Mam problem z wirusem win32/coinminer. komputer zainfekowałem poprzez facebooka. Zrobiłem już skany OTL i Ekstrans i nie wiem co dalej.
Proszę o pomoc
Oto oba logi:
OTL.text:
Kod: Zaznacz cały
OTL logfile created on: 2011-11-01 14:00:19 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Asia\Downloads
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
1022,43 Mb Total Physical Memory | 96,01 Mb Available Physical Memory | 9,39% Memory free
2,00 Gb Paging File | 0,46 Gb Available in Paging File | 23,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 297,99 Gb Total Space | 258,00 Gb Free Space | 86,58% Space Free | Partition Type: NTFS
Computer Name: FL90 | User Name: Asia | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2011-11-01 13:58:03 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Asia\Downloads\OTL.exe
PRC - [2011-10-31 20:16:15 | 000,344,576 | ---- | M] () -- C:\Windows\update.5.0\svchost.exe
PRC - [2011-10-31 20:16:15 | 000,344,576 | ---- | M] () -- C:\Windows\update.5.0\svchost.exe
PRC - [2011-10-31 19:52:44 | 001,942,528 | ---- | M] () -- C:\Windows\update.2\svchost.exe
PRC - [2011-10-31 19:52:44 | 001,942,528 | ---- | M] () -- C:\Windows\update.2\svchost.exe
PRC - [2011-10-31 19:52:44 | 001,942,528 | ---- | M] () -- C:\Windows\update.2\svchost.exe
PRC - [2011-10-31 19:52:44 | 001,942,528 | ---- | M] () -- C:\Windows\update.2\svchost.exe
PRC - [2011-10-31 19:52:44 | 001,942,528 | ---- | M] () -- C:\Windows\update.2\svchost.exe
PRC - [2011-10-31 19:52:44 | 001,942,528 | ---- | M] () -- C:\Windows\update.2\svchost.exe
PRC - [2011-10-31 19:52:44 | 001,942,528 | ---- | M] () -- C:\Windows\update.2\svchost.exe
PRC - [2011-10-31 19:52:44 | 001,942,528 | ---- | M] () -- C:\Windows\update.2\svchost.exe
PRC - [2011-10-31 19:52:44 | 001,942,528 | ---- | M] () -- C:\Windows\update.2\svchost.exe
PRC - [2011-10-31 19:52:44 | 001,942,528 | ---- | M] () -- C:\Windows\update.2\svchost.exe
PRC - [2011-10-31 19:52:44 | 001,942,528 | ---- | M] () -- C:\Windows\update.2\svchost.exe
PRC - [2011-10-31 19:52:44 | 001,942,528 | ---- | M] () -- C:\Windows\update.2\svchost.exe
PRC - [2011-10-31 19:52:44 | 001,942,528 | ---- | M] () -- C:\Windows\update.2\svchost.exe
PRC - [2011-10-31 19:46:57 | 000,258,048 | ---- | M] () -- C:\Windows\sysdriver32.exe
PRC - [2011-10-31 19:24:57 | 001,204,736 | -H-- | M] (Cronosoft) -- C:\Windows\update.tray-8-0-lnk\svchost.exe
PRC - [2011-10-31 19:24:57 | 001,204,736 | -H-- | M] (Cronosoft) -- C:\Windows\update.tray-8-0-lnk\svchost.exe
PRC - [2011-10-31 19:24:57 | 001,204,736 | -H-- | M] (Cronosoft) -- C:\Windows\update.tray-8-0-lnk\svchost.exe
PRC - [2011-10-31 19:24:57 | 001,204,736 | -H-- | M] (Cronosoft) -- C:\Windows\update.tray-8-0\svchost.exe
PRC - [2011-10-31 19:24:57 | 001,204,736 | -H-- | M] (Cronosoft) -- C:\Windows\update.1\svchost.exe
PRC - [2011-10-31 19:24:57 | 001,204,736 | -H-- | M] (Cronosoft) -- C:\Windows\update.1\svchost.exe
PRC - [2011-06-06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011-05-20 21:35:16 | 000,378,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2009-01-29 23:20:49 | 000,057,344 | ---- | M] (SlySoft, Inc.) -- C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe
PRC - [2007-10-17 11:40:14 | 000,189,736 | ---- | M] (Compal Electronics, Inc.) -- C:\Program Files (x86)\Wireless Select Switch\WLSS.exe
PRC - [2006-12-29 10:48:10 | 000,569,344 | ---- | M] (Sonix) -- C:\Windows\vsnp2uvc.exe
[color=#E56717]========== Modules (No Company Name) ==========[/color]
MOD - [2011-10-26 09:10:46 | 000,420,920 | ---- | M] () -- C:\Users\Asia\AppData\Local\Google\Chrome\Application\15.0.874.106\ppGoogleNaClPluginChrome.dll
MOD - [2011-10-26 09:10:45 | 003,702,840 | ---- | M] () -- C:\Users\Asia\AppData\Local\Google\Chrome\Application\15.0.874.106\pdf.dll
MOD - [2011-10-26 09:09:09 | 000,122,952 | ---- | M] () -- C:\Users\Asia\AppData\Local\Google\Chrome\Application\15.0.874.106\avutil-51.dll
MOD - [2011-10-26 09:09:07 | 000,222,280 | ---- | M] () -- C:\Users\Asia\AppData\Local\Google\Chrome\Application\15.0.874.106\avformat-53.dll
