -- C:\WINDOWS\system32\lkcitdl.exe
PRC - [2004-11-10 07:19:48 | 000,045,111 | ---- | M] (National Instruments, Inc.) -- C:\WINDOWS\system32\lktsrv.exe
PRC - [2004-11-10 07:19:48 | 000,045,110 | ---- | M] (National Instruments, Inc.) -- C:\WINDOWS\system32\lkads.exe
PRC - [2003-12-16 08:30:06 | 000,356,352 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\ZCfgSvc.exe
PRC - [2003-12-16 08:24:20 | 000,184,320 | ---- | M] (Intel) -- C:\WINDOWS\system32\1XConfig.exe
PRC - [2003-12-16 08:23:40 | 000,303,171 | ---- | M] (Intel Corporation ) -- C:\WINDOWS\system32\S24EvMon.exe
PRC - [2003-12-16 08:22:36 | 000,122,880 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\RegSrvc.exe
PRC - [2003-12-02 17:05:54 | 000,028,672 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
PRC - [2003-09-18 10:43:54 | 000,102,400 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TOSHIBA Controls\TFncKy.exe
PRC - [2003-08-28 17:21:00 | 000,077,824 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2003-08-03 16:01:14 | 000,086,073 | ---- | M] (SigmaTel Inc.) -- C:\Program Files\SigmaTel\SigmaTel AC97 Audio Drivers\stacmon.exe
PRC - [2003-07-18 17:41:26 | 000,073,728 | ---- | M] (TOSHIBA Corp.) -- C:\WINDOWS\system32\TFNF5.exe
PRC - [2003-05-30 19:25:02 | 000,110,592 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
PRC - [2003-05-30 19:23:14 | 000,614,400 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
PRC - [2003-05-23 14:33:38 | 000,253,952 | ---- | M] (TOSHIBA Corp.) -- C:\WINDOWS\system32\00THotkey.exe
PRC - [2003-05-01 02:00:22 | 000,049,152 | ---- | M] (National Instruments) -- C:\WINDOWS\system32\niSvcLoc.exe
PRC - [2003-04-18 11:20:10 | 000,088,363 | ---- | M] (Agere Systems) -- C:\WINDOWS\agrsmmsg.exe
PRC - [2003-01-02 16:16:38 | 000,172,032 | ---- | M] (Agere Systems) -- C:\Program Files\ltmoh\ltmoh.exe


[color=#E56717]========== Modules (SafeList) ==========[/color]

