prosze o sprawdzenie loga dziwne okno

[ryskowski-smigac]

Logfile of HijackThis v1.99.1
Scan saved at 19:47:03, on 2007-10-04
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\WZCBDL Service\WZCBDLS.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\D-Link\Air Utility\AirCFG.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\WINDOWS\system32\taskswitch.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Gadu-Gadu\gg.exe
C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe
C:\Program Files\uTorrent\utorrent.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Kalendarz XP\Kalendarz.exe
C:\Program Files\PowerMenu\PowerMenu.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files\Opera\Opera.exe
C:\WINDOWS\system32\cmd.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Skype\Plugin Manager\SkypePM.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\gumek\Pulpit\HijackThis 1.99.1\HijackThis.exe
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\NirCmd.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [D-Link Air Utility] C:\Program Files\D-Link\Air Utility\AirCFG.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [CoolSwitch] C:\WINDOWS\system32\taskswitch.exe
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\gg.exe" /tray
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [DLD.EXE] C:\Program Files\Download Direct\DLD.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\utorrent.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: Kalendarz XP.lnk = C:\Program Files\Kalendarz XP\Kalendarz.exe
O4 - Global Startup: PowerMenu.lnk = C:\Program Files\PowerMenu\PowerMenu.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O17 - HKLM\System\CCS\Services\Tcpip\..\{92D392DE-9623-4659-9285-2662F148B195}: NameServer = 193.110.121.20,195.114.161.2
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: WZCBDL Service (WZCBDLService) - D-Link - C:\Program Files\WZCBDL Service\WZCBDLS.exe


ComboFix 07-10-04.6 - gumek 2007-10-04 19:42:31.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1250.1.1045.18.622 [GMT 2:00]
Running from: C:\Documents and Settings\gumek\Pulpit\ComboFix.exe
* Created a new restore point
.

((((((((((((((((((((((((( Files Created from 2007-09-04 to 2007-10-04 )))))))))))))))))))))))))))))))
.