MOD - [2011-10-26 09:09:06 | 001,745,992 | ---- | M] () -- C:\Users\Asia\AppData\Local\Google\Chrome\Application\15.0.874.106\avcodec-53.dll
MOD - [2011-10-26 06:14:43 | 008,587,936 | ---- | M] () -- C:\Users\Asia\AppData\Local\Google\Chrome\Application\15.0.874.106\gcswf32.dll
MOD - [2011-10-26 06:14:43 | 008,587,936 | ---- | M] () -- C:\Users\Asia\AppData\Local\Google\Chrome\APPLIC~1\150874~1.106\gcswf32.dll
MOD - [2010-11-20 13:19:56 | 000,232,448 | ---- | M] () -- \\?\globalroot\systemroot\syswow64\mswsock.DLL
MOD - [2007-04-19 14:21:14 | 000,266,240 | ---- | M] () -- C:\Windows\SysWOW64\EMSC.DLL
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - [2011-10-31 19:46:57 | 000,258,048 | ---- | M] () [Auto | Running] -- C:\Windows\sysdriver32.exe -- (srvsysdriver32)
SRV - [2011-06-06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011-05-20 21:35:16 | 000,378,472 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2010-03-18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009-06-10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - [2009-07-14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2007-04-19 14:21:14 | 000,009,856 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\EMSC.SYS -- (EMSC)
DRV - [2007-02-16 01:57:06 | 000,040,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV - [2007-01-17 02:04:46 | 009,599,872 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3936953186-1336618281-1715606131-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-3936953186-1336618281-1715606131-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-3936953186-1336618281-1715606131-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-3936953186-1336618281-1715606131-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-3936953186-1336618281-1715606131-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-3936953186-1336618281-1715606131-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files (x86)\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files (x86)\Veetle\Player\npvlc.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Asia\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Asia\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
[color=#E56717]========== Chrome ==========[/color]
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
CHR - default_search_provider: suggest_url =
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Asia\AppData\Local\Google\Chrome\Application\15.0.874.106\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Asia\AppData\Local\Google\Chrome\Application\15.0.874.106\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Asia\AppData\Local\Google\Chrome\Application\15.0.874.106\pdf.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - plugin: Veetle TV Player (Enabled) = C:\Program Files (x86)\Veetle\Player\npvlc.dll
CHR - plugin: Veetle TV Core (Enabled) = C:\Program Files (x86)\Veetle\plugins\npVeetle.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Asia\AppData\Local\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
O1 HOSTS File: ([2011-11-01 13:12:10 | 000,202,984 | -H-- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 facebook.com
O1 - Hosts: 127.0.0.1 http://www.facebook.com
O1 - Hosts: 127.0.0.1 af-za.facebook.com
O1 - Hosts: 127.0.0.1 az-az.facebook.com
O1 - Hosts: 127.0.0.1 id-id.facebook.com
O1 - Hosts: 127.0.0.1 ms-my.facebook.com
O1 - Hosts: 127.0.0.1 bs-ba.facebook.com
O1 - Hosts: 127.0.0.1 ca-es.facebook.com
O1 - Hosts: 127.0.0.1 cs-cz.facebook.com
O1 - Hosts: 127.0.0.1 cy-gb.facebook.com
O1 - Hosts: 127.0.0.1 da-dk.facebook.com
O1 - Hosts: 127.0.0.1 de-de.facebook.com
O1 - Hosts: 127.0.0.1 et-ee.facebook.com
O1 - Hosts: 127.0.0.1 en-gb.facebook.com
O1 - Hosts: 127.0.0.1 es-la.facebook.com
O1 - Hosts: 127.0.0.1 eo-eo.facebook.com
O1 - Hosts: 127.0.0.1 eu-es.facebook.com
O1 - Hosts: 127.0.0.1 tl-ph.facebook.com
O1 - Hosts: 127.0.0.1 fo-fo.facebook.com
O1 - Hosts: 127.0.0.1 fr-fr.facebook.com
O1 - Hosts: 127.0.0.1 fy-nl.facebook.com
O1 - Hosts: 127.0.0.1 ga-ie.facebook.com
O1 - Hosts: 127.0.0.1 gl-es.facebook.com
O1 - Hosts: 127.0.0.1 ko-kr.facebook.com
O1 - Hosts: 50053 more lines...
