Windows 7 -> problem z pulpitem, ikony nie pojawiają się

Marq · Grudzień 29, 2009

Witam!

Problem pojawił się dzisiaj. Po włączeniu PC system normalnie ładuje się, pojawia się pulpit (sama tapeta), pasek zadań... i nic więcej. Żadnych ikon itp. Mogę tylko latać sobie kursorem po ekranie. Nie działa kompletnie nic, ani task manager, ani menu start.

Nie wiem, co może być przyczyną... może jakiś wirus, ale Avast! nic nie znalazł. Nie grzebałem w systemie wcześniej.

Już kiedyś taki problem pojawiał się u mnie (sporadycznie), ale zawsze wystarczał reset.

System to Windows 7, 64-bitowy.

Podaję logi z HijackThis :

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 13:19:11, on 2009-12-29

Platform: Unknown Windows (WinNT 6.01.3004)

MSIE: Internet Explorer v8.00 (8.00.7100.0000)

Boot mode: Safe mode with network support


Running processes:

D:\Konnekt\konnekt.exe

C:\Program Files\Mozilla Firefox\firefox.exe

D:\Avast\ashSimpl.exe

D:\HijackThis\HijackThis.exe


R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O4 - HKLM\..\Run: [avast!] "D:\Avast\ashDisp.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Adobe Reader\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [NeroCheck] C:\Windows\system32\NeroCheck.exe

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\SysWOW64\NeroCheck.exe

O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre6\bin\jusched.exe"

O4 - HKCU\..\Run: [Konnekt] "D:\Konnekt\konnekt.exe" /autostart

O4 - HKCU\..\Run: [Steam] "d:\steam\steam.exe" -silent

O4 - HKCU\..\Run: [ALLUpdate] "C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe" "sleep"

O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden

O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - Startup: Xfire.lnk = D:\X-Fire\Xfire.exe

O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000

O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL

O13 - Gopher Prefix: 

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flas...ent/swflash.cab

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: ASP.NET State Service (aspnet_state) - Unknown owner - C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (file missing)

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - D:\Avast\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - D:\Avast\ashServ.exe

O23 - Service: avast! Mail Scanner - ALWIL Software - D:\Avast\ashMaiSv.exe

O23 - Service: avast! Web Scanner - ALWIL Software - D:\Avast\ashWebSv.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe

O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe

O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)


--

End of file - 7324 bytes

i OTL'a :

OTL logfile created on: 2009-12-29 13:34:19 - Run 2

OTL by OldTimer - Version 3.1.20.1     Folder = C:\Users\Marek\Downloads

64bit- Ultimate Edition  (Version = 6.1.7100) - Type = NTWorkstation

Internet Explorer (Version = 8.0.7100.0)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd


3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 68,00% Memory free

6,00 Gb Paging File | 5,00 Gb Available in Paging File | 86,00% Paging File free

Paging file location(s): ?:\pagefile.sys [binary data]


%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)

Drive C: | 97,65 Gb Total Space | 21,03 Gb Free Space | 21,53% Space Free | Partition Type: NTFS

Drive D: | 200,43 Gb Total Space | 14,36 Gb Free Space | 7,16% Space Free | Partition Type: NTFS

E: Drive not present or media not loaded

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded


Computer Name: HOMEPC

Current User Name: Marek

Logged in as Administrator.


Current Boot Mode: SafeMode with Networking

Scan Mode: All users

Include 64bit Scans

Company Name Whitelist: On

Skip Microsoft Files: Off

File Age = 30 Days

Output = Standard

========== Processes (SafeList) ==========


PRC - [2009-12-29 12:18:30 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Marek\Downloads\OTL.exe

PRC - [2009-12-18 09:05:01 | 00,307,672 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe

PRC - [2009-02-05 21:04:57 | 00,159,280 | ---- | M] (ALWIL Software) -- D:\Avast\ashSimpl.exe

PRC - [2005-05-24 22:41:09 | 00,503,808 | ---- | M] (Stamina) -- D:\Konnekt\konnekt.exe


========== Modules (SafeList) ==========


MOD - [2009-12-29 12:18:30 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Marek\Downloads\OTL.exe

MOD - [2009-04-22 06:00:58 | 01,679,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7100.0_none_d75e6751736615f2\comctl32.dll


========== Win32 Services (SafeList) ==========


SRV:64bit: - [2009-04-22 06:41:48 | 00,228,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wwansvc.dll -- (WwanSvc)

