Dziwne zachowanie windowsa XP

dzl · 1 Lipca 2012

Od dwuch ni mój system na starym kompie dziwnie się zachowuję, a wygląda to następująco: po kilku godzinach następuje chwilowe przycinanie kursora myszy po czym uruchomienie jakiejkolwiek aplikacj w tym menadżera użądzeń jest niemożliwe. Czasami także ikony stają się przezroczyste, lub też w me nu start obok ikon nie ma podpisów. Skanowałem system programem Malwarebtes Ant-Malware, a tekże Avast, oba nic nie wykryły. Memtest nie wykazał błędów.

Athlon XP 2600+

1,5 GB ram pc3200 ddr400

Zotac nvidia 7300gt ddr2

Kolobos · 1 Lipca 2012

Daj log z OTL lub lepiej sam wylaczaj programy po jednym i pracuj sprawdzajac czy problem nadal wystepuje az trafisz, ktory program pwoduje problem.

dzl · 2 Lipca 2012

Okazało się, że problem jednak był natury sprzętowej. Wiatraczek na karcie się ułamał i karta graficzna się piekielnie grzała(70C w idle 85 w stresie). Znalazłem dwa wypukłe kondensatory, które od razu wymieniłem. Pozostaje problem chłodzenia karty. Czy na tą Dołączona grafika grafikę da się wmontować wentylator 80mm, lub proszę o polecenie chłodzenia do 30zł.

Kolobos · 2 Lipca 2012

Co do chlodzenia to napisz w stosownym dziale, a nie tutaj.

bender83 · 2 Lipca 2012

Przypnij jakiś wentylator 80mm na opaski i po sprawie.

dzl · 2 Lipca 2012

Ok, przyczepiłem wentylator 80mm i jak dotąd jest dobrze. Temperatura w idle ok 60C( bo w domu jest gorącą) w stresie do 68 przy max obciążenu(specjalnie sprawdzałem w crysisie). Temat można zamknąć. Tak czy inaczej dzięki za chęci. :)

EDIT: Jednak problem powrócił zaraz zapodam log z OTL.

Edytowane 2 Lipca 2012 przez dzl

dzl · 2 Lipca 2012

Log z OTL

OTL logfile created on: 2012-07-02 16:54:23 - Run 1

OTL by OldTimer - Version 3.2.53.0 Folder = C:Documents and SettingsMateuszPulpitProgramy

Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1.50 Gb Total Physical Memory | 1.10 Gb Available Physical Memory | 73.50% Memory free

5.48 Gb Paging File | 5.13 Gb Available in Paging File | 93.57% Paging File free

Paging file location(s): C:pagefile.sys 4096 4096 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:WINDOWS | %ProgramFiles% = C:Program Files

Drive C: | 64.45 Gb Total Space | 47.50 Gb Free Space | 73.70% Space Free | Partition Type: NTFS

Drive D: | 300.00 Gb Total Space | 242.41 Gb Free Space | 80.80% Space Free | Partition Type: NTFS

Drive E: | 250.10 Gb Total Space | 101.58 Gb Free Space | 40.62% Space Free | Partition Type: NTFS

Drive F: | 316.96 Gb Total Space | 139.18 Gb Free Space | 43.91% Space Free | Partition Type: NTFS

Computer Name: WELCOMETOHELL66 | User Name: Mateusz | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012-07-01 15:03:06 | 000,596,992 | ---- | M] (OldTimer Tools) -- C:Documents and SettingsMateuszPulpitProgramyOTL.exe

PRC - [2012-06-28 14:51:53 | 000,044,808 | ---- | M] (AVAST Software) -- C:Program FilesAVAST SoftwareAvastAvastSvc.exe

PRC - [2012-06-28 14:51:51 | 004,273,976 | ---- | M] (AVAST Software) -- C:Program FilesAVAST SoftwareAvastAvastUI.exe

PRC - [2012-03-11 23:13:21 | 001,983,232 | ---- | M] (COMODO) -- C:Program FilesCOMODOCOMODO Internet Securitycmdagent.exe

PRC - [2012-03-11 23:13:00 | 006,749,512 | ---- | M] (COMODO) -- C:Program FilesCOMODOCOMODO Internet Securitycfp.exe

PRC - [2010-07-22 14:18:32 | 002,636,800 | ---- | M] () -- C:Program FilesAnti-Vibrate Oscar EditorOscarEditor.exe

PRC - [2009-06-27 17:16:26 | 004,063,232 | ---- | M] (Microsoft Corporation) -- C:WINDOWSexplorer.exe

========== Modules (No Company Name) ==========

MOD - [2012-07-02 12:53:08 | 001,779,712 | ---- | M] () -- C:Program FilesAVAST SoftwareAvastdefs12070201algo.dll

MOD - [2010-07-22 14:18:32 | 002,636,800 | ---- | M] () -- C:Program FilesAnti-Vibrate Oscar EditorOscarEditor.exe

MOD - [2010-06-01 11:41:38 | 000,098,816 | ---- | M] () -- C:Program FilesAnti-Vibrate Oscar EditordllDLL_MouseDeviceManager.dll

MOD - [2010-05-07 23:05:57 | 000,042,496 | ---- | M] () -- C:Program FilesAnti-Vibrate Oscar EditorDataX7HFormsOSD_TextOSD_Text.dll

MOD - [2010-04-03 11:37:14 | 000,127,488 | ---- | M] () -- C:Program FilesAnti-Vibrate Oscar EditordllDLL_Wheel4D.dll

MOD - [2010-04-03 11:37:09 | 000,094,208 | ---- | M] () -- C:Program FilesAnti-Vibrate Oscar EditordllDLL_ZoomControl.dll

MOD - [2010-04-03 11:37:07 | 000,062,976 | ---- | M] () -- C:Program FilesAnti-Vibrate Oscar EditordllDLL_ScrollbarControl.dll

MOD - [2010-04-03 11:37:02 | 000,069,632 | ---- | M] () -- C:Program FilesAnti-Vibrate Oscar EditordllDLL_AnalyzeGesturesInRight.dll

MOD - [2010-04-03 11:36:58 | 000,069,632 | ---- | M] () -- C:Program FilesAnti-Vibrate Oscar EditordllDLL_AnalyzeGesturesInOne.dll

========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- C:WINDOWSsystem32wuauserv.dll -- (wuauserv)

SRV - File not found [Auto | Stopped] -- %SYSTEMROOT%system32wscsvc.dll -- (wscsvc)

SRV - File not found [On_Demand | Stopped] -- C:WINDOWSsystem32spoolsv.exe -- (Spooler)

SRV - File not found [Disabled | Stopped] -- C:Program FilesGoogleUpdateGoogleUpdate.exe /medsvc -- (gupdatem) Usługa Google Update (gupdatem)

SRV - File not found [Disabled | Stopped] -- C:Program FilesGoogleUpdateGoogleUpdate.exe /svc -- (gupdate) Usługa Google Update (gupdate)

SRV - File not found [Disabled | Stopped] -- C:Program FilesFuturemarkFuturemark SystemInfoFMSISvc.exe -- (Futuremark SystemInfo Service)

SRV - File not found [Auto | Stopped] -- %SystemRoot%System32ersvc.dll -- (ERSvc)

SRV - File not found [Disabled | Stopped] -- C:WINDOWSMicrosoft.NETFrameworkv4.0.30319mscorsvw.exe -- (clr_optimization_v4.0.30319_32)

SRV - File not found [Disabled | Stopped] -- c:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe -- (clr_optimization_v2.0.50727_32)

SRV - File not found [On_Demand | Stopped] -- C:WINDOWSsystem32cisvc.exe -- (CiSvc)

SRV - File not found [Disabled | Stopped] -- C:WINDOWSSystem32alg.exe -- (ALG)

SRV - [2012-07-02 09:31:15 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:WINDOWSsystem32MacromedFlashFlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)

SRV - [2012-07-01 18:04:32 | 000,661,600 | ---- | M] (Wellbia.com Co., Ltd.) [On_Demand | Stopped] -- C:WINDOWSsystem32xsherlock.xem -- (xsherlock)

