Skocz do zawartości

Zarchiwizowany

Ten temat jest archiwizowany i nie można dodawać nowych odpowiedzi.

Kuba86

Rozwiązany: Wyskakujący pasek zadań i mulenie kompa

Polecane posty

Witam

Nie znam się na komputerach i liczę na waszą pomoc. Nagle znikąd pojawił się problem z paskiem zadań, podczas grania pasek pojawia się i wyrzuca mnie na pulpit jest tak co 2-3 minuty :sad: , tak samo jest gdy oglądam filmy...

Drugi problem to dziwne mulenie komputera.Za każdym razem bardzo długo się włącza ,gdy loguje się Windows (pojawia się klepsydra nic nie można zrobić po dłuższym czasie wszystko wraca do normy)Tak samo jest przy wyłączeniu komputera.

Mój Sprzęt to :

Windows XP

Płyta Główna: Gigabyte Ga- M55S-S3-NF 550 SATA II DDR

procesor : AMD Athlon 64 X2 DUAL CORE 6000+ 3,02 ghz

karta graficzna : Radeon HD4850

pamięrc ram : DDRII 3 giga

Z góry dziękuje za pomoc.

Link do komentarza
Udostępnij na innych stronach

Malwarebytes' Anti-Malware 1.44

Wersja bazy definicji: 3510

Windows 5.1.2600 Dodatek Service Pack 2

Internet Explorer 6.0.2900.2180

2010-03-17 19:09:54

mbam-log-2010-03-17 (19-09-54).txt

Typ skanowania: Szybkie skanowanie

Przeskanowane obiekty: 124994

Upłynęło: 2 minute(s), 39 second(s)

Zainfekowane procesy w pamięci: 0

Zainfekowane moduły pamięci: 0

Zainfekowane klucze rejestru: 1

Zainfekowane wartości rejestru: 0

Zainfekowane pliki rejestru: 0

Zainfekowane foldery: 0

Zainfekowane pliki: 0

Zainfekowane procesy w pamięci:

(Nie wykryto groźnych plików)

Zainfekowane moduły pamięci:

(Nie wykryto groźnych plików)

Zainfekowane klucze rejestru:

HKEY_CLASSES_ROOT\CLSID\{147a976f-eee1-4377-8ea7-4716e4cdd239} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

Zainfekowane wartości rejestru:

(Nie wykryto groźnych plików)

Zainfekowane pliki rejestru:

(Nie wykryto groźnych plików)

Zainfekowane foldery:

(Nie wykryto groźnych plików)

Zainfekowane pliki:

(Nie wykryto groźnych plików)

Link do komentarza
Udostępnij na innych stronach

a co z tym logiem z Malwarebytes' Anti-Malware ??

HD Tune :

http://img692.imageshack.us/img692/654/75168082.png

Rsit :

Logfile of random's system information tool 1.06 (written by random/random)

Run by Kuba 2 at 2010-03-17 20:24:45

WIN_XP Dodatek Service Pack 2

System drive C: has 29 GB (58%) free of 50 GB

Total RAM: 3071 MB (70% free)

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 20:24:46, on 2010-03-17

Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)

MSIE: Unable to get Internet Explorer version!

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

C:\WINDOWS\system32\Rundll32.exe

C:\WINDOWS\RTHDCPL.EXE

C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe

C:\Documents and Settings\Kuba 2\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe

C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe

C:\Program Files\Gadu-Gadu 10\gg.exe

C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe

C:\Program Files\HP\Digital Imaging\Product Assistant\bin\hprblog.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe

C:\Documents and Settings\Kuba 2\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\Kuba 2\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\Kuba 2\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe

C:\Program Files\HD Tune\HDTune.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe

C:\Documents and Settings\Kuba 2\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\Kuba 2\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\Kuba 2\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\Kuba 2\Moje dokumenty\Downloads\RSIT.exe

C:\Program Files\trend micro\Kuba 2.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (file missing)

O2 - BHO: IEPluginBHO - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\Kuba 2\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll

O2 - BHO: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL

O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll (file missing)

O3 - Toolbar: Ask Toolbar - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL

O4 - HKLM\..\Run: [skyTel] SkyTel.EXE

O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE

O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [P17Helper] Rundll32 SPIRun.dll,RunDLLEntry

O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe

O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent

O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe

O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Kuba 2\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" /c

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?')