MOD - [2010-02-08 10:50:11 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Toshiba\Pulpit\OTL.exe
MOD - [2003-05-30 19:24:24 | 000,065,536 | ---- | M] (Synaptics, Inc.) -- C:\WINDOWS\system32\SynTPFcs.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2009-03-12 19:56:52 | 000,656,168 | ---- | M] (Apple Inc.) [On_Demand | Running] -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service)
SRV - [2009-03-05 23:04:30 | 000,132,424 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2008-12-12 10:17:38 | 000,238,888 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service)
SRV - [2008-10-24 20:56:30 | 000,019,200 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2008-10-24 20:51:16 | 000,468,224 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2008-07-17 15:37:44 | 002,549,248 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Auto | Running] -- C:\WINDOWS\System32\hasplms.exe -- (hasplms)
SRV - [2008-04-14 18:20:33 | 000,028,672 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\irmon.dll -- (Irmon)
SRV - [2007-08-23 17:40:48 | 000,079,136 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService)
SRV - [2007-06-29 19:16:56 | 000,800,040 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe -- (NBService)
SRV - [2007-06-27 19:04:00 | 000,279,848 | ---- | M] (Nero AG) [On_Demand | Running] -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)
SRV - [2007-06-25 08:47:12 | 001,552,680 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe -- (InCDsrv)
SRV - [2005-03-01 08:13:50 | 000,005,730 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\WINDOWS\system32\nipalsm.exe -- (nipxirmu)
SRV - [2005-03-01 08:13:50 | 000,005,730 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\WINDOWS\system32\nipalsm.exe -- (nidevldu)
SRV - [2005-01-08 02:10:34 | 001,970,233 | ---- | M] (National Instruments, Inc.) [Auto | Running] -- C:\WINDOWS\system32\nicitdl5.exe -- (NICitadel5Service)
SRV - [2004-11-10 07:21:30 | 000,679,992 | ---- | M] (National Instruments, Inc.) [Auto | Running] -- C:\WINDOWS\system32\lkcitdl.exe -- (LkCitadelServer)
SRV - [2004-11-10 07:19:48 | 000,045,111 | ---- | M] (National Instruments, Inc.) [Auto | Running] -- C:\WINDOWS\system32\lktsrv.exe -- (LkTimeSync)
SRV - [2004-11-10 07:19:48 | 000,045,110 | ---- | M] (National Instruments, Inc.) [Auto | Running] -- C:\WINDOWS\system32\lkads.exe -- (LkClassAds)
SRV - [2004-07-14 12:27:12 | 000,696,320 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\National Instruments\Shared\License Manager\Bin\lmgrd.exe -- (NILM License manager)
SRV - [2003-12-16 08:23:40 | 000,303,171 | ---- | M] (Intel Corporation ) [Auto | Running] -- C:\WINDOWS\system32\S24EvMon.exe -- (S24EventMonitor)
SRV - [2003-12-16 08:22:36 | 000,122,880 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\WINDOWS\system32\RegSrvc.exe -- (RegSrvc)
SRV - [2003-12-02 17:05:54 | 000,028,672 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe -- (CFSvcs)
SRV - [2003-08-28 17:21:00 | 000,077,824 | R--- | M] (NVIDIA Corporation) [Auto | Running] -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc)
SRV - [2003-05-01 02:00:22 | 000,049,152 | ---- | M] (National Instruments) [Auto | Running] -- C:\WINDOWS\System32\niSvcLoc.exe -- (niSvcLoc)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2009-06-30 09:37:16 | 000,028,552 | ---- | M] (Panda Security, S.L.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\pavboot.sys -- (pavboot)
DRV - [2009-03-11 11:35:48 | 000,014,037 | ---- | M] (Meetinghouse Data Communications) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\mdc8021x.sys -- (MDC8021X) AEGIS Protocol (IEEE 802.1x)
DRV - [2009-01-15 11:19:36 | 000,023,848 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV - [2008-10-24 20:53:28 | 000,034,824 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2008-10-24 20:46:24 | 000,053,256 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\easdrv.sys -- (easdrv)
DRV - [2008-10-24 20:45:32 | 000,039,944 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2008-03-27 17:50:00 | 000,350,720 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\aksfridge.sys -- (aksfridge)
DRV - [2008-02-11 15:55:04 | 000,586,240 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hardlock.sys -- (Hardlock)
DRV - [2007-11-13 11:25:55 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2007-06-25 08:47:12 | 000,038,440 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDRm.sys -- (incdrm)
DRV - [2007-06-25 08:47:12 | 000,036,776 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDPass.sys -- (InCDPass)
DRV - [2007-06-25 08:47:02 | 000,119,080 | ---- | M] (Nero AG) [File_System | Disabled | Running] -- C:\WINDOWS\system32\drivers\InCDfs.sys -- (InCDfs)
DRV - [2006-03-02 13:00:00 | 000,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
DRV - [2005-07-13 01:36:18 | 000,711,168 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nidsark.dll -- (nidsark)
DRV - [2005-07-07 19:01:50 | 000,129,536 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nimsdrk.dll -- (nimsdrk)
DRV - [2005-07-06 19:54:54 | 000,418,816 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\niwfrk.dll -- (niwfrk)
DRV - [2005-07-06 19:54:20 | 000,648,192 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nissrk.dll -- (nissrk)
DRV - [2005-07-06 19:54:12 | 000,335,360 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\niemrk.dll -- (niemrk)
DRV - [2005-07-06 19:53:44 | 000,872,448 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nixsrk.dll -- (nixsrk)
DRV - [2005-07-06 19:53:38 | 000,485,376 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\niesrk.dll -- (niesrk)
DRV - [2005-07-06 07:32:42 | 000,473,088 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\niswdk.dll -- (niswdk)
DRV - [2005-07-03 12:38:10 | 000,043,008 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nispdk.dll -- (nispdk)
DRV - [2005-07-03 12:37:58 | 000,500,736 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\niscdk.dll -- (niscdk)
DRV - [2005-07-03 11:45:18 | 000,162,816 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nisftk.dll -- (nisftk)
DRV - [2005-07-02 20:27:44 | 000,012,800 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\usb6xxxk.dll -- (usb6xxxk)
DRV - [2005-07-02 20:27:12 | 000,035,328 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nifslk.dll -- (nifslk)
DRV - [2005-07-02 19:38:34 | 000,231,424 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nisdigk.dll -- (nisdigk)
DRV - [2005-07-02 18:30:36 | 000,692,224 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nitiork.dll -- (nitiork)
DRV - [2005-06-30 11:25:58 | 000,160,768 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nidmxfk.dll -- (nidmxfk)
DRV - [2005-06-27 11:17:14 | 000,011,264 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nilvaik.dll -- (nilvaik)
DRV - [2005-06-27 09:20:46 | 000,091,746 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nipalusb.sys -- (nipalusb)
DRV - [2005-06-27 09:19:36 | 000,419,421 | ---- | M] (National Instruments Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\nipalk.sys -- (NIPALK)
DRV - [2005-06-22 13:27:24 | 000,110,080 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nistcrk.dll -- (nistcrk)
DRV - [2005-06-21 14:37:20 | 000,050,688 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nimstsk.dll -- (nimstsk)
DRV - [2005-06-17 15:41:10 | 000,151,683 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nimsrlk.dll -- (nimsrlk)
DRV - [2005-06-17 15:41:06 | 000,014,464 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nimslk.dll -- (nimslk)
DRV - [2005-04-13 13:43:16 | 000,141,824 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nidimk.dll -- (nidimk)
DRV - [2005-03-05 03:18:10 | 000,169,472 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nicdrk.dll -- (nicdrk)
DRV - [2005-03-05 00:29:30 | 000,163,328 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nistc2k.dll -- (nistc2k)
DRV - [2005-03-04 20:33:06 | 000,018,944 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nimxpk.dll -- (nimxpk)
DRV - [2005-03-01 19:42:20 | 000,212,480 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nimxdfk.dll -- (nimxdfk)
DRV - [2005-03-01 19:18:50 | 000,170,496 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nimdbgk.dll -- (nimdbgk)
DRV - [2005-03-01 19:12:38 | 000,038,912 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\niorbk.dll -- (niorbk)
DRV - [2005-03-01 18:53:36 | 000,237,056 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nimru2k.dll -- (nimru2k)
DRV - [2004-10-19 14:30:04 | 000,041,075 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nipxirmk.dll -- (nipxirmk)
DRV - [2004-04-08 12:24:08 | 000,050,688 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nidmmk.dll -- (nidmmk)
DRV - [2004-04-08 12:21:38 | 000,674,304 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nidaq32k.sys -- (Nidaq32k)
DRV - [2004-04-08 11:04:44 | 000,111,616 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\niSTCk.dll -- (nistck)
DRV - [2004-04-08 11:04:20 | 000,030,208 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nimdsk.dll -- (nimdsk)
DRV - [2004-04-08 11:03:10 | 000,021,504 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nibffrk.dll -- (nibffrk)
DRV - [2004-04-08 11:03:08 | 000,037,376 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\niarbk.dll -- (niarbk)
DRV - [2004-04-01 09:16:24 | 000,010,829 | ---- | M] (National Instruments) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lvalarmk.dll -- (lvalarmk)
DRV - [2004-03-30 09:22:44 | 000,024,064 | ---- | M] (National Instruments) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NiViPxiK.sys -- (NiViPxiK)
DRV - [2004-01-02 02:52:34 | 001,646,720 | R--- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w22n51.sys -- (w22n51) Sterownik karty Intel(R)
DRV - [2003-12-16 08:16:26 | 000,010,970 | ---- | M] (Intel Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\s24trans.sys -- (s24trans)
DRV - [2003-08-28 17:21:00 | 001,370,796 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2003-08-07 15:52:00 | 000,009,216 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\TVALZ.SYS -- (TVALZ)
DRV - [2003-07-29 09:00:00 | 000,007,140 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\cvintdrv.sys -- (cvintdrv)
DRV - [2003-07-17 18:19:32 | 000,230,416 | R--- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\stac97.sys -- (STAC97) Audio Driver (WDM)
DRV - [2003-05-30 18:56:22 | 000,271,728 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SynTP.sys -- (SynTP)
DRV - [2003-01-29 14:35:00 | 000,012,032 | ---- | M] (TOSHIBA Corporation.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\Netdevio.sys -- (Netdevio)
DRV - [2002-12-20 13:07:34 | 001,164,576 | R--- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2002-09-25 06:09:12 | 000,140,800 | R--- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\e100b325.sys -- (E100B) Intel(R)
DRV - [2002-09-17 16:12:38 | 000,809,872 | R--- | M] (LT) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LTSM.sys -- (TOSHIBASoftModem)
DRV - [2002-07-17 13:08:12 | 000,056,904 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\gpibclsb.sys -- (gpibclsb)
DRV - [2002-07-17 13:08:12 | 000,034,664 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\gpibclsd.sys -- (gpibclsd)
DRV - [2001-11-13 08:47:26 | 000,041,324 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\winio.sys -- (WINIO)
DRV - [2001-09-11 11:54:32 | 000,038,425 | R--- | M] (SMC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\smcirda.sys -- (SMCIRDA)
DRV - [1997-12-23 02:02:46 | 000,023,936 | ---- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\aspi32.sys -- (Aspi32)
DRV - [1996-12-12 14:30:00 | 000,064,512 | ---- | M] () [Kernel | Auto | Stopped] -- C:\WINDOWS\System32\Drivers\SENTINEL.SYS -- (Sentinel)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]



IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1708537768-1677128483-1343024091-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.nasza-klasa.pl
IE - HKU\S-1-5-21-1708537768-1677128483-1343024091-1004\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-1708537768-1677128483-1343024091-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
IE - HKU\S-1-5-21-1708537768-1677128483-1343024091-1004\S-1-5-21-1708537768-1677128483-1343024091-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1708537768-1677128483-1343024091-1004\S-1-5-21-1708537768-1677128483-1343024091-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.defaultenginename: "Ask"
FF - prefs.js..browser.search.order.1: "Ask"
FF - prefs.js..browser.search.selectedEngine: "Ask"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.pl"
FF - prefs.js..extensions.enabledItems: {37E4D8EA-8BDA-4831-8EA1-89053939A250}:3.0.0.1
FF - prefs.js..keyword.URL: "http://toolbar.ask.com/toolbarv/askRedirect?o=101699&gct=&gc=1&q="

FF - HKLM\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-11-09 22:26:48 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.15\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-11-13 10:20:13 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 2.0.0.21\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2009-11-09 18:21:20 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 2.0.0.21\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins [2009-11-13 09:51:41 | 000,000,000 | ---D | M]

[2009-03-17 10:44:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Toshiba\Dane aplikacji\Mozilla\Extensions
[2010-02-08 10:35:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Toshiba\Dane aplikacji\Mozilla\Firefox\Profiles\7pecz7tj.default\extensions
[2009-11-26 11:27:27 | 000,000,000 | ---D | M] (PDF Download) -- C:\Documents and Settings\Toshiba\Dane aplikacji\Mozilla\Firefox\Profiles\7pecz7tj.default\extensions\{37E4D8EA-8BDA-4831-8EA1-89053939A250}
[2009-03-17 11:13:27 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\Toshiba\Dane aplikacji\Mozilla\Firefox\Profiles\7pecz7tj.default\searchplugins\ask.xml
[2009-11-13 10:32:37 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009-01-28 19:46:54 | 000,307,200 | ---- | M] (ESKA) -- C:\Program Files\Mozilla Firefox\plugins\npOggX.dll
[2009-09-17 09:47:31 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2009-09-17 09:47:31 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2009-09-17 09:47:32 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2009-09-17 09:47:32 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2009-09-17 09:47:32 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2009-09-17 09:47:32 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2006-03-02 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [000StTHK] C:\WINDOWS\System32\000StTHK.exe ()
O4 - HKLM..\Run: [00THotkey] C:\WINDOWS\system32\00THotkey.exe (TOSHIBA Corp.)
O4 - HKLM..\Run: [AGRSMMSG] C:\WINDOWS\agrsmmsg.exe (Agere Systems)
O4 - HKLM..\Run: [dbservices]  File not found
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\hpwuSchd2.exe (Hewlett-Packard Co.)
O4 - HKLM..\Run: [HPUsageTracking] C:\Program Files\HP\HP UT\bin\hppusg.exe ( )
O4 - HKLM..\Run: [InCD] C:\Program Files\Nero\Nero 7\InCD\InCD.exe (Nero AG)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [LtMoh] C:\Program Files\ltmoh\ltmoh.exe (Agere Systems)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [PRONoMgr.exe] C:\Program Files\Intel\PROSetWireless\NCS\PROSet\PRONoMgr.exe (Intel(R) Corporation)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\qttask.exe (Apple Inc.)
O4 - HKLM..\Run: [SecurDisc] C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe (Nero AG)
O4 - HKLM..\Run: [SigmaTel StacMon] C:\Program Files\SigmaTel\SigmaTel AC97 Audio Drivers\stacmon.exe (SigmaTel Inc.)
O4 - HKLM..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [TFncKy]  File not found
O4 - HKLM..\Run: [TFNF5] C:\WINDOWS\System32\TFNF5.exe (TOSHIBA Corp.)
O4 - HKLM..\Run: [ToolBoxFX] C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe (HP)
O4 - HKU\S-1-5-21-1708537768-1677128483-1343024091-1004..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-1708537768-1677128483-1343024091-1004..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe (Hewlett-Packard Company)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1708537768-1677128483-1343024091-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office10\EXCEL.EXE (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1236782189528 (MUWebControl Class)
O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab (ActiveScan 2.0 Installer Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 149.156.153.2 149.156.2.12 149.156.132.100
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\Sebring: DllName - C:\WINDOWS\system32\LgNotify.dll - C:\WINDOWS\system32\LgNotify.dll (Intel Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-03-11 10:24:09 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{d18175d4-da6a-11de-9be2-000e3568a7c3}\Shell - "" = Autorun
O33 - MountPoints2\{d18175d5-da6a-11de-9be2-000e3568a7c3}\Shell - "" = AutoRun
O33 - MountPoints2\{d18175d5-da6a-11de-9be2-000e3568a7c3}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -- File not found
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\LaunchU3.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2010-02-08 10:49:43 | 000,549,376 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Toshiba\Pulpit\OTL.exe
[2010-02-08 10:39:03 | 000,000,000 | ---D | C] -- C:\Program Files\TrendMicro
[2010-02-08 10:26:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2010-01-23 18:06:32 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll
[2010-01-12 11:14:44 | 000,000,000 | ---D | C] -- C:\JPo
[2009-09-16 09:39:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2009-07-22 21:32:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Apple