SRV:64bit: - [2009-04-22 06:41:31 | 00,201,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wbiosrvc.dll -- (WbioSrvc)

SRV:64bit: - [2009-04-22 06:41:29 | 00,195,072 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\umrdp.dll -- (UmRdpService)

SRV:64bit: - [2009-04-22 06:41:29 | 00,164,352 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\umpo.dll -- (Power)

SRV:64bit: - [2009-04-22 06:41:26 | 00,044,544 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\themeservice.dll -- (Themes)

SRV:64bit: - [2009-04-22 06:41:20 | 00,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sppuinotify.dll -- (sppuinotify)

SRV:64bit: - [2009-04-22 06:41:01 | 00,029,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sensrsvc.dll -- (SensrSvc)

SRV:64bit: - [2009-04-22 06:40:58 | 00,067,072 | ---- | M] (Microsoft Corporation) [Unknown | Running] -- C:\Windows\SysNative\RpcEpMap.dll -- (RpcEptMapper)

SRV:64bit: - [2009-04-22 06:40:56 | 00,187,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\provsvc.dll -- (HomeGroupProvider)

SRV:64bit: - [2009-04-22 06:40:54 | 00,327,168 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\pnrpsvc.dll -- (PNRPsvc)

SRV:64bit: - [2009-04-22 06:40:54 | 00,327,168 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\pnrpsvc.dll -- (p2pimsvc)

SRV:64bit: - [2009-04-22 06:40:54 | 00,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\pnrpauto.dll -- (PNRPAutoReg)

SRV:64bit: - [2009-04-22 06:40:52 | 01,361,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PeerDistSvc.dll -- (PeerDistSvc)

SRV:64bit: - [2009-04-22 06:40:14 | 01,011,200 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)

SRV:64bit: - [2009-04-22 06:40:08 | 00,235,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ListSvc.dll -- (HomeGroupListener)

SRV:64bit: - [2009-04-22 06:39:46 | 01,126,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FntCache.dll -- (FontCache)

SRV:64bit: - [2009-04-22 06:39:30 | 00,314,880 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)

SRV:64bit: - [2009-04-22 06:39:29 | 00,291,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\defragsvc.dll -- (defragsvc)

SRV:64bit: - [2009-04-22 06:39:25 | 00,689,152 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\cscsvc.dll -- (CscService)

SRV:64bit: - [2009-04-22 06:39:08 | 00,083,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\bthserv.dll -- (bthserv)

SRV:64bit: - [2009-04-22 06:39:06 | 00,100,864 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\SysNative\bdesvc.dll -- (BDESVC)

SRV:64bit: - [2009-04-22 06:39:03 | 00,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AxInstSv.dll -- (AxInstSV)

SRV:64bit: - [2009-04-22 06:38:59 | 00,193,024 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)

SRV:64bit: - [2009-04-22 06:38:59 | 00,032,256 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appidsvc.dll -- (AppIDSvc)

SRV:64bit: - [2009-04-22 06:38:44 | 01,503,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wbengine.exe -- (wbengine)

SRV:64bit: - [2009-04-22 06:38:24 | 03,524,608 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\sppsvc.exe -- (sppsvc)

SRV:64bit: - [2009-04-22 06:38:06 | 00,689,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FXSSVC.exe -- (Fax)

SRV - [2009-12-28 03:39:42 | 00,189,104 | ---- | M] () [Auto | Stopped] -- C:\Windows\SysWOW64\PnkBstrB.exe -- (PnkBstrB)

SRV - [2009-11-20 19:17:00 | 00,240,232 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)

SRV - [2009-11-20 14:39:12 | 00,073,728 | ---- | M] (Hewlett-Packard Company) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService)

SRV - [2009-11-19 14:16:05 | 00,320,760 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)

SRV - [2009-08-25 10:42:40 | 00,075,064 | ---- | M] () [Auto | Stopped] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)

SRV - [2009-04-22 08:16:44 | 00,000,000 | ---D | M] [On_Demand | Stopped] -- C:\Windows\Vss -- (VSS)

SRV - [2009-04-22 08:16:43 | 00,000,000 | ---D | M] [Unknown | Stopped] -- C:\Windows\SysWOW64\Msdtc -- (MSDTC)

SRV - [2009-04-22 06:21:43 | 00,164,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\provsvc.dll -- (HomeGroupProvider)