SRV - [2012-06-28 14:51:53 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:Program FilesAVAST SoftwareAvastAvastSvc.exe -- (avast! Antivirus)

SRV - [2012-06-15 00:17:46 | 000,113,120 | ---- | M] (Mozilla Foundation) [Disabled | Stopped] -- C:Program FilesMozilla Maintenance Servicemaintenanceservice.exe -- (MozillaMaintenance)

SRV - [2012-05-15 12:40:09 | 000,161,736 | ---- | M] (Oracle Corporation) [Disabled | Stopped] -- C:Program FilesJavajre7binjqs.exe -- (JavaQuickStarterService)

SRV - [2012-04-21 15:17:58 | 000,131,912 | ---- | M] (Desura Pty Ltd) [Disabled | Stopped] -- C:Program FilesCommon FilesDesuradesura_service.exe -- (Desura Install Service)

SRV - [2012-03-11 23:13:21 | 001,983,232 | ---- | M] (COMODO) [Auto | Running] -- C:Program FilesCOMODOCOMODO Internet Securitycmdagent.exe -- (cmdAgent)

SRV - [2011-10-30 19:38:45 | 000,604,488 | ---- | M] (TuneUp Software) [Disabled | Stopped] -- C:WINDOWSsystem32TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc)

SRV - [2011-10-30 19:38:34 | 000,361,288 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:WINDOWSsystem32TuneUpDefragService.exe -- (TuneUp.Defrag)

SRV - [2011-05-03 13:18:00 | 004,137,464 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:WINDOWSsystem32GameMon.des -- (npggsvc)

SRV - [2011-03-16 11:42:06 | 000,407,336 | ---- | M] (Valve Corporation) [Disabled | Stopped] -- C:Program FilesCommon FilesSteamSteamService.exe -- (Steam Client Service)

SRV - [2009-07-15 12:48:20 | 000,029,000 | ---- | M] (TuneUp Software) [Auto | Running] -- C:WINDOWSsystem32uxtuneup.dll -- (UxTuneUp)

SRV - [2007-05-28 18:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Disabled | Stopped] -- C:Program FilesAlcohol SoftAlcohol 120StarWindStarWindServiceAE.exe -- (StarWindServiceAE)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:WINDOWSxhunter1.sys -- (xhunter1)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)

DRV - File not found [Kernel | On_Demand | Stopped] -- C:WINDOWSvtany.sys -- (vtany)

DRV - File not found [Kernel | On_Demand | Stopped] -- system32DRIVERSlgusbmodem.sys -- (USBModem)

DRV - File not found [Kernel | On_Demand | Stopped] -- system32DRIVERSlgusbdiag.sys -- (UsbDiag)

DRV - File not found [Kernel | On_Demand | Stopped] -- system32DRIVERSlgusbbus.sys -- (usbbus)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)

DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)

DRV - File not found [Kernel | On_Demand | Stopped] -- system32DRIVERSpccsmcfd.sys -- (pccsmcfd)

DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)

DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)

DRV - File not found [Kernel | On_Demand | Stopped] -- system32DRIVERSGenericMount.sys -- (GenericMount)

DRV - File not found [Kernel | On_Demand | Stopped] -- C:WINDOWSsystem32driversEagleXNt.sys -- (EagleXNt)

DRV - File not found [Kernel | System | Stopped] -- -- (Changer)

DRV - File not found [Kernel | On_Demand | Unknown] -- -- (ayoe9igo)

DRV - File not found [Kernel | On_Demand | Stopped] -- system32DRIVERSlgandmodem.sys -- (ANDModem)

DRV - File not found [Kernel | On_Demand | Stopped] -- system32DRIVERSlgandgps.sys -- (AndGps)

DRV - File not found [Kernel | On_Demand | Stopped] -- system32DRIVERSlganddiag.sys -- (AndDiag)

DRV - File not found [Kernel | On_Demand | Stopped] -- system32DRIVERSlgandbus.sys -- (Andbus)

DRV - File not found [Kernel | On_Demand | Stopped] -- system32DRIVERSAmdLLD.sys -- (AmdLLD)

DRV - [2012-06-28 14:52:42 | 000,353,688 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:WINDOWSSystem32driversaswSP.sys -- (aswSP)

DRV - [2012-06-28 14:52:42 | 000,054,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:WINDOWSSystem32driversaswTdi.sys -- (aswTdi)

DRV - [2012-06-28 14:52:37 | 000,721,000 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:WINDOWSSystem32driversaswSnx.sys -- (aswSnx)

DRV - [2012-06-28 14:52:37 | 000,097,352 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:WINDOWSSystem32driversaswmon2.sys -- (aswMon2)

DRV - [2012-06-28 14:52:37 | 000,035,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:WINDOWSSystem32driversaswRdr.sys -- (AswRdr)

DRV - [2012-06-28 14:52:36 | 000,025,256 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:WINDOWSSystem32driversaavmker4.sys -- (Aavmker4)

DRV - [2012-06-28 14:52:36 | 000,021,256 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:WINDOWSSystem32driversaswFsBlk.sys -- (aswFsBlk)

DRV - [2012-03-11 23:13:46 | 000,097,760 | ---- | M] (COMODO) [Kernel | Boot | Running] -- C:WINDOWSsystem32driversinspect.sys -- (Inspect)

DRV - [2012-03-11 23:13:45 | 000,031,704 | ---- | M] (COMODO) [Kernel | System | Running] -- C:WINDOWSsystem32driverscmdhlp.sys -- (cmdHlp)

DRV - [2012-03-11 23:13:44 | 000,494,968 | ---- | M] (COMODO) [File_System | System | Running] -- C:WINDOWSsystem32driverscmdGuard.sys -- (cmdGuard)

DRV - [2012-01-23 17:52:28 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:WINDOWSsystem32driverssptd.sys -- (sptd)

DRV - [2011-12-02 17:14:37 | 000,083,872 | ---- | M] () [Kernel | Auto | Running] -- C:WINDOWSsystem32driversatksgt.sys -- (atksgt)

DRV - [2011-12-02 17:14:37 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:WINDOWSsystem32driverslirsgt.sys -- (lirsgt)

DRV - [2011-10-30 20:21:43 | 000,169,472 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:WINDOWSsystem32driverssnapman.sys -- (snapman)

DRV - [2011-10-13 14:06:14 | 000,441,608 | ---- | M] (Paragon) [Kernel | System | Stopped] -- C:WINDOWSsystem32driversUim_IM.sys -- (Uim_IM)

DRV - [2011-10-13 14:06:14 | 000,277,576 | ---- | M] (Paragon) [Kernel | System | Stopped] -- C:WINDOWSsystem32driversUim_Vim.sys -- (Uim_Vim)

DRV - [2011-10-13 14:06:14 | 000,045,240 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | System | Stopped] -- C:WINDOWSsystem32driversUimBus.sys -- (UimBus)

DRV - [2009-12-30 19:56:46 | 000,088,960 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:WINDOWSsystem32drivershmumdm.sys -- (MobileAdapter)

DRV - [2009-09-29 08:11:22 | 000,012,160 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:WINDOWSsystem32driverslgbtport.sys -- (LgBttPort)

DRV - [2009-09-29 08:11:20 | 000,012,928 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:WINDOWSsystem32driverslgvmodem.sys -- (LGVMODEM)

DRV - [2009-09-29 08:11:20 | 000,010,496 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:WINDOWSsystem32driverslgbtbus.sys -- (lgbusenum)

DRV - [2009-08-22 20:25:00 | 000,009,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:Program FilesRivaTuner v2.24 MSI Master Overclocking Arena 2009 editionRivaTuner32.sys -- (RivaTuner32)

DRV - [2009-07-05 02:19:05 | 000,062,208 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:WINDOWSSystem32driverssi3112.sys -- (Si3112)

DRV - [2009-07-04 23:08:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:WINDOWSsystem32driversRTL8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C)

DRV - [2009-07-04 23:08:24 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:WINDOWSsystem32driversgameenum.sys -- (gameenum)

DRV - [2008-07-24 00:29:16 | 000,047,744 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:WINDOWSsystem32driversvserial.sys -- (vserial)

