Internet muli

Dla specjalistów Bezpieczeństwo
#1

Strasznie mula mi strony internetowe. Problem wystepuje i na firefoxie i na operze. Czasem nie ładuja sie do konca, czasem wogole nie dzialaja. Problem jest taki ze internet jest dosyc szybki (przypuszczam ze 2 mb/s, nie wiem dokladnie bo to jest w wegierskim akademiku i ciezko z nimi sie porozumiec) ściaga pliki szybko, jak juz sie na nie wejdzie.

Prosze o pomoc i wyrozumialosc poniewaz jestem laikiem i nigdy predzej tego nie robilem.

To jest to co wyskoczylo mi z hijackthis:

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 11:58:52, on 2009-09-10

Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16827)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

C:\Program Files\Alwil Software\Avast4\ashServ.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\ATK0100\HControl.exe

C:\Program Files\Unlocker\UnlockerAssistant.exe

C:\WINDOWS\RTHDCPL.EXE

C:\WINDOWS\system32\hkcmd.exe

C:\WINDOWS\system32\igfxsrvc.exe

C:\WINDOWS\system32\igfxpers.exe

C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\Program Files\Java\jre6\bin\jusched.exe

C:\WINDOWS\VMSnap23.exe

C:\WINDOWS\Domino.exe

C:\WINDOWS\system32\ctfmon.exe

D:\programy\deamon tools\DAEMON Tools Lite\daemon.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\ATK0100\ATKOSD.exe

C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\Common Files\LightScribe\LSSrvc.exe

C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

C:\WINDOWS\system32\wbem\wmiapsrv.exe

C:\WINDOWS\system32\wscntfy.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.7.16.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O4 - HKLM…\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe

O4 - HKLM…\Run: [VistaDrive] C:\WINDOWS\VistaDrive\VistaDrive.exe

O4 - HKLM…\Run: [unlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe -H

O4 - HKLM…\Run: [RTHDCPL] RTHDCPL.EXE

O4 - HKLM…\Run: [Alcmtr] ALCMTR.EXE

O4 - HKLM…\Run: [Adobe Reader Speed Launcher] “C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe”

O4 - HKLM…\Run: [CTRegRun] C:\WINDOWS\CTRegRun.EXE

O4 - HKLM…\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe

O4 - HKLM…\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe

O4 - HKLM…\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe

O4 - HKLM…\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe

O4 - HKLM…\Run: [sSBkgdUpdate] “C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe” -Embedding -boot

O4 - HKLM…\Run: [brMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN

O4 - HKLM…\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM…\Run: [TkBellExe] “C:\Program Files\Common Files\Real\Update_OB\realsched.exe” -osboot

O4 - HKLM…\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k

O4 - HKLM…\Run: [sunJavaUpdateSched] “C:\Program Files\Java\jre6\bin\jusched.exe”

O4 - HKLM…\Run: [bigDogPath323VMSnap] C:\WINDOWS\VMSnap23.exe

O4 - HKLM…\Run: [bigDogPath323Domino] C:\WINDOWS\Domino.exe

O4 - HKCU…\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU…\Run: [DAEMON Tools Lite] “D:\programy\deamon tools\DAEMON Tools Lite\daemon.exe” -autorun

O4 - HKCU…\Run: [Nowe Gadu-Gadu] “C:\Program Files\Nowe Gadu-Gadu\gg.exe”

O4 - HKUS\S-1-5-20…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘USŁUGA SIECIOWA’)

O4 - HKUS\S-1-5-20…\Run: [RocketDock] “C:\Program Files\RocketDock\RocketDock.exe” (User ‘USŁUGA SIECIOWA’)

O4 - HKUS\S-1-5-20…\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User ‘USŁUGA SIECIOWA’)

O4 - HKUS\S-1-5-18…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SYSTEM’)

O4 - HKUS\S-1-5-18…\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User ‘SYSTEM’)

O4 - HKUS.DEFAULT…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘Default user’)

O4 - HKUS.DEFAULT…\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User ‘Default user’)

O4 - Startup: Picture Motion Browser Media Check Tool.lnk = C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe

O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Pobierz wszystkie VIdeo za pomocą BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm

O8 - Extra context menu item: Pobierz wszystko za pomocą BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm

O8 - Extra context menu item: Pobierz za pomocą BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)

O9 - Extra ‘Tools’ menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)

O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.3.7.16.dll/206 (file missing)

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s … wflash.cab

O17 - HKLM\System\CCS\Services\Tcpip…{0F82074E-996B-45FE-9FC7-21263C55B39D}: NameServer = 193.6.160.100

O17 - HKLM\System\CS1\Services\Tcpip…{0F82074E-996B-45FE-9FC7-21263C55B39D}: NameServer = 193.6.160.100

O17 - HKLM\System\CS2\Services\Tcpip…{0F82074E-996B-45FE-9FC7-21263C55B39D}: NameServer = 193.6.160.100

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: Nero BackItUp Scheduler 4.0 - Unknown owner - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (file missing)

O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe

End of file - 8676 bytes

Nie wiem czy moze to miec jakis zwiazek ale ostatnio pare razy resetowa mi sie komputer i wyskakiwal blue screen.

#2
  1. W hijackthis zaznacz i Fix:

  1. Daj loga z OTL: hijackthis-rsit-otl-dds-inne-instrukcja-t36654.html

  2. Jaki dostawca internetu? Jaka prędkość?

Wykonaj speedtest: http://www.speedtest.net/ wklej wynik

Napisz jeszcze czy łączysz się za pomocą routera czy modemu? Jeśli tak jaki to sprzęt?

  1. Wpisz Open Dns-y, czyli: wchodzisz w połączenia sieciowe, naciskasz prawym przyciskiem myszy na Twoje połączenie, właściwości, najeżdżasz na: Protokół internetowy (TCP/IP)i klik na właściwości, na dole masz: Użyj następujących serwerów DNS, zaznacz i wpisz takie DMS-y: 208.67.222.222 i 208.67.220.220

*5. Wejdź w Start, uruchom, wpisz cmd, w okienku wpisz: ( po każdym wpisie enter)

netsh winsock reset

netsh int ip reset resetlog.txt

6.Wejdź w: start->uruchom->wpisz cmd

w nowym oknie wpisz: ipconfig /flushdns

zrestartuj komputer i zobacz czy internet chodzi lepiej

  1. Odnośnie Blue Screena, podaj nam kod tego BSOD-a

Wykonaj też: http://www.forumpc.pl/index.php?showtopic=16074

#3

To jest log OTL:

OTL logfile created on: 2009-09-10 12:47:07 - Run 1

OTL by OldTimer - Version 3.0.10.7 Folder = C:\Documents and Settings\bogna_cz\Pulpit

Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 7.0.5730.13)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1,99 Gb Total Physical Memory | 1,28 Gb Available Physical Memory | 64,13% Memory free

3,84 Gb Paging File | 3,21 Gb Available in Paging File | 83,66% Paging File free

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 55,89 Gb Total Space | 27,44 Gb Free Space | 49,10% Space Free | Partition Type: NTFS

Drive D: | 48,08 Gb Total Space | 4,90 Gb Free Space | 10,19% Space Free | Partition Type: NTFS

E: Drive not present or media not loaded

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: BOGNA

Current User Name: bogna_cz

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: Current user

Company Name Whitelist: Off

Skip Microsoft Files: Off

File Age = 30 Days

Output = Standard

========== Processes (SafeList) ==========

PRC - [2009-08-17 17:58:55 | 00,018,752 | ---- | M] (ALWIL Software) – C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

PRC - [2009-08-17 18:07:17 | 00,138,680 | ---- | M] (ALWIL Software) – C:\Program Files\Alwil Software\Avast4\ashServ.exe

PRC - [2009-01-26 02:23:36 | 01,891,328 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\Explorer.EXE

PRC - [2006-10-14 14:37:40 | 00,110,592 | ---- | M] () – C:\WINDOWS\ATK0100\HControl.exe

PRC - [2008-05-02 01:15:46 | 00,015,872 | ---- | M] () – C:\Program Files\Unlocker\UnlockerAssistant.exe

PRC - [2007-10-25 09:27:56 | 16,855,552 | ---- | M] (Realtek Semiconductor Corp.) – C:\WINDOWS\RTHDCPL.EXE

