Prosba o sprawdzenie loga

[pawzad]

[center:ad21e7c3ab]HijackThis- v1.99.1[/center:ad21e7c3ab]

Logfile of HijackThis v1.99.1Scan saved at 13:57, on 2007-07-22Platform: Windows XP  (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 (6.00.2600.0000)Running processes:C:WINDOWSSystem32smss.exeC:WINDOWSsystem32winlogon.exeC:WINDOWSsystem32services.exeC:WINDOWSsystem32lsass.exeC:WINDOWSsystem32svchost.exeC:WINDOWSSystem32svchost.exeC:WINDOWSExplorer.EXEC:WINDOWSsystem32spoolsv.exeC:Program FilesAntiVir PersonalEdition Classicavguard.exeC:Program FilesAntiVir PersonalEdition Classicavgnt.exeC:Program FilesJavajre1.6.0_01binjusched.exeC:WINDOWSSystem32ctfmon.exeC:Program FilesMessengermsmsgs.exeC:Program FilesGadu-Gadugg.exeC:Program FilesSteamSteam.exeC:Program FilesAntiVir PersonalEdition Classicsched.exeC:WINDOWSSystem32nvsvc32.exeC:Program FilesWinampwinamp.exeC:PROGRA~1Mozilla Firefoxfirefox.exeC:Documents and SettingspawzadUstawienia lokalneTempKatalog tymczasowy 2 dla hijackthis.zipHijackThis.exeR0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.windowsxlive.netR0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = L1czaO2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:Program FilesBitComettoolsBitCometBHO_1.1.5.19.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:Program FilesJavajre1.6.0_01binssv.dllO3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:WINDOWSSystem32msdxm.ocxO4 - HKLM..Run: [avgnt] "C:Program FilesAntiVir PersonalEdition Classicavgnt.exe" /minO4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSSystem32NvCpl.dll,NvStartupO4 - HKLM..Run: [nwiz] nwiz.exe /installO4 - HKLM..Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInitO4 - HKLM..Run: [sunJavaUpdateSched] "C:Program FilesJavajre1.6.0_01binjusched.exe"O4 - HKCU..Run: [CTFMON.EXE] C:WINDOWSSystem32ctfmon.exeO4 - HKCU..Run: [MSMSGS] "C:Program FilesMessengermsmsgs.exe" /backgroundO4 - HKCU..Run: [AQQ] C:PROGRA~1WapSterAQQAQQ.exeO4 - HKCU..Run: [Gadu-Gadu] "C:Program FilesGadu-Gadugg.exe" /trayO4 - HKCU..Run: [steam] "C:Program FilesSteamSteam.exe" -silentO8 - Extra context menu item: Download all links using BitComet - res://C:Program FilesBitCometBitComet.exe/AddAllLink.htmO8 - Extra context menu item: Download all videos using BitComet - res://C:Program FilesBitCometBitComet.exe/AddVideo.htmO8 - Extra context menu item: Download link using &BitComet - res://C:Program FilesBitCometBitComet.exe/AddLink.htmO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.6.0_01binssv.dllO9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.6.0_01binssv.dllO16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.adobe.com/pub/shockwave/cabs/flash/swflash.cabO23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:Program FilesAntiVir PersonalEdition Classicsched.exeO23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:Program FilesAntiVir PersonalEdition Classicavguard.exeO23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:Program FilesAreschatServer.exeO23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:WINDOWSSystem32nvsvc32.exe

[center:ad21e7c3ab]DSS[/center:ad21e7c3ab]

