Aktualizacje na programosy.pl: Q-Dir PortableQ-DirZD Soft Screen RecorderEventSentryYandex.BrowserMozilla FirefoxGetFLVJ. River Media CenterWashAndGo  

  • Ogłoszenie:

Duże użycie procesora.

Bezpieczeństwo systemów, usuwanie wirusów, dobieranie programów antywirusowych. Obowiązkowe logi w tym dziale: trzy z FRST + Gmer.
Wyślij odpowiedź

Duże użycie procesora.

Postprzez Michal_Gluszyca 13 Cze 2009, 14:52

reklama
Witam.

Użycie procesora mojego komputera cały czas skacze od 0% do 100%. Norton nic nie znalazł.
Log z rsit'a:
Kod: Zaznacz wszystko
Logfile of random's system information tool 1.06 (written by random/random)
Run by NOWE at 2009-06-13 14:49:29
Microsoft Windows XP Professional Service Pack 2
System drive I: has 148 GB (72%) free of 205 GB
Total RAM: 1022 MB (42% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:49:52, on 2009-06-13
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
I:\WINDOWS\System32\smss.exe
I:\WINDOWS\system32\winlogon.exe
I:\WINDOWS\system32\services.exe
I:\WINDOWS\system32\lsass.exe
I:\WINDOWS\system32\svchost.exe
I:\WINDOWS\System32\svchost.exe
I:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
I:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
I:\Program Files\Common Files\Symantec Shared\ccProxy.exe
I:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
I:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
I:\WINDOWS\system32\spoolsv.exe
I:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
I:\Program Files\Bonjour\mDNSResponder.exe
I:\WINDOWS\eHome\ehRecvr.exe
I:\WINDOWS\eHome\ehSched.exe
I:\Program Files\Google\Update\GoogleUpdate.exe
I:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
I:\WINDOWS\system32\svchost.exe
I:\WINDOWS\System32\svchost.exe
I:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
I:\WINDOWS\System32\svchost.exe
I:\Program Files\CDBurnerXP\NMSAccessU.exe
I:\WINDOWS\system32\nvsvc32.exe
I:\WINDOWS\System32\svchost.exe
I:\WINDOWS\system32\svchost.exe
I:\WINDOWS\Explorer.EXE
I:\WINDOWS\system32\dllhost.exe
I:\WINDOWS\system32\RunDLL32.exe
I:\WINDOWS\ehome\ehtray.exe
I:\Program Files\Common Files\Symantec Shared\ccApp.exe
I:\WINDOWS\system32\ctfmon.exe
I:\Program Files\Messenger\msmsgs.exe
I:\WINDOWS\eHome\ehmsas.exe
I:\WINDOWS\system32\wuauclt.exe
I:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
I:\WINDOWS\system32\taskmgr.exe
I:\Program Files\Internet Explorer\IEXPLORE.EXE
I:\Program Files\HP\Smart Web Printing\hpswp_clipbook.exe
I:\Documents and Settings\NOWE\Desktop\RSIT.exe
I:\Documents and Settings\Gierek\Desktop\NOWE.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.pl/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.vobis.pl/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - I:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - I:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - I:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - I:\Program Files\FlashGet\jccatch.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - I:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O2 - BHO: TorrentMan Toolbar - {7c5c0f58-e061-457d-9033-77307f5ed00c} - I:\Program Files\TorrentMan\tbTor1.dll
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - I:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - I:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - I:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - I:\Program Files\FlashGet\getflash.dll
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - I:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - I:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: TorrentMan Toolbar - {7c5c0f58-e061-457d-9033-77307f5ed00c} - I:\Program Files\TorrentMan\tbTor1.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE I:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ehTray] I:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [ccApp] "I:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [TkBellExe] "I:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot
O4 - HKLM\..\Run: [MSConfig] I:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE /auto
O4 - HKCU\..\Run: [CTFMON.EXE] I:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "I:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] I:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] I:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - I:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - I:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O9 - Extra button: HP Clipbook - {58ECB495-38F0-49cb-A538-10282ABF65E7} - I:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: HP Smart Select - {700259D7-1666-479a-93B1-3250410481E8} - I:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: PartyCasino - {B4B52284-A248-4c51-9F7C-F0A0C67FCC9D} - I:\Program Files\PartyGaming\PartyCasino\RunApp.exe
O9 - Extra 'Tools' menuitem: PartyCasino - {B4B52284-A248-4c51-9F7C-F0A0C67FCC9D} - I:\Program Files\PartyGaming\PartyCasino\RunApp.exe
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - I:\Program Files\PartyGaming\PartyPoker\RunApp.exe
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - I:\Program Files\PartyGaming\PartyPoker\RunApp.exe
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - I:\Program Files\FlashGet\FlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - I:\Program Files\FlashGet\FlashGet.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - I:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - I:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.vobis.pl/
O20 - AppInit_DLLs: arzlnb.dll
O23 - Service: Apple Mobile Device - Apple Inc. - I:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - I:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - I:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - I:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - I:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - I:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - I:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: Google Update Service (gupdate1c9860bf614da36) (gupdate1c9860bf614da36) - Google Inc. - I:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - I:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Harmonogram automatycznej usługi LiveUpdate - Symantec Corporation - I:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Usługa iPod (iPod Service) - Apple Inc. - I:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - I:\PROGRA~1\Symantec\LIVEUP~1\LuComServer_3_0.EXE
O23 - Service: Usluga Auto-Protect programu Norton AntiVirus (navapsvc) - Symantec Corporation - I:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: NMSAccessU - Unknown owner - I:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: Usługa Norton Protection Center (NSCService) - Symantec Corporation - I:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - I:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - I:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - I:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - I:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Unknown owner - I:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe

--
End of file - 9420 bytes

======Scheduled tasks folder======

I:\WINDOWS\tasks\AppleSoftwareUpdate.job
I:\WINDOWS\tasks\Google Software Updater.job
I:\WINDOWS\tasks\GoogleUpdateTaskMachine.job
I:\WINDOWS\tasks\Norton AntiVirus - Uruchom pełne skanowanie systemu - Gierek.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - I:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll [2007-03-02 1298024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{053F9267-DC04-4294-A72C-58F732D338C0}]
HP Print Clips - I:\Program Files\HP\Smart Web Printing\hpswp_framework.dll [2007-03-02 177768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - I:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2005-09-24 63136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}]
FGCatchUrl - I:\Program Files\FlashGet\jccatch.dll [2007-08-06 94308]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - I:\Program Files\Java\jre1.5.0_08\bin\ssv.dll [2006-07-26 434279]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7c5c0f58-e061-457d-9033-77307f5ed00c}]
TorrentMan Toolbar - I:\Program Files\TorrentMan\tbTor1.dll [2009-03-16 1883672]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9ECB9560-04F9-4bbc-943D-298DDF1699E1}]
CNisExtBho Class - I:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll [2006-08-25 94336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A8F38D8D-E480-4D52-B7A2-731BB6995FDD}]
CNavExtBho Class - I:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll [2007-06-21 140912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - I:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll [2009-03-24 668656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F156768E-81EF-470C-9057-481BA8380DBA}]
FlashGet GetFlash Class - I:\Program Files\FlashGet\getflash.dll [2007-05-18 163840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - Norton Internet Security 2006 - I:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll [2006-08-25 94336]
{C4069E3A-68F1-403E-B40E-20066696354B} - Norton AntiVirus - I:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll [2007-06-21 140912]
{7c5c0f58-e061-457d-9033-77307f5ed00c} - TorrentMan Toolbar - I:\Program Files\TorrentMan\tbTor1.dll [2009-03-16 1883672]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=I:\WINDOWS\system32\NvCpl.dll [2006-08-24 7618560]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=NvMCTray.dll,NvTaskbarInit []
"ehTray"=I:\WINDOWS\ehome\ehtray.exe [2005-08-05 64512]
"ccApp"=I:\Program Files\Common Files\Symantec Shared\ccApp.exe [2006-08-25 52848]
"High Definition Audio Property Page Shortcut"=I:\WINDOWS\system32\HDAShCut.exe [2005-01-08 61952]
"TkBellExe"=I:\Program Files\Common Files\Real\Update_OB\realsched.exe [2008-12-27 180269]
"MSConfig"=I:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE [2006-08-24 158208]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=I:\WINDOWS\system32\ctfmon.exe [2006-08-24 15360]
"MSMSGS"=I:\Program Files\Messenger\msmsgs.exe [2004-10-13 1694208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier]
I:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2009-03-06 177472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray]
I:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [2006-09-28 57344]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Flashget]
I:\Program Files\FlashGet\flashget.exe [2007-09-25 2007088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gadu-Gadu]
I:\Program Files\Gadu-Gadu\gg.exe [2008-03-20 2127296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
I:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-03-11 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
I:\Program Files\iTunes\iTunesHelper.exe [2009-03-12 342312]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
I:\Program Files\Messenger\msmsgs.exe [2004-10-13 1694208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nowe Gadu-Gadu]
I:\Program Files\Nowe Gadu-Gadu\gg.exe [2009-02-06 9302632]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
I:\Program Files\QuickTime\QTTask.exe [2009-01-05 413696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
i:\program files\steam\steam.exe [2009-06-07 1217784]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
I:\Program Files\Windows Media Player\WMPNSCFG.exe [2006-12-01 204288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\XboxStat]
i:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2007-09-26 734264]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\I:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
I:\PROGRA~1\HP\Digital Imaging\bin\hpqtra08.exe [2007-03-11 210520]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\I:^Documents and Settings^Gierek^Start Menu^Programs^Startup^Budzik.lnk]
I:\PROGRA~1\Budzik\budzik.exe [2004-08-29 24576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\I:^Documents and Settings^Gierek^Start Menu^Programs^Startup^hamachi.lnk]
I:\PROGRA~1\Hamachi\hamachi.exe [2009-01-30 625952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\I:^Documents and Settings^Gierek^Start Menu^Programs^Startup^StarOffice 8.lnk]
I:\PROGRA~1\Sun\STAROF~1\program\QUICKS~1.EXE [2006-01-25 122880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="arzlnb.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - I:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"InstallVisualStyle"=I:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=I:\WINDOWS\Resources\Themes\Royale.theme

