Od dłuższego czasu internet chodzi baaardzo wolno.. Każdy poleca mi format. U koleżanki zadziałało. Ja chciałbym to jednak zrobić bez niego. Szkoda mi tych wszystkich plików.. Gdzie może leżeć problem?
Log z Combofix:
- Kod: Zaznacz wszystko
ComboFix 08-09-13.03 - Dobre 2008-09-22 17:16:01.6 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1250.1.1045.18.468 [GMT 2:00]
Uruchomiony z: C:\Documents and Settings\Dobre\Pulpit\ComboFix.exe
[color=red][b]UWAGA - TEN KOMPUTER NIE MA ZAINSTALOWANEJ KONSOLI ODZYSKIWANIA !![/b][/color]
.
- TRYB ZREDUKOWANEJ FUNKCJONALNOŚCI -
.
((((((((((((((((((((((((( Pliki utworzone od 2008-08-22 do 2008-09-22 )))))))))))))))))))))))))))))))
.
2008-09-20 15:16 . 2008-09-20 15:16 24 --a------ C:\WINDOWS\system32\sysogg.dll
2008-09-20 14:56 . 2008-09-20 15:15 <DIR> d-------- C:\Program Files\Ogg Converter
2008-09-19 19:41 . 2008-09-19 23:32 <DIR> d-------- C:\Documents and Settings\Dobre\Dane aplikacji\uTorrent
2008-09-17 20:36 . 2008-09-17 20:36 <DIR> d-------- C:\Program Files\Sunbelt Software
2008-09-17 20:27 . 2008-09-17 20:27 <DIR> d-------- C:\Program Files\CCleaner
2008-08-26 23:01 . 2008-08-26 23:02 <DIR> d-------- C:\Program Files\AMP Font Viewer
.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-09-22 15:16 --------- d-----w C:\Program Files\cFosSpeed
2008-09-22 15:04 --------- d-----w C:\Program Files\Zylom Games
2008-09-22 15:03 --------- d-----w C:\Program Files\Common Files\Stardock
2008-09-22 14:56 --------- d-----w C:\Program Files\Online TV Player 4
2008-09-22 14:55 --------- d-----w C:\Program Files\Java
2008-09-22 14:53 --------- d-----w C:\Program Files\Apple Software Update
2008-09-22 10:42 --------- d-----w C:\Documents and Settings\Dobre\Dane aplikacji\foobar2000
2008-09-22 09:36 --------- d-----w C:\Documents and Settings\Dobre\Dane aplikacji\OpenOffice.org2
2008-09-21 17:42 --------- d-----w C:\Documents and Settings\Dobre\Dane aplikacji\Skype
2008-09-20 10:25 --------- d-----w C:\Program Files\7-Zip
2008-09-14 09:03 --------- d-----w C:\Documents and Settings\Dobre\Dane aplikacji\Tlen.pl
2008-09-13 19:52 --------- d-----w C:\Program Files\Real Alternative
2008-09-04 14:26 --------- d-----w C:\Program Files\Steam
2008-08-20 14:54 --------- d-----w C:\Program Files\Robster Productions
2008-08-18 14:45 --------- d-----w C:\Program Files\A4Tech
2008-08-07 09:29 --------- d-----w C:\Program Files\HP
2008-08-07 09:28 --------- d-----w C:\Program Files\Common Files\Hewlett-Packard
2008-08-07 09:19 --------- d-----w C:\Program Files\Common Files\HP
2008-08-03 16:31 --------- d-----w C:\Documents and Settings\domowy\Dane aplikacji\Skype
2008-07-18 20:10 94,920 ----a-w C:\WINDOWS\system32\cdm.dll
2008-07-18 20:10 53,448 ----a-w C:\WINDOWS\system32\wuauclt.exe
2008-07-18 20:10 45,768 ----a-w C:\WINDOWS\system32\wups2.dll
2008-07-18 20:10 36,552 ----a-w C:\WINDOWS\system32\wups.dll
2008-07-18 20:09 563,912 ----a-w C:\WINDOWS\system32\wuapi.dll
2008-07-18 20:09 325,832 ----a-w C:\WINDOWS\system32\wucltui.dll
2008-07-18 20:09 205,000 ----a-w C:\WINDOWS\system32\wuweb.dll
2008-07-18 20:09 1,811,656 ----a-w C:\WINDOWS\system32\wuaueng.dll
2008-07-07 20:33 253,952 ----a-w C:\WINDOWS\system32\es.dll
2008-06-24 16:24 74,240 ----a-w C:\WINDOWS\system32\mscms.dll
2008-06-23 15:41 662,016 ----a-w C:\WINDOWS\system32\wininet.dll
2006-07-05 15:07 81,920 ----a-w C:\Documents and Settings\Dobre\index.dat
2004-03-11 12:27 40,960 ----a-w C:\Program Files\Uninstall_CDS.exe
.