[2009-06-01 09:09:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\ESET
[2009-03-17 15:25:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2009-03-11 10:30:40 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft
[2009-03-11 10:30:07 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft
[8 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2010-02-08 10:50:11 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Toshiba\Pulpit\OTL.exe
[2010-02-08 10:39:12 | 000,002,441 | ---- | M] () -- C:\Documents and Settings\Toshiba\Pulpit\HiJackThis.lnk
[2010-02-08 10:30:36 | 000,001,355 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010-02-08 10:23:50 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-02-08 10:17:04 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-02-08 10:17:02 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-02-08 10:17:00 | 535,810,048 | -HS- | M] () -- C:\hiberfil.sys
[2010-01-23 19:49:13 | 003,670,016 | -H-- | M] () -- C:\Documents and Settings\Toshiba\NTUSER.DAT
[2010-01-23 19:48:48 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\Toshiba\ntuser.ini
[2010-01-17 11:21:11 | 000,002,908 | ---- | M] () -- C:\WINDOWS\wincmd.ini
[8 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010-02-08 10:39:05 | 000,002,441 | ---- | C] () -- C:\Documents and Settings\Toshiba\Pulpit\HiJackThis.lnk
[2009-10-31 22:21:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nidmfpan.ini
[2009-09-28 10:55:14 | 000,000,182 | ---- | C] () -- C:\WINDOWS\System32\AddPort.ini
[2009-09-28 10:54:31 | 000,000,725 | ---- | C] () -- C:\WINDOWS\hpntwksetup.ini
[2009-09-28 10:11:53 | 000,000,655 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log
[2009-09-21 21:53:08 | 000,000,031 | ---- | C] () -- C:\WINDOWS\MTproProENGINEERItf.ini
[2009-09-16 12:44:05 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll
[2009-06-17 12:39:02 | 000,041,324 | ---- | C] () -- C:\WINDOWS\System32\winio.sys
[2009-06-17 09:03:27 | 000,000,157 | ---- | C] () -- C:\WINDOWS\matlab.ini
[2009-04-06 09:18:55 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\Toshiba\Dane aplikacji\winscp.rnd
[2009-03-25 09:33:27 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji\PUTTY.RND
[2009-03-18 09:10:58 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009-03-18 09:10:56 | 000,009,216 | ---- | C] () -- C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-03-17 15:25:48 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mtstack.INI
[2009-03-17 13:54:36 | 000,000,132 | ---- | C] () -- C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2009-03-17 13:38:07 | 000,064,512 | ---- | C] () -- C:\WINDOWS\System32\drivers\SENTINEL.SYS
[2009-03-17 13:38:07 | 000,038,400 | ---- | C] () -- C:\WINDOWS\System32\SNTI386.DLL
[2009-03-17 13:38:07 | 000,016,896 | ---- | C] () -- C:\WINDOWS\System32\RNBOVDD.DLL
[2009-03-17 11:33:23 | 000,000,706 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009-03-12 10:43:12 | 000,002,908 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2009-03-11 11:42:30 | 000,000,000 | ---- | C] () -- C:\WINDOWS\NDSTray.INI
[2009-03-11 11:01:30 | 000,128,113 | ---- | C] () -- C:\WINDOWS\System32\csellang.ini
[2009-03-11 11:01:30 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\csellang.dll
[2009-03-11 11:01:30 | 000,010,165 | ---- | C] () -- C:\WINDOWS\System32\tosmreg.ini
[2009-03-11 11:01:30 | 000,007,671 | ---- | C] () -- C:\WINDOWS\System32\cseltbl.ini
[2009-03-11 10:58:19 | 000,016,384 | R--- | C] () -- C:\WINDOWS\System32\e100bmsg.dll
[2009-03-11 10:54:48 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\SynTPCoI.dll
[2008-10-24 20:53:28 | 000,034,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\epfwtdir.sys
[2006-05-09 16:19:12 | 000,241,664 | ---- | C] () -- C:\WINDOWS\System32\hppapr04.DLL
[2005-07-05 09:00:48 | 000,042,496 | ---- | C] () -- C:\WINDOWS\System32\nispdu.dll
[2005-07-03 12:38:10 | 000,043,008 | ---- | C] () -- C:\WINDOWS\System32\drivers\nispdk.dll
[2005-07-03 12:38:06 | 000,028,160 | ---- | C] () -- C:\WINDOWS\System32\niscdrau.dll
[2005-06-27 09:20:32 | 000,003,584 | ---- | C] () -- C:\WINDOWS\System32\nipalpg.dll
[2005-02-25 17:58:48 | 000,000,244 | ---- | C] () -- C:\WINDOWS\System32\nirpc.ini
[2004-04-08 12:41:24 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\nipxiini.dll
[2004-04-08 12:12:48 | 000,008,704 | ---- | C] () -- C:\WINDOWS\System32\niidaqlv.dll
[2003-12-16 08:29:42 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\C1XStngs.dll
[2003-07-29 09:00:00 | 000,007,140 | ---- | C] () -- C:\WINDOWS\System32\drivers\cvintdrv.sys
[2002-12-04 10:57:00 | 000,651,264 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll
[2002-12-04 10:57:00 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.dll
[2002-07-17 13:08:14 | 000,012,653 | ---- | C] () -- C:\WINDOWS\System32\Gpib.dll
[2002-07-17 13:08:12 | 000,056,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\gpibclsb.sys
[2002-07-17 13:08:12 | 000,034,664 | ---- | C] () -- C:\WINDOWS\System32\drivers\gpibclsd.sys
[2002-07-17 13:08:12 | 000,023,312 | ---- | C] () -- C:\WINDOWS\System32\gpib-vdd.dll
[2002-07-17 13:07:58 | 000,081,218 | ---- | C] () -- C:\WINDOWS\System32\drivers\gpibpci.sys
[2002-07-17 13:07:58 | 000,070,528 | ---- | C] () -- C:\WINDOWS\System32\drivers\gpibatnt.sys
[2002-07-17 13:07:58 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\GpibN32.dll
[2002-07-17 13:07:58 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\GPIBI32.dll
[2002-07-17 13:07:58 | 000,008,796 | ---- | C] () -- C:\WINDOWS\System32\drivers\GpibStub.sys
[2002-07-17 12:08:14 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\GpibAz32.dll
[2001-07-06 15:30:02 | 000,003,234 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI
[1999-11-04 10:00:38 | 000,001,840 | ---- | C] () -- C:\WINDOWS\System32\niidaqs.dll