O4 - HKUS\S-1-5-21-507921405-152049171-839522115-1006\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (User '?')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe

O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - D:\Party Poker\PartyPoker\RunApp.exe

O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - D:\Party Poker\PartyPoker\RunApp.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwareup...15110/CTPID.cab

O18 - Protocol: bw+0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw+0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw-0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw-0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw00 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw00s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw10 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw10s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw20 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw20s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw30 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw30s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw40 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw40s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw50 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw50s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw60 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw60s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw70 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw70s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw80 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw80s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw90 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw90s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwa0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwa0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwb0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwb0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwc0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwc0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwd0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwd0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwe0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwe0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwf0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwf0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll

O18 - Protocol: bwg0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwg0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwh0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwh0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwi0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwi0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwj0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwj0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwk0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwk0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwl0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwl0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwm0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwm0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwn0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwn0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwo0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwo0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwp0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwp0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwq0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwq0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwr0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwr0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bws0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bws0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwt0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwt0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwu0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwu0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwv0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwv0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bww0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bww0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwx0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwx0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwy0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwy0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwz0 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwz0s - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: offline-8876480 - {5A371ACA-1500-4C09-BBC1-85BB6EEF0C25} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe

O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe

O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

--

End of file - 18928 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-507921405-152049171-839522115-1004Core.job

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-507921405-152049171-839522115-1004UA.job

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-507921405-152049171-839522115-1005Core.job

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-507921405-152049171-839522115-1005UA.job

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-507921405-152049171-839522115-1006Core.job

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-507921405-152049171-839522115-1006UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D}]

IEPluginBHO Class - C:\Documents and Settings\Kuba 2\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll [2009-12-02 37376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FE063DB1-4EC0-403e-8DD8-394C54984B2C}]

Ask Toolbar BHO - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL [2010-03-14 245760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll []

{FE063DB9-4EC0-403e-8DD8-394C54984B2C} - Ask Toolbar - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL [2010-03-14 245760]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"SkyTel"=C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]

"Logitech Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2008-02-29 76304]

"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-08-29 61440]

"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2005-05-11 49152]

"P17Helper"=Rundll32 SPIRun.dll,RunDLLEntry []

"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-05-27 16208384]

"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-11-10 417792]

"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696]

"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-09-04 935288]

"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-11-16 2054360]

"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2010-01-07 429392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"LDM"=C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2009-12-05 32768]

"Google Update"=C:\Documents and Settings\Kuba 2\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2009-12-07 135664]

C:\Documents and Settings\All Users\Menu Start\Programy\Autostart

HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]

C:\WINDOWS\system32\Ati2evxx.dll [2008-12-01 143360]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"HonorAutoRunSetting"=

"NoDriveAutoRun"=

"NoDriveTypeAutoRun"=

"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Disabled:Logitech Desktop Messenger"

"C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10"

"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:?Torrent"

"C:\Program Files\QNapi\qnapi.exe"="C:\Program Files\QNapi\qnapi.exe:*:Enabled:QNapi"

"D:\Gry\Pes10\pes2010.exe"="D:\Gry\Pes10\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010"

"D:\Gry\Call of Duty 5\CoDWaWmp.exe"="D:\Gry\Call of Duty 5\CoDWaWmp.exe:*:Enabled:Call of Duty® - World at War"

"D:\Gry\Call of Duty 5\CoDWaW.exe"="D:\Gry\Call of Duty 5\CoDWaW.exe:*:Enabled:Call of Duty® - World at War"

"D:\Gry\Call of Duty 6\steam.exe"="D:\Gry\Call of Duty 6\steam.exe:*:Enabled:Steam 732897"

"D:\Gry\Call of Duty 6\SteamApps\common\call of duty modern warfare 2\iw4mp.exe"="D:\Gry\Call of Duty 6\SteamApps\common\call of duty modern warfare 2\iw4mp.exe:*:Enabled:Call of Duty: Modern Warfare 2 - Multiplayer"