PRC - [2007-11-08 13:26:12 | 00,166,424 | ---- | M] (Intel Corporation) – C:\WINDOWS\System32\hkcmd.exe

PRC - [2007-11-08 13:26:24 | 00,256,536 | ---- | M] (Intel Corporation) – C:\WINDOWS\System32\igfxsrvc.exe

PRC - [2007-11-08 13:26:20 | 00,137,752 | ---- | M] (Intel Corporation) – C:\WINDOWS\System32\igfxpers.exe

PRC - [2009-08-17 18:07:23 | 00,081,000 | ---- | M] (ALWIL Software) – C:\Program Files\Alwil Software\Avast4\ashDisp.exe

PRC - [2009-08-10 11:00:35 | 00,180,269 | ---- | M] (RealNetworks, Inc.) – C:\Program Files\Common Files\Real\Update_OB\realsched.exe

PRC - [2009-07-31 15:23:21 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) – C:\Program Files\Java\jre6\bin\jusched.exe

PRC - [2007-01-09 12:57:02 | 00,212,992 | ---- | M] () – C:\WINDOWS\VMSnap23.exe

PRC - [2007-01-09 12:56:16 | 00,049,152 | ---- | M] (Vimicro) – C:\WINDOWS\Domino.exe

PRC - [2008-12-29 12:40:30 | 00,687,560 | ---- | M] (DT Soft Ltd) – D:\programy\deamon tools\DAEMON Tools Lite\daemon.exe

PRC - [2006-08-10 19:08:04 | 02,379,776 | ---- | M] () – C:\WINDOWS\ATK0100\ATKOSD.exe

PRC - [2007-01-04 19:48:52 | 00,112,152 | R— | M] (InterVideo) – C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe

PRC - [2009-07-31 15:23:19 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) – C:\Program Files\Java\jre6\bin\jqs.exe

PRC - [2006-10-19 13:52:24 | 00,061,440 | ---- | M] (Hewlett-Packard Company) – C:\Program Files\Common Files\LightScribe\LSSrvc.exe

PRC - [2007-07-24 11:15:14 | 00,185,632 | ---- | M] (Protexis Inc.) – C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe

PRC - [2009-08-17 18:07:01 | 00,254,040 | ---- | M] (ALWIL Software) – C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

PRC - [2009-08-17 18:04:21 | 00,352,920 | ---- | M] (ALWIL Software) – C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

PRC - [2008-04-15 13:00:00 | 00,013,824 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\System32\wscntfy.exe

PRC - [2008-12-03 01:43:56 | 00,307,704 | ---- | M] (Mozilla Corporation) – C:\Program Files\Mozilla Firefox\firefox.exe

PRC - [2009-02-27 18:12:42 | 09,339,496 | ---- | M] (GG Network S.A.) – C:\Program Files\Nowe Gadu-Gadu\gg.exe

PRC - [2009-02-27 17:33:24 | 00,014,336 | ---- | M] () – C:\Program Files\Nowe Gadu-Gadu\spellchecker_gg.exe

PRC - [2009-09-10 12:47:02 | 00,514,048 | ---- | M] (OldTimer Tools) – C:\Documents and Settings\bogna_cz\Pulpit\OTL.exe

========== Win32 Services (SafeList) ==========

SRV - [2008-07-25 17:16:40 | 00,034,312 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe – (aspnet_state [On_Demand | Stopped])

SRV - [2009-08-17 17:58:55 | 00,018,752 | ---- | M] (ALWIL Software) – C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe – (aswUpdSv [Auto | Running])

SRV - [2009-08-17 18:07:17 | 00,138,680 | ---- | M] (ALWIL Software) – C:\Program Files\Alwil Software\Avast4\ashServ.exe – (avast! Antivirus [Auto | Running])

SRV - [2009-08-17 18:07:01 | 00,254,040 | ---- | M] (ALWIL Software) – C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe – (avast! Mail Scanner [On_Demand | Running])

SRV - [2009-08-17 18:04:21 | 00,352,920 | ---- | M] (ALWIL Software) – C:\Program Files\Alwil Software\Avast4\ashWebSv.exe – (avast! Web Scanner [On_Demand | Running])

SRV - [2008-07-25 17:17:02 | 00,069,632 | ---- | M] (Microsoft Corporation) – c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe – (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])

SRV - [2008-07-30 03:10:04 | 00,046,104 | ---- | M] (Microsoft Corporation) – c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe – (FontCache3.0.0.0 [On_Demand | Stopped])

SRV - [2008-04-15 13:00:00 | 00,038,400 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll – (helpsvc [Auto | Running])

SRV - [2008-07-30 01:24:50 | 00,881,664 | ---- | M] (Microsoft Corporation) – c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe – (idsvc [unknown | Stopped])

SRV - [2007-01-04 19:48:52 | 00,112,152 | R— | M] (InterVideo) – C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe – (IviRegMgr [Auto | Running])

SRV - [2009-07-31 15:23:19 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) – C:\Program Files\Java\jre6\bin\jqs.exe – (JavaQuickStarterService [Auto | Running])

SRV - [2006-10-19 13:52:24 | 00,061,440 | ---- | M] (Hewlett-Packard Company) – C:\Program Files\Common Files\LightScribe\LSSrvc.exe – (LightScribeService [Auto | Running])

SRV - File not found – -- (Nero BackItUp Scheduler 4.0 [Auto | Stopped])

SRV - [2008-07-30 01:16:38 | 00,132,096 | ---- | M] (Microsoft Corporation) – c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe – (NetTcpPortSharing [Disabled | Stopped])

SRV - [2006-10-26 19:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) – C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE – (odserv [On_Demand | Stopped])

SRV - [2006-10-26 13:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) – C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE – (ose [On_Demand | Stopped])

SRV - [2007-07-24 11:15:14 | 00,185,632 | ---- | M] (Protexis Inc.) – C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe – (PSI_SVC_2 [Auto | Running])

SRV - [2006-12-01 12:46:28 | 00,918,016 | ---- | M] (Microsoft Corporation) – C:\Program Files\Windows Media Player\WMPNetwk.exe – (WMPNetworkSvc [On_Demand | Stopped])

========== Driver Services (SafeList) ==========

DRV - [2009-08-17 18:03:21 | 00,026,944 | ---- | M] (ALWIL Software) – C:\WINDOWS\System32\drivers\aavmker4.sys – (Aavmker4 [system | Running])

DRV - [2007-12-13 12:21:56 | 00,547,904 | ---- | M] (Atheros Communications, Inc.) – C:\WINDOWS\System32\DRIVERS\ar5211.sys – (AR5211 [On_Demand | Stopped])

DRV - [2009-08-17 18:05:37 | 00,020,560 | ---- | M] (ALWIL Software) – C:\WINDOWS\System32\DRIVERS\aswFsBlk.sys – (aswFsBlk [Auto | Running])

DRV - [2009-08-17 18:06:43 | 00,094,160 | ---- | M] (ALWIL Software) – C:\WINDOWS\System32\drivers\aswmon2.sys – (aswMon2 [Auto | Running])

DRV - [2009-08-17 18:04:29 | 00,023,152 | ---- | M] (ALWIL Software) – C:\WINDOWS\System32\drivers\aswRdr.sys – (aswRdr [On_Demand | Running])

DRV - [2009-08-17 18:05:52 | 00,114,768 | ---- | M] (ALWIL Software) – C:\WINDOWS\System32\drivers\aswSP.sys – (aswSP [system | Running])

DRV - [2009-08-17 18:04:40 | 00,051,376 | ---- | M] (ALWIL Software) – C:\WINDOWS\System32\drivers\aswTdi.sys – (aswTdi [system | Running])

DRV - [2004-10-15 12:50:20 | 00,015,295 | ---- | M] (Brother Industries Ltd.) – C:\WINDOWS\System32\DRIVERS\BrScnUsb.sys – (BrScnUsb [On_Demand | Stopped])

DRV - [2008-04-15 13:00:00 | 00,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) – C:\WINDOWS\System32\DRIVERS\HDAudBus.sys – (HDAudBus [On_Demand | Running])

DRV - [2007-10-30 05:30:36 | 05,851,488 | ---- | M] (Intel Corporation) – C:\WINDOWS\System32\DRIVERS\igxpmp32.sys – (ialm [On_Demand | Running])

DRV - [2008-09-12 19:32:56 | 00,327,192 | ---- | M] (Intel Corporation) – C:\WINDOWS\system32\DRIVERS\iaStor.sys – (iaStor [boot | Running])