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)
O3 - HKU\S-1-5-21-3936953186-1336618281-1715606131-1000\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [4554534.exe] C:\Users\Asia\AppData\Local\Temp\4554534.exe ()
O4 - HKLM..\Run: [5692757.exe] C:\Windows\Temp\5692757.exe ()
O4 - HKLM..\Run: [6766201.exe] C:\Windows\Temp\6766201.exe ()
O4 - HKLM..\Run: [6881533.exe] C:\Windows\Temp\6881533.exe ()
O4 - HKLM..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min File not found
O4 - HKLM..\Run: [CloneCDTray] C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe (SlySoft, Inc.)
O4 - HKLM..\Run: [sysdriver32.exe] C:\Windows\sysdriver32.exe ()
O4 - HKLM..\Run: [sysdriver32_.exe] C:\Windows\sysdriver32_.exe ()
O4 - HKLM..\Run: [tray_ico] File not found
O4 - HKLM..\Run: [tray_ico0] C:\Windows\update.tray-8-0\svchost.exe (Cronosoft)
O4 - HKLM..\Run: [tray_ico1] File not found
O4 - HKLM..\Run: [tray_ico2] File not found
O4 - HKLM..\Run: [tray_ico3] File not found
O4 - HKLM..\Run: [tray_ico4] File not found
O4 - HKLM..\Run: [WLSS] C:\Program Files (x86)\Wireless Select Switch\WLSS.exe (Compal Electronics, Inc.)
O4 - HKLM..\Run: [wxpdrv] C:\Windows\services32.exe (Cronosoft)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3936953186-1336618281-1715606131-1000..\Run: [DriverMax] File not found
O4 - HKU\S-1-5-21-3936953186-1336618281-1715606131-1000..\Run: [DriverMax_RESTART] File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
O9 - Extra Button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - %SystemRoot%\System32\winrnr.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - %SystemRoot%\System32\winrnr.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - %SystemRoot%\System32\winrnr.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - %SystemRoot%\System32\winrnr.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - %SystemRoot%\System32\winrnr.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - %SystemRoot%\System32\winrnr.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - %SystemRoot%\System32\winrnr.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - %SystemRoot%\System32\winrnr.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - %SystemRoot%\System32\winrnr.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - %SystemRoot%\System32\winrnr.dll File not found
O13 - gopher Prefix: missing
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab (System Requirements Lab Class)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EA4BD5D1-C11E-47BB-B3B1-DC462043F3E5}: DhcpNameServer = 192.168.1.1 192.168.1.1
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\PROGRA~2\COMMON~1\MICROS~1\WEBCOM~1\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\PROGRA~2\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) -C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKU\S-1-5-21-3936953186-1336618281-1715606131-1000 Winlogon: Shell - (C:\Users\Asia\AppData\Local\f89da077\X) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O31 - SafeBoot: AlternateShell - services32.exe
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2011-11-01 13:40:02 | 000,000,000 | ---D | C] -- C:\Users\Asia\AppData\Local\PackageAware
[2011-10-31 20:18:36 | 000,000,000 | ---D | C] -- C:\Windows\ufa
[2011-10-31 20:18:36 | 000,000,000 | ---D | C] -- C:\Windows\rpcminer
[2011-10-31 20:18:36 | 000,000,000 | ---D | C] -- C:\Windows\phoenix
[2011-10-31 20:16:17 | 000,000,000 | -H-D | C] -- C:\Windows\update.5.0
[2011-10-31 19:52:54 | 000,000,000 | -H-D | C] -- C:\Windows\update.2
[2011-10-31 19:43:46 | 000,000,000 | ---D | C] -- C:\Users\Asia\AppData\Local\ElevatedDiagnostics
[2011-10-31 19:38:49 | 000,000,000 | ---D | C] -- C:\Windows\av_ico
[2011-10-31 19:37:16 | 000,000,000 | -H-D | C] -- C:\Windows\update.1