DRV - [2008-07-24 00:29:16 | 000,015,264 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:WINDOWSsystem32driversvsb.sys -- (vsbus)

DRV - [2006-06-16 20:56:38 | 000,083,968 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:WINDOWSsystem32driversRtnicxp.sys -- (RTL8023xp)

DRV - [2004-08-09 13:33:26 | 000,114,016 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:WINDOWSsystem32driversprohlp02.sys -- (prohlp02)

DRV - [2004-08-09 13:29:28 | 000,053,920 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:WINDOWSsystem32driversprodrv06.sys -- (prodrv06)

DRV - [2004-07-19 16:49:54 | 000,007,040 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:WINDOWSsystem32driversprosync1.sys -- (prosync1)

DRV - [2004-06-03 10:40:46 | 000,079,360 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:WINDOWSsystem32driversnvatabus.sys -- (nvatabus)

DRV - [2004-04-02 15:40:00 | 000,021,760 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:WINDOWSsystem32driversnv_agp.SYS -- (nv_agp)

DRV - [2003-12-01 17:20:52 | 000,004,832 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:WINDOWSsystem32driverssfhlp01.sys -- (sfhlp01)

DRV - [2001-11-28 03:58:18 | 000,001,950 | ---- | M] () [Kernel | System | Unknown] -- C:WINDOWSsystem32driversREGISTER.SYS -- (project)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLMSOFTWAREMicrosoftInternet ExplorerMain,Default_Page_URL = http://pl.v9.com/?utm_source=b&utm_medium=ism

IE - HKLMSOFTWAREMicrosoftInternet ExplorerMain,Start Page = http://pl.v9.com/?utm_source=b&utm_medium=ism

IE - HKLM..SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKLM..SearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}

IE - HKCUSOFTWAREMicrosoftInternet ExplorerMain,Default_Page_URL = http://pl.v9.com/?utm_source=b&utm_medium=ism

IE - HKCUSOFTWAREMicrosoftInternet ExplorerMain,Start Page = http://sunonline.webzen.com/Default.aspx

IE - HKCU..SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKCU..SearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC

IE - HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.google.pl/"

FF - prefs.js..network.proxy.backup.ftp: "212.191.7.144"

FF - prefs.js..network.proxy.backup.ftp_port: 8080

FF - prefs.js..network.proxy.backup.socks: "212.191.7.144"

FF - prefs.js..network.proxy.backup.socks_port: 8080

FF - prefs.js..network.proxy.backup.ssl: "212.191.7.144"

FF - prefs.js..network.proxy.backup.ssl_port: 8080

FF - prefs.js..network.proxy.ftp: "217.98.20.195"

FF - prefs.js..network.proxy.ftp_port: 8080

FF - prefs.js..network.proxy.http: "217.98.20.195"

FF - prefs.js..network.proxy.http_port: 8080

FF - prefs.js..network.proxy.share_proxy_settings: true

FF - prefs.js..network.proxy.socks: "217.98.20.195"

FF - prefs.js..network.proxy.socks_port: 8080

FF - prefs.js..network.proxy.ssl: "217.98.20.195"

FF - prefs.js..network.proxy.ssl_port: 8080

FF - prefs.js..network.proxy.type: 0

FF - user.js..browser.search.openintab: false

FF - HKLMSoftwareMozillaPlugins@adobe.com/FlashPlayer: C:WINDOWSsystem32MacromedFlashNPSWF32_11_3_300_262.dll ()

FF - HKLMSoftwareMozillaPlugins@adobe.com/ShockwavePlayer: C:WINDOWSsystem32AdobeDirectornp32dsw.dll (Adobe Systems, Inc.)

FF - HKLMSoftwareMozillaPlugins@java.com/DTPlugin,version=10.4.0: C:WINDOWSsystem32npDeployJava1.dll (Oracle Corporation)

FF - HKLMSoftwareMozillaPlugins@java.com/JavaPlugin,version=10.4.0: C:Program FilesJavajre7binplugin2npjp2.dll (Oracle Corporation)

FF - HKLMSoftwareMozillaPlugins@Microsoft.com/NpCtrl,version=1.0: C:Program FilesMicrosoft Silverlight4.0.60831.0npctrl.dll ( Microsoft Corporation)

FF - HKLMSoftwareMozillaPlugins@microsoft.com/OfficeAuthz,version=14.0: C:PROGRA~1Microsoft OfficeOffice14NPAUTHZ.DLL (Microsoft Corporation)

FF - HKLMSoftwareMozillaPlugins@microsoft.com/SharePoint,version=14.0: C:PROGRA~1Microsoft OfficeOffice14NPSPWRAP.DLL (Microsoft Corporation)

FF - HKLMSoftwareMozillaPlugins@real.com/nppl3260;version=6.0.12.69: C:Program FilesReal Alternativebrowserpluginsnppl3260.dll (RealNetworks, Inc.)

FF - HKLMSoftwareMozillaPlugins@real.com/nprpjplug;version=6.0.12.69: C:Program FilesReal Alternativebrowserpluginsnprpjplug.dll (RealNetworks, Inc.)

FF - HKLMSoftwareMozillaPlugins@real.com/nsJSRealPlayerPlugin;version=: File not found

FF - HKLMSoftwareMozillaPlugins@tools.google.com/Google Update;version=3: C:Program FilesGoogleUpdate1.3.21.99npGoogleUpdate3.dll File not found

FF - HKLMSoftwareMozillaPlugins@tools.google.com/Google Update;version=9: C:Program FilesGoogleUpdate1.3.21.99npGoogleUpdate3.dll File not found

FF - HKLMSoftwareMozillaPlugins@Webzen.com/NPBrowserExt: C:Program FilesWEBZENBrowserExtensionNPWZCmnCtrl.dll (WEBZEN)

FF - HKCUSoftwareMozillaPlugins@eximion.com/KalydoPlayer: C:Documents and SettingsMateuszDane aplikacjiKalydoKalydoPlayerbin1npkalydo.dll File not found

FF - HKEY_LOCAL_MACHINEsoftwaremozillaFirefoxextensionswrc@avast.com: C:Program FilesAVAST SoftwareAvastWebRepFF [2012-06-29 20:17:50 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINEsoftwaremozillaMozilla Firefox 13.0.1extensionsComponents: C:Program FilesMozilla Firefoxcomponents [2012-06-30 13:37:22 | 000,000,000 | ---D | M]

[2012-07-01 10:40:36 | 000,000,000 | ---D | M] (No name found) -- C:Documents and SettingsMateuszDane aplikacjiMozillaExtensions

[2012-07-01 12:17:29 | 000,000,000 | ---D | M] (No name found) -- C:Documents and SettingsMateuszDane aplikacjiMozillaFirefoxProfilesmaft7plq.defaultextensions

[2012-07-01 10:41:02 | 000,000,000 | ---D | M] (FT DeepDark) -- C:Documents and SettingsMateuszDane aplikacjiMozillaFirefoxProfilesmaft7plq.defaultextensions{77d2ed30-4cd2-11e0-b8af-0800200c9a66}

[2012-07-01 10:41:02 | 000,000,000 | ---D | M] (DownloadHelper) -- C:Documents and SettingsMateuszDane aplikacjiMozillaFirefoxProfilesmaft7plq.defaultextensions{b9db16a4-6edc-47ec-a1f4-b86292ed211d}

[2012-06-30 13:37:22 | 000,000,000 | ---D | M] (No name found) -- C:Program FilesMozilla Firefoxextensions

[2012-06-08 15:09:36 | 000,052,174 | ---- | M] () (No name found) -- C:DOCUMENTS AND SETTINGSMATEUSZDANE APLIKACJIMOZILLAFIREFOXPROFILESMAFT7PLQ.DEFAULTEXTENSIONSFABTAB@CAPTAINCAVEMAN.NL.XPI

[2012-06-15 00:19:07 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:Program Filesmozilla firefoxcomponentsbrowsercomps.dll

[2012-06-15 01:13:23 | 000,002,767 | ---- | M] () -- C:Program Filesmozilla firefoxsearchpluginsallegro-pl.xml