[color=#E56717]========== LOP Check ==========[/color]

[2009-03-11 13:17:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
[2009-03-18 09:34:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe
[2009-05-04 13:20:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\National Instruments
[2009-10-05 22:32:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Perspectix
[2009-03-30 10:35:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3}
[2009-03-17 11:10:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Toshiba\Dane aplikacji\Foxit
[2009-03-26 08:26:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Toshiba\Dane aplikacji\Thunderbird

[color=#E56717]========== Purity Check ==========[/color]


< End of report >
breidak
~user
 
Posty: 50
Dołączenie: 05 Sie 2005, 15:57



Wolny komputer

Postprzez NieWiem 08 Lut 2010, 12:13

Proszę zmienić nazwę tematu na bardziej dokładną, mówiącą więcej o problemie. Tak, aby przeglądający forum zanim kliknie w Twój temat wiedział o czym on jest, aby zmienić temat kliknij w pierwszym swoim poście, inaczej temat zostanie usunięty. Image
Do czasu poprawek przez autora nie odpowiadamy.
1. Pomocy udzielam wyłącznie na licencji beerware!
2. Jeśli nie odpowiadam od razu w temacie, to znaczy że mam życie poza internetem. Uszanuj mój dobrowolnie poświęcony czas i nie oczekuj wszystkiego natychmiast. Jeśli nie odpowiadam przez 48 godzin, przyślij PW.