[code]<pre>
----a-w 190,976 2005-04-26 11:08:40 C:\Documents and Settings\Dobre\Pulpit\Dawid\ZDJĘCIA\WSZYSTKO\KeyGen Adobe Photoshop CS2 9.0.1 .exe
</pre>[/code]
((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 15360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-10-28 344064]
"TI WLAN"="C:\Program Files\Wirelwss LAN Utility\TIWLANCu.exe" [2004-12-09 1150976]
"WheelMouse"="C:\Program Files\A4Tech\Mouse\Amoumain.exe" [2006-12-26 196608]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 144784]
"SoundMan"="SOUNDMAN.EXE" [2005-10-04 C:\WINDOWS\soundman.exe]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 15360]
C:\Documents and Settings\Dobre\Menu Start\Programy\Autostart\
Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-03-16 113664]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=wbsys.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.DIV3"= DivXc32.dll
"vidc.DIV4"= DivXc32f.dll
"vidc.3iv2"= 3ivxVfWCodec.dll
"msacm.divxa32"= divxa32.acm
"VIDC.HFYU"= huffyuv.dll
"VIDC.VP31"= vp31vfw.dll
"VIDC.XFR1"= xfcodec.dll
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Adobe Reader Speed Launch.lnk]
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Bitmeter2.lnk]
backup=C:\WINDOWS\pss\Bitmeter2.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^DoubleDesktop.lnk]
backup=C:\WINDOWS\pss\DoubleDesktop.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^HP Digital Imaging Monitor.lnk]
path=C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk
backup=C:\WINDOWS\pss\HP Digital Imaging Monitor.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^Dobre^Menu Start^Programy^Autostart^Adobe Gamma.lnk]
backup=C:\WINDOWS\pss\Adobe Gamma.lnkStartup
[HKLM\~\startupfolder\C:^Documents and Settings^Dobre^Menu Start^Programy^Autostart^OpenOffice.org 2.2.lnk]
backup=C:\WINDOWS\pss\OpenOffice.org 2.2.lnkStartup
[HKLM\~\startupfolder\C:^Documents and Settings^Dobre^Menu Start^Programy^Autostart^Registration Heroes of Might & Magic 5 - Hammers of Fate.LNK]
path=C:\Documents and Settings\Dobre\Menu Start\Programy\Autostart\Registration Heroes of Might & Magic 5 - Hammers of Fate.LNK
backup=C:\WINDOWS\pss\Registration Heroes of Might & Magic 5 - Hammers of Fate.LNKStartup
[HKLM\~\startupfolder\C:^Documents and Settings^Dobre^Menu Start^Programy^Autostart^Registration Heroes of Might & Magic 5.LNK]
path=C:\Documents and Settings\Dobre\Menu Start\Programy\Autostart\Registration Heroes of Might & Magic 5.LNK
backup=C:\WINDOWS\pss\Registration Heroes of Might & Magic 5.LNKStartup
[HKLM\~\startupfolder\C:^Documents and Settings^Dobre^Menu Start^Programy^Autostart^Xfire.lnk]
backup=C:\WINDOWS\pss\Xfire.lnkStartup
path=C:\Documents and Settings\Dobre\Menu Start\Programy\Autostart\Xfire.lnk
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avast!