[2011-10-31 19:37:14 | 000,000,000 | -H-D | C] -- C:\Windows\update.tray-8-0-lnk
[2011-10-31 19:37:14 | 000,000,000 | -H-D | C] -- C:\Windows\update.tray-8-0
[2011-10-31 19:34:23 | 000,000,000 | ---D | C] -- C:\Users\Asia\AppData\Local\Solid State Networks
[2011-10-31 19:25:20 | 001,204,736 | ---- | C] (Cronosoft) -- C:\Windows\services32.exe
[2011-10-12 15:39:50 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2011-10-12 15:39:46 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2011-10-12 15:39:44 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2011-10-12 15:39:33 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
[2011-10-12 15:39:33 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
[2011-10-04 18:59:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2011-10-04 18:49:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Analysis Services
[2011-10-04 18:49:10 | 000,000,000 | ---D | C] -- C:\Users\Asia\AppData\Local\Microsoft Help
[2011-10-04 18:48:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2011-07-26 14:03:08 | 000,081,920 | ---- | C] ( ) -- C:\Windows\SysWow64\rsnp2uvc.dll
[1 C:\Users\Asia\Documents\*.tmp files -> C:\Users\Asia\Documents\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2011-11-01 13:15:48 | 005,589,370 | ---- | M] () -- C:\Windows\phoenix.rar
[2011-11-01 13:15:48 | 001,075,284 | ---- | M] () -- C:\Windows\rpcminer.rar
[2011-11-01 13:15:48 | 000,246,272 | ---- | M] () -- C:\Windows\unrar.exe
[2011-11-01 13:15:48 | 000,182,617 | ---- | M] () -- C:\Windows\ufa.rar
[2011-11-01 13:13:03 | 000,001,054 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3936953186-1336618281-1715606131-1000UA.job
[2011-11-01 13:11:37 | 000,001,935 | ---- | M] () -- C:\Users\Public\Desktop\Avira AntiVir Control Center.lnk
[2011-11-01 13:11:07 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011-11-01 13:10:58 | 804,069,376 | -HS- | M] () -- C:\hiberfil.sys
[2011-11-01 08:05:37 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2011-11-01 07:59:26 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3936953186-1336618281-1715606131-1000Core.job
[2011-10-31 20:16:36 | 000,000,113 | ---- | M] () -- C:\Windows\info1
[2011-10-31 19:48:39 | 000,904,792 | ---- | M] () -- C:\Windows\geoiplist.rar
[2011-10-31 19:47:28 | 000,000,000 | ---- | M] () -- C:\Windows\loader2.exe_ok
[2011-10-31 19:46:57 | 000,258,048 | ---- | M] () -- C:\Windows\sysdriver32.exe
[2011-10-31 19:46:56 | 000,258,048 | ---- | M] () -- C:\Windows\sysdriver32_.exe
[2011-10-31 19:24:57 | 001,204,736 | ---- | M] (Cronosoft) -- C:\Windows\services32.exe
[2011-10-29 17:15:27 | 000,002,392 | ---- | M] () -- C:\Users\Asia\Desktop\Google Chrome.lnk
[2011-10-02 21:40:04 | 000,850,136 | ---- | M] () -- C:\Users\Asia\Desktop\Książka.pdf
[1 C:\Users\Asia\Documents\*.tmp files -> C:\Users\Asia\Documents\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2011-10-31 20:18:35 | 005,589,370 | ---- | C] () -- C:\Windows\phoenix.rar
[2011-10-31 20:18:35 | 000,182,617 | ---- | C] () -- C:\Windows\ufa.rar
[2011-10-31 20:18:34 | 001,075,284 | ---- | C] () -- C:\Windows\rpcminer.rar
[2011-10-31 19:52:53 | 000,000,113 | ---- | C] () -- C:\Windows\info1
[2011-10-31 19:48:40 | 004,636,907 | ---- | C] () -- C:\Windows\geoiplist
[2011-10-31 19:48:39 | 000,904,792 | ---- | C] () -- C:\Windows\geoiplist.rar
[2011-10-31 19:48:39 | 000,246,272 | ---- | C] () -- C:\Windows\unrar.exe
[2011-10-31 19:47:27 | 000,000,000 | ---- | C] () -- C:\Windows\loader2.exe_ok
[2011-10-31 19:47:25 | 000,258,048 | ---- | C] () -- C:\Windows\sysdriver32_.exe
[2011-10-31 19:47:11 | 000,258,048 | ---- | C] () -- C:\Windows\sysdriver32.exe
[2011-07-26 23:23:52 | 000,000,152 | ---- | C] () -- C:\Users\Asia\AppData\Roaming\burnaware.ini
[2011-07-26 23:10:13 | 000,000,412 | ---- | C] () -- C:\Windows\ODBC.INI