SRV - [2009-04-22 06:20:14 | 00,252,928 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)

SRV - [2009-04-22 01:32:06 | 00,061,056 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysWOW64\wbem\vds.mof -- (vds)

SRV - [2009-04-04 21:04:26 | 00,090,976 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_64)

SRV - [2009-02-05 21:08:40 | 00,138,680 | ---- | M] (ALWIL Software) [Auto | Stopped] -- D:\Avast\ashServ.exe -- (avast! Antivirus)

SRV - [2009-02-05 21:08:26 | 00,254,040 | ---- | M] (ALWIL Software) [On_Demand | Stopped] -- D:\Avast\ashMaiSv.exe -- (avast! Mail Scanner)

SRV - [2009-02-05 21:06:04 | 00,352,920 | ---- | M] (ALWIL Software) [On_Demand | Stopped] -- D:\Avast\ashWebSv.exe -- (avast! Web Scanner)

SRV - [2009-02-05 21:01:25 | 00,018,752 | ---- | M] (ALWIL Software) [Auto | Stopped] -- D:\Avast\aswUpdSv.exe -- (aswUpdSv)


========== Driver Services (SafeList) ==========


DRV:64bit: - [2009-09-30 12:29:39 | 00,314,016 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)

DRV:64bit: - [2009-09-30 12:29:39 | 00,043,680 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)

DRV:64bit: - [2009-05-24 14:53:16 | 00,033,344 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)

DRV:64bit: - [2009-05-16 20:59:07 | 00,871,408 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)

DRV:64bit: - [2009-04-22 06:53:06 | 00,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)

DRV:64bit: - [2009-04-22 06:53:04 | 00,105,040 | ---- | M] (AMD) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)

DRV:64bit: - [2009-04-22 06:52:53 | 00,028,752 | ---- | M] (AMD) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)

DRV:64bit: - [2009-04-22 06:48:23 | 00,153,168 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ksecpkg.sys -- (KSecPkg)

DRV:64bit: - [2009-04-22 06:48:16 | 00,077,904 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)

DRV:64bit: - [2009-04-22 06:48:15 | 00,065,616 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)

DRV:64bit: - [2009-04-22 06:48:14 | 00,054,352 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fsdepends.sys -- (FsDepends)

DRV:64bit: - [2009-04-22 06:48:11 | 00,050,256 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pcw.sys -- (pcw)

DRV:64bit: - [2009-04-22 06:48:04 | 00,014,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\hwpolicy.sys -- (hwpolicy)

DRV:64bit: - [2009-04-22 06:45:33 | 00,228,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vhdmp.sys -- (vhdmp)

DRV:64bit: - [2009-04-22 06:45:27 | 00,214,096 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\rdyboost.sys -- (rdyboost)

DRV:64bit: - [2009-04-22 06:45:27 | 00,203,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmbus.sys -- (vmbus)

DRV:64bit: - [2009-04-22 06:45:25 | 00,047,168 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\vmstorfl.sys -- (storflt)

DRV:64bit: - [2009-04-22 06:45:20 | 00,036,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\storvsc.sys -- (storvsc)

DRV:64bit: - [2009-04-22 06:45:20 | 00,024,640 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)

DRV:64bit: - [2009-04-22 06:45:20 | 00,022,080 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wimmount.sys -- (WIMMount)

DRV:64bit: - [2009-04-22 06:45:19 | 00,036,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\vdrvroot.sys -- (vdrvroot)

DRV:64bit: - [2009-04-22 06:45:10 | 00,458,936 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\cng.sys -- (CNG)

DRV:64bit: - [2009-04-22 06:44:54 | 00,222,936 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\fvevol.sys -- (fvevol)

DRV:64bit: - [2009-04-22 05:26:27 | 00,023,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rdpbus.sys -- (rdpbus)

DRV:64bit: - [2009-04-22 05:25:20 | 00,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\RDPREFMP.sys -- (RDPREFMP)

DRV:64bit: - [2009-04-22 05:19:00 | 00,060,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)

DRV:64bit: - [2009-04-22 05:18:10 | 00,012,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\wfplwf.sys -- (WfpLwf)

DRV:64bit: - [2009-04-22 05:16:55 | 00,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndiscap.sys -- (NdisCap)

DRV:64bit: - [2009-04-22 05:15:56 | 00,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vwifibus.sys -- (vwifibus)

