wklejto.pl

Dodane przez: ~Ryuuk (2013-11-30 15:52) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
OTL Extras logfile created on: 2013-11-30 14:33:16 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Documents and Settings\Ryuk\Moje dokumenty\Pobieranie
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
767,52 Mb Total Physical Memory | 240,27 Mb Available Physical Memory | 31,30% Memory free
4,62 Gb Paging File | 3,70 Gb Available in Paging File | 80,25% Paging File free
Paging file location(s): C:\pagefile.sys 4000 4000 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 40,00 Gb Total Space | 22,63 Gb Free Space | 56,58% Space Free | Partition Type: NTFS
Drive D: | 37,26 Gb Total Space | 3,48 Gb Free Space | 9,34% Space Free | Partition Type: NTFS
Drive E: | 165,00 Gb Total Space | 142,17 Gb Free Space | 86,17% Space Free | Partition Type: NTFS
Drive F: | 167,60 Gb Total Space | 102,04 Gb Free Space | 60,88% Space Free | Partition Type: NTFS
Drive G: | 37,26 Gb Total Space | 0,16 Gb Free Space | 0,43% Space Free | Partition Type: NTFS
 
Computer Name: BODZIO-TURBO | User Name: Ryuk | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== File Associations ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
 
[HKEY_USERS\S-1-5-21-1202660629-1935655697-1606980848-1005\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
[color=#E56717]========== Shell Spawning ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[color=#E56717]========== Security Center Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
 
[color=#E56717]========== System Restore Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
 
[color=#E56717]========== Firewall Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DoNotAllowExceptions" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
 
[color=#E56717]========== Authorized Applications List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\HP\HP Deskjet 2510 series\Bin\USBSetup.exe" = C:\Program Files\HP\HP Deskjet 2510 series\Bin\USBSetup.exe:LocalSubNet:Enabled:Konfiguracja urządzenia HP (HP Deskjet 2510 series) -- (Hewlett-Packard Co.)
"C:\Program Files\Winamp\winamp.exe" = C:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp -- (Nullsoft, Inc.)
"D:\Program Files\Ares\Ares.exe" = D:\Program Files\Ares\Ares.exe:*:Enabled:Ares p2p for windows -- (Ares Development Group)
"D:\Documents and Settings\Bodzio\Pulpit\Ryuk\Pulpit\Ares.exe" = D:\Documents and Settings\Bodzio\Pulpit\Ryuk\Pulpit\Ares.exe:*:Enabled:Ares p2p for windows -- (Ares Development Group)
"C:\WINDOWS\system32\dmwu.exe" = C:\WINDOWS\system32\dmwu.exe:*:Enabled:dmwu -- ()
"C:\WINDOWS\system32\ARFC\wrtc.exe" = C:\WINDOWS\system32\ARFC\wrtc.exe:*:Enabled:wrtc -- ()
"C:\Documents and Settings\Bodzio\Pulpit\Skype.exe" = C:\Documents and Settings\Bodzio\Pulpit\Skype.exe:*:Enabled:Skype  -- (Skype Technologies S.A.)
"C:\Program Files\VuuPC\RemoteEngine.exe" = C:\Program Files\VuuPC\RemoteEngine.exe:*:Enabled:VuuPC Remote Engine -- (ClickMeIn Limited)
"C:\Program Files\VuuPC\Connectivity.exe" = C:\Program Files\VuuPC\Connectivity.exe:*:Enabled:VuuPC Connectivity -- (ClickMeIn Limited)
 