DRV - [2009-02-02 06:47:44 | 00,308,248 | ---- | M] (Intel Corporation) – C:\WINDOWS\System32\drivers\iastor78.sys – (iastor78 [boot | Running])

DRV - [2007-11-01 12:08:56 | 04,620,288 | ---- | M] (Realtek Semiconductor Corp.) – C:\WINDOWS\System32\drivers\RtkHDAud.sys – (IntcAzAudAddService [On_Demand | Running])

DRV - [2005-09-20 17:27:20 | 00,010,368 | ---- | M] (InterVideo, Inc.) – C:\WINDOWS\System32\drivers\iviaspi.sys – (Iviaspi [On_Demand | Running])

DRV - [2005-02-17 20:07:48 | 00,005,632 | ---- | M] () – C:\WINDOWS\System32\DRIVERS\ATKACPI.sys – (MTsensor [On_Demand | Running])

DRV - [2008-04-15 13:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) – C:\WINDOWS\System32\DRIVERS\ptilink.sys – (Ptilink [On_Demand | Running])

DRV - [2007-03-08 01:51:00 | 00,043,528 | ---- | M] (Sonic Solutions) – C:\WINDOWS\System32\Drivers\PxHelp20.sys – (PxHelp20 [boot | Running])

DRV - [2007-04-17 20:09:28 | 00,011,032 | ---- | M] (InterVideo) – C:\WINDOWS\System32\drivers\regi.sys – (regi [Auto | Running])

DRV - [2008-10-30 21:10:48 | 00,117,120 | ---- | M] (Realtek Semiconductor Corporation ) – C:\WINDOWS\System32\DRIVERS\Rtnicxp.sys – (RTL8023xp [On_Demand | Running])

DRV - [2008-04-15 13:00:00 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) – C:\WINDOWS\System32\DRIVERS\secdrv.sys – (Secdrv [Auto | Running])

DRV - [2009-03-21 14:33:12 | 00,717,296 | ---- | M] () – C:\WINDOWS\System32\Drivers\sptd.sys – (sptd [boot | Running])

DRV - [2006-08-08 11:25:40 | 00,476,672 | ---- | M] (Vimicro Corporation) – C:\WINDOWS\System32\drivers\vmfilter323.sys – (vmfilter323 [On_Demand | Stopped])

DRV - [2007-04-03 16:22:12 | 00,260,224 | ---- | M] (Vimicro Corporation) – C:\WINDOWS\System32\Drivers\usbvm323.sys – (ZSMC326 [On_Demand | Stopped])

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0

========== FireFox ==========

FF - prefs.js…browser.startup.homepage: “http://www.google.pl/

FF - prefs.js…extensions.enabledItems: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11

FF - prefs.js…extensions.enabledItems: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}:6.0.16

FF - prefs.js…extensions.enabledItems: jqs@sun.com:1.0

FF - prefs.js…extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.0

FF - prefs.js…extensions.enabledItems: {61511f82-5694-4c77-a030-874128bfa3bf}:1

FF - prefs.js…extensions.enabledItems: {B042753D-F57E-4e8e-A01B-7379A6D4CEFB}:1.10

FF - prefs.js…extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.5

FF - HKLM\software\mozilla\Firefox\Extensions\{20a82645-c095-46ed-80e3-08825760534b}: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009-03-21 12:06:06 | 00,000,000 | —D | M]

FF - HKLM\software\mozilla\Firefox\Extensions\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009-03-21 12:09:33 | 00,000,000 | —D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.0.5\extensions\Components: C:\Program Files\Mozilla Firefox\components [2009-09-09 23:10:56 | 00,000,000 | —D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.0.5\extensions\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-09-09 23:10:56 | 00,000,000 | —D | M]

[2009-03-21 12:23:43 | 00,000,000 | —D | M] – C:\Documents and Settings\bogna_cz\Dane aplikacji\mozilla\Extensions

[2009-03-21 12:23:43 | 00,000,000 | —D | M] – C:\Documents and Settings\bogna_cz\Dane aplikacji\mozilla\Extensions{ec8030f7-c20a-464f-9b0e-13a3a9e97384}

[2009-09-09 23:11:08 | 00,000,000 | —D | M] – C:\Documents and Settings\bogna_cz\Dane aplikacji\mozilla\Firefox\Profiles\n4wb9u9u.default\extensions

[2009-06-09 23:34:59 | 00,000,000 | —D | M] – C:\Documents and Settings\bogna_cz\Dane aplikacji\mozilla\Firefox\Profiles\n4wb9u9u.default\extensions{61511f82-5694-4c77-a030-874128bfa3bf}

[2009-09-09 23:10:56 | 00,000,000 | —D | M] – C:\Documents and Settings\bogna_cz\Dane aplikacji\mozilla\Firefox\Profiles\n4wb9u9u.default\extensions{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}

[2009-09-09 23:11:08 | 00,000,000 | —D | M] – C:\Program Files\mozilla firefox\extensions

[2009-03-21 12:09:17 | 00,000,000 | —D | M] – C:\Program Files\mozilla firefox\extensions{972ce4c6-7e08-4474-a285-3208198ce6fd}

[2009-03-21 12:09:43 | 00,000,000 | —D | M] – C:\Program Files\mozilla firefox\extensions{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}

[2009-09-09 15:56:54 | 00,000,000 | —D | M] – C:\Program Files\mozilla firefox\extensions{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}

[2008-12-03 01:43:58 | 00,023,032 | ---- | M] (Mozilla Foundation) – C:\Program Files\mozilla firefox\components\browserdirprovider.dll

[2008-12-03 01:43:58 | 00,134,648 | ---- | M] (Mozilla Foundation) – C:\Program Files\mozilla firefox\components\brwsrcmp.dll

[2009-07-17 10:40:12 | 00,704,512 | ---- | M] (BitComet) – C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll

[2009-07-31 15:23:11 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) – C:\Program Files\mozilla firefox\plugins\npdeploytk.dll

[2008-12-03 01:43:58 | 00,065,528 | ---- | M] (mozilla.org) – C:\Program Files\mozilla firefox\plugins\npnul32.dll

[2006-10-26 20:12:16 | 00,016,192 | ---- | M] (Microsoft Corporation) – C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL

[2009-02-27 09:43:42 | 00,103,792 | ---- | M] (Adobe Systems Inc.) – C:\Program Files\mozilla firefox\plugins\nppdf32.dll

[2009-08-10 11:00:41 | 00,139,305 | ---- | M] (RealNetworks, Inc.) – C:\Program Files\mozilla firefox\plugins\nppl3260.dll

[2009-08-10 11:00:47 | 00,024,621 | ---- | M] (RealNetworks, Inc.) – C:\Program Files\mozilla firefox\plugins\nprjplug.dll

[2009-08-10 11:00:39 | 00,081,967 | ---- | M] (RealNetworks, Inc.) – C:\Program Files\mozilla firefox\plugins\nprpjplug.dll

[2006-06-03 18:43:22 | 00,000,896 | ---- | M] () – C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml

[2008-04-03 19:19:08 | 00,001,406 | ---- | M] () – C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml

[2008-04-16 06:08:20 | 00,001,706 | ---- | M] () – C:\Program Files\mozilla firefox\searchplugins\google.xml

[2007-03-31 19:11:54 | 00,000,917 | ---- | M] () – C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml

[2006-06-03 18:43:22 | 00,000,858 | ---- | M] () – C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml

[2008-03-28 23:36:04 | 00,001,183 | ---- | M] () – C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml

[2007-01-05 13:40:56 | 00,001,683 | ---- | M] () – C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

O1 HOSTS File: (742 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.7.16.dll (BitComet)

O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)

O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)

O4 - HKLM…\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)

O4 - HKLM…\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)

O4 - HKLM…\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)

O4 - HKLM…\Run: [bigDogPath323Domino] C:\WINDOWS\Domino.exe (Vimicro)

O4 - HKLM…\Run: [bigDogPath323VMSnap] C:\WINDOWS\VMSnap23.exe ()

O4 - HKLM…\Run: [brMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe (Brother Industries, Ltd.)