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"I:\Program Files\FlashGet\flashget.exe"="I:\Program Files\FlashGet\flashget.exe:*:Enabled:Flashget"
"H:\totalcmd\TOTALCMD.EXE"="H:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"I:\Program Files\Football Superstars\FSPatchR.exe"="I:\Program Files\Football Superstars\FSPatchR.exe:*:Enabled:FS Patcher"
"I:\Program Files\Football Superstars\FSClientr.exe"="I:\Program Files\Football Superstars\FSClientr.exe:*:Enabled:FSClientr"
"I:\Program Files\Steam\steamapps\gierek_g\team fortress 2\hl2.exe"="I:\Program Files\Steam\steamapps\gierek_g\team fortress 2\hl2.exe:*:Enabled:hl2"
"I:\Program Files\Steam\Steam.exe"="I:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"I:\Program Files\Gadu-Gadu\gg.exe"="I:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny"
"I:\Program Files\SopCast\adv\SopAdver.exe"="I:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver"
"I:\Program Files\SopCast\SopCast.exe"="I:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application"
"I:\Program Files\Microsoft Visual Studio\VB98\VB6.EXE"="I:\Program Files\Microsoft Visual Studio\VB98\VB6.EXE:*:Enabled:Visual Basic"
"I:\Program Files\Bonjour\mDNSResponder.exe"="I:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"I:\Program Files\iTunes\iTunes.exe"="I:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"I:\Program Files\Steam\steamapps\common\left 4 dead\left4dead.exe"="I:\Program Files\Steam\steamapps\common\left 4 dead\left4dead.exe:*:Enabled:Left 4 Dead"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2009-06-13 14:49:29 ----D---- I:\rsit
2009-06-07 12:26:58 ----D---- I:\Documents and Settings\NOWE\Application Data\Macromedia
2009-06-07 12:26:58 ----D---- I:\Documents and Settings\NOWE\Application Data\HPAppData
2009-06-07 12:26:46 ----D---- I:\Documents and Settings\NOWE\Application Data\AxTools
2009-06-07 12:10:44 ----D---- I:\Documents and Settings\NOWE\Application Data\Symantec
2009-06-07 12:09:23 ----ASH---- I:\Documents and Settings\NOWE\Application Data\desktop.ini
2009-06-07 12:09:20 ----SD---- I:\Documents and Settings\NOWE\Application Data\Microsoft
2009-06-07 12:09:20 ----D---- I:\Documents and Settings\NOWE\Application Data\Real
2009-06-07 12:09:20 ----D---- I:\Documents and Settings\NOWE\Application Data\Identities
2009-05-25 20:07:55 ----D---- I:\Program Files\Spybot - Search & Destroy
2009-05-25 20:07:55 ----D---- I:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-05-23 22:29:16 ----A---- I:\VundoFix.txt
2009-05-19 22:58:57 ----D---- I:\WINDOWS\Logs
2009-05-19 22:54:02 ----D---- I:\Program Files\Electronic Arts
2009-05-19 22:51:42 ----D---- I:\Program Files\DAEMON Tools Toolbar

======List of files/folders modified in the last 1 months======

2009-06-13 14:49:36 ----D---- I:\Program Files\Common Files\Symantec Shared
2009-06-13 14:49:26 ----D---- I:\WINDOWS\Prefetch
2009-06-13 14:48:29 ----D---- I:\WINDOWS\Temp
2009-06-13 13:25:27 ----D---- I:\WINDOWS\system32\CatRoot2
2009-06-13 13:25:27 ----D---- I:\WINDOWS
2009-06-13 13:25:11 ----D---- I:\WINDOWS\Registration
2009-06-13 13:24:50 ----SD---- I:\WINDOWS\Tasks
2009-06-12 22:47:40 ----A---- I:\WINDOWS\SchedLgU.Txt
2009-06-07 12:48:20 ----D---- I:\Program Files\Steam
2009-06-07 12:47:00 ----A---- I:\WINDOWS\vbaddin.ini
2009-06-07 12:33:58 ----D---- I:\WINDOWS\system32\CatRoot
2009-06-07 12:10:24 ----SHD---- I:\WINDOWS\Installer
2009-06-07 12:10:24 ----HD---- I:\Config.Msi
2009-06-07 12:10:20 ----A---- I:\WINDOWS\OEWABLog.txt
2009-06-07 12:10:09 ----D---- I:\Documents and Settings\All Users\Application Data\Google Updater
2009-06-07 12:09:19 ----D---- I:\Documents and Settings
2009-06-07 12:05:30 ----A---- I:\WINDOWS\ntbtlog.txt
2009-06-05 21:48:52 ----D---- I:\Temp
2009-05-31 20:02:03 ----D---- I:\Program Files\Mozilla Firefox
2009-05-31 18:13:44 ----A---- I:\WINDOWS\wincmd.ini
2009-05-31 18:13:43 ----A---- I:\WINDOWS\wcx_ftp.ini
2009-05-28 18:53:06 ----D---- I:\WINDOWS\system32\config
2009-05-28 18:52:51 ----D---- I:\WINDOWS\system32\wbem
2009-05-28 18:52:33 ----D---- I:\WINDOWS\system32\DirectX
2009-05-28 18:52:33 ----D---- I:\WINDOWS\system32
2009-05-28 18:52:27 ----D---- I:\WINDOWS\system32\drivers
2009-05-28 18:52:26 ----D---- I:\Program Files\Symantec
2009-05-28 18:48:37 ----D---- I:\Program Files
2009-05-28 18:47:33 ----A---- I:\WINDOWS\win.ini
2009-05-28 18:47:33 ----A---- I:\WINDOWS\system.ini
2009-05-28 18:47:32 ----D---- I:\WINDOWS\system32\Restore
2009-05-25 20:11:05 ----D---- I:\Documents and Settings\All Users\Application Data\Symantec
2009-05-19 22:58:57 ----HD---- I:\WINDOWS\inf
2009-05-19 22:54:01 ----HD---- I:\Program Files\InstallShield Installation Information

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 eeCtrl;Symantec Eraser Control driver; \??\I:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
R1 ElbyCDIO;ElbyCDIO Driver; I:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2007-08-07 25160]
R1 intelppm;Intel Processor Driver; I:\WINDOWS\system32\DRIVERS\intelppm.sys [2006-08-24 36096]
R1 kbdhid;Keyboard HID Driver; I:\WINDOWS\system32\DRIVERS\kbdhid.sys [2006-08-24 14848]
R1 nvport;NVIDIA PORT IO Control Driver; \??\I:\WINDOWS\system32\Drivers\nvport.sys []
R1 SAVRT;SAVRT; \??\I:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRT.SYS []
R1 SAVRTPEL;SAVRTPEL; \??\I:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRTPEL.SYS []
R1 SYMTDI;SYMTDI; I:\WINDOWS\System32\Drivers\SYMTDI.SYS [2007-10-01 189320]
R2 symlcbrd;symlcbrd; \??\I:\WINDOWS\system32\drivers\symlcbrd.sys []
R3 FETND5BV;VIA Rhine-Family Fast Ethernet Adapter Driver Service; I:\WINDOWS\system32\DRIVERS\fetnd5bv.sys [2006-08-24 43008]
R3 hamachi;Hamachi Network Interface; I:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-01-30 25280]
R3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; I:\WINDOWS\system32\drivers\HdAudio.sys [2005-01-08 145920]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; I:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-08 138752]
R3 hidusb;Microsoft HID Class Driver; I:\WINDOWS\system32\DRIVERS\hidusb.sys [2006-08-24 9600]
R3 mouhid;Mouse HID Driver; I:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-08-24 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; I:\WINDOWS\system32\DRIVERS\ASACPI.sys [2006-08-24 5810]
R3 NAVENG;NAVENG; \??\I:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20090525.002\NAVENG.Sys []
R3 NAVEX15;NAVEX15; \??\I:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20090525.002\NavEx15.Sys []
R3 nv;nv; I:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-08-24 3925920]
R3 SYMDNS;SYMDNS; I:\WINDOWS\System32\Drivers\SYMDNS.SYS [2007-10-01 12680]
R3 SymEvent;SymEvent; \??\I:\Program Files\Symantec\SYMEVENT.SYS []
R3 SYMFW;SYMFW; I:\WINDOWS\System32\Drivers\SYMFW.SYS [2007-10-01 98184]
R3 SYMIDS;SYMIDS; I:\WINDOWS\System32\Drivers\SYMIDS.SYS [2007-10-01 31624]
R3 SYMIDSCO;SYMIDSCO; \??\I:\PROGRA~1\COMMON~1\SYMANT~1\SymcData\idsdefs\20090325.001\symidsco.sys []
R3 SYMNDIS;SYMNDIS; I:\WINDOWS\System32\Drivers\SYMNDIS.SYS [2007-10-01 28040]
R3 SYMREDRV;SYMREDRV; I:\WINDOWS\System32\Drivers\SYMREDRV.SYS [2007-10-01 23944]
R3 usbccgp;Microsoft USB Generic Parent Driver; I:\WINDOWS\system32\DRIVERS\usbccgp.sys [2006-08-24 31616]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; I:\WINDOWS\system32\DRIVERS\usbehci.sys [2006-08-24 26624]
R3 usbhub;USB2 Enabled Hub; I:\WINDOWS\system32\DRIVERS\usbhub.sys [2006-08-24 57600]
R3 usbstor;USB Mass Storage Driver; I:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2006-08-24 26496]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; I:\WINDOWS\system32\DRIVERS\usbuhci.sys [2006-08-24 20480]
S3 ElbyCDFL;ElbyCDFL; I:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760]
S3 EraserUtilDrv10910;EraserUtilDrv10910; \??\I:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilDrv10910.sys []
S3 GEARAspiWDM;GEAR ASPI Filter Driver; I:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-01-15 23848]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; I:\WINDOWS\system32\DRIVERS\HPZid412.sys [2007-03-08 49920]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; I:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2007-03-08 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; I:\WINDOWS\system32\DRIVERS\HPZius12.sys [2007-03-08 21568]
S3 MHNDRV;MHN driver; I:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008]
S3 pfc;Padus ASPI Shell; I:\WINDOWS\system32\drivers\pfc.sys [2005-06-14 9856]
S3 SPBBCDrv;SPBBCDrv; \??\I:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys []
S3 USBAAPL;Apple Mobile USB Driver; I:\WINDOWS\System32\Drivers\usbaapl.sys [2009-03-06 36864]
S3 usbaudio;USB Audio Driver (WDM); I:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-04 59264]
S3 usbprint;Microsoft USB PRINTER Class; I:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-04 25856]
S3 usbscan;USB Scanner Driver; I:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; I:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; I:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; I:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; I:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-03-06 132424]
R2 Bonjour Service;Bonjour Service; I:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 ccEvtMgr;Symantec Event Manager; I:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe [2006-08-25 192112]
R2 ccProxy;Symantec Network Proxy; I:\Program Files\Common Files\Symantec Shared\ccProxy.exe [2006-08-25 202352]
R2 ccSetMgr;Symantec Settings Manager; I:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe [2006-08-25 169584]
R2 ehRecvr;Usługa Odbiornik Media Center; I:\WINDOWS\eHome\ehRecvr.exe [2006-06-29 237568]
R2 ehSched;Usługa Planowanie nagrywania; I:\WINDOWS\eHome\ehSched.exe [2005-08-05 102912]
R2 Harmonogram automatycznej usługi LiveUpdate;Harmonogram automatycznej usługi LiveUpdate; I:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe [2006-08-03 100032]
R2 hpqddsvc;Usługa HP CUE DeviceDiscovery; I:\WINDOWS\system32\svchost.exe [2006-08-24 14336]
R2 McrdSvc;Media Center Extender Service; I:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328]
R2 navapsvc;Usluga Auto-Protect programu Norton AntiVirus; I:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe [2007-05-28 139888]
R2 Net Driver HPZ12;Net Driver HPZ12; I:\WINDOWS\System32\svchost.exe [2006-08-24 14336]
R2 NMSAccessU;NMSAccessU; I:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-10-20 71096]
R2 NVSvc;NVIDIA Display Driver Service; I:\WINDOWS\system32\nvsvc32.exe [2006-08-24 155715]
R2 Pml Driver HPZ12;Pml Driver HPZ12; I:\WINDOWS\System32\svchost.exe [2006-08-24 14336]
R2 SNDSrvc;Symantec Network Drivers Service; I:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe [2007-10-01 214408]
R2 Symantec Core LC;Symantec Core LC; I:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe [2009-03-06 1251720]
R2 WMPNetworkSvc;Usługa udostępniania w sieci programu Windows Media Player; I:\Program Files\Windows Media Player\WMPNetwk.exe [2006-12-01 918016]
R3 hpqcxs08;hpqcxs08; I:\WINDOWS\system32\svchost.exe [2006-08-24 14336]
R3 NSCService;Usługa Norton Protection Center; I:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE [2007-02-20 750720]
S2 gupdate1c9860bf614da36;Google Update Service (gupdate1c9860bf614da36); I:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-03 133104]
S2 gusvc;Google Software Updater; I:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-24 183280]
S3 aspnet_state;ASP.NET State Service; I:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 ccISPwdSvc;Symantec Internet Security Password Validation; I:\Program Files\Norton Internet Security\ccPwdSvc.exe [2007-02-26 72344]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; I:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 comHost;COM Host; I:\Program Files\Norton Internet Security\comHost.exe [2007-02-01 45696]
S3 iPod Service;Usługa iPod; I:\Program Files\iPod\bin\iPodService.exe [2009-03-12 656168]
S3 LiveUpdate;LiveUpdate; I:\PROGRA~1\Symantec\LIVEUP~1\LuComServer_3_0.EXE [2006-08-03 2119360]
S3 MHN;MHN; I:\WINDOWS\System32\svchost.exe [2006-08-24 14336]
S3 SAVScan;Symantec AVScan; I:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe [2006-08-25 198368]
S3 SPBBCSvc;Symantec SPBBCSvc; I:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe [2006-08-25 1160800]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; I:\WINDOWS\system32\svchost.exe [2006-08-24 14336]

