StartupList report, 2006-08-27, 13:55:18 StartupList version: 1.52 Started from : E:\Documents and Settings\leonmultiwitamina\Pulpit\StartupList.EXE Detected: Windows XP (WinNT 5.01.2600) Detected: Internet Explorer v6.00 (6.00.2600.0000) * Using default options ================================================== Running processes: E:\WINDOWS\System32\smss.exe E:\WINDOWS\system32\winlogon.exe E:\WINDOWS\system32\services.exe E:\WINDOWS\system32\lsass.exe E:\WINDOWS\system32\svchost.exe E:\WINDOWS\System32\svchost.exe E:\Program Files\TGTSoft\StyleXP\StyleXPService.exe E:\WINDOWS\system32\spoolsv.exe E:\Program Files\AntiVir PersonalEdition Classic\sched.exe E:\Program Files\AntiVir PersonalEdition Classic\avguard.exe E:\WINDOWS\System32\cisvc.exe E:\WINDOWS\System32\nvsvc32.exe E:\WINDOWS\Explorer.EXE E:\Program Files\Java\jre1.5.0_06\bin\jusched.exe E:\WINDOWS\System32\RUNDLL32.EXE E:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe E:\WINDOWS\SOUNDMAN.EXE E:\Program Files\PowerISO\PWRISOVM.EXE E:\Program Files\Tlen.pl\tlen.exe E:\Program Files\Konnekt\konnekt.exe E:\Program Files\Kalendarz XP\Kalendarz.exe E:\Program Files\Opera\Opera.exe E:\PROGRA~1\IZArc\IZArc.exe E:\WINDOWS\System32\notepad.exe E:\Documents and Settings\leonmultiwitamina\Pulpit\StartupList.exe -------------------------------------------------- Listing of startup folders: Shell folders Common Startup: [E:\Documents and Settings\All Users\Menu Start\Programy\Autostart] Kalendarz XP.lnk = E:\Program Files\Kalendarz XP\Kalendarz.exe -------------------------------------------------- Checking Windows NT UserInit: [HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] UserInit = E:\WINDOWS\system32\userinit.exe, -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\Run SunJavaUpdateSched = E:\Program Files\Java\jre1.5.0_06\bin\jusched.exe NvCplDaemon = RUNDLL32.EXE E:\WINDOWS\System32\NvCpl.dll,NvStartup nwiz = nwiz.exe /install NvMediaCenter = RUNDLL32.EXE E:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit LogonStudio = "E:\Program Files\WinCustomize\LogonStudio\logonstudio.exe" /RANDOM BootSkin Startup Jobs = "E:\Program Files\Stardock\WinCustomize\BootSkin\BootSkin.exe" /StartupJobs BearShare = "E:\Program Files\BearShare\BearShare.exe" /pause avgnt = "E:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min CacheBoost = E:\Program Files\CacheBoost\trayicon.exe NeroFilterCheck = E:\WINDOWS\system32\NeroCheck.exe SoundMan = SOUNDMAN.EXE PWRISOVM.EXE = E:\Program Files\PowerISO\PWRISOVM.EXE -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\Run Komunikator = "E:\Program Files\Tlen.pl\tlen.exe" --confdir=home STYLEXP = E:\Program Files\TGTSoft\StyleXP\StyleXP.exe -Hide Konnekt = "E:\Program Files\Konnekt\konnekt.exe" /autostart -------------------------------------------------- Load/Run keys from E:\WINDOWS\WIN.INI: load=*INI section not found* run=*INI section not found* Load/Run keys from Registry: HKLM\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found* HKLM\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found* HKLM\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found* HKCU\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found* HKCU\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found* HKCU\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found* HKCU\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found* HKCU\..\Windows NT\CurrentVersion\Windows: load= HKCU\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\Windows: load=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\Windows: AppInit_DLLs=E:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL -------------------------------------------------- Shell & screensaver key from E:\WINDOWS\SYSTEM.INI: Shell=*INI section not found* SCRNSAVE.EXE=*INI section not found* drivers=*INI section not found* Shell & screensaver key from Registry: Shell=Explorer.exe SCRNSAVE.EXE=E:\WINDOWS\RESOUR~1\SCREEN~1\SKYROC~1.SCR drivers=*Registry value not found* Policies Shell key: HKCU\..\Policies: Shell=*Registry key not found* HKLM\..\Policies: Shell=*Registry value not found* -------------------------------------------------- Enumerating Browser Helper Objects: (no name) - E:\Program Files\Java\jre1.5.0_06\bin\ssv.dll - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} TGTSoft Explorer Toolbar Changer - E:\Program Files\TGTSoft\StyleXP\TGT_BHO.dll - {C333CF63-767F-4831-94AC-E683D962C63C} -------------------------------------------------- Enumerating Download Program Files: [GameDesire Roulette] InProcServer32 = E:\WINDOWS\Downloaded Program Files\Roulette.dll CODEBASE = http://67.15.101.3/g_bin/pl/roulette_2_0_0_21.cab [{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}] CODEBASE = http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei/SmileyCentralFWBInitialSetup1.0.0.15.cab [CoGSManager Class] InProcServer32 = E:\WINDOWS\Downloaded Program Files\GSManager.dll CODEBASE = http://gamingzone.ubisoft.com/dev/packages/GSManager.cab [GameDesire Darts Games] InProcServer32 = E:\WINDOWS\Downloaded Program Files\darts.dll CODEBASE = http://67.15.101.3/g_bin/pl/darts_2_0_0_35.cab [Shockwave Flash Object] InProcServer32 = E:\WINDOWS\System32\Macromed\Flash\Flash8b.ocx CODEBASE = http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab [GameDesire Snooker] InProcServer32 = E:\WINDOWS\Downloaded Program Files\Snooker.dll CODEBASE = http://67.15.101.3/g_bin/pl/snooker_2_0_0_28.cab [IWinAmpActiveX Class] InProcServer32 = E:\PROGRA~1\COMMON~1\Nullsoft\ActiveX\2.4\AmpX.dll CODEBASE = http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab -------------------------------------------------- Enumerating ShellServiceObjectDelayLoad items: PostBootReminder: E:\WINDOWS\system32\SHELL32.dll CDBurn: E:\WINDOWS\system32\SHELL32.dll WebCheck: E:\WINDOWS\System32\webcheck.dll SysTray: E:\WINDOWS\System32\stobject.dll -------------------------------------------------- End of report, 7 198 bytes Report generated in 0,031 seconds Command line options: /verbose - to add additional info on each section /complete - to include empty sections and unsuspicious data /full - to include several rarely-important sections /force9x - to include Win9x-only startups even if running on WinNT /forcent - to include WinNT-only startups even if running on Win9x /forceall - to include all Win9x and WinNT startups, regardless of platform /history - to list version history only