 
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{17BFC657-EC83-445E-859E-CB5843DAB4BB}" = HP Deskjet 2510 series — badanie mające na celu poprawę produktów
"{1CF32316-9308-25E1-9E5C-A3DC04763A49}" = ATI Catalyst Install Manager
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{216C7F38-4BBC-4E9A-8392-C9FA21B54386}" = HP Deskjet 2510 series Setup Guide
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3B9704C8-1286-4a17-9EA8-F63004FC74A1}_is1" = SIW Pro Edition (Trial Version)
"{434D452D-5637-006A-76A7-A758B70C0700}" = Ask Toolbar
"{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}" = HP Update
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{957D345E-ADDB-9844-1BBF-C81BCDDAB895}" = Catalyst Control Center InstallProxy
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{BD366B89-6784-4636-9D01-291C2016912A}" = HP Deskjet 2510 series Pomoc
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D239DFD4-44E1-4239-AD5F-0DC652320141}" = HP Deskjet 2510 series — podstawowe oprogramowanie urządzenia
"{EFC4BB62-CD01-4F63-9165-FC5DEB350469}" = Adobe Flash Player 11 ActiveX
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"AnyProtect" = AnyProtect
"ATI Display Driver" = ATI Display Driver
"Bonanza Deals" = Bonanza Deals (remove only)
"BrowseFox" = BrowseFox 1.0.0
"delta" = Delta toolbar  
"Delta Chrome Toolbar" = Delta Chrome Toolbar
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"fst_pl_6_is1" = fst_pl_6
"funmoods" = Funmoods
"GIMP Bundle by Fileparade.com" = GIMP Bundle by Fileparade.com
"GIMP-2_is1" = GIMP 2.8.6
"HP Photo Creations" = HP Photo Creations
"ie8" = Windows Internet Explorer 8
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager
"KLiteCodecPack_is1" = K-Lite Codec Pack 2.54 Standard
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox 25.0.1 (x86 pl)" = Mozilla Firefox 25.0.1 (x86 pl)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Neko_Bot" = Neko Bot
"PriceGong" = PriceGong 2.6.12
"RegClean Pro_is1" = RegClean Pro
"searchgol" = searchgol toolbar  
"Search-Gol Chrome Toolbar" = Search-Gol Chrome Toolbar
"Snowy Poszukiwacz Skarbów 2_is1" = Snowy Poszukiwacz Skarbów 2
"Totalcmd" = Total Commander (Remove or Repair)
"VuuPC" = VuuPC, You're Always a Click Away!
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows Media Player" = Windows Media Player 10
"WNLT" = SweetPacks Updater Service
 
[color=#E56717]========== Last 20 Event Log Errors ==========[/color]
 
[ Application Events ]
Error - 2013-10-02 11:02:35 | Computer Name = BODZIO-TURBO | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca gimp-2.8.exe, wersja 2.8.6.0, moduł zawieszenia
 hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.
 
Error - 2013-10-02 11:02:35 | Computer Name = BODZIO-TURBO | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca gimp-2.8.exe, wersja 2.8.6.0, moduł zawieszenia
 hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.
 
Error - 2013-10-02 11:02:35 | Computer Name = BODZIO-TURBO | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca gimp-2.8.exe, wersja 2.8.6.0, moduł zawieszenia
 hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.
 
Error - 2013-10-05 12:13:52 | Computer Name = BODZIO-TURBO | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd cor_ar_201392319852_qvo6.exe, wersja 2.0.2.2627,
 moduł powodujący błąd cor_ar_201392319852_qvo6.exe, wersja 2.0.2.2627, adres błędu
 0x0001ae3b.
 
Error - 2013-10-05 12:14:34 | Computer Name = BODZIO-TURBO | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd cor_ar_201392319852_qvo6.exe, wersja 2.0.2.2627,
 moduł powodujący błąd cor_ar_201392319852_qvo6.exe, wersja 2.0.2.2627, adres błędu
 0x0001ae3b.
 
Error - 2013-10-05 12:16:18 | Computer Name = BODZIO-TURBO | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd cor_ar_201392319852_qvo6.exe, wersja 2.0.2.2627,
 moduł powodujący błąd cor_ar_201392319852_qvo6.exe, wersja 2.0.2.2627, adres błędu
 0x0001ae3b.
 
Error - 2013-11-01 09:39:08 | Computer Name = BODZIO-TURBO | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd tbnotifier.exe, wersja 31.4.1.0, moduł powodujący
 błąd bitguard.dll, wersja 2.7.1769.27, adres błędu 0x00178698.
 
Error - 2013-11-13 17:02:57 | Computer Name = BODZIO-TURBO | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca explorer.exe, wersja 6.0.2900.5512, moduł zawieszenia
 hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.
 
Error - 2013-11-13 17:02:59 | Computer Name = BODZIO-TURBO | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca explorer.exe, wersja 6.0.2900.5512, moduł zawieszenia
 hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.
 
Error - 2013-11-14 10:18:52 | Computer Name = BODZIO-TURBO | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca wordpad.exe, wersja 5.1.2600.6010, moduł zawieszenia
 hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.
 
[ System Events ]
Error - 2013-11-26 13:55:08 | Computer Name = BODZIO-TURBO | Source = System Error | ID = 1003
Description = Kod błędu 100000be, parametr 1 f6f3cee3, parametr 2 06444121, parametr
 3 80550f90, parametr 4 0000000a.
 
Error - 2013-11-29 14:27:42 | Computer Name = BODZIO-TURBO | Source = System Error | ID = 1003
Description = Kod błędu 1000000a, parametr 1 00000000, parametr 2 00000002, parametr
 3 00000001, parametr 4 804ed3f6.
 
 
< End of report >
 
Wygenerowano w 0.047s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!