-----------------EOF-----------------
w WWW pierwsza polska strona na temat Alien Swarm
Awatar użytkownika
Michal_Gluszyca
~user
 
Posty: 686
Dołączenie: 22 Kwi 2006, 13:13
Pochwały: 9


Góra

Duże użycie procesora.

Postprzez wojtas 13 Cze 2009, 15:41

jaki proces? daj loga z OTL
Image
Awatar użytkownika
wojtas
*mod
 
Posty: 18165
Dołączenie: 13 Sty 2006, 16:00
Miejscowość: Krzeszyce
Pochwały: 1656


Góra

Re: duże użycie procesora.

Postprzez Michal_Gluszyca 13 Cze 2009, 18:15

OTL:
Kod: Zaznacz wszystko
OTL logfile created on: 2009-06-13 18:11:31 - Run 1
OTL by OldTimer - Version 2.1.1.0     Folder = I:\Documents and Settings\NOWE\Local Settings\Temporary Internet Files\Content.IE5\G16V41QJ
Windows XP Media Center Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Poland | Language: PLK | Date Format: yyyy-MM-dd

1022,42 Mb Total Physical Memory | 376,52 Mb Available Physical Memory | 36,83% Memory free
2,40 Gb Paging File | 1,79 Gb Available in Paging File | 74,46% Paging File free
Paging file location(s): I:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = I: | %SystemRoot% = I:\WINDOWS | %ProgramFiles% = I:\Program Files
C: Drive not present or media not loaded
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
Drive H: | 97,65 Gb Total Space | 38,81 Gb Free Space | 39,74% Space Free | Partition Type: NTFS
Drive I: | 200,43 Gb Total Space | 144,43 Gb Free Space | 72,06% Space Free | Partition Type: NTFS

Computer Name: A-23FBF64955C74
Current User Name: NOWE
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Output = Standard
File Age = 30 Days
Company Name Whitelist: On

[color=orange]========== Processes (SafeList) ==========[/color]

PRC - [2006-08-25 00:00:00 | 00,169,584 | ---- | M] (Symantec Corporation) -- I:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
PRC - [2006-08-25 00:00:00 | 00,192,112 | ---- | M] (Symantec Corporation) -- I:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
PRC - [2006-08-25 00:00:00 | 00,202,352 | ---- | M] (Symantec Corporation) -- I:\Program Files\Common Files\Symantec Shared\ccProxy.exe
PRC - [2007-10-01 15:50:08 | 00,214,408 | ---- | M] (Symantec Corporation) -- I:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
PRC - [2009-03-06 19:11:45 | 01,251,720 | ---- | M] () -- I:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
PRC - [2006-08-24 14:00:00 | 01,032,192 | ---- | M] (Microsoft Corporation) -- I:\WINDOWS\Explorer.EXE
PRC - [2005-08-05 14:56:34 | 00,064,512 | ---- | M] (Microsoft Corporation) -- I:\WINDOWS\ehome\ehtray.exe
PRC - [2006-08-25 00:00:00 | 00,052,848 | ---- | M] (Symantec Corporation) -- I:\Program Files\Common Files\Symantec Shared\ccApp.exe
PRC - [2004-10-13 18:24:37 | 01,694,208 | ---- | M] (Microsoft Corporation) -- I:\Program Files\Messenger\msmsgs.exe
PRC - [2009-03-06 01:04:30 | 00,132,424 | ---- | M] (Apple Inc.) -- I:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2008-12-12 12:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- I:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2006-06-29 11:21:38 | 00,237,568 | ---- | M] (Microsoft Corporation) -- I:\WINDOWS\eHome\ehRecvr.exe
PRC - [2005-08-05 14:56:32 | 00,102,912 | ---- | M] (Microsoft Corporation) -- I:\WINDOWS\eHome\ehSched.exe
PRC - [2006-08-03 18:40:26 | 00,100,032 | ---- | M] (Symantec Corporation) -- I:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
PRC - [2007-05-28 13:00:24 | 00,139,888 | ---- | M] (Symantec Corporation) -- I:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
PRC - [2008-10-20 22:18:26 | 00,071,096 | ---- | M] () -- I:\Program Files\CDBurnerXP\NMSAccessU.exe
PRC - [2006-08-24 14:00:00 | 00,155,715 | ---- | M] (NVIDIA Corporation) -- I:\WINDOWS\system32\nvsvc32.exe
PRC - [2005-08-05 14:27:08 | 00,099,328 | ---- | M] (Microsoft Corporation) -- I:\WINDOWS\ehome\mcrdsvc.exe
PRC - [2006-12-01 12:46:28 | 00,918,016 | ---- | M] (Microsoft Corporation) -- I:\Program Files\Windows Media Player\WMPNetwk.exe
PRC - [2005-08-05 14:56:28 | 00,046,592 | ---- | M] (Microsoft Corporation) -- I:\WINDOWS\eHome\ehmsas.exe
PRC - [2007-02-20 15:43:06 | 00,750,720 | ---- | M] (Symantec Corporation) -- I:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
PRC - [2007-03-02 17:51:40 | 00,173,672 | R--- | M] (Hewlett-Packard Co.) -- I:\Program Files\HP\Smart Web Printing\hpswp_clipbook.exe
PRC - [2009-02-03 16:30:26 | 00,133,104 | ---- | M] (Google Inc.) -- I:\Program Files\Google\Update\GoogleUpdate.exe
PRC - [2006-08-24 14:00:00 | 00,135,680 | ---- | M] (Microsoft Corporation) -- I:\WINDOWS\system32\taskmgr.exe
PRC - [2009-06-13 14:56:14 | 01,217,784 | ---- | M] (Valve Corporation) -- I:\Program Files\Steam\Steam.exe
PRC - [2006-08-24 14:00:00 | 00,093,184 | ---- | M] (Microsoft Corporation) -- I:\Program Files\Internet Explorer\IEXPLORE.EXE
PRC - [2006-08-24 14:00:00 | 00,218,112 | ---- | M] (Microsoft Corporation) -- I:\WINDOWS\system32\wbem\wmiprvse.exe
PRC - [2009-06-13 18:11:28 | 00,501,760 | ---- | M] (OldTimer Tools) -- I:\Documents and Settings\NOWE\Local Settings\Temporary Internet Files\Content.IE5\G16V41QJ\OTL[1].exe

[color=orange]========== Win32 Services (SafeList) ==========[/color]