"D:\Gry\Kozacy Europejskie Boje\Cossacks\dmcr.exe"="D:\Gry\Kozacy Europejskie Boje\Cossacks\dmcr.exe:*:Enabled:dmcr"

"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"

"D:\Gry\Call of Duty 6\SteamApps\common\call of duty modern warfare 2\iw4sp.exe"="D:\Gry\Call of Duty 6\SteamApps\common\call of duty modern warfare 2\iw4sp.exe:*:Enabled:Call of Duty: Modern Warfare 2"

"D:\Gry\Operation Flashpoint Dragon Rising\OFDR.exe"="D:\Gry\Operation Flashpoint Dragon Rising\OFDR.exe:*:Enabled:OF Dragon Rising"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"

======List of files/folders created in the last 1 months======

2010-03-17 20:07:00 ----D---- C:\rsit

2010-03-17 20:07:00 ----D---- C:\Program Files\trend micro

2010-03-17 19:59:20 ----D---- C:\Program Files\HD Tune

2010-03-17 19:06:11 ----D---- C:\Documents and Settings\Kuba 2\Dane aplikacji\Malwarebytes

2010-03-17 19:06:07 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes

2010-03-17 19:06:06 ----D---- C:\Program Files\Malwarebytes' Anti-Malware

2010-03-17 18:31:28 ----SHD---- C:\found.005

2010-03-14 18:51:53 ----A---- C:\WINDOWS\system32\yv12vfw.dll

2010-03-14 18:51:50 ----D---- C:\Program Files\K-Lite Codec Pack

2010-03-14 17:01:22 ----A---- C:\WINDOWS\system32\rmoc3260.dll

2010-03-14 17:01:21 ----D---- C:\Program Files\Real Alternative

2010-03-14 13:53:10 ----A---- C:\WINDOWS\ODBC.INI

2010-03-14 13:53:05 ----A---- C:\WINDOWS\system32\mdimon.dll

2010-03-14 13:52:01 ----D---- C:\Program Files\Common Files\DESIGNER

2010-03-14 13:52:00 ----D---- C:\Program Files\Microsoft Works

2010-03-14 13:51:53 ----D---- C:\Program Files\Microsoft Visual Studio

2010-03-14 13:51:45 ----D---- C:\WINDOWS\SHELLNEW

2010-03-14 13:51:40 ----D---- C:\Program Files\Microsoft.NET

2010-03-14 13:51:40 ----D---- C:\Program Files\Microsoft Office

2010-03-14 12:26:14 ----D---- C:\Program Files\Common Files\Ahead

2010-03-14 12:21:37 ----D---- C:\Program Files\AskTBar

2010-03-14 12:14:55 ----D---- C:\WINDOWS\RegisteredPackages

2010-03-13 22:53:41 ----SHD---- C:\found.004

2010-03-01 19:40:28 ----D---- C:\Program Files\Gadu-Gadu 10

2010-03-01 16:19:25 ----D---- C:\Program Files\Winamp

2010-03-01 16:19:25 ----D---- C:\Documents and Settings\Kuba 2\Dane aplikacji\Winamp

2010-03-01 16:14:20 ----D---- C:\Documents and Settings\Kuba 2\Dane aplikacji\VistaCodecs

2010-03-01 16:14:18 ----D---- C:\Program Files\VistaCodecPack

2010-03-01 16:14:00 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\VistaCodecs