[2012-06-15 01:13:23 | 000,001,406 | ---- | M] () -- C:Program Filesmozilla firefoxsearchpluginsfbc-pl.xml

[2012-06-15 01:13:23 | 000,000,917 | ---- | M] () -- C:Program Filesmozilla firefoxsearchpluginsmerlin-pl.xml

[2012-06-15 01:13:23 | 000,000,858 | ---- | M] () -- C:Program Filesmozilla firefoxsearchpluginspwn-pl.xml

[2012-06-15 01:13:23 | 000,001,183 | ---- | M] () -- C:Program Filesmozilla firefoxsearchpluginswikipedia-pl.xml

[2012-06-15 01:13:23 | 000,001,683 | ---- | M] () -- C:Program Filesmozilla firefoxsearchpluginswp-pl.xml

O1 HOSTS File: ([2012-06-26 11:30:12 | 000,000,933 | ---- | M]) - C:WINDOWSsystem32driversetchosts

O1 - Hosts: 127.0.0.1 localhost

O1 - Hosts: 127.0.0.1 serial.alcohol-soft.com

O1 - Hosts: 127.0.0.1 www.alcohol-soft.com

O1 - Hosts: 127.0.0.1 images.alcohol-soft.com

O1 - Hosts: 127.0.0.1 trial.alcohol-soft.com

O1 - Hosts: 127.0.0.1 alcohol-soft.com

O1 - Hosts: 0.0.0.0 crl.verisign.com

O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll (Adobe Systems Incorporated)

O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:Program FilesJavajre7binssv.dll (Oracle Corporation)

O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:Program FilesAVAST SoftwareAvastaswWebRepIE.dll (AVAST Software)

O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:Program FilesMicrosoft OfficeOffice14URLREDIR.DLL (Microsoft Corporation)

O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:Program FilesJavajre7binjp2ssv.dll (Oracle Corporation)

O2 - BHO: (no name) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - No CLSID value found.

O3 - HKLM..Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:Program FilesAVAST SoftwareAvastaswWebRepIE.dll (AVAST Software)

O4 - HKLM..Run: [avast] C:Program FilesAVAST SoftwareAvastavastUI.exe (AVAST Software)

O4 - HKLM..Run: [COMODO Internet Security] C:Program FilesCOMODOCOMODO Internet Securitycfp.exe (COMODO)

O4 - HKLM..Run: [NvCplDaemon] C:WINDOWSSystem32NvCpl.dll (NVIDIA Corporation)

O4 - HKLM..Run: [RivaTunerStartupDaemon] C:Program FilesRivaTuner v2.24 MSI Master Overclocking Arena 2009 editionRivaTuner.exe ()

O4 - HKCU..Run: [OscarEditor] C:Program FilesAnti-Vibrate Oscar EditorOscarEditor.exe ()

O4 - Startup: C:Documents and SettingsMateuszMenu StartProgramyAutostartETERNA.lnk = File not found

O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDesktopCleanupWizard = 1

O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: HonorAutoRunSetting = 1

O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDriveAutoRun = 67108863

O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDriveTypeAutoRun = 323

O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesSystem: NoInternetOpenWith = 1

O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesSystem: DisableStatusMessages = 1

O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesSystem: VerboseStatus = 0

O7 - HKCUSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDriveTypeAutoRun = 323

O7 - HKCUSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoSMMyPictures = 1

O7 - HKCUSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoSMConfigurePrograms = 1

O7 - HKCUSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoSMHelp = 0

O7 - HKCUSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoLowDiskSpaceChecks = 1

O7 - HKCUSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoResolveTrack = 1

O7 - HKCUSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: LinkResolveIgnoreLinkInfo = 1

O7 - HKCUSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoResolveSearch = 1

O7 - HKCUSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDriveAutoRun = 67108863

O8 - Extra context menu item: Se&nd to OneNote - C:Program FilesMicrosoft OfficeOffice14ONBttnIE.dll (Microsoft Corporation)

O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:Program FilesMicrosoft OfficeOffice14ONBttnIE.dll (Microsoft Corporation)

O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:Program FilesMicrosoft OfficeOffice14ONBttnIE.dll (Microsoft Corporation)

O9 - Extra Button: &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:Program FilesMicrosoft OfficeOffice14ONBttnIELinkedNotes.dll (Microsoft Corporation)

O9 - Extra 'Tools' menuitem : &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:Program FilesMicrosoft OfficeOffice14ONBttnIELinkedNotes.dll (Microsoft Corporation)

O13 - gopher Prefix: missing

O17 - HKLMSystemCCSServicesTcpipParametersInterfaces{B2C8C128-573B-4A6F-B54E-7B85E4C706DE}: NameServer = 194.204.159.1 194.204.152.34

O20 - AppInit_DLLs: (C:WINDOWSsystem32wbsys.dll) - C:WINDOWSsystem32wbsys.dll (Stardock.Net, Inc)

O20 - AppInit_DLLs: (C:WINDOWSsystem32guard32.dll) - C:WINDOWSsystem32guard32.dll (COMODO)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:WINDOWSexplorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UserInit - (C:WINDOWSsystem32userinit.exe) - C:WINDOWSsystem32userinit.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UIHost - (C:Documents and SettingsAll UsersDane aplikacjiTuneUp SoftwareTuneUp UtilitiesWinStylertu_logonui.exe) - C:Documents and SettingsAll UsersDane aplikacjiTuneUp SoftwareTuneUp UtilitiesWinStylertu_logonui.exe (Microsoft Corporation)

O20 - WinlogonNotifyAtiExtEvent: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not found

O20 - WinlogonNotifyWBSrv: DllName - (C:Program FilesStardockObject DesktopWindowBlindswbsrv.dll) - File not found

O22 - SharedTaskScheduler: {1984D045-52CF-49cd-DB77-08F378FEA4DB} - ObjectDockShellExt - No CLSID value found.

O24 - Desktop Components:0 (Bieżąca strona główna) - About:Home

O24 - Desktop WallPaper: C:Documents and SettingsMateuszUstawienia lokalneDane aplikacjiMicrosoftWallpaper1.bmp

O24 - Desktop BackupWallPaper: C:Documents and SettingsMateuszUstawienia lokalneDane aplikacjiMicrosoftWallpaper1.bmp

O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2011-10-30 18:37:54 | 000,000,000 | ---- | M] () - C:AUTOEXEC.BAT -- [ NTFS ]

O33 - MountPoints2{ef1c13d8-0c8c-11e1-93c4-00138fdb5109}ShellAutoRuncommand - "" = G:InstallTomTomHOME.exe

O34 - HKLM BootExecute: (autocheck autochk *)

O35 - HKLM..comfile [open] -- "%1" %*

O35 - HKLM..exefile [open] -- "%1" %*

O37 - HKLM...com [@ = comfile] -- "%1" %*

O37 - HKLM...exe [@ = exefile] -- "%1" %*

O38 - SubSystemsWindows: (ServerDll=winsrv:UserServerDllInitialization,3)

O38 - SubSystemsWindows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2012-07-02 16:50:22 | 000,000,000 | -HSD | C] -- C:Documents and SettingsMateuszRecent

[2012-07-02 15:28:59 | 000,000,000 | ---D | C] -- C:Documents and SettingsAll UsersMenu StartProgramyGOM Player

[2012-07-01 18:04:32 | 000,661,600 | ---- | C] (Wellbia.com Co., Ltd.) -- C:WINDOWSSystem32xsherlock.xem

[2012-07-01 16:55:09 | 000,230,920 | ---- | C] (WEBZEN, INC.) -- C:WINDOWSSystem32EPWZCmnCtrl.dll

[2012-07-01 16:55:08 | 000,000,000 | ---D | C] -- C:Program FilesWEBZEN

[2012-07-01 16:54:58 | 000,000,000 | ---D | C] -- C:Documents and SettingsAll UsersDane aplikacjiWEBZEN

[2012-07-01 15:08:02 | 000,518,144 | ---- | C] (SteelWerX) -- C:WINDOWSSWREG.exe

[2012-07-01 15:08:02 | 000,406,528 | ---- | C] (SteelWerX) -- C:WINDOWSSWSC.exe

[2012-07-01 15:08:02 | 000,212,480 | ---- | C] (SteelWerX) -- C:WINDOWSSWXCACLS.exe