SRV - [2009-03-06 01:04:30 | 00,132,424 | ---- | M] (Apple Inc.) -- I:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device [Auto | Running])
SRV - [2005-09-23 08:28:32 | 00,029,896 | ---- | M] (Microsoft Corporation) -- I:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped])
SRV - [2008-12-12 12:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- I:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service [Auto | Running])
SRV - [2006-08-25 00:00:00 | 00,192,112 | ---- | M] (Symantec Corporation) -- I:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe -- (ccEvtMgr [Auto | Running])
SRV - [2007-02-26 18:03:38 | 00,072,344 | ---- | M] (Symantec Corporation) -- I:\Program Files\Norton Internet Security\ccPwdSvc.exe -- (ccISPwdSvc [On_Demand | Stopped])
SRV - [2006-08-25 00:00:00 | 00,202,352 | ---- | M] (Symantec Corporation) -- I:\Program Files\Common Files\Symantec Shared\ccProxy.exe -- (ccProxy [Auto | Running])
SRV - [2006-08-25 00:00:00 | 00,169,584 | ---- | M] (Symantec Corporation) -- I:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe -- (ccSetMgr [Auto | Running])
SRV - [2005-09-23 08:28:56 | 00,066,240 | ---- | M] (Microsoft Corporation) -- I:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - [2007-02-01 18:20:46 | 00,045,696 | ---- | M] (Symantec Corporation) -- I:\Program Files\Norton Internet Security\comHost.exe -- (comHost [On_Demand | Stopped])
SRV - [2006-06-29 11:21:38 | 00,237,568 | ---- | M] (Microsoft Corporation) -- I:\WINDOWS\eHome\ehRecvr.exe -- (ehRecvr [Auto | Running])
SRV - [2005-08-05 14:56:32 | 00,102,912 | ---- | M] (Microsoft Corporation) -- I:\WINDOWS\eHome\ehSched.exe -- (ehSched [Auto | Running])
SRV - [2009-02-03 16:30:26 | 00,133,104 | ---- | M] (Google Inc.) -- I:\Program Files\Google\Update\GoogleUpdate.exe -- (gupdate1c9860bf614da36 [Auto | Stopped])
SRV - [2009-03-24 19:51:22 | 00,183,280 | ---- | M] (Google) -- I:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [Auto | Stopped])
SRV - [2006-08-03 18:40:26 | 00,100,032 | ---- | M] (Symantec Corporation) -- I:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe -- (Harmonogram automatycznej usługi LiveUpdate [Auto | Running])
SRV - [2006-08-24 14:00:00 | 00,038,912 | ---- | M] (Microsoft Corporation) -- I:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running])
SRV - [2007-06-04 23:14:50 | 00,217,088 | ---- | M] (Hewlett-Packard Co.) -- I:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll -- (hpqcxs08 [On_Demand | Running])
SRV - [2007-06-04 23:14:50 | 00,131,072 | ---- | M] (Hewlett-Packard Co.) -- I:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll -- (hpqddsvc [Auto | Running])
SRV - [2009-03-12 21:56:52 | 00,656,168 | ---- | M] (Apple Inc.) -- I:\Program Files\iPod\bin\iPodService.exe -- (iPod Service [On_Demand | Stopped])
SRV - [2006-08-03 18:40:26 | 02,119,360 | ---- | M] (Symantec Corporation) -- I:\Program Files\Symantec\LiveUpdate\LuComServer_3_0.EXE -- (LiveUpdate [On_Demand | Stopped])
SRV - [2005-08-05 14:27:08 | 00,099,328 | ---- | M] (Microsoft Corporation) -- I:\WINDOWS\ehome\mcrdsvc.exe -- (McrdSvc [Auto | Running])
SRV - [2004-08-10 14:11:50 | 00,085,504 | ---- | M] (Microsoft Corporation) -- I:\WINDOWS\System32\mhn.dll -- (MHN [On_Demand | Stopped])
SRV - [2007-05-28 13:00:24 | 00,139,888 | ---- | M] (Symantec Corporation) -- I:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe -- (navapsvc [Auto | Running])
SRV - [2006-11-08 17:35:36 | 00,043,520 | ---- | M] (Hewlett-Packard) -- I:\WINDOWS\system32\HPZinw12.dll -- (Net Driver HPZ12 [Auto | Running])
SRV - [2008-10-20 22:18:26 | 00,071,096 | ---- | M] () -- I:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU [Auto | Running])
SRV - [2007-02-20 15:43:06 | 00,750,720 | ---- | M] (Symantec Corporation) -- I:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE -- (NSCService [On_Demand | Running])
SRV - [2006-08-24 14:00:00 | 00,155,715 | ---- | M] (NVIDIA Corporation) -- I:\WINDOWS\system32\nvsvc32.exe -- (NVSvc [Auto | Running])
SRV - [2006-11-08 17:35:38 | 00,053,248 | ---- | M] (Hewlett-Packard) -- I:\WINDOWS\system32\HPZipm12.dll -- (Pml Driver HPZ12 [Auto | Running])
SRV - [2006-08-25 00:00:00 | 00,198,368 | ---- | M] (Symantec Corporation) -- I:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe -- (SAVScan [On_Demand | Stopped])
SRV - [2007-10-01 15:50:08 | 00,214,408 | ---- | M] (Symantec Corporation) -- I:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe -- (SNDSrvc [Auto | Running])
SRV - [2006-08-25 00:00:00 | 01,160,800 | ---- | M] (Symantec Corporation) -- I:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe -- (SPBBCSvc [On_Demand | Stopped])
SRV - [2009-03-06 19:11:45 | 01,251,720 | ---- | M] () -- I:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe -- (Symantec Core LC [Auto | Running])
SRV - [2006-12-01 12:46:28 | 00,918,016 | ---- | M] (Microsoft Corporation) -- I:\Program Files\Windows Media Player\WMPNetwk.exe -- (WMPNetworkSvc [Auto | Running])

[color=orange]========== Driver Services (SafeList) ==========[/color]

DRV - [2009-03-05 11:00:00 | 00,371,248 | ---- | M] (Symantec Corporation) -- I:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl [System | Running])
DRV - [2007-02-16 02:57:04 | 00,034,760 | ---- | M] (SlySoft, Inc.) -- I:\WINDOWS\System32\Drivers\ElbyCDFL.sys -- (ElbyCDFL [On_Demand | Stopped])
DRV - [2007-08-07 21:48:33 | 00,025,160 | ---- | M] (Elaborate Bytes AG) -- I:\WINDOWS\System32\Drivers\ElbyCDIO.sys -- (ElbyCDIO [System | Running])
DRV - [2009-03-16 10:00:00 | 00,101,936 | ---- | M] (Symantec Corporation) -- I:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv [On_Demand | Running])
DRV - [2006-08-24 14:00:00 | 00,043,008 | ---- | M] (VIA Technologies, Inc.              ) -- I:\WINDOWS\system32\DRIVERS\fetnd5bv.sys -- (FETND5BV [On_Demand | Running])
DRV - [2009-01-15 13:19:36 | 00,023,848 | ---- | M] (GEAR Software Inc.) -- I:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM [On_Demand | Stopped])
DRV - [2009-01-30 17:15:03 | 00,025,280 | ---- | M] (LogMeIn, Inc.) -- I:\WINDOWS\system32\DRIVERS\hamachi.sys -- (hamachi [On_Demand | Running])
DRV - [2005-01-08 03:07:16 | 00,145,920 | ---- | M] (Windows (R) Server 2003 DDK provider) -- I:\WINDOWS\system32\drivers\HdAudio.sys -- (HdAudAddService [On_Demand | Running])
DRV - [2005-01-08 03:07:18 | 00,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) -- I:\WINDOWS\system32\DRIVERS\HDAudBus.sys -- (HDAudBus [On_Demand | Running])
DRV - [2007-03-08 21:20:48 | 00,049,920 | ---- | M] (HP) -- I:\WINDOWS\system32\DRIVERS\HPZid412.sys -- (HPZid412 [On_Demand | Stopped])
DRV - [2007-03-08 21:20:49 | 00,016,496 | ---- | M] (HP) -- I:\WINDOWS\system32\DRIVERS\HPZipr12.sys -- (HPZipr12 [On_Demand | Stopped])
DRV - [2007-03-08 21:20:50 | 00,021,568 | ---- | M] (HP) -- I:\WINDOWS\system32\DRIVERS\HPZius12.sys -- (HPZius12 [On_Demand | Stopped])
DRV - [2006-08-24 14:00:00 | 00,006,912 | ---- | M] (JMicron ) -- I:\WINDOWS\system32\DRIVERS\JGOGO.sys -- (JGOGO [Boot | Running])
DRV - [2006-08-24 14:00:00 | 00,042,880 | ---- | M] (JMicron Technology Corp.) -- I:\WINDOWS\system32\DRIVERS\jraid.sys -- (jraid [Boot | Running])
DRV - [2006-08-24 14:00:00 | 00,005,810 | ---- | M] () -- I:\WINDOWS\system32\DRIVERS\ASACPI.sys -- (MTsensor [On_Demand | Running])
DRV - [2009-03-16 10:00:00 | 00,089,104 | ---- | M] (Symantec Corporation) -- I:\Program Files\Common Files\Symantec Shared\VirusDefs\20090525.002\NAVENG.SYS -- (NAVENG [On_Demand | Running])
DRV - [2009-03-16 10:00:00 | 00,876,144 | ---- | M] (Symantec Corporation) -- I:\Program Files\Common Files\Symantec Shared\VirusDefs\20090525.002\NAVEX15.SYS -- (NAVEX15 [On_Demand | Running])
DRV - [2006-08-24 14:00:00 | 03,925,920 | ---- | M] (NVIDIA Corporation) -- I:\WINDOWS\system32\DRIVERS\nv4_mini.sys -- (nv [On_Demand | Running])
DRV - [2005-08-23 01:29:16 | 00,004,608 | ---- | M] (NVIDIA Corporation.) -- I:\WINDOWS\system32\Drivers\nvport.sys -- (nvport [System | Running])
DRV - [2005-06-14 02:27:56 | 00,009,856 | ---- | M] (Padus, Inc.) -- I:\WINDOWS\system32\drivers\pfc.sys -- (pfc [On_Demand | Stopped])
DRV - [2006-08-24 14:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- I:\WINDOWS\system32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])
DRV - [2005-05-12 19:54:10 | 00,020,576 | ---- | M] (Sonic Solutions) -- I:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20 [Boot | Running])
DRV - [2006-08-25 00:00:00 | 00,334,984 | ---- | M] (Symantec Corporation) -- I:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRT.SYS -- (SAVRT [System | Running])
DRV - [2006-08-25 00:00:00 | 00,053,896 | ---- | M] (Symantec Corporation) -- I:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRTPEL.SYS -- (SAVRTPEL [System | Running])
DRV - [2006-08-24 14:00:00 | 00,027,440 | ---- | M] () -- I:\WINDOWS\system32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped])
DRV - [2006-08-25 00:00:00 | 00,389,728 | ---- | M] (Symantec Corporation) -- I:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv [On_Demand | Stopped])
DRV - [2007-10-01 15:48:56 | 00,012,680 | ---- | M] (Symantec Corporation) -- I:\WINDOWS\System32\Drivers\SYMDNS.SYS -- (SYMDNS [On_Demand | Running])
DRV - [2006-08-25 00:00:00 | 00,108,168 | ---- | M] (Symantec Corporation) -- I:\Program Files\Symantec\SYMEVENT.SYS -- (SymEvent [On_Demand | Running])
DRV - [2007-10-01 15:49:04 | 00,098,184 | ---- | M] (Symantec Corporation) -- I:\WINDOWS\System32\Drivers\SYMFW.SYS -- (SYMFW [On_Demand | Running])
DRV - [2007-10-01 15:49:16 | 00,031,624 | ---- | M] (Symantec Corporation) -- I:\WINDOWS\System32\Drivers\SYMIDS.SYS -- (SYMIDS [On_Demand | Running])
DRV - [2009-02-10 00:59:18 | 00,251,768 | ---- | M] (Symantec Corporation) -- I:\Program Files\Common Files\Symantec Shared\SymcData\idsdefs\20090610.001\SymIDSCo.sys -- (SYMIDSCO [On_Demand | Running])
DRV - [2008-12-27 04:15:09 | 00,010,344 | ---- | M] (Symantec Corporation) -- I:\WINDOWS\system32\drivers\symlcbrd.sys -- (symlcbrd [Auto | Running])
DRV - [2007-10-01 15:49:10 | 00,028,040 | ---- | M] (Symantec Corporation) -- I:\WINDOWS\System32\Drivers\SYMNDIS.SYS -- (SYMNDIS [On_Demand | Running])
DRV - [2007-10-01 15:49:20 | 00,023,944 | ---- | M] (Symantec Corporation) -- I:\WINDOWS\System32\Drivers\SYMREDRV.SYS -- (SYMREDRV [On_Demand | Running])
DRV - [2007-10-01 15:49:26 | 00,189,320 | ---- | M] (Symantec Corporation) -- I:\WINDOWS\System32\Drivers\SYMTDI.SYS -- (SYMTDI [System | Running])
DRV - [2009-03-06 00:59:00 | 00,036,864 | ---- | M] (Apple, Inc.) -- I:\WINDOWS\System32\Drivers\usbaapl.sys -- (USBAAPL [On_Demand | Stopped])
DRV - [2004-08-04 00:07:56 | 00,059,264 | ---- | M] (Microsoft Corporation) -- I:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio [On_Demand | Stopped])
DRV - [2006-08-24 14:00:00 | 00,027,904 | ---- | M] (VIA Technologies, Inc.) -- I:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1 [Boot | Running])
DRV - [2006-08-24 14:00:00 | 00,100,992 | ---- | M] (VIA Technologies inc,.ltd) -- I:\WINDOWS\System32\drivers\VIAMRAID.SYS -- (viamraid [Boot | Stopped])
DRV - [2006-08-24 14:00:00 | 00,009,728 | ---- | M] (VIA Technologies, Inc.) -- I:\WINDOWS\system32\DRIVERS\videX32.sys -- (videx32 [Boot | Running])
DRV - [2006-08-24 14:00:00 | 00,011,264 | ---- | M] (VIA Technologies,Inc) -- I:\WINDOWS\system32\DRIVERS\xfilt.sys -- (xfilt [Boot | Running])