[2011-07-26 14:03:09 | 000,015,497 | ---- | C] () -- C:\Windows\snp2uvc.ini
[2011-07-26 14:03:08 | 009,599,872 | ---- | C] () -- C:\Windows\SysWow64\drivers\snp2uvc.sys
[2011-05-20 21:35:28 | 000,304,744 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe
[2009-07-14 06:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009-07-14 03:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009-07-14 03:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009-07-14 01:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009-07-14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009-07-13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009-06-10 22:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2007-04-19 14:21:14 | 000,266,240 | ---- | C] () -- C:\Windows\SysWow64\EMSC.DLL
[2007-04-19 14:21:14 | 000,009,856 | ---- | C] () -- C:\Windows\SysWow64\drivers\EMSC.sys
[2005-10-14 10:56:50 | 003,596,288 | ---- | C] () -- C:\Windows\SysWow64\qt-dx331.dll
[2005-10-14 10:56:50 | 000,921,600 | ---- | C] () -- C:\Windows\SysWow64\VorbisEnc.dll
[2005-10-14 10:56:50 | 000,778,240 | ---- | C] () -- C:\Windows\SysWow64\DivXsm.exe
[2005-10-14 10:56:50 | 000,761,856 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2005-10-14 10:56:50 | 000,344,064 | ---- | C] () -- C:\Windows\SysWow64\xvid.dll
[2005-10-14 10:56:50 | 000,237,568 | ---- | C] () -- C:\Windows\SysWow64\OggDS.dll
[2005-10-14 10:56:50 | 000,188,416 | ---- | C] () -- C:\Windows\SysWow64\vorbis.dll
[2005-10-14 10:56:50 | 000,155,136 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2005-10-14 10:56:50 | 000,045,056 | ---- | C] () -- C:\Windows\SysWow64\ogg.dll
[2003-04-08 10:40:22 | 000,005,679 | ---- | C] () -- C:\Windows\SysWow64\OUTLPERF.INI
[color=#E56717]========== LOP Check ==========[/color]
[2011-07-26 23:12:09 | 000,000,000 | ---D | M] -- C:\Users\Asia\AppData\Roaming\Opera
[2011-07-30 16:25:50 | 000,000,000 | ---D | M] -- C:\Users\Asia\AppData\Roaming\runic games
[2009-07-14 06:08:49 | 000,011,998 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[color=#E56717]========== Purity Check ==========[/color]
< End of report >
Extrans.exe:
OTL Extras logfile created on: 2011-11-01 14:00:19 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Asia\Downloads
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
1022,43 Mb Total Physical Memory | 96,01 Mb Available Physical Memory | 9,39% Memory free
2,00 Gb Paging File | 0,46 Gb Available in Paging File | 23,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 297,99 Gb Total Space | 258,00 Gb Free Space | 86,58% Space Free | Partition Type: NTFS
Computer Name: FL90 | User Name: Asia | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
[color=#E56717]========== File Associations ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
[color=#E56717]========== Shell Spawning ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[color=#E56717]========== Security Center Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirewallOverride" = 1
"DisableThumbnailCache" = 1
"FirewallDisableNotify" = 1
"UpdatesDisableNotify" = 1
"AntiVirusDisableNotify" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
[color=#E56717]========== Firewall Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[color=#E56717]========== Authorized Applications List ==========[/color]
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{065A7AFE-195D-4DFB-A4B2-A83842C0F79F}" = Wireless Select Switch
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{399C37FB-08AF-493B-BFED-20FBD85EDF7F}" = USB Video Device
"{4F64A46D-67F7-4497-AEA2-313D4305A5F6}" = Torchlight
"{59F6A514-9813-47A3-948C-8A155460CC2A}" = RICOH R5C83x/84x Flash Media Controller Driver Ver.3.57.01
"{90110415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90140000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2010