DRV:64bit: - [2009-04-22 05:15:43 | 00,227,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\1394ohci.sys -- (1394ohci)

DRV:64bit: - [2009-04-22 05:15:37 | 00,350,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HdAudio.sys -- (HdAudAddService)

DRV:64bit: - [2009-04-22 05:15:28 | 00,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\umpass.sys -- (UmPass)

DRV:64bit: - [2009-04-22 05:15:08 | 00,040,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winusb.sys -- (WinUsb)

DRV:64bit: - [2009-04-22 05:15:05 | 00,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidkmdf.sys -- (mshidkmdf)

DRV:64bit: - [2009-04-22 05:14:25 | 00,112,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WUDFPf.sys -- (WudfPf)

DRV:64bit: - [2009-04-22 05:10:55 | 00,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MTConfig.sys -- (MTConfig)

DRV:64bit: - [2009-04-22 05:09:18 | 00,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CompositeBus.sys -- (CompositeBus)

DRV:64bit: - [2009-04-22 05:08:57 | 00,006,656 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\beep.sys -- (Beep)

DRV:64bit: - [2009-04-22 04:59:57 | 00,061,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\appid.sys -- (AppID)

DRV:64bit: - [2009-04-22 04:57:24 | 00,029,696 | ---- | M] (Microsoft Corporation) [Kernel | Unknown | Stopped] -- C:\Windows\SysNative\drivers\scfilter.sys -- (scfilter)

DRV:64bit: - [2009-04-22 04:49:33 | 00,006,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vms3cap.sys -- (s3cap)

DRV:64bit: - [2009-04-22 04:49:14 | 00,021,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VMBusHID.sys -- (VMBusHID)

DRV:64bit: - [2009-04-22 04:43:33 | 00,040,448 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\discache.sys -- (discache)

DRV:64bit: - [2009-04-22 04:34:55 | 00,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidbatt.sys -- (HidBatt)

DRV:64bit: - [2009-04-22 04:34:53 | 00,017,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CmBatt.sys -- (CmBatt)

DRV:64bit: - [2009-04-22 04:29:34 | 00,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipmi.sys -- (AcpiPmi)

DRV:64bit: - [2009-04-22 04:27:28 | 00,514,048 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\csc.sys -- (CSC)

DRV:64bit: - [2009-04-22 04:23:12 | 00,060,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdppm.sys -- (AmdPPM)

DRV:64bit: - [2009-03-17 05:35:14 | 00,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)

DRV:64bit: - [2009-03-06 08:43:48 | 00,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)

DRV:64bit: - [2009-02-06 04:41:49 | 03,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)

DRV:64bit: - [2009-02-05 21:07:36 | 00,089,680 | ---- | M] (ALWIL Software) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)

DRV:64bit: - [2009-02-05 21:07:17 | 00,022,096 | ---- | M] (ALWIL Software) [File_System | Auto | Stopped] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)

DRV:64bit: - [2009-02-05 21:07:07 | 00,064,592 | ---- | M] (ALWIL Software) [File_System | Auto | Stopped] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)

DRV:64bit: - [2009-02-05 21:06:23 | 00,058,448 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)

DRV:64bit: - [2009-02-05 21:06:13 | 00,027,216 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr.sys -- (aswRdr)

DRV:64bit: - [2009-01-24 05:08:24 | 00,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)

DRV:64bit: - [2009-01-08 18:26:00 | 00,408,960 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvm62x64.sys -- (NVENETFD)

DRV:64bit: - [2005-09-23 22:18:34 | 00,261,120 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MarvinBus64.sys -- (MarvinBus)

DRV - [2009-05-07 18:59:16 | 00,000,000 | ---D | M] [Kernel | System | Running] -- C:\Windows\CSC -- (CSC)

DRV - [2009-04-22 06:23:43 | 00,019,024 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)

DRV - [2009-04-22 06:22:17 | 00,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\winusb.dll -- (WinUsb)

DRV - [2009-04-22 06:21:17 | 00,014,336 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysWOW64\netbios.dll -- (NetBIOS)

DRV - [2009-03-20 16:27:01 | 00,001,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\wbem\mpsdrv.mof -- (mpsdrv)

DRV - [2009-03-20 16:21:33 | 00,003,066 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysWOW64\wbem\tcpip.mof -- (Tcpip)