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BoostSpeed
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccdajfun
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cFosSpeed
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\JustVoip
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PhilipsDM
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RegClean Expert Scheduler
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\rfagent
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
--a------ 2008-03-20 18:39 216520 C:\Program Files\Alcohol Soft\Alcohol 52\AxCmd.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
--a------ 2006-11-16 19:04 139264 C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gadu-Gadu]
--a------ 2007-11-14 12:54 2131392 C:\Program Files\Gadu-Gadu\gg.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Component Manager]
--a------ 2003-12-22 08:38 241664 C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
--a------ 2003-08-04 17:28 49152 C:\Program Files\HP\HP Software Update\hpwuSchd.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Komunikator]
--a------ 2007-02-12 12:01 1149440 C:\Program Files\Tlen.pl\tlen.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
--a------ 2007-09-19 21:48 455968 C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
---hs---- 2004-10-13 18:24 1694208 C:\Program Files\Messenger\msmsgs.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--a------ 2006-01-12 15:40 155648 C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2006-09-01 15:57 282624 C:\Program Files\QuickTime\qttask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
-ra------ 2007-07-13 18:55 22234920 C:\Program Files\Skype\Phone\Skype.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\snpstd3]
--a------ 2005-09-05 15:55 339968 C:\WINDOWS\vsnpstd3.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]
-ra------ 2006-11-24 02:06 487424 C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
--a------ 2008-08-07 20:36 1271032 c:\Program Files\Steam\Steam.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
--a------ 2007-03-14 03:43 83608 C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"C:\\Program Files\\Gadu-Gadu\\gg.exe"=
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"D:\\Program Files\\Id\\Quake3\\quake3.exe"=
"D:\\Program Files\\Id\\Quake3\\quake3e.exe"=
"C:\\Program Files\\Xfire\\xfire.exe"=
"C:\\Program Files\\Tlen.pl\\tlen.exe"=
"C:\\Program Files\\Media Player Classic\\mplayerc.exe"=
"D:\\Program Files\\Quake3\\quake3.exe"=
"D:\\Program Files\\3DO\\Heroes3\\h3blade.exe"=
"C:\\WINDOWS\\system32\\sessmgr.exe"=
"C:\\WINDOWS\\system32\\dpvsetup.exe"=
"C:\\WINDOWS\\system32\\dplaysvr.exe"=
"D:\\Program Files\\Icewind Dale II\\IWD2.exe"=
"D:\\Program Files\\OGPlanet\\Albatross18\\update.exe"=
"D:\\Program Files\\Valve\\hl.exe"=
"D:\\Program Files\\Heroes of Might and Magic V\\bina1\\H5_Game.exe"=
"C:\\Program Files\\Steam\\steamapps\\moongrave\\counter-strike\\hl.exe"=
"C:\\Program Files\\Skype\\Phone\\Skype.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"6112:TCP"= 6112:TCP:D:\\Program Files\\StarCraft Brood War by Monikon\\starcraft.exe
"6112:UDP"= 6112:UDP:starcraft.exe
R1 ntiowp;ntiowp;C:\WINDOWS\system32\drivers\ntiowp.sys [2006-10-20 12352]
R3 Amps2prt;A4Tech PS/2 Port Mouse Driver;C:\WINDOWS\system32\DRIVERS\Amps2prt.sys [2006-05-09 13824]
R3 TNET1130;802.11 WLAN;C:\WINDOWS\system32\DRIVERS\TNET1130.sys [2004-12-01 438912]
S3 k510bus;Sony Ericsson K510 Driver driver (WDM);C:\WINDOWS\system32\DRIVERS\k510bus.sys [2006-02-17 58288]
S3 PCAlertDriver;PCAlertDriver;C:\Program Files\MSI\Core Center\NTGLM7X.sys [ ]
S3 RushTopDevice;RushTopDevice;C:\Program Files\MSI\Core Center\RushTop.sys [ ]
S3 w300bus;Sony Ericsson W300 Driver driver (WDM);C:\WINDOWS\system32\DRIVERS\w300bus.sys [2006-03-13 60800]
S3 w300mdfl;Sony Ericsson W300 USB WMC Modem Filter;C:\WINDOWS\system32\DRIVERS\w300mdfl.sys [2006-03-13 9264]
S3 w300mdm;Sony Ericsson W300 USB WMC Modem Driver;C:\WINDOWS\system32\DRIVERS\w300mdm.sys [2006-03-13 96352]
S3 w300mgmt;Sony Ericsson W300 USB WMC Device Management Drivers (WDM);C:\WINDOWS\system32\DRIVERS\w300mgmt.sys [2006-03-13 87824]
S3 w300obex;Sony Ericsson W300 USB WMC OBEX Interface;C:\WINDOWS\system32\DRIVERS\w300obex.sys [2006-03-13 85696]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
"C:\Program Files\Common Files\LightScribe\LSRunOnce.exe"
.