2007-10-04 19:40 51,200 --a------ C:\WINDOWS\NirCmd.exe
2007-10-03 23:51 <DIR> d-------- C:\Program Files\Malicious Software Removal Tool
2007-10-03 23:48 <DIR> d-------- C:\Documents and Settings\gumek\Dane aplikacji\Google
2007-10-03 23:41 <DIR> d-------- C:\WINDOWS\system32\pl-pl
2007-10-03 23:40 36,352 --------- C:\WINDOWS\system32\tsgqec.dll
2007-10-03 23:40 288,768 --------- C:\WINDOWS\system32\rhttpaa.dll
2007-10-03 23:40 116,736 --------- C:\WINDOWS\system32\aaclient.dll
2007-10-03 23:36 <DIR> d-------- C:\Program Files\MSXML 6.0
2007-10-03 23:36 <DIR> d-------- C:\Program Files\Autoruns
2007-10-03 23:35 <DIR> d----c--- C:\WINDOWS\system32\DRVSTORE
2007-10-03 23:35 <DIR> d-------- C:\Program Files\MSN Messenger
2007-10-03 23:34 <DIR> d-------- C:\Program Files\Google
2007-10-03 23:34 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Google
2007-10-03 23:33 36,864 -----c--- C:\WINDOWS\system32\dllcache\hidclass.sys
2007-10-03 23:29 <DIR> d-------- C:\Program Files\Windows Media Connect 2
2007-10-03 23:27 <DIR> d-------- C:\WINDOWS\system32\LogFiles
2007-10-03 23:27 <DIR> d-------- C:\WINDOWS\system32\DRM
2007-10-03 23:27 <DIR> d-------- C:\WINDOWS\system32\drivers\UMDF
2007-10-03 23:26 62,336 --------- C:\WINDOWS\system32\drivers\rspndr.sys
2007-10-03 23:26 59,264 -----c--- C:\WINDOWS\system32\dllcache\usbhub.sys
2007-10-03 23:26 30,208 -----c--- C:\WINDOWS\system32\dllcache\usbehci.sys
2007-10-03 23:26 20,608 -----c--- C:\WINDOWS\system32\dllcache\usbuhci.sys
2007-10-03 23:26 17,152 -----c--- C:\WINDOWS\system32\dllcache\usbohci.sys
2007-10-03 23:26 143,488 -----c--- C:\WINDOWS\system32\dllcache\usbport.sys
2007-10-03 23:26 10,752 --------- C:\WINDOWS\system32\rspndr.exe
2007-10-03 23:26 <DIR> d-------- C:\WINDOWS\l2schemas
2007-10-03 23:25 69,120 --------- C:\WINDOWS\system32\wlanapi.dll
2007-10-03 23:23 <DIR> d-------- C:\Program Files\xp-AntiSpy
2007-10-03 22:50 52,736 -----c--- C:\WINDOWS\system32\dllcache\wzcsapi.dll
2007-10-03 22:50 476,160 -----c--- C:\WINDOWS\system32\dllcache\wzcsvc.dll
2007-10-03 22:50 14,592 -----c--- C:\WINDOWS\system32\dllcache\ndisuio.sys
2007-10-03 22:37 6,144 --------- C:\WINDOWS\system32\kbdpash.dll
2007-10-03 22:37 6,144 --------- C:\WINDOWS\system32\kbdnepr.dll
2007-10-03 22:37 6,144 --------- C:\WINDOWS\system32\kbdiultn.dll
2007-10-03 22:37 6,144 --------- C:\WINDOWS\system32\kbdbhc.dll
2007-10-03 22:37 <DIR> d-------- C:\WINDOWS\ServicePackFiles
2007-10-03 22:23 <DIR> d-------- C:\Program Files\MSBuild
2007-10-03 22:14 <DIR> d-------- C:\WINDOWS\system32\XPSViewer
2007-10-03 22:13 <DIR> d-------- C:\Program Files\Reference Assemblies
2007-10-03 22:12 14,048 --------- C:\WINDOWS\system32\spmsg2.dll
2007-10-03 22:02 <DIR> d-------- C:\Program Files\CWShredder
2007-10-03 21:53 <DIR> d--h-c--- C:\WINDOWS\$SQLUninstallMSXML2SP6-KB887606-x86-PLK$
2007-10-03 21:53 <DIR> d-------- C:\Program Files\Dir2File
2007-10-03 21:45 <DIR> d-------- C:\Program Files\PowerMenu
2007-10-03 21:45 <DIR> d-------- C:\Program Files\Microsoft Bootvis
2007-10-03 21:42 266,360 --a------ C:\WINDOWS\system32\TweakUI.exe
2007-10-03 21:40 <DIR> d-------- C:\Program Files\HighMAT CD Writing Wizard
2007-10-03 21:38 <DIR> d-------- C:\WINDOWS\system32\URTTemp
2007-10-03 21:37 45,056 --a------ C:\WINDOWS\system32\WNASPI32.DLL
2007-10-03 21:37 16,512 --a------ C:\WINDOWS\system32\drivers\ASPI32.SYS
2007-10-03 21:37 <DIR> d-------- C:\Program Files\PowerOFF
2007-10-03 21:37 <DIR> d-------- C:\Program Files\Microsoft CopyProfile
2007-10-03 21:37 <DIR> d-------- C:\Program Files\AutoPatcher Tools
2007-10-03 21:36 40,960 --a------ C:\WINDOWS\system32\SSUBTMR6.DLL
2007-10-03 21:36 32,584 --a------ C:\WINDOWS\system32\FM20ENU.DLL
2007-10-03 21:36 10,752 --a------ C:\WINDOWS\system32\aamd532.dll
2007-10-03 21:36 1,146,184 --a------ C:\WINDOWS\system32\FM20.DLL
2007-10-03 21:34 <DIR> d-------- C:\Program Files\AutoPatcher
2007-10-03 21:06 <DIR> d-------- C:\ADCDTEMP
2007-10-03 20:25 <DIR> d-------- C:\Program Files\Skype
2007-10-03 20:25 <DIR> d-------- C:\Program Files\Common Files\Skype
2007-10-03 20:25 <DIR> d-------- C:\Documents and Settings\gumek\Dane aplikacji\Skype
2007-10-03 20:25 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Skype
2007-10-01 21:34 <DIR> d-------- C:\Program Files\Cartall
2007-09-30 19:26 <DIR> d-------- C:\AFWBackup
2007-09-30 10:08 <DIR> d-------- C:\ET_PROG
2007-09-30 10:01 <DIR> d-------- C:\ET_ROOT
2007-09-28 22:32 <DIR> d-------- C:\ALLDATAData
2007-09-28 22:27 676,864 --a------ C:\WINDOWS\system32\drivers\hardlock.sys
2007-09-28 22:27 6,656 --a------ C:\WINDOWS\system32\haspvdd.dll
2007-09-28 22:27 49,152 --------- C:\WINDOWS\system32\INETWH32.dll
2007-09-28 22:27 47,616 --a------ C:\WINDOWS\system32\drivers\Haspnt.sys
2007-09-28 22:27 446,464 --------- C:\WINDOWS\system32\hhactivex.dll
2007-09-28 22:27 44,544 --------- C:\WINDOWS\system32\msxml4a.dll
2007-09-28 22:27 383 --a------ C:\WINDOWS\system32\haspdos.sys
2007-09-28 22:27 1,089,536 --------- C:\WINDOWS\system32\ROBOEX32.DLL
2007-09-28 22:27 <DIR> d-------- C:\Program Files\Common Files\ALLDATA Shared
2007-09-28 22:27 <DIR> d-------- C:\Documents and Settings\gumek\Dane aplikacji\InstallShield
2007-09-28 22:27 <DIR> d-------- C:\AZ Commercial
2007-09-28 22:27 <DIR> d-------- C:\ALLDATAW
2007-09-28 22:10 <DIR> d-------- C:\ElsaWin
2007-09-28 22:03 <DIR> d-------- C:\Program Files\PowerISO
2007-09-27 15:12 27,165 --a--c--- C:\WINDOWS\system32\dllcache\fetnd5.sys
2007-09-27 15:12 27,165 --a------ C:\WINDOWS\system32\drivers\fetnd5.sys
2007-09-26 21:02 <DIR> d-------- C:\Documents and Settings\gumek\Dane aplikacji\Help
2007-09-26 03:09 221,184 --a------ C:\WINDOWS\system32\wmpns.dll
2007-09-26 03:01 <DIR> d-------- C:\Program Files\MSXML 4.0
2007-09-25 22:45 89,360 --a------ C:\WINDOWS\system32\VB5DB.DLL
2007-09-25 22:27 <DIR> d-a------ C:\Documents and Settings\All Users\Dane aplikacji\TEMP
2007-09-25 21:30 <DIR> d-------- C:\Program Files\Download Direct
2007-09-25 20:35 <DIR> d-------- C:\Program Files\Runtime Software
2007-09-25 20:26 <DIR> d-------- C:\Program Files\uTorrent
2007-09-25 20:26 <DIR> d-------- C:\Documents and Settings\gumek\Dane aplikacji\uTorrent
2007-09-25 19:28 <DIR> d-------- C:\Documents and Settings\gumek\Dane aplikacji\Nero
2007-09-25 19:23 <DIR> d-------- C:\Program Files\Nero
2007-09-25 19:23 <DIR> d-------- C:\Program Files\Common Files\Nero
2007-09-25 19:23 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Nero
2007-09-25 18:23 <DIR> d-------- C:\Documents and Settings\gumek\Dane aplikacji\Gadu-Gadu
2007-09-25 18:21 <DIR> d-------- C:\Program Files\Gadu-Gadu
2007-09-25 18:21 <DIR> d-------- C:\Documents and Settings\gumek\Gadu-Gadu