DRV - [2007-02-07 19:27:46 | 00,014,104 | ---- | M] (Windows ? Server 2003 DDK provider) [Kernel | Boot | Running] -- C:\Windows\SysWOW64\speedfan.sys -- (speedfan)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm



IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0




IE - HKU\S-1-5-21-946890917-606363404-330906998-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 40 62 F6 F5 3B 23 CA 01  [binary data]

IE - HKU\S-1-5-21-946890917-606363404-330906998-1001\S-1-5-21-946890917-606363404-330906998-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========


FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.2

FF - prefs.js..extensions.enabledItems: battlefieldheroespatcher@ea.com:4.0.21.0

FF - prefs.js..extensions.enabledItems: {DDC359D1-844A-42a7-9AA1-88A850A938A8}:1.1.7

FF - prefs.js..extensions.enabledItems: {a3b24d40-bac4-11dc-95ff-0800200c9a66}:0.2.2

FF - prefs.js..extensions.enabledItems: dave2x@download:0.5.9

FF - prefs.js..extensions.enabledItems: NPDyyno@dyyno.com:1.0.0.24


FF - HKLM\software\mozilla\Mozilla Firefox 3.0.16\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-12-18 09:05:02 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.0.16\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-12-18 09:05:02 | 00,000,000 | ---D | M]


[2009-05-07 19:37:22 | 00,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\mozilla\Extensions

[2009-12-28 15:48:25 | 00,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\mozilla\Firefox\Profiles\bx4g108e.default\extensions

[2009-05-31 16:27:09 | 00,000,000 | ---D | M] (jDownFF) -- C:\Users\Marek\AppData\Roaming\mozilla\Firefox\Profiles\bx4g108e.default\extensions\{a3b24d40-bac4-11dc-95ff-0800200c9a66}

[2009-12-12 23:00:02 | 00,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Marek\AppData\Roaming\mozilla\Firefox\Profiles\bx4g108e.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}

[2009-12-12 23:00:02 | 00,000,000 | ---D | M] (DownThemAll!) -- C:\Users\Marek\AppData\Roaming\mozilla\Firefox\Profiles\bx4g108e.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}

[2009-06-26 11:22:34 | 00,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\mozilla\Firefox\Profiles\bx4g108e.default\extensions\battlefieldheroespatcher@ea.com

[2009-06-20 10:12:16 | 00,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\mozilla\Firefox\Profiles\bx4g108e.default\extensions\dave2x@download

[2009-05-14 20:42:05 | 00,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\mozilla\Firefox\Profiles\bx4g108e.default\extensions\NPDyyno@dyyno.com


O1 HOSTS File: (824 bytes) - C:\Windows\SysNative\drivers\etc\hosts

O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)

O4 - HKLM..\Run: [Adobe Reader Speed Launcher] D:\Adobe Reader\Reader\Reader_sl.exe (Adobe Systems Incorporated)

O4 - HKLM..\Run: [avast!] D:\Avast\ashDisp.exe (ALWIL Software)

O4 - HKLM..\Run: [NeroCheck] C:\Windows\SysWOW64\NeroCheck.exe (Ahead Software Gmbh)

O4 - HKLM..\Run: [NeroFilterCheck] C:\Windows\SysWOW64\NeroCheck.exe (Ahead Software Gmbh)

O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)

O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)

O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)

O4 - HKU\S-1-5-21-946890917-606363404-330906998-1001..\Run: [ALLUpdate] C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe ()

O4 - HKU\S-1-5-21-946890917-606363404-330906998-1001..\Run: [Konnekt] D:\Konnekt\konnekt.exe (Stamina)

O4 - HKU\S-1-5-21-946890917-606363404-330906998-1001..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe (Hewlett-Packard Company)

O4 - HKU\S-1-5-21-946890917-606363404-330906998-1001..\Run: [Steam] d:\steam\steam.exe (Valve Corporation)

O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found

O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found

O4 - Startup: C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Xfire.lnk = D:\X-Fire\Xfire.exe (Xfire Inc.)