O4 - HKLM…\Run: [CTRegRun] C:\WINDOWS\CTRegRun.EXE (Creative Technology Ltd )

O4 - HKLM…\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe ()

O4 - HKLM…\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe (Intel Corporation)

O4 - HKLM…\Run: [igfxTray] C:\WINDOWS\System32\igfxtray.exe (Intel Corporation)

O4 - HKLM…\Run: [KernelFaultCheck] File not found

O4 - HKLM…\Run: [NeroFilterCheck] C:\WINDOWS\System32\NeroCheck.exe (Ahead Software Gmbh)

O4 - HKLM…\Run: [Persistence] C:\WINDOWS\System32\igfxpers.exe (Intel Corporation)

O4 - HKLM…\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.)

O4 - HKLM…\Run: [sSBkgdUpdate] C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe (Nuance Communications, Inc.)

O4 - HKLM…\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)

O4 - HKLM…\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)

O4 - HKLM…\Run: [unlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe ()

O4 - HKLM…\Run: [VistaDrive] C:\WINDOWS\VistaDrive\VistaDrive.exe ()

O4 - HKCU…\Run: [DAEMON Tools Lite] D:\programy\deamon tools\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)

O4 - HKCU…\Run: [Nowe Gadu-Gadu] C:\Program Files\Nowe Gadu-Gadu\gg.exe (GG Network S.A.)

O4 - Startup: C:\Documents and Settings\bogna_cz\Menu Start\Programy\Autostart\Picture Motion Browser Media Check Tool.lnk = C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe (Sony Corporation)

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)

O8 - Extra context menu item: Pobierz wszystkie VIdeo za pomocą BitComet - C:\Program Files\BitComet\BitComet.exe (http://www.BitComet.com)

O8 - Extra context menu item: Pobierz wszystko za pomocą BitComet - C:\Program Files\BitComet\BitComet.exe (http://www.BitComet.com)

O8 - Extra context menu item: Pobierz za pomocą BitComet - C:\Program Files\BitComet\BitComet.exe (http://www.BitComet.com)

O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)

O9 - Extra ‘Tools’ menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_16)

O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_16)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_16)

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s … wflash.cab (Shockwave Flash Object)

O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\ipp - No CLSID value found

O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp - No CLSID value found

O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)

O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)

O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)

O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home

O28 - HKLM ShellExecuteHooks: {BB4C402F-882A-4526-8C08-51278EA437C1} - Reg Error: Key error. File not found

O31 - SafeBoot: AlternateShell - cmd.exe

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2009-03-21 12:02:30 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT – [NTFS]

O32 - AutoRun File - [2009-06-22 09:46:03 | 00,000,011 | RHS- | M] () - C:\autorun.inf – [NTFS]

O32 - AutoRun File - [2009-06-22 09:46:07 | 00,000,011 | RHS- | M] () - D:\autorun.inf – [NTFS]

O33 - MountPoints2{06573910-4f48-11de-9f01-0015af98a2b8}\Shell - “” = AutoRun

O33 - MountPoints2{06573aa1-4f48-11de-9f01-0015af98a2b8}\Shell - “” = AutoRun

O33 - MountPoints2{406305dd-1a29-11de-9e67-0015af98a2b8}\Shell - “” = AutoRun

O33 - MountPoints2{406305dd-1a29-11de-9e67-0015af98a2b8}\Shell\AutoRun\command - “” = G:\setup.exe – File not found

O33 - MountPoints2{42a42c1c-1f50-11de-9e79-0015af98a2b8}\Shell - “” = AutoRun

O33 - MountPoints2{4ffede79-53a9-11de-9f0a-0015af98a2b8}\Shell\AutoRun\command - “” = G:\sm.exe – File not found

O33 - MountPoints2{4ffede79-53a9-11de-9f0a-0015af98a2b8}\Shell\open\Command - “” = G:\sm.exe – File not found

O33 - MountPoints2{b706b066-5cfd-11de-9f38-0015af98a2b8}\Shell - “” = AutoRun

O33 - MountPoints2{de330f1a-559a-11de-9f18-0015af98a2b8}\Shell - “” = AutoRun

O34 - HKLM BootExecute: (autocheck) - File not found

O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)

O34 - HKLM BootExecute: (*) - File not found

========== Files/Folders - Created Within 30 Days ==========

[1 C:\WINDOWS\System32*.tmp files]

[3 C:\WINDOWS*.tmp files]

[2009-09-10 12:47:01 | 00,514,048 | ---- | C] (OldTimer Tools) – C:\Documents and Settings\bogna_cz\Pulpit\OTL.exe

[2009-09-10 11:55:03 | 00,001,734 | ---- | C] () – C:\Documents and Settings\bogna_cz\Pulpit\HijackThis.lnk

[2009-09-10 11:55:03 | 00,000,000 | —D | C] – C:\Program Files\Trend Micro

[2009-09-10 10:47:54 | 00,000,000 | —D | C] – C:\Documents and Settings\bogna_cz\Dane aplikacji\Sony Corporation

[2009-09-10 10:43:39 | 00,000,000 | —D | C] – C:\WINDOWS\LastGood

[2009-09-10 10:42:15 | 00,118,520 | ---- | C] (Sonic Solutions) – C:\WINDOWS\System32\PxInsI64.exe

[2009-09-10 10:42:15 | 00,115,960 | ---- | C] (Sonic Solutions) – C:\WINDOWS\System32\PxCpyI64.exe

[2009-09-10 10:41:48 | 00,001,985 | ---- | C] () – C:\Documents and Settings\bogna_cz\Menu Start\Programy\Autostart\Picture Motion Browser Media Check Tool.lnk

[2009-09-10 10:35:37 | 00,001,824 | ---- | C] () – C:\Documents and Settings\All Users\Pulpit\Picture Motion Browser Guide.lnk

[2009-09-10 10:35:34 | 00,001,683 | ---- | C] () – C:\Documents and Settings\All Users\Pulpit\Picture Motion Browser.lnk

[2009-09-10 10:35:34 | 00,000,000 | —D | C] – C:\Program Files\Sony

[2009-09-10 00:21:58 | 00,000,000 | —D | C] – C:\Documents and Settings\bogna_cz\Moje dokumenty\667040119520NW36B

[2009-09-10 00:00:17 | 20,971,5200 | ---- | C] () – C:\Documents and Settings\bogna_cz\Moje dokumenty\banlieue13u-org.part1.rar

[2009-09-09 23:47:59 | 65,301,172 | ---- | C] () – C:\Documents and Settings\bogna_cz\Moje dokumenty\667040119520NW36B.rar

[2009-09-09 23:11:05 | 00,000,000 | —D | C] – C:\Downloads

[2009-09-09 23:10:56 | 00,000,720 | ---- | C] () – C:\Documents and Settings\All Users\Pulpit\BitComet.lnk

[2009-09-09 23:10:52 | 00,000,000 | —D | C] – C:\Program Files\BitComet

[2009-09-09 19:24:52 | 05,904,656 | ---- | C] () – C:\Documents and Settings\bogna_cz\Moje dokumenty\BitComet_1.14_setup.exe

[2009-09-09 19:14:15 | 00,000,666 | ---- | C] () – C:\Documents and Settings\bogna_cz\Pulpit\SopCast.lnk

[2009-09-09 19:14:14 | 00,000,000 | —D | C] – C:\Program Files\SopCast

[2009-09-09 19:13:00 | 05,419,576 | ---- | C] () – C:\Documents and Settings\bogna_cz\Moje dokumenty\SopCast-3.2.4.zip

[2009-09-09 18:10:19 | 00,000,000 | —D | C] – C:\Documents and Settings\bogna_cz\Ustawienia lokalne\Dane aplikacji\Opera

[2009-09-09 18:10:19 | 00,000,000 | —D | C] – C:\Documents and Settings\bogna_cz\Dane aplikacji\Opera

[2009-09-09 18:10:14 | 00,000,592 | ---- | C] () – C:\Documents and Settings\All Users\Pulpit\Opera.lnk

[2009-09-09 18:10:09 | 00,000,000 | —D | C] – C:\Program Files\Opera

[2009-09-09 16:28:42 | 00,005,504 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\drivers\MSTEE.sys

[2009-09-09 16:28:41 | 00,010,880 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\drivers\NdisIP.sys

[2009-09-09 16:28:40 | 00,016,384 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\ipsink.ax

[2009-09-09 16:28:40 | 00,015,232 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\drivers\StreamIP.sys

[2009-09-09 16:28:40 | 00,011,136 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\drivers\SLIP.sys