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-10-03 20:55 --------- d--h----- C:\Program Files\InstallShield Installation Information
2007-09-25 00:00 --------- d-------- C:\Program Files\Common Files\InstallShield
2007-09-24 23:55 --------- d-------- C:\Program Files\Realtek Sound Manager
2007-09-24 23:55 --------- d-------- C:\Program Files\Realtek AC97
2007-09-24 23:55 --------- d-------- C:\Program Files\AvRack
2007-09-24 23:52 --------- d-------- C:\Program Files\VIA
2007-09-24 23:34 --------- d-------- C:\Program Files\microsoft frontpage
2007-08-08 09:33 132904 --a------ C:\WINDOWS\system32\drivers\imagesrv.sys
2007-08-08 09:33 11304 --a------ C:\WINDOWS\system32\drivers\imagedrv.sys
2007-08-04 10:40 972072 --a------ C:\WINDOWS\UNRecode.exe
2007-08-04 10:10 95600 --a------ C:\WINDOWS\system32\NeroCo.dll
2007-08-03 12:52 972072 --a------ C:\WINDOWS\UNNeroMediaHome.exe
2007-07-30 19:19 92504 --a------ C:\WINDOWS\system32\cdm.dll
2007-07-30 19:19 549720 --a------ C:\WINDOWS\system32\wuapi.dll
2007-07-30 19:19 53080 --a------ C:\WINDOWS\system32\wuauclt.exe
2007-07-30 19:19 43352 --a------ C:\WINDOWS\system32\wups2.dll
2007-07-30 19:19 325976 --a------ C:\WINDOWS\system32\wucltui.dll
2007-07-30 19:19 203096 --a------ C:\WINDOWS\system32\wuweb.dll
2007-07-30 19:19 1712984 --a------ C:\WINDOWS\system32\wuaueng.dll
2007-07-30 19:18 33624 --a------ C:\WINDOWS\system32\wups.dll
--------- C:\Program Files\Usługi online
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2006-03-01 10:22 C:\WINDOWS\soundman.exe]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2006-06-01 11:22]
"nwiz"="nwiz.exe" [2006-06-01 11:22 C:\WINDOWS\system32\nwiz.exe]
"NvMediaCenter"="NvMCTray.dll" [2006-06-01 11:22 C:\WINDOWS\system32\nvmctray.dll]
"D-Link Air Utility"="C:\Program Files\D-Link\Air Utility\AirCFG.exe" [2003-06-26 18:13]
"NeroFilterCheck"="C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 15:57]
"NBKeyScan"="C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-08-08 09:25]
"PWRISOVM.EXE"="C:\Program Files\PowerISO\PWRISOVM.EXE" [2007-01-20 09:09]
"CoolSwitch"="C:\WINDOWS\system32\taskswitch.exe" [2002-03-19 17:30]
"UnlockerAssistant"="C:\Program Files\Unlocker\UnlockerAssistant.exe" [2006-09-07 19:19]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe" [2007-03-14 03:43]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 00:44]
"Gadu-Gadu"="C:\Program Files\Gadu-Gadu\gg.exe" [2007-07-09 09:39]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe" [2007-08-03 12:51]
"DLD.EXE"="C:\Program Files\Download Direct\DLD.exe" [2007-09-06 10:54]
"uTorrent"="C:\Program Files\uTorrent\utorrent.exe" [2007-09-25 20:48]
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2007-02-05 17:49]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [2007-01-19 12:54]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [2007-10-03 23:34]