[2012-07-01 15:07:19 | 000,000,000 | ---D | C] -- C:WINDOWSerdnt

[2012-07-01 13:53:40 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszMoje dokumentyKONAMI

[2012-07-01 11:10:51 | 000,000,000 | ---D | C] -- C:WINDOWSSystem32AGEIA

[2012-07-01 11:10:50 | 000,000,000 | ---D | C] -- C:Program FilesAGEIA Technologies

[2012-07-01 10:40:33 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszDane aplikacjiMozilla

[2012-06-30 20:55:19 | 000,000,000 | ---D | C] -- C:Program FilesUbisoft

[2012-06-30 20:20:30 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszMoje dokumentyNBA LIVE 08

[2012-06-30 19:55:43 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszMoje dokumentyChillstream

[2012-06-30 19:11:19 | 000,000,000 | ---D | C] -- C:Documents and SettingsAll UsersDane aplikacjiWindows Genuine Advantage

[2012-06-30 18:39:56 | 001,112,288 | ---- | C] (Microsoft Corporation) -- C:WINDOWSSystem32WdfCoInstaller01007.dll

[2012-06-30 18:39:55 | 000,000,000 | ---D | C] -- C:Documents and SettingsAll UsersMenu StartProgramyMicrosoft Xbox 360 Accessories

[2012-06-30 18:39:54 | 000,000,000 | ---D | C] -- C:Program FilesMicrosoft Xbox 360 Accessories

[2012-06-30 13:37:24 | 000,000,000 | ---D | C] -- C:Program FilesMozilla Maintenance Service

[2012-06-30 13:37:19 | 000,000,000 | ---D | C] -- C:Program FilesMozilla Firefox

[2012-06-30 11:45:03 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszMoje dokumentyMount&Blade Warband Savegames

[2012-06-30 11:43:57 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszDane aplikacjiMount&Blade Warband

[2012-06-30 11:43:49 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszMoje dokumentyMount&Blade Warband

[2012-06-30 11:29:53 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszMoje dokumentyMount&Blade With Fire and Sword

[2012-06-30 11:29:53 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszDane aplikacjiMount&Blade With Fire and Sword

[2012-06-29 22:53:35 | 004,137,464 | ---- | C] (INCA Internet Co., Ltd.) -- C:WINDOWSSystem32GameMon.des

[2012-06-29 22:49:11 | 000,004,682 | ---- | C] (INCA Internet Co., Ltd.) -- C:WINDOWSSystem32npptNT2.sys

[2012-06-29 22:48:18 | 000,000,000 | ---D | C] -- C:Program FilesCommon FilesINCA Shared

[2012-06-29 19:18:49 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszMoje dokumentyTom Clancy's H.A.W.X

[2012-06-29 16:29:00 | 003,563,520 | ---- | C] (NVIDIA Corporation) -- C:WINDOWSSystem32physxcore.dll

[2012-06-29 16:29:00 | 000,057,856 | ---- | C] (NVIDIA Corporation) -- C:WINDOWSSystem32physxloader.dll

[2012-06-29 16:28:52 | 000,387,072 | ---- | C] (NVIDIA Corporation) -- C:WINDOWSSystem32physxcooking.dll

[2012-06-28 17:44:38 | 000,000,000 | ---D | C] -- C:WINDOWSPerformance

[2012-06-28 17:44:29 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszUstawienia lokalneDane aplikacjiMicrosoft Corporation

[2012-06-28 14:45:10 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszDane aplikacjiRovio

[2012-06-28 13:41:56 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszUstawienia lokalneDane aplikacjiDeployment

[2012-06-28 10:13:07 | 000,013,824 | ---- | C] (Loghain) -- C:Documents and SettingsMateuszMoje dokumentygiveme2entitlements_v2.exe

[2012-06-27 18:09:06 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszMoje dokumentyOpenLieroX

[2012-06-27 16:04:36 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:WINDOWSSystem32msconfig.exe

[2012-06-26 16:58:01 | 000,000,000 | ---D | C] -- C:WINDOWSSxsCaPendDel

[2012-06-26 09:03:02 | 000,000,000 | ---D | C] -- C:WINDOWSusgwmt

[2012-06-22 14:42:50 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszMoje dokumentyDragon age save editor

[2012-06-22 10:11:27 | 000,000,000 | ---D | C] -- C:Program FilesOrigin Games

[2012-06-22 10:11:25 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszUstawienia lokalneDane aplikacjiOrigin

[2012-06-22 10:03:11 | 000,000,000 | ---D | C] -- C:Program FilesOrigin

[2012-06-21 14:34:16 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszMenu StartProgramyRevo Uninstaller

[2012-06-19 10:50:19 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszDane aplikacjicom.bwsf.DragonAgeLegends

[2012-06-19 10:14:31 | 000,000,000 | ---D | C] -- C:Program FilesCommon FilesAdobe AIR

[2012-06-18 17:14:44 | 000,000,000 | ---D | C] -- C:Program FilesNVIDIA Corporation

[2012-06-18 17:09:37 | 014,757,888 | ---- | C] (NVIDIA Corporation) -- C:WINDOWSSystem32nvoglnt.dll

[2012-06-18 17:09:37 | 002,646,632 | ---- | C] (NVIDIA Corporation) -- C:WINDOWSSystem32nvcuvenc.dll

[2012-06-18 17:09:37 | 000,061,440 | ---- | C] (Khronos Group) -- C:WINDOWSSystem32OpenCL.dll

[2012-06-18 17:09:35 | 011,647,592 | ---- | C] (NVIDIA Corporation) -- C:WINDOWSSystem32nvcompiler.dll

[2012-06-18 17:09:35 | 006,432,128 | ---- | C] (NVIDIA Corporation) -- C:WINDOWSSystem32nv4_disp.dll

[2012-06-18 17:09:35 | 001,097,728 | ---- | C] (NVIDIA Corporation) -- C:WINDOWSSystem32nvapi.dll

[2012-06-18 17:09:35 | 000,227,944 | ---- | C] (NVIDIA Corporation) -- C:WINDOWSSystem32nvcodins.dll

[2012-06-18 17:09:35 | 000,227,944 | ---- | C] (NVIDIA Corporation) -- C:WINDOWSSystem32nvcod.dll

[2012-06-18 14:30:37 | 000,000,000 | ---D | C] -- C:Program FilesSystemRequirementsLab

[2012-06-17 12:54:04 | 000,000,000 | ---D | C] -- C:Documents and SettingsAll Usersdocuments

[2012-06-14 13:08:55 | 000,000,000 | ---D | C] -- C:Documents and SettingsAll UsersDokumentystalker-stcs

[2012-06-14 13:00:18 | 000,000,000 | ---D | C] -- C:Program FilesAnti-Vibrate Oscar Editor

[2012-06-13 15:32:24 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszMoje dokumentySquare Enix

[2012-06-13 15:32:11 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszUstawienia lokalneDane aplikacji119615131254924532

[2012-06-13 15:32:01 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszUstawienia lokalneDane aplikacji119611918619387124

[2012-06-13 11:08:14 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszMenu StartProgramyMultimedia Keyboard Driver

[2012-06-13 11:08:00 | 000,000,000 | ---D | C] -- C:Program FilesMultimedia Keyboard Driver

[2012-06-13 08:31:02 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszDane aplikacjiTropico 3

[2012-06-09 15:11:50 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszMoje dokumentyWBGames

[2012-06-09 13:18:30 | 000,000,000 | ---D | C] -- C:Program FilesLG Electronics

[2012-06-09 10:02:56 | 000,000,000 | ---D | C] -- C:Program FilesblueMSX

[2012-06-07 18:22:14 | 000,000,000 | ---D | C] -- C:Program FilesparticleIllusion_3

[2012-06-07 11:45:50 | 000,000,000 | ---D | C] -- C:Documents and SettingsMateuszUstawienia lokalneDane aplikacjistorage

[2012-06-05 19:42:53 | 000,000,000 | ---D | C] -- C:Documents and SettingsAll UsersPulpit