[color=orange]========== Standard Registry (SafeList) ==========[/color]


[color=orange]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = I:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.vobis.pl/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\software\mozilla\Mozilla Firefox 3.0.8\extensions\\Components: I:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS [2009-05-28 18:52:38 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.8\extensions\\Plugins: I:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS [2009-05-28 18:52:37 | 00,000,000 | ---D | M]

[2009-05-28 19:12:45 | 00,000,000 | ---D | M] -- I:\Program Files\mozilla firefox\extensions
[2009-05-19 22:52:06 | 00,000,000 | ---D | M] -- I:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2009-03-29 11:23:45 | 00,023,032 | ---- | M] (Mozilla Foundation) -- I:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009-03-29 11:23:45 | 00,134,648 | ---- | M] (Mozilla Foundation) -- I:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2006-06-03 18:43:22 | 00,000,896 | ---- | M] () -- I:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2008-04-03 19:19:08 | 00,001,406 | ---- | M] () -- I:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2008-04-16 06:08:20 | 00,001,706 | ---- | M] () -- I:\Program Files\mozilla firefox\searchplugins\google.xml
[2007-03-31 19:11:54 | 00,000,917 | ---- | M] () -- I:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2006-06-03 18:43:22 | 00,000,858 | ---- | M] () -- I:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2008-03-28 23:36:04 | 00,001,183 | ---- | M] () -- I:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2007-01-05 13:40:56 | 00,001,683 | ---- | M] () -- I:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

O1 HOSTS File: (305748 bytes) - I:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: 127.0.0.1   www.007guard.com
O1 - Hosts: 127.0.0.1   007guard.com
O1 - Hosts: 127.0.0.1   008i.com
O1 - Hosts: 127.0.0.1   www.008k.com
O1 - Hosts: 127.0.0.1   008k.com
O1 - Hosts: 127.0.0.1   www.00hq.com
O1 - Hosts: 127.0.0.1   00hq.com
O1 - Hosts: 127.0.0.1   010402.com
O1 - Hosts: 127.0.0.1   www.032439.com
O1 - Hosts: 127.0.0.1   032439.com
O1 - Hosts: 127.0.0.1   www.0scan.com
O1 - Hosts: 127.0.0.1   0scan.com
O1 - Hosts: 127.0.0.1   www.1000gratisproben.com
O1 - Hosts: 127.0.0.1   1000gratisproben.com
O1 - Hosts: 127.0.0.1   www.1001namen.com
O1 - Hosts: 127.0.0.1   1001namen.com
O1 - Hosts: 127.0.0.1   100888290cs.com
O1 - Hosts: 127.0.0.1   www.100888290cs.com
O1 - Hosts: 127.0.0.1   100sexlinks.com
O1 - Hosts: 127.0.0.1   www.100sexlinks.com
O1 - Hosts: 127.0.0.1   10sek.com
O1 - Hosts: 127.0.0.1   www.10sek.com
O1 - Hosts: 127.0.0.1   www.1-2005-search.com
O1 - Hosts: 127.0.0.1   1-2005-search.com
O1 - Hosts: 10550 more lines...
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - I:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (HP Print Clips) - {053F9267-DC04-4294-A72C-58F732D338C0} - I:\Program Files\HP\Smart Web Printing\hpswp_framework.dll (Hewlett-Packard Co.)
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - I:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (FGCatchUrl) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - I:\Program Files\FlashGet\jccatch.dll (www.flashget.com)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - I:\Program Files\Java\jre1.5.0_08\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (TorrentMan Toolbar) - {7c5c0f58-e061-457d-9033-77307f5ed00c} - I:\Program Files\TorrentMan\tbTor1.dll (Conduit Ltd.)
O2 - BHO: (CNisExtBho Class) - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - I:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll (Symantec Corporation)
O2 - BHO: (CNavExtBho Class) - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - I:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll (Symantec Corporation)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - I:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll (Google Inc.)
O2 - BHO: (FlashGet GetFlash Class) - {F156768E-81EF-470C-9057-481BA8380DBA} - I:\Program Files\FlashGet\getflash.dll (www.flashget.com)
O3 - HKLM\..\Toolbar: (Norton Internet Security 2006) - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - I:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (TorrentMan Toolbar) - {7c5c0f58-e061-457d-9033-77307f5ed00c} - I:\Program Files\TorrentMan\tbTor1.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Norton AntiVirus) - {C4069E3A-68F1-403E-B40E-20066696354B} - I:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll (Symantec Corporation)
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {C4069E3A-68F1-403E-B40E-20066696354B} - I:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll (Symantec Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - I:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll (Symantec Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {7C5C0F58-E061-457D-9033-77307F5ED00C} - I:\Program Files\TorrentMan\tbTor1.dll (Conduit Ltd.)
O4 - HKLM..\Run: [ccApp] "I:\Program Files\Common Files\Symantec Shared\ccApp.exe" (Symantec Corporation)
O4 - HKLM..\Run: [ehTray] I:\WINDOWS\ehome\ehtray.exe (Microsoft Corporation)
O4 - HKLM..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe (Windows (R) Server 2003 DDK provider)
O4 - HKLM..\Run: [MSConfig] I:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE /auto (Microsoft Corporation)
O4 - HKLM..\Run: [NvCplDaemon] RUNDLL32.EXE I:\WINDOWS\system32\NvCpl.dll,NvStartup (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit File not found
O4 - HKLM..\Run: [nwiz] nwiz.exe /install File not found
O4 - HKLM..\Run: [TkBellExe] "I:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot (RealNetworks, Inc.)
O4 - HKCU..\Run: [MSMSGS] "I:\Program Files\Messenger\msmsgs.exe" /background (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - I:\Program Files\Java\jre1.5.0_08\bin\npjpi150_08.dll (Sun Microsystems, Inc.)
O9 - Extra Button: HP Clipbook - {58ECB495-38F0-49cb-A538-10282ABF65E7} - I:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: HP Smart Select - {700259D7-1666-479a-93B1-3250410481E8} - I:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: PartyCasino - {B4B52284-A248-4c51-9F7C-F0A0C67FCC9D} - I:\Program Files\PartyGaming\PartyCasino\RunApp.exe ()
O9 - Extra 'Tools' menuitem : PartyCasino - {B4B52284-A248-4c51-9F7C-F0A0C67FCC9D} - I:\Program Files\PartyGaming\PartyCasino\RunApp.exe ()
O9 - Extra Button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - I:\Program Files\PartyGaming\PartyPoker\RunApp.exe ()
O9 - Extra 'Tools' menuitem : PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - I:\Program Files\PartyGaming\PartyPoker\RunApp.exe ()
O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - I:\Program Files\FlashGet\FlashGet.exe (FlashGet.com)
O9 - Extra 'Tools' menuitem : FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - I:\Program Files\FlashGet\FlashGet.exe (FlashGet.com)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - I:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - I:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [mdnsNSP] - I:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.5.0/jinstall-1_5_0_08-windows-i586.cab (Java Plug-in 1.5.0_08)
O16 - DPF: {CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_08-windows-i586.cab (Java Plug-in 1.5.0_08)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_08-windows-i586.cab (Java Plug-in 1.5.0_08)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - I:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - I:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - I:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - I:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - I:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - I:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - I:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (arzlnb.dll) -  File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - I:\WINDOWS\Explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck) -  File not found
O34 - HKLM BootExecute: (autochk) - I:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - * [2009-06-13 14:49:10 | 00,000,000 | ---D | M]

[color=orange]========== Files/Folders - Created Within 30 Days ==========[/color]