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0

O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll (Microsoft Corporation)

O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll (Microsoft Corporation)

O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL (Microsoft Corporation)

O13 - gopher Prefix: missing

O13 - gopher Prefix: missing

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)

O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/flas...ent/swflash.cab (Shockwave Flash Object)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 78.152.23.66 78.152.23.67

O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found

O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)

O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)

O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)

O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) -  File not found

O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)

O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found

O30:64bit: - LSA: Security Packages - (pku2u) - C:\Windows\SysNative\pku2u.dll (Microsoft Corporation)

O30 - LSA: Security Packages - (pku2u) - C:\Windows\SysWow64\pku2u.dll (Microsoft Corporation)

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2009-12-25 00:14:32 | 00,018,769 | ---- | M] () - C:\AutoMapaSetupLog.txt -- [ NTFS ]

O33 - MountPoints2\{25b12d13-4254-11de-9446-000ea6f43496}\Shell - "" = AutoRun

O33 - MountPoints2\{25b12d13-4254-11de-9446-000ea6f43496}\Shell\AutoRun\command - "" = F:\autorun.exe -- File not found

O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
64bit: O35 - comfile [open] -- "%1" %* File not found
64bit: O35 - exefile [open] -- "%1" %* File not found

O35 - comfile [open] -- "%1" %*

O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========


[2009-12-29 13:30:24 | 00,000,000 | ---D | C] -- C:\ProgramData\LightScribe

[2009-12-25 10:58:48 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\LightScribe Template Labeler

[2009-12-25 10:54:42 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\LightScribe

[2009-12-24 14:33:16 | 00,000,000 | ---D | C] -- C:\Users\Marek\AppData\Local\CoI

[2009-12-21 15:03:07 | 00,000,000 | ---D | C] -- C:\Users\Marek\AppData\Roaming\The Creative Assembly

[2009-12-13 15:48:12 | 15,527,15394 | ---- | C] (Aqurat sp. z o.o. & Geosystems sp. z. o.o.) -- C:\Users\Marek\Desktop\AutoMapa_6.0.0_EU.exe

[2009-12-05 19:02:18 | 00,000,000 | ---D | C] -- C:\Users\Marek\Documents\Moje Gry

[2009-12-05 18:55:02 | 01,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll

[2009-12-05 18:55:02 | 01,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll

[2009-12-05 18:55:02 | 00,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll

[2009-12-05 18:55:02 | 00,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll

[2009-12-05 18:55:01 | 04,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll

[2009-12-05 18:55:01 | 03,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll

[2009-12-05 09:26:58 | 00,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation

[2009-12-05 09:25:43 | 00,076,904 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll

[2009-12-05 09:25:43 | 00,076,392 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll

[2009-11-29 20:59:37 | 00,000,000 | ---D | C] -- C:\Users\Public\Documents\S.T.A.L.K.E.R. - Zew Prypeci

[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========


[2009-12-29 13:36:16 | 07,077,888 | -HS- | M] () -- C:\Users\Marek\ntuser.dat

[2009-12-29 13:32:30 | 01,552,276 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI

[2009-12-29 13:32:30 | 00,697,188 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat

[2009-12-29 13:32:30 | 00,615,760 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat

[2009-12-29 13:32:30 | 00,136,644 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat

[2009-12-29 13:32:30 | 00,107,396 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat

[2009-12-29 12:09:42 | 00,065,536 | ---- | M] () -- C:\Windows\SysNative\Ikeext.etl

[2009-12-29 12:09:37 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat

[2009-12-29 12:09:33 | 24,147,80416 | -HS- | M] () -- C:\hiberfil.sys

[2009-12-29 12:07:44 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT

[2009-12-29 11:31:37 | 00,000,622 | ---- | M] () -- C:\Users\Marek\Desktop\HijackThis.lnk

[2009-12-28 18:00:39 | 00,001,034 | ---- | M] () -- C:\Users\Marek\Desktop\prime.ini

[2009-12-28 17:54:15 | 00,000,053 | ---- | M] () -- C:\Users\Marek\Desktop\local.ini

[2009-12-28 15:43:02 | 00,013,408 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

[2009-12-28 15:43:02 | 00,013,408 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

[2009-12-28 03:39:42 | 00,189,104 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr

[2009-12-28 03:39:42 | 00,189,104 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe

[2009-12-25 15:28:12 | 00,000,544 | ---- | M] () -- C:\Users\Marek\Desktop\SpeedFan.lnk

[2009-12-25 15:28:11 | 00,000,045 | ---- | M] () -- C:\Windows\SysWow64\initdebug.nfo

[2009-12-25 10:55:17 | 00,100,344 | ---- | M] () -- C:\Users\Marek\AppData\Local\GDIPFONTCACHEV1.DAT

[2009-12-25 10:54:45 | 00,002,041 | ---- | M] () -- C:\Users\Public\Desktop\LightScribe.lnk