[2009-09-09 16:28:38 | 00,019,200 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\drivers\WSTCODEC.SYS

[2009-09-09 16:28:37 | 00,085,248 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\drivers\NABTSFEC.sys

[2009-09-09 16:28:36 | 00,017,024 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\drivers\CCDECODE.sys

[2009-09-09 16:28:29 | 00,000,000 | —D | C] – C:\WINDOWS\EffectResources

[2009-09-09 16:28:28 | 00,091,648 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\kswdmcap.ax

[2009-09-09 16:28:28 | 00,058,368 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\vfwwdm32.dll

[2009-09-09 16:28:28 | 00,043,008 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\ksxbar.ax

[2009-09-09 16:28:28 | 00,028,672 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\vidcap.ax

[2009-09-09 16:28:27 | 00,061,952 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\kstvtune.ax

[2009-09-09 16:28:25 | 00,020,992 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\dshowext.ax

[2009-09-09 16:27:38 | 00,921,656 | ---- | C] () – C:\WINDOWS\System32\VGA.RAW

[2009-09-09 16:27:38 | 00,260,224 | ---- | C] (Vimicro Corporation) – C:\WINDOWS\System32\drivers\usbvm323.sys

[2009-09-09 16:27:38 | 00,253,952 | ---- | C] (vimicro) – C:\WINDOWS\System32\Vmprp323.ax

[2009-09-09 16:27:38 | 00,212,992 | ---- | C] () – C:\WINDOWS\VMSnap23.exe

[2009-09-09 16:27:38 | 00,192,512 | ---- | C] (Vimicro Corporation) – C:\WINDOWS\VmCam.exe

[2009-09-09 16:27:38 | 00,098,304 | ---- | C] (Vimicro Corporation) – C:\WINDOWS\System32\VMCtrl323.ax

[2009-09-09 16:27:38 | 00,081,920 | ---- | C] () – C:\WINDOWS\VMCap323.exe

[2009-09-09 16:27:38 | 00,049,152 | ---- | C] (Vimicro) – C:\WINDOWS\Domino.exe

[2009-09-09 16:27:37 | 00,476,672 | ---- | C] (Vimicro Corporation) – C:\WINDOWS\System32\drivers\vmfilter323.sys

[2009-09-09 16:27:37 | 00,040,960 | ---- | C] () – C:\WINDOWS\System32\setupfilter.exe

[2009-09-09 16:27:27 | 00,000,000 | —D | C] – C:\Program Files\Vimicro

[2009-09-09 16:26:09 | 00,139,264 | ---- | C] () – C:\WINDOWS\System32\vmcoinst_vc0323.dll

[2009-09-09 15:56:54 | 00,149,280 | ---- | C] (Sun Microsystems, Inc.) – C:\WINDOWS\System32\javaws.exe

[2009-09-09 15:56:54 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) – C:\WINDOWS\System32\javaw.exe

[2009-09-09 15:56:54 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) – C:\WINDOWS\System32\java.exe

[2009-09-09 15:30:01 | 00,000,000 | —D | C] – C:\Program Files\Spybot - Search & Destroy

[2009-09-09 13:57:26 | 98,658,967 | ---- | C] () – C:\Documents and Settings\bogna_cz\Moje dokumenty\Marketing_Management_12th_edition_ertu.pdf

[2009-09-08 23:17:34 | 00,000,000 | —D | C] – C:\WINDOWS\pss

[2009-09-08 15:10:08 | 00,000,000 | —D | C] – C:\Documents and Settings\All Users\Dane aplikacji\Google

[2009-09-07 10:49:54 | 00,000,260 | ---- | C] () – C:\WINDOWS\tasks\WGASetup.job

[2009-09-07 10:49:54 | 00,000,000 | —D | C] – C:\WINDOWS\System32\KB905474

[2009-09-07 10:49:19 | 00,000,000 | —D | C] – C:\Program Files\MSXML 4.0

[2009-09-06 14:51:44 | 00,000,000 | —D | C] – C:\Documents and Settings\bogna_cz\Moje dokumenty\Nowy folder (2)

[2009-09-01 21:06:33 | 00,000,000 | —D | C] – C:\WINDOWS\Minidump

[2009-09-01 19:25:04 | 00,000,000 | —D | C] – C:\Program Files\Electronic Arts

[2009-09-01 19:14:23 | 00,000,000 | —D | C] – C:\Documents and Settings\bogna_cz\Moje dokumenty\Electronic Arts

[2009-08-31 21:50:24 | 00,000,056 | -H-- | C] () – C:\WINDOWS\System32\ezsidmv.dat

[2009-08-31 21:50:24 | 00,000,000 | —D | C] – C:\Documents and Settings\bogna_cz\Dane aplikacji\skypePM

[2009-08-31 21:48:48 | 00,000,000 | —D | C] – C:\Documents and Settings\bogna_cz\Dane aplikacji\Skype

[2009-08-31 21:48:14 | 00,002,267 | ---- | C] () – C:\Documents and Settings\All Users\Pulpit\Skype.lnk

[2009-08-31 21:48:14 | 00,000,000 | —D | C] – C:\Program Files\Common Files\Skype

[2009-08-31 21:48:09 | 00,000,000 | R–D | C] – C:\Program Files\Skype

[2009-08-31 21:48:04 | 00,000,000 | —D | C] – C:\Documents and Settings\All Users\Dane aplikacji\Skype

[2009-08-31 18:28:11 | 00,421,376 | ---- | C] () – C:\Documents and Settings\bogna_cz\Moje dokumenty\karta ekuz.doc

[2009-08-31 08:56:13 | 00,000,000 | —D | C] – C:\Documents and Settings\bogna_cz\Ustawienia lokalne\Dane aplikacji\Google

[2009-08-31 08:54:22 | 00,000,000 | —D | C] – C:\Program Files\Google

[2009-08-28 22:01:23 | 00,000,000 | —D | C] – C:\Documents and Settings\bogna_cz\Moje dokumenty\Nowy folder

[2009-08-23 12:49:14 | 00,000,000 | —D | C] – C:\Documents and Settings\bogna_cz\Moje dokumenty\AUTOMAPA EU

[2009-08-11 23:05:45 | 00,000,040 | -H-- | C] () – C:\WINDOWS\System32\ivireg.ivr

[2009-08-11 22:33:14 | 05,300,068 | -H-- | C] () – C:\Documents and Settings\bogna_cz\Ustawienia lokalne\Dane aplikacji\IconCache.db

[2009-08-10 11:10:43 | 00,000,025 | ---- | C] () – C:\WINDOWS\cdplayer.ini

[2009-06-15 19:59:58 | 00,000,404 | ---- | C] () – C:\WINDOWS\BRWMARK.INI

[2009-06-15 19:59:58 | 00,000,027 | ---- | C] () – C:\WINDOWS\BRPP2KA.INI

[2009-06-15 19:49:00 | 00,031,567 | ---- | C] () – C:\WINDOWS\maxlink.ini

[2009-06-14 19:46:39 | 00,000,095 | ---- | C] () – C:\WINDOWS\wininit.ini

[2009-06-10 11:28:36 | 00,000,116 | ---- | C] () – C:\WINDOWS\NeroDigital.ini

[2009-06-09 23:39:38 | 00,383,238 | ---- | C] () – C:\WINDOWS\System32\libmp3lame-0.dll

[2009-05-19 17:29:34 | 00,139,264 | ---- | C] () – C:\WINDOWS\System32\xvidvfw.dll

[2009-05-19 17:29:33 | 00,795,648 | ---- | C] () – C:\WINDOWS\System32\xvidcore.dll

[2009-04-09 20:21:26 | 00,000,039 | ---- | C] () – C:\WINDOWS\Irremote.ini

[2009-03-31 15:32:14 | 00,000,547 | ---- | C] () – C:\WINDOWS\System32\ff_vfw.dll.manifest

[2009-03-31 15:32:13 | 00,084,480 | ---- | C] () – C:\WINDOWS\System32\ff_vfw.dll

[2009-03-21 14:33:12 | 00,717,296 | ---- | C] () – C:\WINDOWS\System32\drivers\sptd.sys

[2009-03-21 12:49:12 | 00,005,632 | ---- | C] () – C:\WINDOWS\System32\drivers\ATKACPI.sys