[4 I:\WINDOWS\*.tmp files]
[2009-06-13 17:55:17 | 00,000,000 | ---D | C] -- I:\Documents and Settings\NOWE\Application Data\Hamachi
[2009-06-13 14:49:29 | 00,000,000 | ---D | C] -- I:\rsit
[2009-06-13 14:49:05 | 00,781,909 | ---- | C] () -- I:\Documents and Settings\NOWE\Desktop\RSIT.exe
[2009-06-07 12:26:58 | 00,000,000 | ---D | C] -- I:\Documents and Settings\NOWE\Application Data\Macromedia
[2009-06-07 12:26:58 | 00,000,000 | ---D | C] -- I:\Documents and Settings\NOWE\Application Data\HPAppData
[2009-06-07 12:26:46 | 00,000,000 | ---D | C] -- I:\Documents and Settings\NOWE\My Documents\My CodeSMART Files
[2009-06-07 12:26:46 | 00,000,000 | ---D | C] -- I:\Documents and Settings\NOWE\Application Data\AxTools
[2009-06-07 12:26:40 | 00,000,660 | ---- | C] () -- I:\Documents and Settings\NOWE\Desktop\Skrót do Server.lnk
[2009-06-07 12:26:33 | 00,000,665 | ---- | C] () -- I:\Documents and Settings\NOWE\Desktop\Skrót do Essence.lnk
[2009-06-07 12:10:44 | 00,000,000 | ---D | C] -- I:\Documents and Settings\NOWE\Application Data\Symantec
[2009-06-07 12:10:12 | 00,000,075 | -HS- | C] () -- I:\Documents and Settings\NOWE\My Documents\desktop.ini
[2009-06-07 12:10:12 | 00,000,000 | R--D | C] -- I:\Documents and Settings\NOWE\My Documents\My Pictures
[2009-06-07 12:10:12 | 00,000,000 | R--D | C] -- I:\Documents and Settings\NOWE\My Documents\My Music
[2009-06-07 12:09:23 | 00,000,062 | -HS- | C] () -- I:\Documents and Settings\NOWE\Application Data\desktop.ini
[2009-06-07 12:09:21 | 00,000,062 | -HS- | C] () -- I:\Documents and Settings\NOWE\Local Settings\desktop.ini
[2009-06-07 12:09:20 | 00,000,084 | -HS- | C] () -- I:\Documents and Settings\NOWE\Start Menu\Programs\Startup\desktop.ini
[2009-06-07 12:09:20 | 00,000,000 | --SD | C] -- I:\Documents and Settings\NOWE\Local Settings\Temporary Internet Files
[2009-06-07 12:09:20 | 00,000,000 | --SD | C] -- I:\Documents and Settings\NOWE\Local Settings\History
[2009-06-07 12:09:20 | 00,000,000 | --SD | C] -- I:\Documents and Settings\NOWE\Application Data\Microsoft
[2009-06-07 12:09:20 | 00,000,000 | -H-D | C] -- I:\Documents and Settings\NOWE\Local Settings\Application Data
[2009-06-07 12:09:20 | 00,000,000 | ---D | C] -- I:\Documents and Settings\NOWE\Local Settings\Temp
[2009-06-07 12:09:20 | 00,000,000 | ---D | C] -- I:\Documents and Settings\NOWE\Application Data\Real
[2009-06-07 12:09:20 | 00,000,000 | ---D | C] -- I:\Documents and Settings\NOWE\Application Data\Identities
[2009-05-25 20:07:55 | 00,000,000 | ---D | C] -- I:\Program Files\Spybot - Search & Destroy
[2009-05-25 20:07:55 | 00,000,000 | ---D | C] -- I:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
[2009-05-19 22:58:57 | 00,000,000 | ---D | C] -- I:\WINDOWS\Logs
[2009-05-19 22:54:02 | 00,000,000 | ---D | C] -- I:\Program Files\Electronic Arts
[2009-05-19 22:51:42 | 00,000,000 | ---D | C] -- I:\Program Files\DAEMON Tools Toolbar
[2009-03-24 21:33:15 | 00,055,808 | ---- | C] () -- I:\WINDOWS\System32\zlib1.dll
[2009-03-07 22:22:40 | 00,000,048 | ---- | C] () -- I:\WINDOWS\wininit.ini
[2009-03-06 12:46:38 | 00,044,544 | ---- | C] () -- I:\WINDOWS\System32\GIF89.DLL
[2009-03-06 12:38:19 | 00,053,248 | ---- | C] () -- I:\WINDOWS\System32\zlib.dll
[2009-03-05 22:01:26 | 00,221,184 | ---- | C] () -- I:\WINDOWS\System32\lame_enc.dll
[2009-01-31 18:11:57 | 00,000,088 | RHS- | C] () -- I:\WINDOWS\System32\AF04B3B411.sys
[2009-01-13 17:57:33 | 00,000,173 | ---- | C] () -- I:\WINDOWS\wcx_ftp.ini
[2009-01-13 17:48:43 | 00,001,430 | ---- | C] () -- I:\WINDOWS\wincmd.ini
[2009-01-04 19:57:59 | 00,164,352 | ---- | C] () -- I:\WINDOWS\System32\unrar.dll
[2009-01-04 19:57:58 | 00,000,038 | ---- | C] () -- I:\WINDOWS\avisplitter.ini
[2008-12-28 17:54:24 | 00,006,372 | -HS- | C] () -- I:\WINDOWS\System32\KGyGaAvL.sys
[2008-12-28 17:54:24 | 00,000,088 | RHS- | C] () -- I:\WINDOWS\System32\7954EA224B.sys
[2006-08-24 14:00:00 | 01,662,976 | ---- | C] () -- I:\WINDOWS\System32\nvwdmcpl.dll
[2006-08-24 14:00:00 | 01,466,368 | ---- | C] () -- I:\WINDOWS\System32\nview.dll
[2006-08-24 14:00:00 | 01,019,904 | ---- | C] () -- I:\WINDOWS\System32\nvwimg.dll
[2006-08-24 14:00:00 | 00,581,632 | ---- | C] () -- I:\WINDOWS\System32\nvhwvid.dll
[2006-08-24 14:00:00 | 00,466,944 | ---- | C] () -- I:\WINDOWS\System32\nvshell.dll
[2006-08-24 14:00:00 | 00,286,720 | ---- | C] () -- I:\WINDOWS\System32\nvnt4cpl.dll
[2006-08-24 14:00:00 | 00,196,608 | ---- | C] () -- I:\WINDOWS\System32\nvapi.dll
[2006-08-24 14:00:00 | 00,081,920 | ---- | C] () -- I:\WINDOWS\System32\ieencode.dll
[2006-08-24 14:00:00 | 00,061,440 | ---- | C] () -- I:\WINDOWS\System32\vuins32.dll
[2006-08-24 14:00:00 | 00,027,440 | ---- | C] () -- I:\WINDOWS\System32\drivers\secdrv.sys
[2006-08-24 14:00:00 | 00,005,810 | ---- | C] () -- I:\WINDOWS\System32\drivers\ASACPI.sys
[2006-08-24 14:00:00 | 00,000,780 | ---- | C] () -- I:\WINDOWS\System32\oeminfo.ini
[2006-08-24 14:00:00 | 00,000,621 | ---- | C] () -- I:\WINDOWS\win.ini
[2006-08-24 14:00:00 | 00,000,227 | ---- | C] () -- I:\WINDOWS\system.ini
[2005-08-05 15:01:54 | 00,235,008 | ---- | C] () -- I:\WINDOWS\System32\psisdecd.dll
[1998-06-10 01:00:00 | 00,015,120 | ---- | C] () -- I:\WINDOWS\System32\REPUTIL.DLL

[color=orange]========== Files - Modified Within 30 Days ==========[/color]

[4 I:\WINDOWS\*.tmp files]
[2009-06-13 18:08:22 | 00,001,032 | ---- | M] () -- I:\WINDOWS\tasks\GoogleUpdateTaskMachine.job
[2009-06-13 18:03:51 | 00,000,053 | ---- | M] () -- I:\WINDOWS\vbaddin.ini
[2009-06-13 17:54:43 | 00,000,972 | ---- | M] () -- I:\WINDOWS\tasks\Google Software Updater.job
[2009-06-13 17:54:33 | 00,063,804 | ---- | M] () -- I:\WINDOWS\System32\nvapps.xml
[2009-06-13 17:54:19 | 00,000,062 | -HS- | M] () -- I:\Documents and Settings\NOWE\Local Settings\desktop.ini
[2009-06-13 17:54:19 | 00,000,006 | -H-- | M] () -- I:\WINDOWS\tasks\SA.DAT
[2009-06-13 17:54:08 | 00,002,048 | --S- | M] () -- I:\WINDOWS\bootstat.dat
[2009-06-13 15:17:44 | 00,000,621 | ---- | M] () -- I:\WINDOWS\win.ini
[2009-06-13 15:17:42 | 00,000,227 | ---- | M] () -- I:\WINDOWS\system.ini
[2009-06-13 14:49:15 | 00,781,909 | ---- | M] () -- I:\Documents and Settings\NOWE\Desktop\RSIT.exe
[2009-06-12 22:27:01 | 00,002,206 | ---- | M] () -- I:\WINDOWS\System32\wpa.dbl
[2009-06-07 12:48:05 | 00,002,193 | ---- | M] () -- I:\Documents and Settings\All Users\Desktop\Steam.lnk
[2009-06-07 12:26:40 | 00,000,660 | ---- | M] () -- I:\Documents and Settings\NOWE\Desktop\Skrót do Server.lnk
[2009-06-07 12:26:33 | 00,000,665 | ---- | M] () -- I:\Documents and Settings\NOWE\Desktop\Skrót do Essence.lnk
[2009-06-07 12:10:24 | 00,000,075 | -HS- | M] () -- I:\Documents and Settings\NOWE\My Documents\desktop.ini
[2009-05-31 18:13:44 | 00,001,430 | ---- | M] () -- I:\WINDOWS\wincmd.ini
[2009-05-31 18:13:43 | 00,000,173 | ---- | M] () -- I:\WINDOWS\wcx_ftp.ini
[2009-05-28 18:03:12 | 00,305,748 | R--- | M] () -- I:\WINDOWS\System32\drivers\etc\hosts
< End of report >


Extras:
Kod: Zaznacz wszystko
OTL Extras logfile created on: 2009-06-13 18:11:31 - Run 1
OTL by OldTimer - Version 2.1.1.0     Folder = I:\Documents and Settings\NOWE\Local Settings\Temporary Internet Files\Content.IE5\G16V41QJ
Windows XP Media Center Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Poland | Language: PLK | Date Format: yyyy-MM-dd

1022,42 Mb Total Physical Memory | 376,52 Mb Available Physical Memory | 36,83% Memory free
2,40 Gb Paging File | 1,79 Gb Available in Paging File | 74,46% Paging File free
Paging file location(s): I:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = I: | %SystemRoot% = I:\WINDOWS | %ProgramFiles% = I:\Program Files
C: Drive not present or media not loaded
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
Drive H: | 97,65 Gb Total Space | 38,81 Gb Free Space | 39,74% Space Free | Partition Type: NTFS
Drive I: | 200,43 Gb Total Space | 144,43 Gb Free Space | 72,06% Space Free | Partition Type: NTFS

Computer Name: A-23FBF64955C74
Current User Name: NOWE
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Output = Standard
File Age = 30 Days
Company Name Whitelist: On