C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe [2006-10-23 02:48:00]
Adobe Reader Synchronizer.lnk - C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2006-10-23 01:01:00]
Kalendarz XP.lnk - C:\Program Files\Kalendarz XP\Kalendarz.exe [2007-09-25 00:17:20]
PowerMenu.lnk - C:\Program Files\PowerMenu\PowerMenu.exe [2007-10-03 21:45:20]

C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe [2006-10-23 02:48:00]
Adobe Reader Synchronizer.lnk - C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2006-10-23 01:01:00]
Kalendarz XP.lnk - C:\Program Files\Kalendarz XP\Kalendarz.exe [2007-09-25 00:17:20]
PowerMenu.lnk - C:\Program Files\PowerMenu\PowerMenu.exe [2007-10-03 21:45:20]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSharedDocuments"=1 (0x1)
"ForceClassicControlPanel"=1 (0x1)
"NoSMConfigurePrograms"=1 (0x1)
"NoRecentDocsMenu"=1 (0x1)
"NoChangeKeyboardNavigationIndicators"=0 (0x0)

R0 videX32;videX32;C:\WINDOWS\system32\DRIVERS\videX32.sys
R0 xfilt;VIA SATA IDE Hot-plug Driver;C:\WINDOWS\system32\DRIVERS\xfilt.sys
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3;C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
R2 NIOC;NIOC Service;\??\C:\WINDOWS\system32\NIOC.SYS
R2 nvcap;nVidia WDM Video Capture (universal);C:\WINDOWS\system32\DRIVERS\nvcap.sys
R2 NVXBAR;nVidia WDM A/V Crossbar;C:\WINDOWS\system32\DRIVERS\NVxbar.sys
R3 NETDLWL;D-Link Air Wireless Adapter(DL) NT Driver;C:\WINDOWS\system32\DRIVERS\NETDLWL.SYS
R3 usbstor;Sterownik magazynu masowego USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
S3 GVCplDrv;GVCplDrv;C:\WINDOWS\system32\drivers\GVCplDrv.sys
Start Pending2 WZCBDLService;WZCBDL Service;"C:\Program Files\WZCBDL Service\WZCBDLS.exe"

*Newly Created Service* - CATCHME
.
**************************************************************************

catchme 0.3.1169 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-10-04 19:45:05
Windows 5.1.2600 Dodatek Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2007-10-04 19:46:52
.
--- E O F ---


"Silent Runners.vbs", revision 52, http://www.silentrunners.org/
Operating System: Windows XP SP2
Output limited to non-default values, except where indicated by "{++}"


Startup items buried in registry:
---------------------------------

HKCU\Software\Microsoft\Windows\CurrentVersion\Run\ {++}
"CTFMON.EXE" = "C:\WINDOWS\system32\ctfmon.exe" [MS]
"Gadu-Gadu" = ""C:\Program Files\Gadu-Gadu\gg.exe" /tray" ["Gadu-Gadu S.A."]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}" = ""C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe"" ["Nero AG"]
"DLD.EXE" = "C:\Program Files\Download Direct\DLD.exe" ["SenBit"]
"uTorrent" = ""C:\Program Files\uTorrent\utorrent.exe"" [null data]
"Skype" = ""C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized" ["Skype Technologies S.A."]
"MsnMsgr" = ""C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background" [MS]
"swg" = "C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" ["Google Inc."]

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\ {++}
"SoundMan" = "SOUNDMAN.EXE" ["Realtek Semiconductor Corp."]
"NvCplDaemon" = "RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup" [MS]
"nwiz" = "nwiz.exe /install" ["NVIDIA Corporation"]
"NvMediaCenter" = "RunDLL32.exe NvMCTray.dll,NvTaskbarInit" [MS]
"D-Link Air Utility" = "C:\Program Files\D-Link\Air Utility\AirCFG.exe" ["D-Link"]
"NeroFilterCheck" = "C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe" ["Nero AG"]
"NBKeyScan" = ""C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"" ["Nero AG"]
"PWRISOVM.EXE" = "C:\Program Files\PowerISO\PWRISOVM.EXE" ["PowerISO Computing, Inc."]
"CoolSwitch" = "C:\WINDOWS\system32\taskswitch.exe" [null data]
"UnlockerAssistant" = ""C:\Program Files\Unlocker\UnlockerAssistant.exe"" [null data]
"SunJavaUpdateSched" = ""C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"" ["Sun Microsystems, Inc."]