[8 C:WINDOWSSystem32*.tmp files -> C:WINDOWSSystem32*.tmp -> ]

[5 C:WINDOWS*.tmp files -> C:WINDOWS*.tmp -> ]

[2 C:Program Files*.tmp files -> C:Program Files*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012-07-02 16:51:23 | 000,280,403 | ---- | M] () -- C:WINDOWSSystem32NvApps.xml

[2012-07-02 16:51:18 | 000,002,048 | --S- | M] () -- C:WINDOWSbootstat.dat

[2012-07-02 16:38:00 | 000,000,930 | ---- | M] () -- C:WINDOWStasksAdobe Flash Player Updater.job

[2012-07-02 12:46:29 | 000,000,664 | ---- | M] () -- C:WINDOWSSystem32d3d9caps.dat

[2012-07-02 09:31:15 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:WINDOWSSystem32FlashPlayerApp.exe

[2012-07-02 09:31:15 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:WINDOWSSystem32FlashPlayerCPLApp.cpl

[2012-07-02 09:12:43 | 000,000,552 | ---- | M] () -- C:WINDOWSSystem32d3d8caps.dat

[2012-07-01 18:04:32 | 000,661,600 | ---- | M] (Wellbia.com Co., Ltd.) -- C:WINDOWSSystem32xsherlock.xem

[2012-07-01 15:42:05 | 000,000,223 | RHS- | M] () -- C:boot.ini

[2012-07-01 13:14:02 | 000,015,412 | ---- | M] () -- C:WINDOWSSystem32BReWErS.dll

[2012-07-01 13:14:00 | 000,003,386 | ---- | M] () -- C:WINDOWSSystem32NOTEPAD.ini

[2012-07-01 10:40:21 | 000,000,448 | ---- | M] () -- C:Documents and SettingsMateuszMoje dokumentyremember password.URL

[2012-06-30 19:11:23 | 000,002,206 | ---- | M] () -- C:WINDOWSSystem32wpa.dbl

[2012-06-30 18:40:40 | 000,000,000 | -H-- | M] () -- C:WINDOWSSystem32driversMsft_Kernel_xusb21_01007.Wdf

[2012-06-29 20:25:58 | 000,216,856 | ---- | M] () -- C:WINDOWSSystem32FNTCACHE.DAT

[2012-06-29 20:17:51 | 000,002,657 | ---- | M] () -- C:WINDOWSSystem32CONFIG.NT

[2012-06-28 15:02:25 | 000,002,601 | ---- | M] () -- C:Documents and SettingsAll UsersDokumentyGlobal.sw2

[2012-06-28 14:52:42 | 000,353,688 | ---- | M] (AVAST Software) -- C:WINDOWSSystem32driversaswSP.sys

[2012-06-28 14:52:42 | 000,054,232 | ---- | M] (AVAST Software) -- C:WINDOWSSystem32driversaswTdi.sys

[2012-06-28 14:52:37 | 000,721,000 | ---- | M] (AVAST Software) -- C:WINDOWSSystem32driversaswSnx.sys

[2012-06-28 14:52:37 | 000,097,352 | ---- | M] (AVAST Software) -- C:WINDOWSSystem32driversaswmon2.sys

[2012-06-28 14:52:37 | 000,089,624 | ---- | M] (AVAST Software) -- C:WINDOWSSystem32driversaswmon.sys

[2012-06-28 14:52:37 | 000,035,928 | ---- | M] (AVAST Software) -- C:WINDOWSSystem32driversaswRdr.sys

[2012-06-28 14:52:36 | 000,025,256 | ---- | M] (AVAST Software) -- C:WINDOWSSystem32driversaavmker4.sys

[2012-06-28 14:52:36 | 000,021,256 | ---- | M] (AVAST Software) -- C:WINDOWSSystem32driversaswFsBlk.sys

[2012-06-28 14:52:20 | 000,041,224 | ---- | M] (AVAST Software) -- C:WINDOWSavastSS.scr

[2012-06-28 14:51:49 | 000,227,648 | ---- | M] (AVAST Software) -- C:WINDOWSSystem32aswBoot.exe

[2012-06-26 16:13:57 | 000,053,044 | ---- | M] () -- C:Documents and SettingsMateusz.recently-used.xbel

[2012-06-26 15:38:00 | 000,000,023 | ---- | M] () -- C:WINDOWSBlendSettings.ini

[2012-06-23 17:15:51 | 000,000,438 | ---- | M] () -- C:WINDOWStasksKonserwacja 1 kliknięciem.job

[2012-06-22 10:03:18 | 000,000,661 | ---- | M] () -- C:Documents and SettingsAll UsersPulpitOrigin.lnk

[2012-06-21 14:49:13 | 022,954,388 | ---- | M] () -- C:Documents and SettingsMateuszMoje dokumentyFirefox 13.0.1 (pl) - 2012-06-21.pcv

[2012-06-18 16:35:59 | 140,259,328 | ---- | M] () -- C:WINDOWSMEMORY.DMP

[2012-06-18 15:19:36 | 000,563,636 | ---- | M] () -- C:WINDOWSSystem32perfh015.dat

[2012-06-18 15:19:36 | 000,501,072 | ---- | M] () -- C:WINDOWSSystem32perfh009.dat

[2012-06-18 15:19:36 | 000,109,070 | ---- | M] () -- C:WINDOWSSystem32perfc015.dat

[2012-06-18 15:19:36 | 000,087,420 | ---- | M] () -- C:WINDOWSSystem32perfc009.dat

[2012-06-18 08:31:33 | 000,000,202 | ---- | M] () -- C:WINDOWSNeroDigital.ini

[2012-06-14 11:04:15 | 000,003,083 | ---- | M] () -- C:Documents and SettingsMateuszMoje dokumentyresetdma.vbs

[2012-06-09 14:22:09 | 000,002,413 | ---- | M] () -- C:WINDOWSSystem32lgAxconfig.ini

[2012-06-07 18:25:22 | 021,145,805 | ---- | M] () -- C:Documents and SettingsMateuszMoje dokumentyFirefox 13.0 (pl) - 2012-06-07.pcv

[8 C:WINDOWSSystem32*.tmp files -> C:WINDOWSSystem32*.tmp -> ]

[5 C:WINDOWS*.tmp files -> C:WINDOWS*.tmp -> ]

[2 C:Program Files*.tmp files -> C:Program Files*.tmp -> ]

========== Files Created - No Company Name ==========

[2012-07-02 09:12:43 | 000,000,552 | ---- | C] () -- C:WINDOWSSystem32d3d8caps.dat

[2012-07-01 15:08:03 | 000,208,896 | ---- | C] () -- C:WINDOWSMBR.exe

[2012-07-01 15:08:02 | 000,256,000 | ---- | C] () -- C:WINDOWSPEV.exe

[2012-07-01 15:08:02 | 000,098,816 | ---- | C] () -- C:WINDOWSsed.exe

[2012-07-01 15:08:02 | 000,080,412 | ---- | C] () -- C:WINDOWSgrep.exe

[2012-07-01 15:08:02 | 000,068,096 | ---- | C] () -- C:WINDOWSzip.exe

[2012-07-01 10:40:21 | 000,000,448 | ---- | C] () -- C:Documents and SettingsMateuszMoje dokumentyremember password.URL

[2012-06-30 18:40:40 | 000,000,000 | -H-- | C] () -- C:WINDOWSSystem32driversMsft_Kernel_xusb21_01007.Wdf

[2012-06-30 13:37:24 | 000,000,743 | ---- | C] () -- C:Documents and SettingsAll UsersMenu StartProgramyMozilla Firefox.lnk

[2012-06-29 22:49:11 | 000,005,174 | ---- | C] () -- C:WINDOWSSystem32nppt9x.vxd

[2012-06-26 16:13:57 | 000,053,044 | ---- | C] () -- C:Documents and SettingsMateusz.recently-used.xbel

[2012-06-22 10:03:18 | 000,000,661 | ---- | C] () -- C:Documents and SettingsAll UsersPulpitOrigin.lnk