[2009-03-21 12:32:33 | 01,843,784 | ---- | C] () – C:\WINDOWS\System32\igklg400.dll

[2009-03-21 12:32:33 | 01,399,880 | ---- | C] () – C:\WINDOWS\System32\igklg450.dll

[2009-03-21 12:32:33 | 00,147,456 | ---- | C] () – C:\WINDOWS\System32\igfxCoIn_v4885.dll

[2009-03-21 12:32:33 | 00,104,636 | ---- | C] () – C:\WINDOWS\System32\igmedcompkrn.dll

[2009-03-21 12:10:42 | 00,000,081 | ---- | C] () – C:\WINDOWS\System32\OEMINFO.INI

[2009-02-02 03:02:33 | 00,394,240 | ---- | C] () – C:\WINDOWS\System32\HMTCD.dll

[2008-04-15 13:00:00 | 00,061,440 | ---- | C] () – C:\WINDOWS\System32\CopyToSendTo.dll

[2008-04-15 13:00:00 | 00,000,766 | ---- | C] () – C:\WINDOWS\win.ini

[2008-04-15 13:00:00 | 00,000,231 | ---- | C] () – C:\WINDOWS\system.ini

[2008-04-14 13:58:40 | 02,854,912 | ---- | C] () – C:\WINDOWS\System32\btwicons.dll

========== Files - Modified Within 30 Days ==========

[2 C:\WINDOWS\System32\drivers*.tmp files]

[1 C:\WINDOWS\System32*.tmp files]

[3 C:\WINDOWS*.tmp files]

[2009-09-10 12:47:02 | 00,514,048 | ---- | M] (OldTimer Tools) – C:\Documents and Settings\bogna_cz\Pulpit\OTL.exe

[2009-09-10 11:55:03 | 00,001,734 | ---- | M] () – C:\Documents and Settings\bogna_cz\Pulpit\HijackThis.lnk

[2009-09-10 10:41:48 | 00,001,985 | ---- | M] () – C:\Documents and Settings\bogna_cz\Menu Start\Programy\Autostart\Picture Motion Browser Media Check Tool.lnk

[2009-09-10 10:35:37 | 00,001,824 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\Picture Motion Browser Guide.lnk

[2009-09-10 10:35:34 | 00,001,683 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\Picture Motion Browser.lnk

[2009-09-10 09:51:31 | 00,000,260 | ---- | M] () – C:\WINDOWS\tasks\WGASetup.job

[2009-09-10 09:48:38 | 00,000,006 | -H-- | M] () – C:\WINDOWS\tasks\SA.DAT

[2009-09-10 09:48:32 | 00,002,048 | --S- | M] () – C:\WINDOWS\bootstat.dat

[2009-09-10 00:23:46 | 20,971,5200 | ---- | M] () – C:\Documents and Settings\bogna_cz\Moje dokumenty\banlieue13u-org.part1.rar

[2009-09-10 00:08:04 | 00,000,116 | ---- | M] () – C:\WINDOWS\NeroDigital.ini

[2009-09-09 23:56:10 | 65,301,172 | ---- | M] () – C:\Documents and Settings\bogna_cz\Moje dokumenty\667040119520NW36B.rar

[2009-09-09 23:10:56 | 00,000,720 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\BitComet.lnk

[2009-09-09 19:24:52 | 05,904,656 | ---- | M] () – C:\Documents and Settings\bogna_cz\Moje dokumenty\BitComet_1.14_setup.exe

[2009-09-09 19:14:15 | 00,000,666 | ---- | M] () – C:\Documents and Settings\bogna_cz\Pulpit\SopCast.lnk

[2009-09-09 19:13:49 | 05,419,576 | ---- | M] () – C:\Documents and Settings\bogna_cz\Moje dokumenty\SopCast-3.2.4.zip

[2009-09-09 18:10:14 | 00,000,592 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\Opera.lnk

[2009-09-09 16:42:58 | 00,002,267 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\Skype.lnk

[2009-09-09 16:30:26 | 00,000,766 | ---- | M] () – C:\WINDOWS\win.ini

[2009-09-09 14:00:31 | 00,048,128 | ---- | M] () – C:\Documents and Settings\bogna_cz\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2009-09-09 11:31:10 | 00,002,645 | ---- | M] () – C:\WINDOWS\System32\CONFIG.NT

[2009-09-08 12:22:07 | 00,002,206 | ---- | M] () – C:\WINDOWS\System32\wpa.dbl

[2009-09-07 11:23:05 | 01,115,526 | ---- | M] () – C:\WINDOWS\System32\PerfStringBackup.INI

[2009-09-07 11:23:05 | 00,500,540 | ---- | M] () – C:\WINDOWS\System32\perfh015.dat

[2009-09-07 11:23:05 | 00,441,458 | ---- | M] () – C:\WINDOWS\System32\perfh009.dat

[2009-09-07 11:23:05 | 00,089,036 | ---- | M] () – C:\WINDOWS\System32\perfc015.dat

[2009-09-07 11:23:05 | 00,071,394 | ---- | M] () – C:\WINDOWS\System32\perfc009.dat

[2009-09-06 02:27:56 | 00,000,375 | ---- | M] () – C:\WINDOWS\System32\drivers\etc\hosts.ics

[2009-08-31 21:50:24 | 00,000,056 | -H-- | M] () – C:\WINDOWS\System32\ezsidmv.dat

[2009-08-31 18:28:11 | 00,421,376 | ---- | M] () – C:\Documents and Settings\bogna_cz\Moje dokumenty\karta ekuz.doc

[2009-08-31 18:27:39 | 00,047,976 | ---- | M] () – C:\Documents and Settings\bogna_cz\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT

[2009-08-17 18:10:20 | 01,279,456 | ---- | M] (ALWIL Software) – C:\WINDOWS\System32\aswBoot.exe

[2009-08-17 18:06:54 | 00,093,392 | ---- | M] (ALWIL Software) – C:\WINDOWS\System32\drivers\aswmon.sys

[2009-08-17 18:06:43 | 00,094,160 | ---- | M] (ALWIL Software) – C:\WINDOWS\System32\drivers\aswmon2.sys

[2009-08-17 18:05:52 | 00,114,768 | ---- | M] (ALWIL Software) – C:\WINDOWS\System32\drivers\aswSP.sys

[2009-08-17 18:05:37 | 00,020,560 | ---- | M] (ALWIL Software) – C:\WINDOWS\System32\drivers\aswFsBlk.sys

[2009-08-17 18:04:40 | 00,051,376 | ---- | M] (ALWIL Software) – C:\WINDOWS\System32\drivers\aswTdi.sys

[2009-08-17 18:04:29 | 00,023,152 | ---- | M] (ALWIL Software) – C:\WINDOWS\System32\drivers\aswRdr.sys

[2009-08-17 18:03:21 | 00,026,944 | ---- | M] (ALWIL Software) – C:\WINDOWS\System32\drivers\aavmker4.sys

[2009-08-17 18:02:50 | 00,097,480 | ---- | M] (ALWIL Software) – C:\WINDOWS\System32\AvastSS.scr

[2009-08-11 23:05:45 | 00,000,040 | -H-- | M] () – C:\WINDOWS\System32\ivireg.ivr

[2009-08-11 23:05:15 | 00,204,120 | ---- | M] () – C:\WINDOWS\System32\FNTCACHE.DAT

[2009-08-11 22:33:14 | 05,300,068 | -H-- | M] () – C:\Documents and Settings\bogna_cz\Ustawienia lokalne\Dane aplikacji\IconCache.db

< End of report >

Wynik testu szybkości

561443202.png

Nie wiem jakie jest polączenie. kabel idzie z laptopa do ściany. To jest węgierski akademik i nawet ciezko po angielsku sie dogadac bo rzadko kto go zna.

Dodane 10.09.2009 (Cz) 13:02

A i chyba jeszcze to musze wkleić.