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}\(Default) = (no title provided)
{HKLM...CLSID} = "Adobe PDF Reader Link Helper"
\InProcServer32\(Default) = "C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll" ["Adobe Systems Incorporated"]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\(Default) = (no title provided)
{HKLM...CLSID} = "SSVHelper Class"
\InProcServer32\(Default) = "C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll" ["Sun Microsystems, Inc."]
{AA58ED58-01DD-4d91-8333-CF10577473F7}\(Default) = (no title provided)
{HKLM...CLSID} = "Google Toolbar Helper"
\InProcServer32\(Default) = "c:\program files\google\googletoolbar1.dll" ["Google Inc."]

HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
"{42071714-76d4-11d1-8b24-00a0c9068ff3}" = "Rozszerzenie CPL kadrowania wyświetlania"
{HKLM...CLSID} = "Rozszerzenie CPL kadrowania wyświetlania"
\InProcServer32\(Default) = "deskpan.dll" [file not found]
"{88895560-9AA2-1069-930E-00AA0030EBC8}" = "Rozszerzenie ikony HyperTerminalu"
{HKLM...CLSID} = "HyperTerminal Icon Ext"
\InProcServer32\(Default) = "C:\WINDOWS\system32\hticons.dll" ["Hilgraeve, Inc."]
"{A70C977A-BF00-412C-90B7-034C51DA2439}" = "NvCpl DesktopContext Class"
{HKLM...CLSID} = "DesktopContext Class"
\InProcServer32\(Default) = "C:\WINDOWS\system32\nvcpl.dll" ["NVIDIA Corporation"]
"{FFB699E0-306A-11d3-8BD1-00104B6F7516}" = "Play on my TV helper"
{HKLM...CLSID} = "NVIDIA CPL Extension"
\InProcServer32\(Default) = "C:\WINDOWS\system32\nvcpl.dll" ["NVIDIA Corporation"]
"{1CDB2949-8F65-4355-8456-263E7C208A5D}" = "Desktop Explorer"
{HKLM...CLSID} = "Desktop Explorer"
\InProcServer32\(Default) = "C:\WINDOWS\system32\nvshell.dll" ["NVIDIA Corporation"]
"{1E9B04FB-F9E5-4718-997B-B8DA88302A47}" = "Desktop Explorer Menu"
{HKLM...CLSID} = (no title provided)
\InProcServer32\(Default) = "C:\WINDOWS\system32\nvshell.dll" ["NVIDIA Corporation"]
"{1E9B04FB-F9E5-4718-997B-B8DA88302A48}" = "nView Desktop Context Menu"
{HKLM...CLSID} = "nView Desktop Context Menu"
\InProcServer32\(Default) = "C:\WINDOWS\system32\nvshell.dll" ["NVIDIA Corporation"]
"{B41DB860-8EE4-11D2-9906-E49FADC173CA}" = "WinRAR shell extension"
{HKLM...CLSID} = "WinRAR"
\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data]
"{97F68CE3-7146-45FF-BE24-D9A7DD7CB8A2}" = "NeroCoverEd Live Icons"
{HKLM...CLSID} = "NeroCoverEdLiveIcons Class"
\InProcServer32\(Default) = "C:\Program Files\Nero\Nero8\Nero CoverDesigner\CoverEdExtension.dll" ["Nero AG"]
"{B327765E-D724-4347-8B16-78AE18552FC3}" = "NeroDigitalIconHandler"
{HKLM...CLSID} = "NeroDigitalIconHandler Class"
\InProcServer32\(Default) = "C:\Program Files\Common Files\Nero\Lib\NeroDigitalExt.dll" ["Nero AG"]
"{7F1CF152-04F8-453A-B34C-E609530A9DC8}" = "NeroDigitalPropSheetHandler"
{HKLM...CLSID} = "NeroDigitalPropSheetHandler Class"
\InProcServer32\(Default) = "C:\Program Files\Common Files\Nero\Lib\NeroDigitalExt.dll" ["Nero AG"]
"{967B2D40-8B7D-4127-9049-61EA0C2C6DCE}" = "PowerISO"
{HKLM...CLSID} = "PowerISO"
\InProcServer32\(Default) = "C:\Program Files\PowerISO\PWRISOSH.DLL" ["PowerISO Computing, Inc."]
"{1530F7EE-5128-43BD-9977-84A4B0FAD7DF}" = "PhotoToys"
{HKCU...CLSID} = (no title provided)
\InProcServer32\(Default) = "C:\WINDOWS\system32\phototoys.dll" [MS]
"{efb97cb8-a4a4-4357-a261-002ffaed0267}" = "CD Slideshow Powertoy"
{HKCU...CLSID} = "CD Burn Slideshow Hook"
\InProcServer32\(Default) = "C:\WINDOWS\system32\slideshow.dll" [MS]
"{709C6E11-538F-4759-86AC-6ACB302AA0DE}" = "Desktop Manager"
{HKCU...CLSID} = "Desktop Manager"
\InProcServer32\(Default) = "C:\WINDOWS\system32\msvdm.dll" [null data]
"{DDE4BEEB-DDE6-48fd-8EB5-035C09923F83}" = "UnlockerShellExtension"
{HKLM...CLSID} = "UnlockerShellExtension"
\InProcServer32\(Default) = "C:\Program Files\Unlocker\UnlockerCOM.dll" [null data]
"{FC9FB64A-1EB2-4CCF-AF5E-1A497A9B5C2D}" = "Messenger Sharing Folders"
{HKLM...CLSID} = "Moje foldery udostępniania"
\InProcServer32\(Default) = "C:\Program Files\MSN Messenger\fsshext.8.1.0178.00.dll" [MS]

HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\
"WPDShServiceObj" = "{AAA288BA-9A4C-45B0-95D7-94D524869DB5}"
{HKLM...CLSID} = "WPDShServiceObj Class"
\InProcServer32\(Default) = "C:\WINDOWS\system32\WPDShServiceObj.dll" [MS]

HKLM\Software\Classes\Folder\shellex\ColumnHandlers\
{7D4D6379-F301-4311-BEBA-E26EB0561882}\(Default) = "NeroDigitalExt.NeroDigitalColumnHandler"
{HKLM...CLSID} = "NeroDigitalColumnHandler Class"
\InProcServer32\(Default) = "C:\Program Files\Common Files\Nero\Lib\NeroDigitalExt.dll" ["Nero AG"]
{F9DB5320-233E-11D1-9F84-707F02C10627}\(Default) = "PDF Column Info"
{HKLM...CLSID} = "PDF Shell Extension"
\InProcServer32\(Default) = "C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll" ["Adobe Systems, Inc."]

HKLM\Software\Classes\*\shellex\ContextMenuHandlers\
Cover Designer\(Default) = "{73FCA462-9BD5-4065-A73F-A8E5F6904EF7}"
{HKLM...CLSID} = "NeroCoverEdContextMenu Class"
\InProcServer32\(Default) = "C:\Program Files\Nero\Nero8\Nero CoverDesigner\CoverEdExtension.dll" ["Nero AG"]
PowerISO\(Default) = "{967B2D40-8B7D-4127-9049-61EA0C2C6DCE}"
{HKLM...CLSID} = "PowerISO"
\InProcServer32\(Default) = "C:\Program Files\PowerISO\PWRISOSH.DLL" ["PowerISO Computing, Inc."]
WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}"
{HKLM...CLSID} = "WinRAR"
\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data]

HKLM\Software\Classes\Directory\shellex\ContextMenuHandlers\
PowerISO\(Default) = "{967B2D40-8B7D-4127-9049-61EA0C2C6DCE}"
{HKLM...CLSID} = "PowerISO"
\InProcServer32\(Default) = "C:\Program Files\PowerISO\PWRISOSH.DLL" ["PowerISO Computing, Inc."]
WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}"
{HKLM...CLSID} = "WinRAR"
\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data]

HKLM\Software\Classes\Folder\shellex\ContextMenuHandlers\
PowerISO\(Default) = "{967B2D40-8B7D-4127-9049-61EA0C2C6DCE}"
{HKLM...CLSID} = "PowerISO"
\InProcServer32\(Default) = "C:\Program Files\PowerISO\PWRISOSH.DLL" ["PowerISO Computing, Inc."]
UnlockerShellExtension\(Default) = "{DDE4BEEB-DDE6-48fd-8EB5-035C09923F83}"
{HKLM...CLSID} = "UnlockerShellExtension"
\InProcServer32\(Default) = "C:\Program Files\Unlocker\UnlockerCOM.dll" [null data]
WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}"
{HKLM...CLSID} = "WinRAR"
\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data]

HKLM\Software\Classes\AllFilesystemObjects\shellex\ContextMenuHandlers\
UnlockerShellExtension\(Default) = "{DDE4BEEB-DDE6-48fd-8EB5-035C09923F83}"
{HKLM...CLSID} = "UnlockerShellExtension"
\InProcServer32\(Default) = "C:\Program Files\Unlocker\UnlockerCOM.dll" [null data]


Group Policies {GPedit.msc branch and setting}:
-----------------------------------------------

Note: detected settings may not have any effect.

HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\

"NoSharedDocuments" = (REG_DWORD) hex:0x00000001
{User Configuration|Administrative Templates|Windows Components|Windows Explorer|
Remove Shared Documents from My Computer}

"ForceClassicControlPanel" = (REG_DWORD) hex:0x00000001
{unrecognized setting}

"NoSMConfigurePrograms" = (REG_DWORD) hex:0x00000001
{unrecognized setting}

"NoRecentDocsMenu" = (REG_DWORD) hex:0x00000001
{unrecognized setting}

"NoChangeKeyboardNavigationIndicators" = (REG_DWORD) hex:0x00000000
{unrecognized setting}

"ClassicShell" = (REG_DWORD) hex:0x00000000
{User Configuration|Administrative Templates|Windows Components|Windows Explorer|
Enable Classic Shell / Turn on Classic Shell}

"NoLowDiskSpaceChecks" = (REG_DWORD) hex:0x00000001
{unrecognized setting}

HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\

"NoRemoteRecursiveEvents" = (REG_DWORD) hex:0x00000001
{unrecognized setting}

"ClassicShell" = (REG_DWORD) hex:0x00000000
{unrecognized setting}

HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System\

"shutdownwithoutlogon" = (REG_DWORD) hex:0x00000001
{Computer Configuration|Windows Settings|Security Settings|Local Policies|Security Options|
Shutdown: Allow system to be shut down without having to log on}

"undockwithoutlogon" = (REG_DWORD) hex:0x00000001
{Computer Configuration|Windows Settings|Security Settings|Local Policies|Security Options|
Devices: Allow undock without having to log on}

"NoInternetOpenWith" = (REG_DWORD) hex:0x00000001
{unrecognized setting}


Active Desktop and Wallpaper:
-----------------------------

Active Desktop may be disabled at this entry:
HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellState

Displayed if Active Desktop enabled and wallpaper not set by Group Policy:
HKCU\Software\Microsoft\Internet Explorer\Desktop\General\
"Wallpaper" = "C:\WINDOWS\system32\config\systemprofile\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp"

Displayed if Active Desktop disabled and wallpaper not set by Group Policy:
HKCU\Control Panel\Desktop\
"Wallpaper" = "C:\Documents and Settings\gumek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp"


Startup items in "gumek" & "All Users" startup folders:
-------------------------------------------------------

C:\Documents and Settings\All Users\Menu Start\Programy\Autostart
"Adobe Reader Speed Launch" shortcut to: "C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe" ["Adobe Systems Incorporated"]
"Adobe Reader Synchronizer" shortcut to: "C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe" [null data]
"Kalendarz XP" shortcut to: "C:\Program Files\Kalendarz XP\Kalendarz.exe" [null data]
"PowerMenu" shortcut to: "C:\Program Files\PowerMenu\PowerMenu.exe -hideself on" ["Thong Nguyen"]


Winsock2 Service Provider DLLs:
-------------------------------

Namespace Service Providers

HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\ {++}
000000000001\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]
000000000002\LibraryPath = "%SystemRoot%\System32\winrnr.dll" [MS]
000000000003\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]

Transport Service Providers

HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\ {++}
0000000000##\PackedCatalogItem (contains) DLL [Company Name], (at) ## range:
%SystemRoot%\system32\mswsock.dll [MS], 01 - 03, 06 - 15
%SystemRoot%\system32\rsvpsp.dll [MS], 04 - 05


Toolbars, Explorer Bars, Extensions:
------------------------------------

Toolbars

HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\
"{2318C2B1-4965-11D4-9B18-009027A5CD4F}"
{HKLM...CLSID} = "&Google"
\InProcServer32\(Default) = "c:\program files\google\googletoolbar1.dll" ["Google Inc."]

HKLM\Software\Microsoft\Internet Explorer\Toolbar\
"{2318C2B1-4965-11D4-9B18-009027A5CD4F}" = (no title provided)
{HKLM...CLSID} = "&Google"
\InProcServer32\(Default) = "c:\program files\google\googletoolbar1.dll" ["Google Inc."]

Extensions (Tools menu items, main toolbar menu buttons)

HKLM\Software\Microsoft\Internet Explorer\Extensions\
{E2E2DD38-D088-4134-82B7-F2BA38496583}\
"MenuText" = "@xpsp3res.dll,-20001"
"Exec" = "%windir%\Network Diagnostic\xpnetdiag.exe" [MS]

{FB5F1910-F110-11D2-BB9E-00C04F795683}\
"ButtonText" = "@C:\Program Files\Messenger\Msgslang.dll,-61144"
"MenuText" = "@C:\Program Files\Messenger\Msgslang.dll,-61144"
"Exec" = "C:\Program Files\Messenger\msmsgs.exe" [MS]


Running Services (Display Name, Service Name, Path {Service DLL}):
------------------------------------------------------------------