"{90140000-0015-0409-0000-0000000FF1CE}_Office14.SingleImage_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
"{90140000-0016-0409-0000-0000000FF1CE}_Office14.SingleImage_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
"{90140000-0018-0409-0000-0000000FF1CE}_Office14.SingleImage_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010
"{90140000-0019-0409-0000-0000000FF1CE}_Office14.SingleImage_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
"{90140000-001A-0409-0000-0000000FF1CE}_Office14.SingleImage_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010
"{90140000-001B-0409-0000-0000000FF1CE}_Office14.SingleImage_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{46298F6A-1E7E-4D4A-B5F5-106A4F0E48C6}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.SingleImage_{DEA87BE2-FFCC-4F33-9946-FCBE55A1E998}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{967EF02C-5C7E-4718-8FCB-BDC050190CCF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0409-1000-0000000FF1CE}_Office14.SingleImage_{D6C6B46A-6CE1-4561-84A0-EFD58B8AB979}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010
"{90140000-002C-0409-0000-0000000FF1CE}_Office14.SingleImage_{7CA93DF4-8902-449E-A42E-4C5923CFBDE3}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-003D-0000-0000-0000000FF1CE}" = Microsoft Office Single Image 2010
"{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
"{90140000-006E-0409-0000-0000000FF1CE}_Office14.SingleImage_{4560037C-E356-444A-A015-D21F487D809E}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010
"{90140000-00A1-0409-0000-0000000FF1CE}_Office14.SingleImage_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BD-0415-0000-0000000FF1CE}" = Język etykietek ekranowych pakietu Microsoft Office 2010 — polski
"{90140000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
"{90140000-0115-0409-0000-0000000FF1CE}_Office14.SingleImage_{4560037C-E356-444A-A015-D21F487D809E}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0116-0409-1000-0000000FF1CE}_Office14.SingleImage_{D6C6B46A-6CE1-4561-84A0-EFD58B8AB979}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2010
"{90140000-0117-0409-0000-0000000FF1CE}_Office14.SingleImage_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{AC76BA86-7AD7-1045-7B44-AA1000000001}" = Adobe Reader X (10.1.1) - Polish
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{FEF06E73-A519-4510-8CF3-B66041B91D8A}" = EMSC
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"BurnAware Free_is1" = BurnAware Free 3.3
"CloneCD" = CloneCD
"Combined Community Codec Pack_is1" = Combined Community Codec Pack 2011-06-26
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"DMX5_is1" = DriverMax 5
"InstallShield_{065A7AFE-195D-4DFB-A4B2-A83842C0F79F}" = Wireless Select Switch
"NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Office14.SingleImage" = Microsoft Office Professional 2010
"Opera 11.50.1074" = Opera 11.50
"Picasa 3" = Picasa 3
"SystemRequirementsLab" = System Requirements Lab
"Veetle TV" = Veetle TV
[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]
[HKEY_USERS\S-1-5-21-3936953186-1336618281-1715606131-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
[color=#E56717]========== Last 10 Event Log Errors ==========[/color]
[ Application Events ]
Error - 2011-10-24 04:52:16 | Computer Name = FL90 | Source = Customer Experience Improvement Program | ID = 1008
Description =
Error - 2011-10-24 09:45:36 | Computer Name = FL90 | Source = SideBySide | ID = 16842785
Description = Nie można wygenerować kontekstu aktywacji dla "c:\program files (x86)\innovative
solutions\drivermax\DPInst\ia64\dpinst.exe". Nie można odnaleźć zestawu zależnego
Microsoft.Windows.Common-Controls,language="*",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0".
Użyj
narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę.