OTL Extras logfile created on: 2009-09-10 12:47:07 - Run 1

OTL by OldTimer - Version 3.0.10.7 Folder = C:\Documents and Settings\bogna_cz\Pulpit

Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 7.0.5730.13)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1,99 Gb Total Physical Memory | 1,28 Gb Available Physical Memory | 64,13% Memory free

3,84 Gb Paging File | 3,21 Gb Available in Paging File | 83,66% Paging File free

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 55,89 Gb Total Space | 27,44 Gb Free Space | 49,10% Space Free | Partition Type: NTFS

Drive D: | 48,08 Gb Total Space | 4,90 Gb Free Space | 10,19% Space Free | Partition Type: NTFS

E: Drive not present or media not loaded

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: BOGNA

Current User Name: bogna_cz

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: Current user

Company Name Whitelist: Off

Skip Microsoft Files: Off

File Age = 30 Days

Output = Standard

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes]

.html [@ = htmlfile] – C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes]

.html [@ = FirefoxHTML] – C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

“FirstRunDisabled” = 1

“AntiVirusDisableNotify” = 0

“FirewallDisableNotify” = 0

“UpdatesDisableNotify” = 0

“AntiVirusOverride” = 0

“FirewallOverride” = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

“139:TCP” = 139:TCP:*:Enabled:@xpsp2res.dll,-22004

“445:TCP” = 445:TCP:*:Enabled:@xpsp2res.dll,-22005

“137:UDP” = 137:UDP:*:Enabled:@xpsp2res.dll,-22001

“138:UDP” = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

“EnableFirewall” = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

“1900:UDP” = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007

“2869:TCP” = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

“139:TCP” = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004

“445:TCP” = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005

“137:UDP” = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001

“138:UDP” = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002

“3992:TCP” = 3992:TCP:*:Enabled:apyjn

“13665:TCP” = 13665:TCP:*:Enabled:BitComet 13665 TCP

“13665:UDP” = 13665:UDP:*:Enabled:BitComet 13665 UDP

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

“%windir%\Network Diagnostic\xpnetdiag.exe” = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 – (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

“%windir%\Network Diagnostic\xpnetdiag.exe” = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 – (Microsoft Corporation)

“C:\Program Files\uTorrent\uTorrent.exe” = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent – (BitTorrent, Inc.)

“C:\Program Files\SopCast\adv\SopAdver.exe” = C:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver – (www.sopcast.com)

“C:\Program Files\SopCast\SopCast.exe” = C:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application – (www.sopcast.com)

“C:\Program Files\Nowe Gadu-Gadu\gg.exe” = C:\Program Files\Nowe Gadu-Gadu\gg.exe:*:Disabled:Nowe Gadu-Gadu – (GG Network S.A.)

“C:\Program Files\Electronic Arts\EADM\Core.exe” = C:\Program Files\Electronic Arts\EADM\Core.exe:*:Enabled:EA Download Manager – File not found

“C:\Program Files\Skype\Phone\Skype.exe” = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype – (Skype Technologies S.A.)

“C:\Program Files\BitComet\BitComet.exe” = C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet.exe – (www.BitComet.com)

“C:\Program Files\Opera\opera.exe” = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser – (Opera Software)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

“{0A795E81-7E99-4574-923D-8A0AF1F11CA1}” = ScanSoft PaperPort 11

“{2085F05D-24C5-4E27-B7B4-A51DE890FFC9}” = Opera 10.00

“{26A24AE4-039D-4CA4-87B4-2F83216011FF}” = Java 6 Update 16

“{2BC2781A-F7F6-452E-95EB-018A522F1B2C}” = PaperPort Image Printer

“{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}” = WebFldrs XP

“{359FCAA7-B544-4147-AE3B-8C8A526E2427}” = Sony Image Data Suite

“{36820BCA-FC55-452E-9085-6E6F1F55508D}” = Vimicro USB2.0 PC Camera (VC0323)

“{3A08B59E-A9F0-4F4D-B7E5-6875D7F13327}” = Brother MFL-Pro Suite DCP-145C

“{56C049BE-79E9-4502-BEA7-9754A3E60F9B}” = neroxml

“{7299052b-02a4-4627-81f2-1818da5d550d}” = Microsoft Visual C++ 2005 Redistributable

“{84814E6B-2581-46EC-926A-823BD1C670F6}” = WIDCOMM Bluetooth Software

“{90120000-0010-0415-0000-0000000FF1CE}” = Microsoft Software Update for Web Folders (Polish) 12

“{90120000-0015-0415-0000-0000000FF1CE}” = Microsoft Office Access MUI (Polish) 2007

“{90120000-0016-0415-0000-0000000FF1CE}” = Microsoft Office Excel MUI (Polish) 2007

“{90120000-0018-0415-0000-0000000FF1CE}” = Microsoft Office PowerPoint MUI (Polish) 2007

“{90120000-0019-0415-0000-0000000FF1CE}” = Microsoft Office Publisher MUI (Polish) 2007

“{90120000-001A-0415-0000-0000000FF1CE}” = Microsoft Office Outlook MUI (Polish) 2007

“{90120000-001B-0415-0000-0000000FF1CE}” = Microsoft Office Word MUI (Polish) 2007

“{90120000-001F-0407-0000-0000000FF1CE}” = Microsoft Office Proof (German) 2007

“{90120000-001F-0409-0000-0000000FF1CE}” = Microsoft Office Proof (English) 2007

“{90120000-001F-0415-0000-0000000FF1CE}” = Microsoft Office Proof (Polish) 2007

“{90120000-002C-0415-0000-0000000FF1CE}” = Microsoft Office Proofing (Polish) 2007

“{90120000-0030-0000-0000-0000000FF1CE}” = Microsoft Office Enterprise 2007

“{90120000-0044-0415-0000-0000000FF1CE}” = Microsoft Office InfoPath MUI (Polish) 2007

“{90120000-006E-0415-0000-0000000FF1CE}” = Microsoft Office Shared MUI (Polish) 2007

“{90120000-00A1-0415-0000-0000000FF1CE}” = Microsoft Office OneNote MUI (Polish) 2007

“{90120000-00BA-0415-0000-0000000FF1CE}” = Microsoft Office Groove MUI (Polish) 2007

“{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}” = Microsoft .NET Framework 3.0 Service Pack 2

“{A49F249F-0C91-497F-86DF-B2585E8E76B7}” = Microsoft Visual C++ 2005 Redistributable

“{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}” = ImagXpress

“{AC76BA86-7AD7-1045-7B44-A91000000001}” = Adobe Reader 9.1 - Polish

“{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}” = The Sims™ 3

“{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}” = Microsoft .NET Framework 2.0 Service Pack 2

“{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}” = Microsoft .NET Framework 1.1

“{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}” = Microsoft .NET Framework 3.5 SP1

“{D103C4BA-F905-437A-8049-DB24763BBE36}” = Skype™ 4.1

“{D5068583-D569-468B-9755-5FBF5848F46F}” = Sony Picture Utility

“{E1180142-3B31-4DCC-9D27-7AC2D37662BF}” = LightScribe 1.4.124.1

“{E3993D46-AE3F-402E-9F9D-EEBDFBEC3564}” = Corel WinDVD 9

“{E3E71D07-CD27-46CB-8448-16D4FB29AA13}” = Microsoft WSE 3.0 Runtime

“{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}” = Realtek High Definition Audio Driver

“Adobe Flash Player ActiveX” = Adobe Flash Player 10 ActiveX

“Adobe Flash Player Plugin” = Adobe Flash Player 10 Plugin

“ALLPlayer_is1” = ALLPlayer V4.X

“AudibleManager” = AudibleManager

“avast!” = avast! Antivirus

“BitComet” = BitComet 1.14

“CCleaner” = CCleaner (remove only)

“DamnNFOViewer” = DAMN NFO Viewer v2.10.0032.RC3 (Remove Only)

“ENTERPRISE” = Microsoft Office Enterprise 2007

“ffdshow_is1” = ffdshow [rev 2844] [2009-03-30]

“HControl” = ATK0100 ACPI UTILITY

“HDMI” = Intel® Graphics Media Accelerator Driver

“HijackThis” = HijackThis 2.0.2

“InstallShield_{E3993D46-AE3F-402E-9F9D-EEBDFBEC3564}” = Corel WinDVD 9

“Microsoft .NET Framework 1.1 (1033)” = Microsoft .NET Framework 1.1

“Microsoft .NET Framework 3.5 SP1” = Microsoft .NET Framework 3.5 SP1

“Mozilla Firefox (3.0.5)” = Mozilla Firefox (3.0.5)

“NAPIPROJEKT_is1” = NAPIPROJEKT 1.0.6.2

“Nero - Burning Rom!UninstallKey” = Nero OEM

“Nowe Gadu-Gadu” = Nowe Gadu-Gadu

“RealPlayer 6.0” = RealPlayer

“SopCast” = SopCast 3.2.4

“ST6UNST #1” = MaXimus DVD Version 1.2

“SubEdit-Player_is1” = SubEdit-Player

“VDrive” = Vista Drive Indicator!