Nero BackItUp Scheduler 3, Nero BackItUp Scheduler 3, "C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe" ["Nero AG"]
NMIndexingService, NMIndexingService, ""C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe"" ["Nero AG"]
NVIDIA Display Driver Service, NVSvc, "C:\WINDOWS\system32\nvsvc32.exe" ["NVIDIA Corporation"]
WZCBDL Service, WZCBDLService, ""C:\Program Files\WZCBDL Service\WZCBDLS.exe"" ["D-Link"]


---------- (launch time: 2007-10-04 19:57:54)
+ This report excludes default entries except where indicated.
+ To see *everywhere* the script checks and *everything* it finds,
launch it from a command prompt or a shortcut with the -all parameter.
+ To search all directories of local fixed drives for DESKTOP.INI
DLL launch points, use the -supp parameter or answer "No" at the
first message box and "Yes" at the second message box.
---------- (total run time: 118 seconds, including 3 seconds for message boxes)




opis awari jest tu http://forum.instalki.pl/viewtopic.php?t=11601

[slake1]

Kosmetycznie:

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)

Fix w HJT.

[ryskowski-smigac]

kosmetyka nie pomogla co dalej ?

[Arexe]

Pokaz moze Screen z tym oknem...

[ryskowski-smigac]

masz link do strony http://forum.instalki.pl/viewtopic.php?t=11601

http://www.otofotki.pl/obrazki/ghij193698015k.jpg

[Bozz]

Podaj specyfikacje komputera i napisz kiedy się tak dzieje. Wygląda jak by mu RAM'u brakowało...

[ryskowski-smigac]

PoleWartość
Komputer
System operacyjnyMicrosoft Windows XP Professional
Dodatek service pack systemu operacyjnego
Dodatek Service Pack 2
DirectX4.09.00.0904 (DirectX 9.0c)
Nazwa komputeraGUMEK-5FE75948E
Nazwa użytkownikagumek

Płyta główna
Typ procesoraDualCore Intel Pentium D 820, 2800 MHz (14 x 200)
Nazwa płyty głównejNieznane
Mikroukład płyty głównejNieznane
Pamięć fizyczna1024 MB
Typ BIOS'uAMI (07/14/06)
Port komunikacyjnyPort komunikacyjny (COM1)
Port komunikacyjnyPort drukarki ECP (LPT1)

Ekran
Karta wideoNVIDIA GeForce 7600 GS (256 MB)
MonitorBenQ FP71G [17" LCD] (16071159)

Multimedia
Karta dźwiękowaVIA AC'97 Enhanced Audio Controller

Magazyn
Kontroler IDEVIA Bus Master IDE Controller - 0571
Kontroler IDEVIA Serial ATA Controller - 3149
Napęd dyskietekStacja dyskietek
Dysk fizycznyMaxtor 6V160E0 (149 GB, IDE)
Dysk fizycznyGeneric USB SD Reader USB Device
Dysk fizycznyGeneric USB MS Reader USB Device
Dysk fizycznyGeneric USB SM Reader USB Device
Dysk fizycznyGeneric USB CF Reader USB Device
Napęd dysków optycznychHL-DT-ST DVDRAM GSA-H10N
Status dysków SMARTOK

Partycje
C: (NTFS)39997 MB (26845 MB wolne)
D: (NTFS)39997 MB (38195 MB wolne)
E: (NTFS)39997 MB (1287 MB wolne)
F: (NTFS)32624 MB (10686 MB wolne)
Rozmiar całkowity149.0 GB (75.2 GB wolne)

Urządzenia wejściowe
KlawiaturaStandardowa klawiatura 101/102 klawisze lub Microsoft Natural Keyboard PS/2
MyszMysz zgodna z HID

Sieć
Karta sieciowaD-Link Air DWL-510 Wireless PCI Adapter (192.168.0.21)

Urządzenia zewnętrzne
DrukarkaMicrosoft XPS Document Writer
Kontroler USB1VIA VT83C572 PCI-USB Controller
Kontroler USB1VIA VT83C572 PCI-USB Controller
Kontroler USB1VIA VT83C572 PCI-USB Controller
Kontroler USB1VIA VT83C572 PCI-USB Controller
Kontroler USB2VIA USB 2.0 Enhanced Host Controller
Urządzenie USBMasowe urządzenie magazynujące USB
Urządzenie USBUrządzenie USB interfejsu HID




jeszcze cos?

[buzu]

Poodhaczaj trochę progsów w autostarcie Start>>uruchom >>msconfig
zakładka uruchamianie.Usuń zaznaczenia przy programach zbytecznych na starcie systemu.
Sprawdź w podglądzie zdarzeń,która aplikacja powoduje błędy
Start>>uruchom>>Eventvwr.msc Oczywiście usługa Dziennik zdarzeń musi być włączona i uruchomiona.