Deckard's System Scanner v20070711.54Run by pawzad on 2007-07-22 at 14:00:53Computer is in Normal Mode.---------------------------------------------------------------------------------- System Restore --------------------------------------------------------------Successfully created a Deckard's System Scanner Restore Point.-- Last 5 Restore Point(s) --38: 2007-07-22 12:00:56 UTC - RP38 - Deckard's System Scanner Restore Point37: 2007-07-20 10:41:21 UTC - RP37 - Removed Jasc Animation Shop 336: 2007-07-19 16:36:51 UTC - RP36 - Installed Jasc Animation Shop 335: 2007-07-19 14:52:43 UTC - RP35 - Punkt kontrolny systemu34: 2007-07-18 13:16:27 UTC - RP34 - Punkt kontrolny systemu-- First Restore Point -- 1: 2007-05-31 15:46:10 UTC - RP1 - Punkt kontrolny systemuBacked up registry hives.Performed disk cleanup.-- HijackThis Clone ------------------------------------------------------------Emulating logfile of HijackThis v1.99.1Scan saved at 2007-07-22 14:02:21Platform: Windows XP  (5.01.2600)MSIE: Internet Explorer (6.00.2600.0000)Running processes:C:WINDOWSsystem32smss.exeC:WINDOWSsystem32winlogon.exeC:WINDOWSsystem32services.exeC:WINDOWSsystem32lsass.exeC:WINDOWSsystem32svchost.exeC:WINDOWSsystem32svchost.exeC:WINDOWSexplorer.exeC:WINDOWSsystem32spoolsv.exeC:Program FilesAntiVir PersonalEdition Classicavguard.exeC:Program FilesAntiVir PersonalEdition Classicavgnt.exeC:Program FilesJavajre1.6.0_01binjusched.exeC:WINDOWSsystem32ctfmon.exeC:Program FilesMessengermsmsgs.exeC:Program FilesGadu-Gadugg.exeC:Program FilesSteamSteam.exeC:Program FilesAntiVir PersonalEdition Classicsched.exeC:WINDOWSsystem32nvsvc32.exeC:Program FilesWinampwinamp.exeC:Program FilesMozilla Firefoxfirefox.exeC:Documents and SettingspawzadPulpitdss.exeR0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.windowsxlive.netR0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = ŁączaO2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:Program FilesBitComettoolsBitCometBHO_1.1.5.19.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:Program FilesJavajre1.6.0_01binssv.dllO3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:WINDOWSsystem32msdxm.ocxO4 - HKLM..Run: [avgnt] "C:Program FilesAntiVir PersonalEdition Classicavgnt.exe" /minO4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSSystem32NvCpl.dll,NvStartupO4 - HKLM..Run: [nwiz] nwiz.exe /installO4 - HKLM..Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInitO4 - HKLM..Run: [sunJavaUpdateSched] "C:Program FilesJavajre1.6.0_01binjusched.exe"O4 - HKCU..Run: [CTFMON.EXE] C:WINDOWSSystem32ctfmon.exeO4 - HKCU..Run: [MSMSGS] "C:Program FilesMessengermsmsgs.exe" /backgroundO4 - HKCU..Run: [AQQ] C:PROGRA~1WapSterAQQAQQ.exeO4 - HKCU..Run: [Gadu-Gadu] "C:Program FilesGadu-Gadugg.exe" /trayO4 - HKCU..Run: [steam] "C:Program FilesSteamSteam.exe" -silentO8 - Extra context menu item: Download all links using BitComet - res://C:Program FilesBitCometBitComet.exe/AddAllLink.htmO8 - Extra context menu item: Download all videos using BitComet - res://C:Program FilesBitCometBitComet.exe/AddVideo.htmO8 - Extra context menu item: Download link using &BitComet - res://C:Program FilesBitCometBitComet.exe/AddLink.htmO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.6.0_01binssv.dllO9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.6.0_01binssv.dllO16 - DPF: {0000000A-9980-0010-8000-00AA00389B71} () - http://download.microsoft.com/download/8/B/E/8BE028EC-F134-4AA0-84AB-64F76D6B9842/wmsp9dmo.cabO16 - DPF: {31435657-9980-0010-8000-00AA00389B71} () - http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cabO16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} () - http://download.microsoft.com/download/F/6/E/F6E491A6-77E1-4E20-9F5F-94901338C922/wmv9VCM.CABO16 - DPF: {33564D57-9980-0010-8000-00AA00389B71} () - http://download.microsoft.com/download/D/0/D/D0DD87DA-994F-4334-8B55-AF2E4D98ED0C/wmv9dmo.cabO16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.adobe.com/pub/shockwave/cabs/flash/swflash.cabO18 - Protocol: lid - {5C135180-9973-46D9-ABF4-148267CBB8BF} - C:WINDOWSsystem32msvidctl.dllO23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - "C:Program FilesAntiVir PersonalEdition Classicsched.exe"O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - "C:Program FilesAntiVir PersonalEdition Classicavguard.exe"O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:Program FilesAreschatServer.exe-- File Associations -----------------------------------------------------------.cpl - cplfile - shellcplopencommand - rundll32.exe shell32.dll,Control_RunDLL "%1",%*-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------R0 avgntmgr - c:windowssystem32driversavgntmgr.sys <Not Verified; AVIRA GmbH; AntiVir®>S3 ddsxeiservice - c:program filessxe injectedddsxei.sys (file missing)-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------R2 AntiVirScheduler (AntiVir PersonalEdition Classic Scheduler) - "c:program filesantivir personaledition classicsched.exe" <Not Verified; Avira GmbH; Scheduler>S3 AresChatServer (Ares Chatroom server) - c:program filesareschatserver.exe <Not Verified; Ares Development Group; Ares Chat Server>-- Files created between 2007-06-22 and 2007-07-22 -----------------------------2007-07-19 18:36:23		 0 d-------- C:Program FilesJasc Software Inc2007-07-18 15:27:38	  4096 --a------ C:WINDOWSd3dx.dat2007-07-18 14:53:29		 0 d-------- C:Program FilesSega Bass Fishing2007-07-18 14:50:32	 90112 --a------ C:WINDOWSunvise32.exe <Not Verified; MindVision Software; Installer VISE>2007-07-18 14:32:32		 0 d-------- C:Program FilesDreamCatcher2007-07-15 16:57:12		 0 d-------- C:cda2007-07-15 15:08:10		 0 d-------- C:Program FilesFlock2007-07-03 19:54:56		 0 d-------- C:Program FilesSEGA2007-07-03 15:49:06		 0 d-------- C:Program FilesAres2007-07-01 16:43:29		 0 d-------- C:My Downloads2007-06-30 17:02:46		 0 d-------- C:WINDOWSDF5A03CCD5AA43D8B948D9903F2AF94A.TMP2007-06-30 16:04:53		 0 d-------- C:Program FilesSteam2007-06-30 12:56:06	   545 --a------ C:WINDOWSUC.PIF2007-06-30 12:56:06	   545 --a------ C:WINDOWSRAR.PIF2007-06-30 12:56:06	   545 --a------ C:WINDOWSPKZIP.PIF2007-06-30 12:56:06	   545 --a------ C:WINDOWSPKUNZIP.PIF2007-06-30 12:56:06	   545 --a------ C:WINDOWSNOCLOSE.PIF2007-06-30 12:56:06	   545 --a------ C:WINDOWSLHA.PIF2007-06-30 12:56:06	   545 --a------ C:WINDOWSARJ.PIF2007-06-30 12:56:05		 0 d-------- C:totalcmd2007-06-29 08:49:17		 0 d-------- C:WINDOWSSun2007-06-27 19:43:16		 0 d-------- C:Program FilesRobster Productions2007-06-25 11:24:25		 0 d-------- C:Program FilesGoogle2007-06-24 16:41:05		 0 d-------- C:Program FilesJava2007-06-24 16:40:12		 0 d-------- C:Program FilesCommon FilesJava2007-06-23 14:20:45		 0 d-------- C:Program FilesWinamp-- Find3M Report ---------------------------------------------------------------2007-07-20 10:26:17		 0 d-------- C:Documents and SettingspawzadDane aplikacjiJasc2007-07-15 15:09:08		 0 d-------- C:Documents and SettingspawzadDane aplikacjiFlock2007-07-14 18:51:42		 0 d-------- C:Documents and SettingspawzadDane aplikacjiteamspeak22007-06-29 08:49:16		 0 d-------- C:Documents and SettingspawzadDane aplikacjiSun2007-06-25 11:25:16		 0 d-------- C:Documents and SettingspawzadDane aplikacjiGoogle2007-06-24 16:42:05	  1395 --a------ C:WINDOWSmozver.dat2007-06-18 19:01:39		 0 d-------- C:Program FilesTeamspeak2_RC22007-06-18 15:10:45		 0 d-------- C:Program FilesLavalys2007-06-14 16:35:39		 0 d-------- C:Program FilesValve2007-06-14 14:34:21		 0 d-------- C:Program FilesWapSter2007-06-12 17:26:39		 0 d-------- C:Program FilesMy Downloads2007-06-12 16:51:18		 0 d-------- C:Program FilesEA SPORTS2007-06-09 16:09:58		 0 d-------- C:Documents and SettingspawzadDane aplikacjiGadu-Gadu2007-06-08 14:03:18		 0 d-------- C:Documents and SettingspawzadDane aplikacjiLavasoft2007-06-08 14:03:09		 0 d-------- C:Program FilesLavasoft2007-06-07 19:15:50		 0 d-------- C:Program FilesBitComet2007-06-07 19:12:09	  2560 --a------ C:WINDOWSSystem32BitCometRes.dll <Not Verified; BitComet; BitComet BCTP Helper>2007-06-07 18:48:29		 0 d-------- C:Program FilesBearShare2007-06-07 18:48:05		 0 d-------- C:Program FilesMyGlobalSearch2007-06-07 18:42:31		 0 d-------- C:Documents and SettingspawzadDane aplikacjiBearShare2007-06-07 18:42:18		 0 d-------- C:Program FilesBearShare Applications2007-06-07 18:18:00		 0 d-------- C:Program FilesRoni Music2007-06-03 13:36:31		 0 d-------- C:Program FilesCodec Pack - All In 12007-06-03 13:35:56	737280 --a------ C:WINDOWSiun6002.exe <Not Verified; Indigo Rose Corporation; Setup Factory 6.0 Runtime Module>2007-06-02 14:22:09		 0 d-------- C:Program Files7-Zip2007-05-31 18:29:55		 0 d-------- C:Program FilesCommon FilesODBC2007-05-31 18:29:51		 0 d-------- C:Program FilesCommon FilesSpeechEngines2007-05-31 18:29:18		62 --ahs---- C:Documents and SettingspawzadDane aplikacjidesktop.ini2007-05-31 18:27:37		 0 d-------- C:Program FilesCommon FilesInstallShield2007-05-31 18:18:26		 0 --a------ C:WINDOWSnsreg.dat2007-05-31 18:18:22		 0 d-------- C:Documents and SettingspawzadDane aplikacjiMozilla2007-05-31 17:55:18		 0 d-------- C:Documents and SettingspawzadDane aplikacjiMacromedia2007-05-31 17:48:27	355486 --a------ C:WINDOWSSystem32perfh015.dat2007-05-31 17:48:27	 49492 --a------ C:WINDOWSSystem32perfc015.dat2007-05-31 17:48:15		 0 d-------- C:Program FilesGadu-Gadu2007-05-31 17:45:51		 0 d-------- C:Program FilesMessenger2007-05-31 17:45:51		 0 d-------- C:Documents and SettingspawzadDane aplikacjiIdentities2007-05-31 17:44:33		 0 d--h----- C:Program FilesWindowsUpdate2007-05-31 17:41:04		 0 d-------- C:Program Filesmicrosoft frontpage2007-05-31 17:40:31		 0 -rahs---- C:MSDOS.SYS2007-05-31 17:40:31		 0 -rahs---- C:IO.SYS2007-05-31 17:40:31		 0 --a------ C:CONFIG.SYS2007-05-31 17:40:31		 0 --a------ C:AUTOEXEC.BAT2007-05-31 17:38:50		 0 d-------- C:Program FilesUsługi online2007-05-31 17:38:18		 0 d-------- C:Program FilesMovie Maker2007-05-31 17:37:36		 0 d-------- C:Program FilesCommon FilesMSSoap2007-05-31 17:36:46	 21856 --a------ C:WINDOWSSystem32emptyregdb.dat2007-05-31 17:35:59		 0 d-------- C:Program FilesWindows NT2007-05-31 17:35:59		 0 d-------- C:Program FilesMSN Gaming Zone-- Registry Dump ---------------------------------------------------------------[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects]{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}	C:Program FilesBitComettoolsBitCometBHO_1.1.5.19.dll{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}	C:Program FilesJavajre1.6.0_01binssv.dll[HKEY_LOCAL_MACHINEsoftwaremicrosoftwindowscurrentversionrun]"avgnt"=""C:Program FilesAntiVir PersonalEdition Classicavgnt.exe" /min""NvCplDaemon"="RUNDLL32.EXE C:WINDOWSSystem32NvCpl.dll,NvStartup""nwiz"="nwiz.exe /install""NvMediaCenter"="RunDLL32.exe NvMCTray.dll,NvTaskbarInit""SunJavaUpdateSched"=""C:Program FilesJavajre1.6.0_01binjusched.exe""[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionrun]"CTFMON.EXE"="C:WINDOWSSystem32ctfmon.exe""MSMSGS"=""C:Program FilesMessengermsmsgs.exe" /background""AQQ"="C:PROGRA~1WapSterAQQAQQ.exe""Gadu-Gadu"=""C:Program FilesGadu-Gadugg.exe" /tray""Steam"=""C:Program FilesSteamSteam.exe" -silent"[HKEY_USERS.defaultsoftwaremicrosoftwindowscurrentversionrun]"CTFMON.EXE"="C:WINDOWSSystem32CTFMON.EXE"HKEY_LOCAL_MACHINEsystemcurrentcontrolsetcontrollsa   Authentication Packages	REG_MULTI_SZ   	msv1_000   Security Packages	REG_MULTI_SZ   	kerberos0msv1_00schannel0wdigest00   Notification Packages	REG_MULTI_SZ   	scecli00[HKEY_LOCAL_MACHINEsoftwareMicrosoftWindows NTCurrentVersionSvchost]LocalService	REG_MULTI_SZ   	Alerter0WebClient0LmHosts0RemoteRegistry0upnphost0SSDPSRV00NetworkService	REG_MULTI_SZ   	DnsCache00rpcss	REG_MULTI_SZ   	RpcSs00imgsvc	REG_MULTI_SZ   	StiSvc00termsvcs	REG_MULTI_SZ   	TermService00-- End of Deckard's System Scanner: finished at 2007-07-22 at 14:02:57 ---------

[CatchMe]

C:Program FilesMyGlobalSearch - do kasacji

[pawzad]

Bym zapomnial... +pomogl