[2009-12-24 23:30:02 | 00,000,971 | ---- | M] () -- C:\Users\Marek\Desktop\NapiProjekt.lnk

[2009-12-24 21:18:58 | 00,000,881 | ---- | M] () -- C:\Users\Public\Desktop\Cross of Iron.lnk

[2009-12-22 11:33:46 | 00,381,792 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT

[2009-12-21 13:55:57 | 00,000,678 | ---- | M] () -- C:\Users\Marek\Desktop\Empire Total War.lnk

[2009-12-18 18:23:46 | 00,000,857 | ---- | M] () -- C:\Users\Marek\Desktop\Blitzkrieg BETA.lnk

[2009-12-14 15:44:17 | 00,466,456 | ---- | M] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll

[2009-12-14 15:44:17 | 00,444,952 | ---- | M] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll

[2009-12-14 15:44:17 | 00,122,904 | ---- | M] (Portions ? Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysNative\OpenAL32.dll

[2009-12-14 15:44:17 | 00,109,080 | ---- | M] (Portions ? Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysWow64\OpenAL32.dll

[2009-12-13 16:26:11 | 15,527,15394 | ---- | M] (Aqurat sp. z o.o. & Geosystems sp. z. o.o.) -- C:\Users\Marek\Desktop\AutoMapa_6.0.0_EU.exe

[2009-11-30 22:19:28 | 00,000,676 | ---- | M] () -- C:\Users\Marek\Desktop\Red Orchestra.lnk

[2009-11-30 20:33:46 | 00,041,872 | ---- | M] () -- C:\Windows\SysWow64\xfcodec.dll

[2009-11-30 20:33:46 | 00,027,536 | ---- | M] () -- C:\Windows\SysNative\xfcodec64.dll

[2009-11-29 21:00:11 | 00,000,793 | ---- | M] () -- C:\Users\Public\Desktop\S.T.A.L.K.E.R. - Zew Prypeci.lnk

[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========


[2009-12-29 11:31:37 | 00,000,622 | ---- | C] () -- C:\Users\Marek\Desktop\HijackThis.lnk

[2009-12-27 17:35:12 | 00,001,034 | ---- | C] () -- C:\Users\Marek\Desktop\prime.ini

[2009-12-27 17:35:12 | 00,000,053 | ---- | C] () -- C:\Users\Marek\Desktop\local.ini

[2009-12-25 15:28:12 | 00,000,544 | ---- | C] () -- C:\Users\Marek\Desktop\SpeedFan.lnk

[2009-12-25 15:28:08 | 00,000,045 | ---- | C] () -- C:\Windows\SysWow64\initdebug.nfo

[2009-12-25 10:54:45 | 00,002,041 | ---- | C] () -- C:\Users\Public\Desktop\LightScribe.lnk

[2009-12-24 23:30:02 | 00,000,971 | ---- | C] () -- C:\Users\Marek\Desktop\NapiProjekt.lnk

[2009-12-24 21:18:58 | 00,000,881 | ---- | C] () -- C:\Users\Public\Desktop\Cross of Iron.lnk

[2009-12-21 13:55:57 | 00,000,678 | ---- | C] () -- C:\Users\Marek\Desktop\Empire Total War.lnk

[2009-12-18 18:22:36 | 00,000,857 | ---- | C] () -- C:\Users\Marek\Desktop\Blitzkrieg BETA.lnk

[2009-12-05 09:25:43 | 00,008,862 | ---- | C] () -- C:\Windows\SysNative\nvinfo.pb

[2009-11-30 22:19:28 | 00,000,676 | ---- | C] () -- C:\Users\Marek\Desktop\Red Orchestra.lnk

[2009-11-30 20:33:46 | 00,041,872 | ---- | C] () -- C:\Windows\SysWow64\xfcodec.dll

[2009-11-30 20:33:46 | 00,027,536 | ---- | C] () -- C:\Windows\SysNative\xfcodec64.dll

[2009-11-29 21:00:11 | 00,000,793 | ---- | C] () -- C:\Users\Public\Desktop\S.T.A.L.K.E.R. - Zew Prypeci.lnk

[2009-11-08 17:59:01 | 00,040,960 | R--- | C] () -- C:\Windows\SysWow64\psfind.dll

[2009-07-10 12:45:31 | 00,043,520 | ---- | C] () -- C:\Windows\SysWow64\CmdLineExt03.dll