2010-03-01 12:06:07 ----A---- C:\WINDOWS\system32\gdiplus.dll

2010-03-01 12:03:56 ----D---- C:\Program Files\Winamp Detect

2010-03-01 12:03:43 ----N---- C:\WINDOWS\system32\vxblock.dll

2010-03-01 12:03:43 ----N---- C:\WINDOWS\system32\pxwave.dll

2010-03-01 12:03:43 ----N---- C:\WINDOWS\system32\pxsfs.dll

2010-03-01 12:03:43 ----N---- C:\WINDOWS\system32\pxmas.dll

2010-03-01 12:03:43 ----N---- C:\WINDOWS\system32\pxinsa64.exe

2010-03-01 12:03:43 ----N---- C:\WINDOWS\system32\pxhpinst.exe

2010-03-01 12:03:43 ----N---- C:\WINDOWS\system32\pxdrv.dll

2010-03-01 12:03:43 ----N---- C:\WINDOWS\system32\pxcpya64.exe

2010-03-01 12:03:43 ----N---- C:\WINDOWS\system32\pxafs.dll

2010-03-01 12:03:43 ----N---- C:\WINDOWS\system32\px.dll

2010-03-01 12:02:35 ----D---- C:\Documents and Settings\Kuba 2\Dane aplikacji\Media Player Classic

2010-03-01 12:01:17 ----A---- C:\WINDOWS\system32\pndx5032.dll

2010-03-01 12:01:17 ----A---- C:\WINDOWS\system32\pndx5016.dll

2010-03-01 12:01:17 ----A---- C:\WINDOWS\system32\pncrt.dll

2010-03-01 11:53:01 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Windows Genuine Advantage

2010-03-01 10:49:01 ----D---- C:\Program Files\internet explorer

2010-03-01 10:48:09 ----SHD---- C:\found.003

2010-02-24 10:54:01 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10

======List of files/folders modified in the last 1 months======

2010-03-17 20:24:03 ----D---- C:\WINDOWS\temp

2010-03-17 20:18:50 ----SD---- C:\Documents and Settings\Kuba 2\Dane aplikacji\Microsoft

2010-03-17 20:07:00 ----RD---- C:\Program Files

2010-03-17 19:49:53 ----SHD---- C:\WINDOWS\Installer

2010-03-17 19:49:53 ----D---- C:\Program Files\Common Files

2010-03-17 19:49:53 ----D---- C:\Config.Msi

2010-03-17 19:49:48 ----D---- C:\WINDOWS\system32

2010-03-17 19:46:54 ----A---- C:\WINDOWS\system32\deploytk.dll

2010-03-17 19:06:08 ----D---- C:\WINDOWS\system32\drivers

2010-03-17 18:35:47 ----A---- C:\WINDOWS\SchedLgU.Txt

2010-03-17 16:24:48 ----D---- C:\WINDOWS\system32\CatRoot2

2010-03-17 16:20:19 ----D---- C:\Documents and Settings\Kuba 2\Dane aplikacji\uTorrent

2010-03-17 16:20:12 ----A---- C:\Documents and Settings\Kuba 2\Dane aplikacji\qnapi.ini

2010-03-17 16:11:40 ----A---- C:\WINDOWS\bestplayer.ini

2010-03-14 15:07:27 ----D---- C:\WINDOWS

2010-03-14 15:06:49 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Nero

2010-03-14 14:14:12 ----D---- C:\WINDOWS\system32\config

2010-03-14 13:57:12 ----RSD---- C:\WINDOWS\assembly

2010-03-14 13:53:11 ----SD---- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft

2010-03-14 13:52:52 ----A---- C:\WINDOWS\win.ini

2010-03-14 13:52:37 ----D---- C:\Program Files\Common Files\Microsoft Shared

2010-03-14 13:52:36 ----RSD---- C:\WINDOWS\Fonts

2010-03-14 13:52:00 ----HD---- C:\WINDOWS\inf

2010-03-14 13:51:48 ----D---- C:\Program Files\Common Files\System

2010-03-14 13:51:42 ----D---- C:\WINDOWS\Help

2010-03-14 13:50:46 ----D---- C:\WINDOWS\system

2010-03-14 12:14:55 ----D---- C:\Program Files\Windows Media Player

2010-03-13 14:30:09 ----D---- C:\Documents and Settings\Kuba 2\Dane aplikacji\MfcEmbed