STOP ++> trollom, dzieciom neostrady, emo, Forestom, kotożercom i nienawiści [ nie dotyczy wymienionych wcześniej ]
Image
Awatar użytkownika
NieWiem
~user
 
Posty: 2183
Dołączenie: 19 Cze 2009, 17:01
Miejscowość: Okolice Okolic
Pochwały: 171



Duża liczba aktywnych procesów, wolny komputer

Postprzez breidak 08 Lut 2010, 12:22

Trudno tutaj dokładniej sprecyzować temat. Komputer działa wolno i trudno mi zdecydować co może być powodem. Dlatego proszę o pomoc.
breidak
~user
 
Posty: 50
Dołączenie: 05 Sie 2005, 15:57



Duża liczba aktywnych procesów, wolny komputer

Postprzez NieWiem 08 Lut 2010, 12:44

Za wiele to tutaj nie widać.

Pokaż loga z ComboFixa.
1. Pomocy udzielam wyłącznie na licencji beerware!
2. Jeśli nie odpowiadam od razu w temacie, to znaczy że mam życie poza internetem. Uszanuj mój dobrowolnie poświęcony czas i nie oczekuj wszystkiego natychmiast. Jeśli nie odpowiadam przez 48 godzin, przyślij PW.

STOP ++> trollom, dzieciom neostrady, emo, Forestom, kotożercom i nienawiści [ nie dotyczy wymienionych wcześniej ]
Image
Awatar użytkownika
NieWiem
~user
 
Posty: 2183
Dołączenie: 19 Cze 2009, 17:01
Miejscowość: Okolice Okolic
Pochwały: 171



Duża liczba aktywnych procesów, wolny komputer

Postprzez breidak 08 Lut 2010, 13:21

Kod: Zaznacz wszystko
ComboFix 10-02-07.07 - Toshiba 2010-02-08  12:06:50.1.1 - x86
Microsoft Windows XP Professional  5.1.2600.3.1250.48.1045.18.511.219 [GMT 1:00]
Uruchomiony z: C:\Documents and Settings\Toshiba\Pulpit\ComboFix.exe
AV: ESET NOD32 Antivirus 3.0 *On-access scanning enabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
* Rezydentny antywirus jest aktywny

.

(((((((((((((((((((((((((   Pliki utworzone od 2010-01-08 do 2010-02-08  )))))))))))))))))))))))))))))))
.

2010-02-08 11:06:50 . 2010-02-08 11:06:50   --------   d-----w-   C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji\ESET
2010-02-08 09:39:03 . 2010-02-08 09:39:03   --------   d-----w-   C:\Program Files\TrendMicro
2010-02-08 09:26:28 . 2010-02-08 09:26:28   --------   d-----w-   C:\WINDOWS\LastGood
2010-01-23 17:06:32 . 2009-11-21 16:03:06   471552   -c----w-   C:\WINDOWS\system32\dllcache\aclayers.dll
2010-01-12 10:14:44 . 2010-01-17 09:10:54   --------   d-----w-   C:\JPo

.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-02-08 09:39:06 . 2010-02-08 09:39:06   388096   ----a-r-   C:\Documents and Settings\Toshiba\Dane aplikacji\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HiJackThis.exe
2010-02-08 09:29:13 . 2009-03-12 09:53:50   --------   d-----w-   C:\Program Files\Microsoft Silverlight
2010-01-08 11:50:06 . 2006-03-02 12:00:00   89036   ----a-w-   C:\WINDOWS\system32\perfc015.dat
2010-01-08 11:50:06 . 2006-03-02 12:00:00   500540   ----a-w-   C:\WINDOWS\system32\perfh015.dat
2009-12-21 19:08:54 . 2010-01-23 17:07:05   916480   ----a-w-   C:\WINDOWS\system32\SET11C.tmp
2009-12-21 19:08:53 . 2010-01-23 17:07:04   1208832   ----a-w-   C:\WINDOWS\system32\SET11D.tmp
2009-12-21 19:08:52 . 2010-01-23 17:07:09   5942784   ----a-w-   C:\WINDOWS\system32\SET11F.tmp
2009-12-21 19:08:51 . 2010-01-23 17:07:12   594432   ----a-w-   C:\WINDOWS\system32\SET121.tmp
2009-12-21 19:08:51 . 2010-01-23 17:07:08   55296   ----a-w-   C:\WINDOWS\system32\SET120.tmp
2009-12-21 19:08:50 . 2010-01-23 17:07:12   1985536   ----a-w-   C:\WINDOWS\system32\SET124.tmp
2009-12-21 19:08:49 . 2010-01-23 17:06:55   11070464   ----a-w-   C:\WINDOWS\system32\SET126.tmp
2009-11-21 16:03:37 . 2010-01-23 17:06:32   1206508   ----a-w-   C:\WINDOWS\AppPatch\SET114.tmp
2009-11-21 16:03:06 . 2010-01-23 17:06:32   471552   ----a-w-   C:\WINDOWS\AppPatch\SET115.tmp
2004-03-15 16:51:20 . 2004-03-15 16:51:20   114688   ----a-w-   C:\Program Files\internet explorer\plugins\LV71ActiveXControl.dll
2003-05-01 07:36:00 . 2003-05-01 07:36:00   114688   ----a-w-   C:\Program Files\internet explorer\plugins\LV7ActiveXControl.dll
.