[color=orange]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = htmlfile] -- I:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l

[color=orange]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 1
"FirewallDisableNotify" = 1
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Usługa udostępniania w sieci programu Windows Media Player
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Usługa udostępniania w sieci programu Windows Media Player
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Usługa udostępniania w sieci programu Windows Media Player
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Usługa udostępniania w sieci programu Windows Media Player
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Usługa udostępniania w sieci programu Windows Media Player
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Usługa udostępniania w sieci programu Windows Media Player

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
"EnableFirewall" = 0

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Usługa udostępniania w sieci programu Windows Media Player
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Usługa udostępniania w sieci programu Windows Media Player
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Usługa udostępniania w sieci programu Windows Media Player
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Usługa udostępniania w sieci programu Windows Media Player
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Usługa udostępniania w sieci programu Windows Media Player
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Usługa udostępniania w sieci programu Windows Media Player

[color=orange]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
[2007-09-25 10:10:50 | 02,007,088 | ---- | M] (FlashGet.com) -- I:\Program Files\FlashGet\flashget.exe:*:Enabled:Flashget
[2008-08-08 08:04:10 | 01,091,768 | ---- | M] (C. Ghisler & Co.) -- H:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows
[2009-03-21 01:38:00 | 09,797,632 | ---- | M] (Monumental Games) -- I:\Program Files\Football Superstars\FSPatchR.exe:*:Enabled:FS Patcher
[2009-03-26 11:26:00 | 22,347,776 | ---- | M] () -- I:\Program Files\Football Superstars\FSClientr.exe:*:Enabled:FSClientr
[2009-03-14 00:01:07 | 00,098,304 | ---- | M] () -- I:\Program Files\Steam\steamapps\gierek_g\team fortress 2\hl2.exe:*:Enabled:hl2
[2009-06-13 14:56:14 | 01,217,784 | ---- | M] (Valve Corporation) -- I:\Program Files\Steam\Steam.exe:*:Enabled:Steam
[2008-03-20 12:04:46 | 02,127,296 | ---- | M] (Gadu-Gadu S.A.) -- I:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny
[2007-03-07 12:27:12 | 00,567,384 | ---- | M] (www.sopcast.com) -- I:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver
[2008-04-30 10:32:48 | 01,892,352 | ---- | M] (www.sopcast.com) -- I:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application
[1998-06-25 01:00:00 | 01,880,064 | ---- | M] (Microsoft Corporation) -- I:\Program Files\Microsoft Visual Studio\VB98\VB6.EXE:*:Enabled:Visual Basic
[2008-12-12 12:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- I:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour
[2009-03-12 21:56:54 | 13,498,664 | ---- | M] (Apple Inc.) -- I:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes
[2009-02-22 12:01:19 | 00,098,304 | ---- | M] () -- I:\Program Files\Steam\steamapps\common\left 4 dead\left4dead.exe:*:Enabled:Left 4 Dead

[color=orange]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{055FEF8E-4B86-400F-A5C6-8FAC0042DCD9}" = NVIDIA PureVideo Decoder
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{108FAA6F-DEEE-48EA-B3A9-1C5EB2605A6B}" = PL
"{10E1E87C-656C-4D08-86D6-5443D28583BE}" = TrayApp
"{1248C09A-BD6B-47F5-BF3F-CD2B700D9FCB}" = ccCommon
"{12E2B9E9-05B1-407d-B0FD-B5F350535125}" = Norton Internet Security
"{13F00518-807A-4B3A-83B0-A7CD90F3A398}" = MarketResearch
"{14B3E65B-D4A3-4A83-AD85-D49F6D650BCE}" = Position Changer Add-In
"{162B71B8-8464-4680-A086-601D555B331D}" = Apple Mobile Device Support
"{1753255A-0AEB-4220-8C75-607B73F0C133}" = Copy
"{1A15507A-8551-4626-915D-3D5FA095CC1B}" = Corel Paint Shop Pro X
"{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}" = QuickTime
"{22466889-7642-488d-AA0E-F619704CF7AB}" = DeviceDiscovery
"{29FA38B4-0AE4-4D0D-8A51-6165BB990BB0}" = WebReg
"{2EBF25F1-F8A2-40EA-92BE-931C142A44E2}" = CC_ccProxyExt
"{2F28B3C9-2C89-4206-8B33-8ADC9577C49B}" = Scan
"{30738666-9805-4926-A78F-91DA33B6C437}" = ccPxyCore
"{3248F0A8-6813-11D6-A77B-00B0D0150080}" = J2SE Runtime Environment 5.0 Update 8
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3B29A786-5803-4E9E-9B58-3014A5B4E519}" = Norton AntiSpam
"{3FF7A41D-BDB7-4EF1-BA4D-19123FD653D3}_is1" = Aphelion Online
"{415CDA53-9100-476F-A7B2-476691E117C7}" = HP Smart Web Printing
"{43DCF766-6838-4F9A-8C91-D92DA586DFA7}" = Microsoft Windows Journal Viewer
"{48185814-A224-447a-81DA-71BD20580E1B}" = Norton Internet Security
"{487B0B9B-DCD4-440D-89A0-A6EDE1A545A3}" = HPSSupply
"{4E98F23B-1328-4322-A6EC-2EDC8FC3A4FE}" = FontNav
"{543E938C-BDC4-4933-A612-01293996845F}" = UnloadSupport
"{548EAC70-EE00-11DD-908C-005056806466}" = Google Earth
"{5677563D-0CB1-485F-9E18-C5025306BB3F}" = Norton AntiSpam
"{5ABEDD7C-35B7-471D-9EC6-667D652DEC4D}" = StarOffice 8
"{63218538-4A69-497F-8455-904261B0E9E4}" = CorelDRAW Graphics Suite X3
"{63569CE9-FA00-469C-AF5C-E5D4D93ACF91}" = Windows Genuine Advantage v1.3.0254.0
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{66F0AC35-4805-44BC-A3D4-347D4196F9B3}" = Microsoft Xbox 360 Accessories 1.1
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{77772678-817F-4401-9301-ED1D01A8DA56}" = SPBBC
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{824D3839-DAA1-4315-A822-7AE3E620E528}" = VideoToolkit01
"{82A5BF38-8461-4A5C-B2C9-24F5256D92A6}" = Norton Protection Center
"{8389382B-53BA-4A87-8854-91E3D80A5AC7}" = HP Photosmart Essential2.01
"{9941F0AA-B903-4AF4-A055-83A9815CC011}" = Sonic Encoders
"{A6B90148-02C5-4fd3-8D7A-EF2386835CB9}" = F4100_Help
"{A6C265BE-E2C1-483e-843D-6B4C1E912AE0}" = F4100
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A93C9E60-29B6-49da-BA21-F70AC6AADE20}" = Norton Internet Security
"{AB40272D-92AB-4F30-B36B-22EDE16F8FE5}" = HP Update
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC76BA86-7AD7-1045-7B44-A70500000002}" = Adobe Reader 7.0.5 - Polish
"{AC76BA86-7AD7-CE00-F668-7E8A450000A7}" = CE Fonts Package For Adobe Reader
"{AEA07F97-9088-497c-8821-0F36BD5DC251}" = HPProductAssistant
"{AF7FC1CA-79DF-43c3-90A3-33EFEB9294CE}" = AIO_Scan
"{B4509BCE-7BAD-4a8c-B1AE-4D0CE7467C42}" = F4100_doccd
"{B4F35A00-24FD-4fb3-BF5E-413D5423434D}" = DJ_AIO_Software_min
"{B7C61755-DB48-4003-948F-3D34DB8EAF69}" = MSRedist
"{BB65C393-C76E-4F06-9B0C-2124AA8AF97B}" = Adobe Flash Player 9 ActiveX
"{BCD6CD1A-0DBE-412E-9F25-3B500D1E6BA1}" = SolutionCenter
"{BF2115BD-3F78-424F-8E9E-1AD5D91B1DFA}" = SymNet
"{C26B06A9-27BB-45B0-9873-9C623EC2BA38}" = iTunes
"{C6F5B6CF-609C-428E-876F-CA83176C021B}" = Norton AntiVirus 2006
"{C7EEC93A-2A61-4B1E-B696-A264680A889D}" = MobileMe Control Panel
"{C94E45B0-6AA6-4FB9-9AAE-22085F631880}" = VBA
"{CA50045C-5119-48e7-9BA7-6B317379857A}" = DJ_AIO_Software
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{D0E39A1D-0CEE-4D85-B4A2-E3BE990D075E}" = Destination Component
"{D90AFDE3-3E67-407A-ACA8-F0BAAD012F08}" = Safari
"{D9ECBC61-0D76-4EDD-8D46-BB2BB0A02108}" = Localization Pack for Microsoft Windows XP Media Center Edition
"{E2662C24-B31E-4349-A084-32EB76E8B760}" = BufferChm
"{E3EFA461-EB83-4C3B-9C47-2C1D58A01555}" = Norton Internet Security
"{E548726E-F4E8-459f-BAB8-45551BC071E9}" = DJ_AIO_ProductContext
"{E5EE9939-259F-4DE2-8023-5C49E16A4F43}" = Norton Internet Security
"{E85FA9A1-C241-4698-893B-DD99509B8DB0}" = Norton WMI Update
"{E9C18EBD-85BE-47D0-AA73-3FEDCC976B04}" = Toolbox
"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer
"{F64306A5-4C32-41bb-B153-53986527FAB4}" = Norton WMI Update
"{F72E2DDC-3DB8-4190-A21D-63883D955FE7}" = PSSWCORE
"{FA8A44D7-3E8A-4034-9C4F-088FA6B72BC4}" = HP Deskjet All-In-One Software 9.0
"{FC8A7918-D65D-440C-9596-C88185E8DCA4}" = Activision(R)
"{FCE65C4E-B0E8-4FBD-AD16-EDCBE6CD591F}" = HighMAT Extension to Microsoft Windows XP CD Writing Wizard
"{FD8D8B04-BEAD-4A55-AA1D-62D2373E7DEA}" = Status
"{FFB4DD53-28B7-4981-BFF0-9BD801F61095}" = Norton Internet Security
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player
"AIDA32_is1" = AIDA32 v3.93
"ALLPlayer_is1" = ALLPlayer V3.X
"AxTools CodeSMART 2007 for VB6 - EVALUATION_is1" = AxTools CodeSMART 2007 for VB6 - EVALUATION
"B3EE3001-DC24-4cd1-8743-5692C716659F" = Otto
"BitLord" = BitLord 1.1
"Budzik_is1" = Budzik 1.04
"CloneCD" = CloneCD
"Dev-C++" = Dev-C++ 5 beta 9 release (4.9.9.2)
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"FlashGet" = FlashGet 1.9.6.1073
"Football Superstars_is1" = Football Superstars RC87.1
"Gadu-Gadu" = Gadu-Gadu 7.7
"Google Chrome" = Google Chrome
"Google Updater" = Aktualizator Google
"Hamachi" = Hamachi 1.0.3.0
"HijackThis" = HijackThis 2.0.2
"HP Imaging Device Functions" = HP Imaging Device Functions 9.0
"HP Photosmart Essential" = HP Photosmart Essential 2.01
"HP Solution Center & Imaging Support Tools" = HP Solution Center 9.0
"HPExtendedCapabilities" = HP Customer cenzura! Program 9.0
"InstallShield_{FC8A7918-D65D-440C-9596-C88185E8DCA4}" = Drum Controller Standard Tuning Kit
"Kamerzysta" = Kamerzysta (deinstalacja)
"KLiteCodecPack_is1" = K-Lite Codec Pack 4.4.2 (Standard)
"LastFM_is1" = Last.fm 1.5.2.38918
"LiveUpdate" = LiveUpdate 3.0 (Symantec Corporation)
"MIC Recorder ActiveX" = MIC Recorder ActiveX
"Microsoft .NET Framework 1.1  (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0
"Mozilla Firefox (3.0.8)" = Mozilla Firefox (3.0.8)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"MsJavaVM" = Microsoft VM for Java
"Nowe Gadu-Gadu" = Nowe Gadu-Gadu
"NVIDIA Drivers" = NVIDIA Drivers
"PartyCasino" = PartyCasino
"PartyPoker" = PartyPoker
"PhotoScape" = PhotoScape
"RawShooter essentials 2005" = RawShooter essentials 2005
"RealPlayer 6.0" = RealPlayer
"SopCast" = SopCast 3.0.3
"Steam App 10" = Counter-Strike
"Steam App 220" = Half-Life 2
"Steam App 4000" = Garry's Mod
"Steam App 440" = Team Fortress 2
"Steam App 500" = Left 4 Dead
"SymSetup.{A93C9E60-29B6-49da-BA21-F70AC6AADE20}" = Norton Internet Security 2006 (Symantec Corporation)
"TorrentMan Toolbar" = TorrentMan Toolbar
"Totalcmd" = Total Commander (Remove or Repair)
"Vb Tab-Control ActiveX" = Vb Tab-Control ActiveX
"Visual C++ 6.0 Standard Edition" = Microsoft Visual C++ 6.0 Standard Edition
"Visual Sound Recorder" = Visual Sound Recorder
"Visual Studio 6.0 Enterprise Edition" = Microsoft Visual Studio 6.0 Enterprise Edition
"VN_VUIns_Rhine_VIA" = VIA Rhine-Family Fast Ethernet Adapter
"WebPost" = Microsoft Web Publishing Wizard 1.53
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"WinGimp-2.0_is1" = GIMP 2.6.5
"WinRAR archiver" = Archiwizator WinRAR
"WMCSetup" = Windows Media Connect
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Zagadka Einsteina_is1" = Zagadka Einsteina 1.0