2010-03-10 19:00:00 ----A---- C:\WINDOWS\system32\ff_vfw.dll

2010-03-01 20:22:08 ----D---- C:\Documents and Settings

2010-03-01 20:18:44 ----A---- C:\WINDOWS\OEWABLog.txt

2010-03-01 15:46:51 ----RSHDC---- C:\WINDOWS\system32\dllcache

2010-03-01 15:40:22 ----D---- C:\WINDOWS\Prefetch

2010-03-01 15:32:51 ----D---- C:\Program Files\ESET

2010-03-01 10:53:15 ----A---- C:\WINDOWS\setuplog.txt

2010-03-01 10:53:09 ----A---- C:\WINDOWS\system32\wpa.bak

2010-03-01 10:49:13 ----D---- C:\WINDOWS\SoftwareDistribution

2010-02-28 15:37:32 ----D---- C:\Program Files\SystemRequirementsLab

2010-02-24 17:39:50 ----D---- C:\WINDOWS\system32\DirectX

2010-02-24 17:34:40 ----HD---- C:\Program Files\InstallShield Installation Information

2010-02-23 01:38:56 ----D---- C:\Documents and Settings\Kuba 2\Dane aplikacji\BESTplayer

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdK8;Sterownik procesora AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 43008]

R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-11-16 108792]

R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-11-16 96408]

R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.3.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2009-12-05 20747]

R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-11-16 116520]

R2 EIO;EIO; \??\C:\WINDOWS\system32\drivers\EIO.sys []

R2 PfModNT;PfModNT; \??\C:\WINDOWS\system32\PfModNT.sys []

R3 Arp1394;Protokół klienta 1394 ARP; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2006-03-02 60800]

R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-12-01 3452928]

R3 HDAudBus;Sterownik magistrali Microsoft UAA dla High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-05-26 4279296]

R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys []

R3 NIC1394;Sterownik sieci 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2006-03-02 61824]

R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-03-22 52736]

R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-03-22 18944]

R3 P17xfi;Sound Blaster X-Fi Xtreme Audio; C:\WINDOWS\system32\drivers\P17xfi.sys [2007-11-21 1174528]

R3 p17xfilt;p17xfilt; C:\WINDOWS\system32\drivers\p17xfilt.sys [2007-10-10 1664384]

R3 usbehci;Sterownik Miniport rozszerzonego kontrolera hosta USB 2.0 Microsoft; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2006-03-02 26624]

R3 usbhub;Koncentrator z obsługą USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2006-03-02 57600]

R3 usbohci;Sterownik Miniport otwartego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2006-03-02 17024]

S3 adocgmn9;adocgmn9; C:\WINDOWS\system32\drivers\adocgmn9.sys []

S3 catchme;catchme; \??\C:\DOCUME~1\ALAIEM~1\USTAWI~1\Temp\catchme.sys []

S3 ctsfm2k;Creative SoundFont Management Device Driver; C:\WINDOWS\system32\DRIVERS\ctsfm2k.sys [2005-12-08 142336]

S3 CTUSFSYN;Creative SoundFont Synthesizer; C:\WINDOWS\system32\drivers\ctusfsyn.sys []

S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []

S3 HidUsb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]

S3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2008-02-29 20240]

S3 L8042mou;SetPoint PS/2 Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\L8042mou.Sys [2008-02-29 63120]

S3 LMouKE;SetPoint Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouKE.Sys [2008-02-29 79120]

S3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160]

S3 ossrv;Creative OS Services Driver; C:\WINDOWS\system32\DRIVERS\ctoss2k.sys []

S3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]

S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]

S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2008-12-01 598016]

R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-11-16 735960]

R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-20 322120]

S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2008-12-01 593920]

S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]

S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]

S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-11-16 20680]

S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]

S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]

S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]

S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Link do komentarza
Udostępnij na innych stronach

Dysk ma za ciepło, ale jak na razie nic mu się nie stało.

Log z Malwarebytes' praktycznie czysty, natomiast w logu z RSITa widać jakieś pozostałości po szkodnikach. Przeskanuj system programem Dr.Web CureIt! i zaktualizuj system.

Link do komentarza
Udostępnij na innych stronach

Gość
Temat jest zablokowany i nie można w nim pisać.


  • Kto przegląda   0 użytkowników

    • Brak zalogowanych użytkowników przeglądających tę stronę.
×
×
  • Utwórz nowe...