[2012-06-21 14:48:47 | 022,954,388 | ---- | C] () -- C:Documents and SettingsMateuszMoje dokumentyFirefox 13.0.1 (pl) - 2012-06-21.pcv

[2012-06-18 17:09:35 | 002,183,470 | ---- | C] () -- C:WINDOWSSystem32nvdata.bin

[2012-06-17 16:56:16 | 000,112,688 | ---- | C] () -- C:WINDOWSSystem32SH31W32.DLL

[2012-06-16 18:00:47 | 000,009,046 | ---- | C] () -- C:WINDOWSSystem32nvinfo.pb

[2012-06-16 17:18:59 | 000,001,950 | ---- | C] () -- C:WINDOWSSystem32driversREGISTER.SYS

[2012-06-14 11:04:14 | 000,003,083 | ---- | C] () -- C:Documents and SettingsMateuszMoje dokumentyresetdma.vbs

[2012-06-07 18:24:59 | 021,145,805 | ---- | C] () -- C:Documents and SettingsMateuszMoje dokumentyFirefox 13.0 (pl) - 2012-06-07.pcv

[2012-05-20 20:07:34 | 000,034,678 | ---- | C] () -- C:Documents and SettingsMateuszUstawienia lokalneDane aplikacjirecently-used.xbel

[2012-05-13 16:15:37 | 000,233,472 | ---- | C] () -- C:WINDOWSSystem32cmirmdrv.exe

[2012-05-13 16:15:36 | 000,028,672 | ---- | C] () -- C:WINDOWSSystem32cmirmdrv.dll

[2012-05-13 16:15:35 | 000,136,302 | ---- | C] () -- C:WINDOWSCmuda.ini

[2012-05-13 16:15:34 | 000,225,280 | ---- | C] () -- C:WINDOWSCmiRmRedundDir.exe

[2012-05-12 21:53:12 | 000,000,736 | ---- | C] () -- C:WINDOWSsetup.ini

[2012-05-01 10:36:45 | 000,000,025 | ---- | C] () -- C:WINDOWSpopcinfot.dat

[2012-04-26 19:17:13 | 000,000,016 | ---- | C] () -- C:WINDOWSSystem32msvcsv60.dll

[2012-04-26 19:17:13 | 000,000,016 | ---- | C] () -- C:WINDOWSmsocreg32.dat

[2012-04-24 18:38:03 | 000,000,857 | ---- | C] () -- C:WINDOWSclient.config.ini

[2012-04-17 12:58:55 | 000,043,520 | ---- | C] () -- C:WINDOWSSystem32CmdLineExt03.dll

[2012-04-17 11:32:28 | 000,000,077 | ---- | C] () -- C:Documents and SettingsMateuszDane aplikacjimainhst.zgh

[2012-04-02 18:33:14 | 000,064,918 | ---- | C] () -- C:Documents and SettingsMateuszKLR320 Bloody Justice.png

[2012-02-17 16:31:46 | 000,000,414 | RHS- | C] () -- C:Documents and SettingsAll Usersntuser.pol

[2012-02-16 13:06:14 | 000,138,904 | ---- | C] () -- C:Documents and SettingsMateuszDane aplikacjiPnkBstrK.sys

[2012-02-08 11:17:17 | 000,000,537 | ---- | C] () -- C:WINDOWSFICEDULA.INI

[2012-02-05 17:56:50 | 000,000,128 | R--- | C] () -- C:Documents and SettingsMateuszValid.Ext

[2012-01-28 19:15:37 | 000,074,752 | ---- | C] () -- C:WINDOWSSystem32ff_vfw.dll

[2012-01-27 17:35:31 | 000,053,248 | ---- | C] () -- C:WINDOWSSystem32CommonDL.dll

[2012-01-27 17:35:31 | 000,002,413 | ---- | C] () -- C:WINDOWSSystem32lgAxconfig.ini

[2012-01-19 20:45:06 | 000,000,041 | ---- | C] () -- C:WINDOWSlz_tcm.ini

[2012-01-11 17:16:05 | 000,000,057 | ---- | C] () -- C:WINDOWSnfsc_patch.ini

[2012-01-01 19:39:44 | 000,516,096 | ---- | C] () -- C:WINDOWSSystem32VTFLib.dll

[2011-12-27 12:35:35 | 000,000,202 | ---- | C] () -- C:WINDOWSNeroDigital.ini

[2011-12-26 20:28:00 | 000,122,880 | ---- | C] () -- C:WINDOWSUnGins.exe

[2011-12-19 19:28:55 | 000,000,000 | ---- | C] () -- C:WINDOWSWB.ini

[2011-12-07 15:36:39 | 000,015,412 | ---- | C] () -- C:WINDOWSSystem32BReWErS.dll

[2011-12-05 12:14:08 | 000,000,001 | ---- | C] () -- C:Documents and SettingsMateuszSI.bin

[2011-12-01 19:56:42 | 000,083,872 | ---- | C] () -- C:WINDOWSSystem32driversatksgt.sys

[2011-12-01 19:56:42 | 000,025,888 | ---- | C] () -- C:WINDOWSSystem32driverslirsgt.sys

[2011-11-25 21:30:10 | 000,004,096 | ---- | C] () -- C:WINDOWSd3dx.dat

[2011-11-18 13:39:21 | 000,000,001 | ---- | C] () -- C:Documents and SettingsAll UsersDane aplikacjiflagposition.out

[2011-11-17 11:04:21 | 000,354,816 | ---- | C] () -- C:WINDOWSSystem32psisdecd.dll

[2011-11-14 13:49:39 | 000,000,155 | ---- | C] () -- C:WINDOWSwinamp.ini

[2011-11-14 10:45:16 | 000,000,056 | RHS- | C] () -- C:WINDOWSSystem320D4F86FFD5.sys

[2011-11-14 10:43:20 | 000,001,890 | -HS- | C] () -- C:WINDOWSSystem32KGyGaAvL.sys

[2011-11-09 21:17:49 | 000,175,616 | ---- | C] () -- C:WINDOWSSystem32unrar.dll

[2011-11-08 11:49:22 | 000,000,001 | ---- | C] () -- C:WINDOWSSystem32SI.bin

[2011-11-07 11:24:27 | 000,075,264 | ---- | C] () -- C:Documents and SettingsMateuszUstawienia lokalneDane aplikacjiDCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2011-11-06 17:56:48 | 000,000,000 | ---- | C] () -- C:WINDOWSPowerReg.dat

[2011-11-05 12:00:13 | 000,000,132 | ---- | C] () -- C:Documents and SettingsMateuszUstawienia lokalneDane aplikacjifusioncache.dat

[2011-11-02 13:35:27 | 000,000,088 | ---- | C] () -- C:WINDOWSStyleBuilder.INI

[2011-10-30 21:03:32 | 000,000,023 | ---- | C] () -- C:WINDOWSBlendSettings.ini

[2011-10-30 19:34:21 | 000,000,092 | ---- | C] () -- C:WINDOWSCMISETUP.INI

[2011-10-30 19:34:19 | 000,000,026 | ---- | C] () -- C:WINDOWSCMCDPLAY.INI

[2011-10-30 19:34:18 | 000,000,010 | ---- | C] () -- C:WINDOWSWininit.ini

[2011-10-30 19:34:17 | 000,266,240 | ---- | C] () -- C:WINDOWSCMIUninstall.exe

[2011-10-30 19:34:17 | 000,028,672 | ---- | C] () -- C:WINDOWSCMIRmDriver.dll

[2011-10-30 19:30:33 | 000,003,386 | ---- | C] () -- C:WINDOWSSystem32NOTEPAD.ini

[2011-10-30 19:27:13 | 000,004,293 | ---- | C] () -- C:WINDOWSODBCINST.INI

[2011-10-30 19:26:52 | 000,283,648 | ---- | C] () -- C:WINDOWSNOTEPAD.EXE

[2011-10-30 19:25:50 | 000,216,856 | ---- | C] () -- C:WINDOWSSystem32FNTCACHE.DAT

[2011-10-30 19:24:57 | 000,244,224 | ---- | C] () -- C:WINDOWSSystem32NvRaidMan.exe