[color=orange]========== Last 10 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2009-06-13 11:58:12 | Computer Name = A-23FBF64955C74 | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd iexplore.exe, wersja 6.0.2900.2180, moduł
powodujący błąd unknown, wersja 0.0.0.0, adres błędu 0x02bd1f9d.

[ System Events ]
Error - 2009-06-13 08:09:55 | Computer Name = A-23FBF64955C74 | Source = W32Time | ID = 39452701
Description = Dostawca czasu NtpClient jest skonfigurowany, tak aby pobierać czas
z jednego lub kilku  źródeł czasu, jednak żadne ze źródeł jest obecnie niedostępne.
   Przez 59 min nie nastąpi próba kontaktu ze źródłem.  NtpClient nie ma źródła dokładnego
czasu.

Error - 2009-06-13 09:18:50 | Computer Name = A-23FBF64955C74 | Source = Service Control Manager | ID = 7034
Description = Usługa Symantec Event Manager niespodziewanie zakończyła pracę. Wystąpiło
to razy: 1.

Error - 2009-06-13 11:54:54 | Computer Name = A-23FBF64955C74 | Source = W32Time | ID = 39452689
Description = Dostawca czasu NtpClient: Wystąpił błąd podczas wyszukiwania serwera
DNS  ręcznie skonfigurowanej końcówki „time.windows.com,0x1”. Klient NtpClient ponowi
próbę  wyszukania serwera DNS za 15 min.  Wystąpił błąd: Próba przeprowadzenia operacji,
wykonywanej przez gniazdo, na nieosiągalnym hoście. (0x80072751)

Error - 2009-06-13 11:54:54 | Computer Name = A-23FBF64955C74 | Source = W32Time | ID = 39452701
Description = Dostawca czasu NtpClient jest skonfigurowany, tak aby pobierać czas
z jednego lub kilku  źródeł czasu, jednak żadne ze źródeł jest obecnie niedostępne.
   Przez 14 min nie nastąpi próba kontaktu ze źródłem.  NtpClient nie ma źródła dokładnego
czasu.

Error - 2009-06-13 11:54:54 | Computer Name = A-23FBF64955C74 | Source = W32Time | ID = 39452689
Description = Dostawca czasu NtpClient: Wystąpił błąd podczas wyszukiwania serwera
DNS  ręcznie skonfigurowanej końcówki „time.windows.com,0x1”. Klient NtpClient ponowi
próbę  wyszukania serwera DNS za 15 min.  Wystąpił błąd: Próba przeprowadzenia operacji,
wykonywanej przez gniazdo, na nieosiągalnym hoście. (0x80072751)

Error - 2009-06-13 11:54:54 | Computer Name = A-23FBF64955C74 | Source = W32Time | ID = 39452701
Description = Dostawca czasu NtpClient jest skonfigurowany, tak aby pobierać czas
z jednego lub kilku  źródeł czasu, jednak żadne ze źródeł jest obecnie niedostępne.
   Przez 15 min nie nastąpi próba kontaktu ze źródłem.  NtpClient nie ma źródła dokładnego
czasu.

Error - 2009-06-13 11:55:16 | Computer Name = A-23FBF64955C74 | Source = Dhcp | ID = 1002
Description = Adres IP połączenia 5.112.67.66 dla karty sieciowej o adresie 7A7905704342
został  zabroniony przez serwer DHCP 0.0.0.1 (Serwer DHCP wysłał komunikat DHCPNACK).

Error - 2009-06-13 11:56:18 | Computer Name = A-23FBF64955C74 | Source = Dhcp | ID = 1001
Description = Komputerowi nie został przypisany adres z sieci (przez serwer  DHCP)
dla karty sieciowej o adresie 7A7905704342. Wystąpił następujący  błąd:   %%121.  Komputer
będzie dalej próbował sam uzyskać adres  z serwera adresów sieciowych (DHCP).

Error - 2009-06-13 12:01:47 | Computer Name = A-23FBF64955C74 | Source = Dhcp | ID = 1001
Description = Komputerowi nie został przypisany adres z sieci (przez serwer  DHCP)
dla karty sieciowej o adresie 7A7905704342. Wystąpił następujący  błąd:   %%121.  Komputer
będzie dalej próbował sam uzyskać adres  z serwera adresów sieciowych (DHCP).

Error - 2009-06-13 12:07:40 | Computer Name = A-23FBF64955C74 | Source = Dhcp | ID = 1001
Description = Komputerowi nie został przypisany adres z sieci (przez serwer  DHCP)
dla karty sieciowej o adresie 7A7905704342. Wystąpił następujący  błąd:   %%121.  Komputer
będzie dalej próbował sam uzyskać adres  z serwera adresów sieciowych (DHCP).


< End of report >
w WWW pierwsza polska strona na temat Alien Swarm
Awatar użytkownika
Michal_Gluszyca
~user
 
Posty: 686
Dołączenie: 22 Kwi 2006, 13:13
Pochwały: 9


Góra

Duże użycie procesora.

Postprzez wojtas 14 Cze 2009, 12:09

Uruchom OTL i w oknie Custom Scans/Fixes wklej :


:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - AppInit_DLLs: (arzlnb.dll) - File not found

:Commands
[emptytemp]
[start explorer]
[Reboot]


Kliknij w Run Fix. I potwierdz reset kompa .

jaki proces zabiera Ci ???

1.Uruchom OTL z opcji CleanUp
2. wykonaj optymalizację windowsa
3.Wyłącz przywracanie systemu ( właściwości mój komputer-zakładka przywracanie - wyłącz przywracanie na wszystkich dyskach). Po chwili włącz je powrotem
4. Wykonaj skan Dr. Web CureIt
5. Przeskanuj obszar mojego komputera http://www.kaspersky.pl/virusscanner.html (uruchom przez IE) Daj raport z niego na forum.

i tym (skasuj co znajdzie)

Malwarebytes Anti-Malware

Jeśli masz Adobe Reader to zaaktualizuj go do najnowszej wersji
Image
Awatar użytkownika
wojtas
*mod
 
Posty: 18165
Dołączenie: 13 Sty 2006, 16:00
Miejscowość: Krzeszyce
Pochwały: 1656


Góra

Re: duże użycie procesora.

Postprzez Michal_Gluszyca 14 Cze 2009, 19:18

Problem chyba jest trochę poważniejszy, niż sądziłem na początku.
Po "RUN fix" z OTL jest restart, a jak komputer się uruchamia ponownie, to program znika, pewnie jakiś wirus go usuwa.
Nie mogę też włączyć właściwości Mojego Komputera(nic się nie dzieje), a IE przestaje po jakimś czasie działać.

Jakieś rady?

EDIT:
Właściwości Komputera włączyły się po 5 minutach. Ale problem ze znikającym OTLem jak najbardziej aktualny :cry:
w WWW pierwsza polska strona na temat Alien Swarm
Awatar użytkownika
Michal_Gluszyca
~user
 
Posty: 686
Dołączenie: 22 Kwi 2006, 13:13
Pochwały: 9


Góra

Duże użycie procesora.

Postprzez wojtas 15 Cze 2009, 00:05

Daj loga z combofixa ale zainstaluj wraz z nim konsolę odzyskiwania ( instrukcja programu )
Image
Awatar użytkownika
wojtas
*mod
 
Posty: 18165
Dołączenie: 13 Sty 2006, 16:00
Miejscowość: Krzeszyce
Pochwały: 1656


Góra
Wyślij odpowiedź

Powróć do Bezpieczeństwo

Kto jest na forum

Użytkownicy przeglądający to forum: Brak zarejestrowanych użytkowników oraz 10 gości

Powered by phpBB © Group
Forum Programosy.pl