.
------- Skan uzupełniający -------
.
FireFox -: Profile - C:\Documents and Settings\Dobre\Dane aplikacji\Mozilla\Firefox\Profiles\r4f96bk4.default\
FireFox -: prefs.js - SEARCH.DEFAULTURL - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FF -: plugin - C:\Documents and Settings\All Users\Dane aplikacji\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll
FF -: plugin - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\browser\nppdf32.dll
FF -: plugin - C:\Program Files\DivX\DivX Content Uploader\npUpload.dll
FF -: plugin - C:\Program Files\Mozilla Firefox\plugins\npzylomgamesplayer.dll
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-22 17:16:26
Windows 5.1.2600 Dodatek Service Pack 2 NTFS
skanowanie ukrytych procesów ...
skanowanie ukrytych wpisów autostartu ...
skanowanie ukrytych plików ...
skanowanie pomyślnie ukończone
ukryte pliki: 0
**************************************************************************
.
Czas ukończenia: 2008-09-22 17:19:53
ComboFix-quarantined-files.txt 2008-09-22 15:19:25
ComboFix2.txt 2008-09-13 20:37:51
ComboFix3.txt 2008-04-11 11:33:36
ComboFix4.txt 2008-04-01 09:31:04
ComboFix5.txt 2008-09-22 15:15:47
Przed: 1,799,667,712 bajt˘w wolnych
Po: 1,857,437,696 bajt˘w wolnych
207 --- E O F --- 2008-08-22 19:15:03
Log z HJ:
- Kod: Zaznacz wszystko
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:26:57, on 2008-09-22
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\cFosSpeed\spd.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Wirelwss LAN Utility\tiwlnsvc.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Wirelwss LAN Utility\TIWLANCu.exe
C:\WINDOWS\system32\ctfmon.exe
D:\Program Files\StarCraft Brood War by Monikon\Launcher\Launcher.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Java\jre1.6.0_05\bin\jucheck.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [TI WLAN] C:\Program Files\Wirelwss LAN Utility\TIWLANCu.exe
O4 - HKLM\..\Run: [WheelMouse] C:\Program Files\A4Tech\Mouse\Amoumain.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: Open using &Advanced JPEG Compressor - C:\Program Files\Advanced JPEG Compressor\ajcieex.htm
O8 - Extra context menu item: Open With JPEGCompress - res://C:\Program Files\JPEGCompress\owjc.dll/CONTEXT_HANDLE.HTM
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O16 - DPF: {0835BC90-6ABC-4F52-A103-4FC3A61F2C33} (A18X Control) - http://www.albatross18.com/cabs/A18X.ocx
O16 - DPF: {987ECFCE-E607-4D52-B2C5-2EA1F6F303C4} (WinlessActiveX Control) - http://www.pangya.com/PangyaLauncher/PangyaLauncher.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS4\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS5\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS6\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS7\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS8\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS9\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS10\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS11\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS12\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS13\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS14\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS15\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS16\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS17\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS18\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS19\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS20\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS21\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS22\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS23\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS24\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS25\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS26\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS27\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS28\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS29\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS30\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS31\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O17 - HKLM\System\CS32\Services\Tcpip\..\{3AACE663-041D-4B35-9B29-C4F8D4BF7058}: NameServer = 192.168.0.99,194.204.159.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: cFosSpeed System Service (cFosSpeedS) - cFos Software GmbH - C:\Program Files\cFosSpeed\spd.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Unknown owner - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
O23 - Service: TI Wlan Service (tiwlnsvc) - Unknown owner - C:\Program Files\Wirelwss LAN Utility\tiwlnsvc.exe
O23 - Service: Windows Media Player Network Sharing Service (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe (file missing)
--
End of file - 9614 bytes