[2011-10-30 19:10:00 | 000,000,664 | ---- | C] () -- C:WINDOWSSystem32d3d9caps.dat

[2011-10-30 18:51:46 | 000,002,048 | --S- | C] () -- C:WINDOWSbootstat.dat

[2011-10-30 18:40:06 | 000,000,047 | ---- | C] () -- C:WINDOWSTransBar.ini

[2011-10-30 18:37:59 | 000,652,287 | ---- | C] () -- C:WINDOWSNowe_konto.exe

[2011-10-30 18:34:32 | 000,021,856 | ---- | C] () -- C:WINDOWSSystem32emptyregdb.dat

========== Alternate Data Streams ==========

@Alternate Data Stream - 5120 bytes -> C:Documents and SettingsAll UsersDane aplikacjidesktop.ini:gs5sys

@Alternate Data Stream - 48 bytes -> C:Documents and SettingsAll UsersDRM:احتضان

@Alternate Data Stream - 1536 bytes -> C:Documents and SettingsMateuszSzablony:gs5sys

@Alternate Data Stream - 1536 bytes -> C:Documents and SettingsMateuszPulpit:gs5sys

@Alternate Data Stream - 1536 bytes -> C:Documents and SettingsMateuszMoje dokumenty:gs5sys

@Alternate Data Stream - 1536 bytes -> C:Documents and SettingsMateuszDane aplikacjidesktop.ini:gs5sys

@Alternate Data Stream - 1536 bytes -> C:Documents and SettingsMateuszCookies:gs5sys

@Alternate Data Stream - 1536 bytes -> C:Documents and SettingsAll UsersSzablony:gs5sys

@Alternate Data Stream - 1536 bytes -> C:Documents and SettingsAll UsersDokumentydesktop.ini:gs5sys

@Alternate Data Stream - 129 bytes -> C:Documents and SettingsAll UsersDane aplikacjiTEMP:05EE1EEF

@Alternate Data Stream - 123 bytes -> C:Documents and SettingsAll UsersDane aplikacjiTEMP:8CE646EE

@Alternate Data Stream - 121 bytes -> C:Documents and SettingsAll UsersDane aplikacjiTEMP:C31F31E6

@Alternate Data Stream - 118 bytes -> C:Documents and SettingsAll UsersDane aplikacjiTEMP:D06A4C76

< End of report >

Log z HIJACKTHIS

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 17:05:46, on 2012-07-02

Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)

MSIE: Unable to get Internet Explorer version!

Boot mode: Normal

Running processes:

C:WINDOWSSystem32smss.exe

C:WINDOWSsystem32winlogon.exe

C:WINDOWSsystem32services.exe

C:WINDOWSsystem32lsass.exe

C:WINDOWSsystem32svchost.exe

C:Program FilesCOMODOCOMODO Internet Securitycmdagent.exe

C:WINDOWSsystem32svchost.exe

C:Program FilesAVAST SoftwareAvastAvastSvc.exe

C:WINDOWSExplorer.EXE

C:Program FilesCOMODOCOMODO Internet Securitycfp.exe

C:Program FilesAVAST SoftwareAvastavastUI.exe

C:Program FilesMicrosoft Xbox 360 AccessoriesXboxStat.exe

C:Program FilesAnti-Vibrate Oscar EditorOscarEditor.exe

C:WINDOWSnotepad.exe

C:Program FilesMozilla Firefoxfirefox.exe

C:WINDOWSsystem32msiexec.exe

C:Program FilesTrend MicroHiJackThisHiJackThis.exe

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://pl.v9.com/?utm_source=b&utm_medium=ism

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://sunonline.webzen.com/Default.aspx

R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://pl.v9.com/?utm_source=b&utm_medium=ism

R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://pl.v9.com/?utm_source=b&utm_medium=ism

R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant =

R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch =

R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Łącza

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:Program FilesJavajre7binssv.dll

O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:Program FilesAVAST SoftwareAvastaswWebRepIE.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:PROGRA~1Microsoft OfficeOffice14URLREDIR.DLL

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:Program FilesJavajre7binjp2ssv.dll

O2 - BHO: IEPluginBHO - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - (no file)

O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:Program FilesAVAST SoftwareAvastaswWebRepIE.dll

O4 - HKLM..Run: [COMODO Internet Security] "C:Program FilesCOMODOCOMODO Internet Securitycfp.exe" -h

O4 - HKLM..Run: [avast] "C:Program FilesAVAST SoftwareAvastavastUI.exe" /nogui

O4 - HKLM..Run: [RivaTunerStartupDaemon] "C:Program FilesRivaTuner v2.24 MSI Master Overclocking Arena 2009 editionRivaTuner.exe" /S

O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup

O4 - HKLM..Run: [XboxStat] "C:Program FilesMicrosoft Xbox 360 AccessoriesXboxStat.exe" silentrun

O4 - HKCU..Run: [OscarEditor] "C:Program FilesAnti-Vibrate Oscar EditorOscarEditor.exe" Minimum

O4 - HKUSS-1-5-18..Run: [TransBar] C:WINDOWSTransBar.exe /s (User 'SYSTEM')

O4 - HKUSS-1-5-18..RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')

O4 - HKUS.DEFAULT..Run: [TransBar] C:WINDOWSTransBar.exe /s (User 'Default user')

O4 - HKUS.DEFAULT..RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')

O4 - S-1-5-18 Startup: ETERNA.lnk = ? (User 'SYSTEM')

O4 - .DEFAULT Startup: ETERNA.lnk = ? (User 'Default user')

O4 - Startup: ETERNA.lnk = ?

O8 - Extra context menu item: Se&nd to OneNote - res://C:PROGRA~1Microsoft OfficeOffice14ONBttnIE.dll/105

O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:Program FilesMicrosoft OfficeOffice14ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:Program FilesMicrosoft OfficeOffice14ONBttnIE.dll

O9 - Extra button: &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:Program FilesMicrosoft OfficeOffice14ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:Program FilesMicrosoft OfficeOffice14ONBttnIELinkedNotes.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe

O17 - HKLMSystemCCSServicesTcpip..{B2C8C128-573B-4A6F-B54E-7B85E4C706DE}: NameServer = 194.204.159.1 194.204.152.34

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:Program FilesCommon FilesMicrosoft SharedOFFICE14MSOXMLMF.DLL

O20 - AppInit_DLLs: C:WINDOWSsystem32wbsys.dll C:WINDOWSsystem32guard32.dll

O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:WINDOWSsystem32browseui.dll

O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:WINDOWSsystem32browseui.dll

O22 - SharedTaskScheduler: ObjectDockShellExt - {1984D045-52CF-49cd-DB77-08F378FEA4DB} - (no file)

O23 - Service: avast! Antivirus - AVAST Software - C:Program FilesAVAST SoftwareAvastAvastSvc.exe

O23 - Service: CiSvc - Unknown owner - C:WINDOWSsystem32cisvc.exe (file missing)

O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:Program FilesCOMODOCOMODO Internet Securitycmdagent.exe

O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:WINDOWSsystem32GameMon.des.exe (file missing)

O23 - Service: Bufor wydruku (Spooler) - Unknown owner - C:WINDOWSsystem32spoolsv.exe (file missing)

O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:WINDOWSSystem32TuneUpDefragService.exe

O23 - Service: xsherlock - Wellbia.com Co., Ltd. - C:WINDOWSsystem32xsherlock.xem

--

End of file - 6527 bytes

Kolobos · 3 Lipca 2012

Daj extras.txt z OTL zamiast bezuzytecznego hjt.

Sam popsules te wszystkie uslugi czy moze masz jakis modyfikowany system?

Wykonaj skrypt w OTL:

:OTL

IE - HKLMSOFTWAREMicrosoftInternet ExplorerMain,Default_Page_URL = http://pl.v9.com/?ut...&utm_medium=ism

IE - HKLMSOFTWAREMicrosoftInternet ExplorerMain,Start Page = http://pl.v9.com/?ut...&utm_medium=ism

IE - HKCUSOFTWAREMicrosoftInternet ExplorerMain,Default_Page_URL = http://pl.v9.com/?ut...&utm_medium=ism