Error - 2011-10-26 05:01:22 | Computer Name = FL90 | Source = SideBySide | ID = 16842785
Description = Nie można wygenerować kontekstu aktywacji dla "c:\program files (x86)\innovative
solutions\drivermax\DPInst\ia64\dpinst.exe". Nie można odnaleźć zestawu zależnego
Microsoft.Windows.Common-Controls,language="*",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0".
Użyj
narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę.
Error - 2011-10-26 13:13:18 | Computer Name = FL90 | Source = Customer Experience Improvement Program | ID = 1008
Description =
Error - 2011-10-28 14:35:18 | Computer Name = FL90 | Source = Customer Experience Improvement Program | ID = 1008
Description =
Error - 2011-10-29 04:03:40 | Computer Name = FL90 | Source = SideBySide | ID = 16842785
Description = Nie można wygenerować kontekstu aktywacji dla "c:\program files (x86)\innovative
solutions\drivermax\DPInst\ia64\dpinst.exe". Nie można odnaleźć zestawu zależnego
Microsoft.Windows.Common-Controls,language="*",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0".
Użyj
narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę.
Error - 2011-10-30 04:32:03 | Computer Name = FL90 | Source = SideBySide | ID = 16842785
Description = Nie można wygenerować kontekstu aktywacji dla "c:\program files (x86)\innovative
solutions\drivermax\DPInst\ia64\dpinst.exe". Nie można odnaleźć zestawu zależnego
Microsoft.Windows.Common-Controls,language="*",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0".
Użyj
narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę.
Error - 2011-10-31 15:22:13 | Computer Name = FL90 | Source = Microsoft-Windows-LoadPerf | ID = 3016
Description = Nie można zaktualizować wartości Last Counter klucza SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Perflib. Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod
błędu, a drugi wpis DWORD zawiera zaktualizowaną wartość.
Error - 2011-10-31 15:22:13 | Computer Name = FL90 | Source = Microsoft-Windows-LoadPerf | ID = 3011
Description = Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl
(WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu.
Error - 2011-10-31 15:30:14 | Computer Name = FL90 | Source = VSS | ID = 8194
Description =
[ System Events ]
Error - 2011-11-01 08:11:13 | Computer Name = FL90 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Sterownik uwierzytelniania Zapory systemu
Windows z powodu następującego błędu: %%183
Error - 2011-11-01 08:11:13 | Computer Name = FL90 | Source = Service Control Manager | ID = 7001
Description = Usługa Zapora systemu Windows zależy od usługi Sterownik uwierzytelniania
Zapory systemu Windows, której nie można uruchomić z powodu następującego błędu:
%%183
Error - 2011-11-01 08:11:13 | Computer Name = FL90 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Avira AntiVir Guard z powodu następującego
błędu: %%2
Error - 2011-11-01 08:12:09 | Computer Name = FL90 | Source = Service Control Manager | ID = 7024
Description = Usługa Usługa nasłuchująca grup domowych zakończyła działanie; wystąpił
specyficzny dla niej błąd %%-2147023143.
Error - 2011-11-01 08:16:48 | Computer Name = FL90 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Sterownik uwierzytelniania Zapory systemu
Windows z powodu następującego błędu: %%183
Error - 2011-11-01 08:16:48 | Computer Name = FL90 | Source = Service Control Manager | ID = 7001
Description = Usługa Zapora systemu Windows zależy od usługi Sterownik uwierzytelniania
Zapory systemu Windows, której nie można uruchomić z powodu następującego błędu:
%%183
Error - 2011-11-01 08:18:58 | Computer Name = FL90 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Sterownik uwierzytelniania Zapory systemu
Windows z powodu następującego błędu: %%183
Error - 2011-11-01 08:18:58 | Computer Name = FL90 | Source = Service Control Manager | ID = 7001
Description = Usługa Zapora systemu Windows zależy od usługi Sterownik uwierzytelniania
Zapory systemu Windows, której nie można uruchomić z powodu następującego błędu:
%%183
Error - 2011-11-01 08:19:13 | Computer Name = FL90 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Sterownik uwierzytelniania Zapory systemu
Windows z powodu następującego błędu: %%183
Error - 2011-11-01 08:19:13 | Computer Name = FL90 | Source = Service Control Manager | ID = 7001
Description = Usługa Zapora systemu Windows zależy od usługi Sterownik uwierzytelniania
Zapory systemu Windows, której nie można uruchomić z powodu następującego błędu:
%%183
< End of report >