[2009-06-12 21:40:07 | 00,000,283 | ---- | C] () -- C:\Windows\game.ini

[2009-05-08 22:02:52 | 00,013,333 | ---- | C] () -- C:\Windows\hplj1010.ini

[2009-05-07 20:07:52 | 00,734,870 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI

[2009-04-22 04:40:32 | 00,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll

[2009-04-22 02:04:20 | 00,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll

[2009-04-21 23:19:06 | 00,172,173 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat

[2008-10-07 08:13:30 | 00,197,912 | ---- | C] () -- C:\Windows\SysWow64\physxcudart_20.dll

[2008-10-07 08:13:22 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelTraditionalChinese.dll

[2008-10-07 08:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSwedish.dll

[2008-10-07 08:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSpanish.dll

[2008-10-07 08:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSimplifiedChinese.dll

[2008-10-07 08:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelPortugese.dll

[2008-10-07 08:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelKorean.dll

[2008-10-07 08:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelJapanese.dll

[2008-10-07 08:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelGerman.dll

[2008-10-07 08:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelFrench.dll

[2006-10-11 04:33:58 | 00,010,288 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS

========== LOP Check ==========


[2009-09-06 18:20:39 | 00,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\ACD Systems

[2009-05-16 21:03:16 | 00,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\DAEMON Tools Lite

[2009-07-03 18:23:25 | 00,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\DAEMON Tools Pro

[2009-06-04 16:03:56 | 00,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\GHISLER

[2009-06-10 20:27:28 | 00,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Mount&Blade

[2009-05-11 12:29:49 | 00,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Smart Mod Manager

[2009-12-21 15:03:08 | 00,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\The Creative Assembly

[2009-10-13 17:14:55 | 00,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\XRay Engine

[2009-12-27 18:42:12 | 00,032,644 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



< End of report >

"Trochę" zielony jestem w te klocki, więc nie wiem co jeszcze podać (a jest potrzebne)

Z góry dzięki za pomoc! :wink:

xswistaqx · Grudzień 29, 2009

Prawy przycisk myszy->widok->pokaż ikony pulpitu.

Marq · Grudzień 29, 2009

Nie działa kompletnie nic, ani task manager, ani menu start.

Dzięki za radę. Naprawdę pomogła. I zawsze to +1 do licznika postów :wink:

Zainstalowałem Spybota, wykrył 12 problemów i je usunął. Po restarcie wszystko włączyło się dobrze i działało... do czasu kolejnego uruchomienia.

Totalna loteria.

SwisteK · Grudzień 29, 2009

Moim zdaniem najbardziej prawdopodobną przyczyną problemu jest Avast.

Albo sam system, jak w tym przypadku:

http://support.microsoft.com/kb/977675/

(świeża łatka M$ na bardzo podobny problem z Vistą / 2008 Server)

Sevard · Grudzień 29, 2009

Logów zbyt dokładnie nie sprawdzałem, bo już nie za bardzo mam siły, żeby to robić (dokładniej sprawdzę jutro). Ale nic groźnego nie zauważyłem, podobnie jak wyżej sądzę, że winnym może być Avast (zdarzają mu się takie akcje).

Spróbuj zrobić coś takiego:

Naciśnij Ctrl+shift+ESC, by uruchomić Menedżer zadań, kliknij Nowe zadanie i w okienko, które wyskoczy wpisz explorer.exe, być może to trochę pomoże. Generalnie w logach widać, że spora część kluczowych procesów nie jest uruchamiana.

Marq · Grudzień 30, 2009

Dzięki za odpowiedź.

Zamienię Avasta na coś innego i zobaczę, czy dalej będą się zdarzały takie akcje. Na razie po czystkach Spybota jest ok.

Pozdrawiam!

Zaloguj się

Zarchiwizowany

Windows 7 -> problem z pulpitem, ikony nie pojawiają się

Polecane posty

Marq

Link do komentarza

Udostępnij na innych stronach

xswistaqx

Link do komentarza

Udostępnij na innych stronach

Marq

Link do komentarza

Udostępnij na innych stronach

SwisteK

Link do komentarza

Udostępnij na innych stronach

Sevard

Link do komentarza

Udostępnij na innych stronach

Marq

Link do komentarza

Udostępnij na innych stronach

Kto przegląda 0 użytkowników

CD-Action

Przeglądaj

Aktywność