(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane 
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe" [2007-08-23 16:36:30 455968]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-06-27 18:03:40 152872]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"dbservices"="scm -Silent 1 -Action 1 -Service mssqlserver" [X]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2003-08-28 16:21:00 4861952]
"nwiz"="nwiz.exe" [2003-08-28 16:21:00 323584]
"SigmaTel StacMon"="C:\Program Files\SigmaTel\SigmaTel AC97 Audio Drivers\stacmon.exe" [2003-08-03 15:01:14 86073]
"SynTPLpr"="C:\Program Files\Synaptics\SynTP\SynTPLpr.exe" [2003-05-30 18:25:02 110592]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2003-05-30 18:23:14 614400]
"TFNF5"="TFNF5.exe" [2003-07-18 16:41:26 73728]
"LtMoh"="C:\Program Files\ltmoh\Ltmoh.exe" [2003-01-02 15:16:38 172032]
"AGRSMMSG"="AGRSMMSG.exe" [2003-04-18 10:20:10 88363]
"00THotkey"="C:\WINDOWS\system32\00THotkey.exe" [2003-05-23 13:33:38 253952]
"000StTHK"="000StTHK.exe" [2001-06-23 19:28:06 24576]
"PRONoMgr.exe"="C:\Program Files\Intel\PROSetWireless\NCS\PROSet\PRONoMgr.exe" [2003-12-10 01:36:16 86016]
"TFncKy"="TFncKy.exe" [BU]
"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-01 14:57:24 153136]
"SecurDisc"="C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe" [2007-06-25 07:47:24 1629480]
"InCD"="C:\Program Files\Nero\Nero 7\InCD\InCD.exe" [2007-06-25 07:47:02 1057064]
"egui"="C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" [2008-10-24 19:50:00 1451264]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2009-01-05 15:18:48 413696]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2009-03-12 18:56:58 342312]
"ToolBoxFX"="C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe" [2006-06-15 06:43:20 49152]
"HPUsageTracking"="C:\Program Files\HP\HP UT\bin\hppusg.exe" [2006-06-09 09:23:28 36864]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2005-02-16 21:11:42 49152]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 17:21:10 15360]

C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\Sebring]
2003-12-16 07:32:26   110592   ----a-w-   C:\WINDOWS\system32\LgNotify.dll

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"C:\\Program Files\\iTunes\\iTunes.exe"=
"\\\\s9serwer.mech.pk.edu.pl\\Kopia\\Instalki\\DOS\\Ghost\\Symantec\\Ghost7\\GhostSrv.exe"=
"C:\\Program Files\\National Instruments\\LabVIEW 7.1\\LabVIEW.exe"=
"C:\\Program Files\\National Instruments\\Shared\\Example Finder\\1.0\\BIN\\NIExampleFinder.exe"=
"C:\\WINDOWS\\system32\\spoolsv.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"1947:TCP"= 1947:TCP:HASP SRM
"1947:UDP"= 1947:UDP:HASP SRM