“Winamp” = Winamp

“WinRAR archiver” = WinRAR archiver

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

“uTorrent” = µTorrent

========== Last 10 Event Log Errors ==========

[Application Events]

Error - 2009-06-17 16:48:30 | Computer Name = BOGNA | Source = crypt32 | ID = 131080

Description = Nie można automatycznie pobrać aktualizacji numeru sekwencji głównej

listy innych firm z: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt,

wystąpił błąd: To połączenie sieciowe nie istnieje.

Error - 2009-06-17 16:48:52 | Computer Name = BOGNA | Source = crypt32 | ID = 131080

Description = Nie można automatycznie pobrać aktualizacji numeru sekwencji głównej

listy innych firm z: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt,

wystąpił błąd: The server name or address could not be resolved

Error - 2009-06-17 16:48:52 | Computer Name = BOGNA | Source = crypt32 | ID = 131080

Description = Nie można automatycznie pobrać aktualizacji numeru sekwencji głównej

listy innych firm z: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt,

wystąpił błąd: To połączenie sieciowe nie istnieje.

Error - 2009-06-17 16:56:08 | Computer Name = BOGNA | Source = crypt32 | ID = 131080

Description = Nie można automatycznie pobrać aktualizacji numeru sekwencji głównej

listy innych firm z: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt,

wystąpił błąd: The server name or address could not be resolved

Error - 2009-06-17 16:56:19 | Computer Name = BOGNA | Source = crypt32 | ID = 131080

Description = Nie można automatycznie pobrać aktualizacji numeru sekwencji głównej

listy innych firm z: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt,

wystąpił błąd: The server name or address could not be resolved

Error - 2009-06-17 16:56:33 | Computer Name = BOGNA | Source = crypt32 | ID = 131080

Description = Nie można automatycznie pobrać aktualizacji numeru sekwencji głównej

listy innych firm z: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt,

wystąpił błąd: The server name or address could not be resolved

Error - 2009-08-02 08:52:08 | Computer Name = BOGNA | Source = PerfNet | ID = 2005

Description = Nie można odczytać danych wydajności z usługi Server. W tej próbce

nie zostaną zwrócone dane wydajności usługi Server. Zwrócony kod stanu to dane DWORD

0, IOSB.Status to dane DWORD 1 a IOSB.Information to dane DWORD 2.

Error - 2009-08-02 08:52:08 | Computer Name = BOGNA | Source = PerfNet | ID = 2006

Description = Nie można odczytać danych wydajności z usługi Server Queue. W tej próbce

nie zostaną zwrócone dane wydajności usługi Server Queue. Zwrócony kod stanu to

dane DWORD 0, IOSB.Status to dane DWORD 1 a IOSB.Information to dane DWORD 2.

Error - 2009-08-03 11:09:53 | Computer Name = BOGNA | Source = PerfNet | ID = 2005

Description = Nie można odczytać danych wydajności z usługi Server. W tej próbce

nie zostaną zwrócone dane wydajności usługi Server. Zwrócony kod stanu to dane DWORD

0, IOSB.Status to dane DWORD 1 a IOSB.Information to dane DWORD 2.

Error - 2009-08-03 11:09:53 | Computer Name = BOGNA | Source = PerfNet | ID = 2006

Description = Nie można odczytać danych wydajności z usługi Server Queue. W tej próbce

nie zostaną zwrócone dane wydajności usługi Server Queue. Zwrócony kod stanu to

dane DWORD 0, IOSB.Status to dane DWORD 1 a IOSB.Information to dane DWORD 2.

[OSession Events]

Error - 2009-04-28 09:08:15 | Computer Name = BOGNA | Source = Microsoft Office 12 Sessions | ID = 7001

Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:

12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 3637

seconds with 3240 seconds of active time. This session ended with a crash.

[System Events]

Error - 2009-04-09 16:24:36 | Computer Name = BOGNA | Source = Cdrom | ID = 262151

Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-04-09 16:24:42 | Computer Name = BOGNA | Source = Cdrom | ID = 262151

Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-04-09 16:24:49 | Computer Name = BOGNA | Source = Cdrom | ID = 262151

Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-04-09 16:24:55 | Computer Name = BOGNA | Source = Cdrom | ID = 262151

Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-04-09 16:25:01 | Computer Name = BOGNA | Source = Cdrom | ID = 262151

Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2009-04-13 07:36:32 | Computer Name = BOGNA | Source = Dhcp | ID = 1000

Description = Komputer utracił połączenie dla swojego adresu IP 192.168.1.100 na

karcie sieciowej o adresie sieciowym 0015AF98A2B8.

Error - 2009-04-14 10:40:02 | Computer Name = BOGNA | Source = Dhcp | ID = 1002

Description = Adres IP połączenia 192.168.1.101 dla karty sieciowej o adresie 0015AF98A2B8

został zabroniony przez serwer DHCP 0.0.0.0 (Serwer DHCP wysłał komunikat DHCPNACK).

Error - 2009-04-14 12:35:38 | Computer Name = BOGNA | Source = Dhcp | ID = 1002

Description = Adres IP połączenia 192.168.1.102 dla karty sieciowej o adresie 0015AF98A2B8

został zabroniony przez serwer DHCP 0.0.0.0 (Serwer DHCP wysłał komunikat DHCPNACK).

Error - 2009-04-15 06:02:55 | Computer Name = BOGNA | Source = Dhcp | ID = 1000

Description = Komputer utracił połączenie dla swojego adresu IP 10.15.0.15 na karcie

sieciowej

o adresie sieciowym 0015AF98A2B8.

Error - 2009-09-07 05:19:13 | Computer Name = BOGNA | Source = W32Time | ID = 39452706

Description = Usługa czas wykryła, że trzeba zmienić czas systemowy o -12441600 s.

Usługa czasu nie zmieni czasu systemowego o więcej niż -54000 s. Sprawdź, czy czas

i strefa czasowa są poprawne i czy źródło czasu time.windows.com (ntp.m|0x1|192.168.1.102:123-207.46.232.182:123)

działa poprawnie.

End of report

#4

http://www.wklej.org --> tu wrzucaj logi.

W OTL wklej poniższe i klik na Run Fix:

Daj loga po usuwaniu.

Następnie musisz usunąć klucz: MountPoints2.

Wejdź w: Start>>>Uruchom>>> wpisz: regedit

poszukaj klucza: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\ Explorer\MountPoints2

Usuwasz MountPoints2

Wykonałeś moje powyższe zalecenia?

#5

Wszystko zrobilem oprócz wpisania DNS, bo z Twoimi mi nie dzialal internet wogóle. Ja dostałem od nich dane do wpisania w IP, Router i NetMask oraz DNS.er

Internet teraz jakby szybciej chodzil ale co chwile sie zawieszaja stronki i trzeba wtedy albo uruchamiac przegladarke od nowa albo czekac z 2 min az wejdzie np wiadomosc na wp.pl/

tu jest log z OTL

http://www.wklej.org/id/147868/

#6

  1. uruchom OTl i kliknij CleanUp.

  2. wykonaj optymalizację:

optymalizacja-odchudzanie-windowsa-opis-krok-kroku-t76580.html

optymalizacja-systemu-windows-t39970.html

  1. Przeskanuj komputer tym: http://www.dobreprogramy.pl/Malwarebyte … 13117.html usuń wszystko co znajdzie i daj loga po kasowaniu (loga z Malware)
#7

Log z malware:

http://www.wklej.org/id/148281/

To wszystko co kazałeś mi zrobić nic nie dało. Cały czas wariuje. A czy to może być problem np. z kablem albo z gniazdkiem? Czy może jakieś przeciążenia na linii?

Nie wiem, już sam. Próbowałem otwierać sopcasta i śmigał, tak samo jak rozmowy na skype.

A może najlepszym rozwiązaniem jest format robić i wtedy zobaczyć jak chodzi?

#8

Możliwe, że to coś u nich, musisz przedzwonić. Może to też być wina kabla.

#9

Chyba doszedłem w czym jest wina. Otworzyłem gniazdko u nich i kolejność kolorów jest inna niż w moim kablu.

Czy to może być przyczyną?