R0 pavboot;pavboot;C:\WINDOWS\system32\drivers\pavboot.sys [2009-11-26 13:27:08 28552]
R1 epfwtdir;epfwtdir;C:\WINDOWS\system32\drivers\epfwtdir.sys [2008-10-24 20:53:28 34824]
R2 ekrn;Eset Service;C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2008-10-24 20:51:16 468224]
R2 hasplms;HASP License Manager;C:\WINDOWS\system32\hasplms.exe  -run --> C:\WINDOWS\system32\hasplms.exe  -run [?]
R2 lvalarmk;lvalarmk;C:\WINDOWS\system32\drivers\lvalarmk.dll [2004-04-01 09:16:24 10829]
R2 niarbk;niarbk;C:\WINDOWS\system32\drivers\niarbk.dll [2004-04-08 11:03:08 37376]
R2 nibffrk;nibffrk;C:\WINDOWS\system32\drivers\nibffrk.dll [2004-04-08 11:03:10 21504]
R2 Nidaq32k;Nidaq32k;C:\WINDOWS\system32\drivers\nidaq32k.sys [2004-04-08 12:21:38 674304]
R2 nidevldu;nidevldu;system32\nipalsm.exe --> system32\nipalsm.exe [?]
R2 nidimk;nidimk;C:\WINDOWS\system32\drivers\nidimk.dll [2005-04-13 13:43:16 141824]
R2 nidmmk;NI DMM and Data Logger Kernel Driver;C:\WINDOWS\system32\drivers\nidmmk.dll [2004-04-08 12:24:08 50688]
R2 nidmxfk;nidmxfk;C:\WINDOWS\system32\drivers\nidmxfk.dll [2005-06-30 11:25:58 160768]
R2 niemrk;niemrk;C:\WINDOWS\system32\drivers\niemrk.dll [2005-07-06 19:54:12 335360]
R2 nifslk;nifslk;C:\WINDOWS\system32\drivers\nifslk.dll [2005-07-02 20:27:12 35328]
R2 nilvaik;nilvaik;C:\WINDOWS\system32\drivers\nilvaik.dll [2005-06-27 11:17:14 11264]
R2 nimdsk;nimdsk;C:\WINDOWS\system32\drivers\nimdsk.dll [2004-04-08 11:04:20 30208]
R2 nimxpk;nimxpk;C:\WINDOWS\system32\drivers\nimxpk.dll [2005-03-04 20:33:06 18944]
R2 nipxirmk;nipxirmk;C:\WINDOWS\system32\drivers\nipxirmk.dll [2004-10-19 14:30:04 41075]
R2 nistck;nistck;C:\WINDOWS\system32\drivers\niSTCk.dll [2004-04-08 11:04:44 111616]
R2 niswdk;niswdk;C:\WINDOWS\system32\drivers\niswdk.dll [2005-07-06 07:32:42 473088]
R2 usb6xxxk;usb6xxxk;C:\WINDOWS\system32\drivers\usb6xxxk.dll [2005-07-02 20:27:44 12800]
R3 nicdrk;nicdrk;C:\WINDOWS\system32\drivers\nicdrk.dll [2005-03-05 03:18:10 169472]
R3 nimru2k;nimru2k;C:\WINDOWS\system32\drivers\nimru2k.dll [2005-03-01 18:53:36 237056]
R3 nimsdrk;nimsdrk;C:\WINDOWS\system32\drivers\nimsdrk.dll [2005-07-07 19:01:50 129536]
R3 nimstsk;nimstsk;C:\WINDOWS\system32\drivers\nimstsk.dll [2005-06-21 14:37:20 50688]
R3 niscdk;niscdk;C:\WINDOWS\system32\drivers\niscdk.dll [2005-07-03 12:37:58 500736]
S2 NICitadel5Service;National Instruments Citadel;C:\WINDOWS\system32\nicitdl5.exe [2005-01-08 02:10:34 1970233]
S3 gpibclsb;GPIB Board Class Driver;C:\WINDOWS\system32\drivers\gpibclsb.sys [2002-07-17 13:08:12 56904]
S3 gpibclsd;GPIB Device Class Driver;C:\WINDOWS\system32\drivers\gpibclsd.sys [2002-07-17 13:08:12 34664]
S3 nidsark;nidsark;C:\WINDOWS\system32\drivers\nidsark.dll [2005-07-13 01:36:18 711168]
S3 niesrk;niesrk;C:\WINDOWS\system32\drivers\niesrk.dll [2005-07-06 19:53:38 485376]
S3 nimslk;nimslk;C:\WINDOWS\system32\drivers\nimslk.dll [2005-06-17 15:41:06 14464]
S3 nimsrlk;nimsrlk;C:\WINDOWS\system32\drivers\nimsrlk.dll [2005-06-17 15:41:10 151683]
S3 nipalusb;NI-PAL USB Driver;C:\WINDOWS\system32\drivers\nipalusb.sys [2005-06-27 09:20:46 91746]
S3 nisdigk;nisdigk;C:\WINDOWS\system32\drivers\nisdigk.dll [2005-07-02 19:38:34 231424]
S3 nisftk;nisftk;C:\WINDOWS\system32\drivers\nisftk.dll [2005-07-03 11:45:18 162816]
S3 nispdk;nispdk;C:\WINDOWS\system32\drivers\nispdk.dll [2005-07-03 12:38:10 43008]
S3 nissrk;nissrk;C:\WINDOWS\system32\drivers\nissrk.dll [2005-07-06 19:54:20 648192]
S3 nistc2k;nistc2k;C:\WINDOWS\system32\drivers\nistc2k.dll [2005-03-05 00:29:30 163328]
S3 nistcrk;nistcrk;C:\WINDOWS\system32\drivers\nistcrk.dll [2005-06-22 13:27:24 110080]
S3 nitiork;nitiork;C:\WINDOWS\system32\drivers\nitiork.dll [2005-07-02 18:30:36 692224]
S3 NiViPxiK;NiViPxiK;C:\WINDOWS\system32\drivers\NiViPxiK.sys [2004-03-30 09:22:44 24064]
S3 niwfrk;niwfrk;C:\WINDOWS\system32\drivers\niwfrk.dll [2005-07-06 19:54:54 418816]
S3 nixsrk;nixsrk;C:\WINDOWS\system32\drivers\nixsrk.dll [2005-07-06 19:53:44 872448]

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2007-08-23 16:34:48   451872   ----a-w-   C:\Program Files\Common Files\LightScribe\LSRunOnce.exe
.
Zawartość folderu 'Zaplanowane zadania'

2009-09-16 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34:12 . 2008-07-30 11:34:12]
.
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://www.google.pl/
uInternet Settings,ProxyOverride = *.local
IE: E&ksport do programu Microsoft Excel - C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
FF - ProfilePath - C:\Documents and Settings\Toshiba\Dane aplikacji\Mozilla\Firefox\Profiles\7pecz7tj.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.pl
FF - prefs.js: keyword.URL - hxxp://toolbar.ask.com/toolbarv/askRedirect?o=101699&gct=&gc=1&q=
FF - plugin: C:\Program Files\Mozilla Firefox\plugins\npOggX.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
.
breidak
~user
 
Posty: 50
Dołączenie: 05 Sie 2005, 15:57



Duża liczba aktywnych procesów, wolny komputer

Postprzez wojtas 08 Lut 2010, 16:10

1.Uruchom OTL z opcji CleanUp
2. wykonaj optymalizację windowsa
3.Wyłącz przywracanie systemu ( właściwości mój komputer-zakładka przywracanie - wyłącz przywracanie na wszystkich dyskach). Po chwili włącz je powrotem]
4. zrób skan Malwarebytes Anti-Malware (zaktualizuj, usuń co znajdzie ) i daj raport ze skanu
Image
Awatar użytkownika
wojtas
*mod
 
Posty: 18165
Dołączenie: 13 Sty 2006, 16:00
Miejscowość: Krzeszyce
Pochwały: 1656




Powróć do Bezpieczeństwo

Kto jest na forum

Użytkownicy przeglądający to forum: Brak zarejestrowanych użytkowników oraz 18 gości