x-kom hosting

Zrywanie połączenia

benkowik
utworzono
utworzono

Witam,

Rutynowa kontrola ale czasami mam wrażenie że zrywa mi połączenie z internetem. Nagle strona się przestaje ładować i po odświeżeniu idzie poprawnie.

[log]
info.txt logfile of random's system information tool 1.08 2010-12-18 20:05:56

======Uninstall list======

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 ActiveX-->MsiExec.exe /X{FFB768E4-E427-4553-BC36-A11F5E62A94D}
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10i_Plugin.exe -maintain plugin
Adobe Reader 9.4.0 - Polish-->MsiExec.exe /I{AC76BA86-7AD7-1045-7B44-A94000000001}
Archiwizator WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Borland Delphi 7-->MsiExec.exe /I{72263053-50D1-4598-9502-51ED64E54C51}
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch-->C:\Program Files\InstallShield Installation Information\{931C37FC-594D-43A9-B10F-A2F2B1F03498}\setup.exe -runfromtemp -l0x0409
Cambridge Advanced Learner's Dictionary - 3rd Edition-->"C:\Program Files\Cambridge\CALD3\uninstall.exe"
Dell Touchpad-->rundll32.exe "%ProgramFiles%\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
Dell Wireless HSPA Mini-Card Drivers-->MsiExec.exe /X{85A2C545-B193-4053-8F3E-BB1527A73676}
doPDF 7.1 printer-->"C:\Program Files\Softland\doPDF 7\unins000.exe"
EAGLE 5.4.0-->cmd.exe /c start "EAGLE Uninstaller" /min "C:\Program Files\EAGLE-5.4.0\bin\uninstall.bat" C:\Program Files\EAGLE-5.4.0\bin
Eagle3D 1.05-->"C:\Program Files\Eagle\ulp\Eagle3D\unins000.exe"
EasyCleaner-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F5346614-B7C4-4E94-826A-E2363155233D}\setup.exe" -l0x9
Gadu-Gadu 7.7-->C:\Program Files\Gadu-Gadu\Setup.exe
GlassFish V2 UR2-->"C:\Program Files\glassfish-v2ur2\uninstall.exe"
GlassFish v3 Prelude-->"C:\Program Files\glassfish-v3-prelude\uninstall.exe"
High Definition Audio Driver Package - KB835221-->C:\WINDOWS\$NtUninstallKB835221WXP$\spuninst\spuninst.exe
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
IDT Audio-->"C:\Program Files\InstallShield Installation Information\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}\setup.exe" -runfromtemp -l0x0015 -remove -removeonly
Intel(R) Graphics Media Accelerator Driver-->C:\Program Files\Intel\Intel(R) Graphics Media Accelerator Driver\Uninstall\setup.exe -uninstall
Java DB 10.3.1.4-->MsiExec.exe /X{CD49361E-3FE6-457E-90A1-9C59E29B5D02}
Java(TM) 6 Update 22-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216022FF}
Java(TM) 6 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
Java(TM) SE Development Kit 6 Update 5-->MsiExec.exe /I{32A3A4F4-B792-11D6-A78A-00B0D0160050}
K-Lite Codec Pack 6.4.0 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
LG Android Platform Drivers-->MsiExec.exe /X{6816248D-510A-45F8-AC79-24FF2C3A5D7F}
LG Bluetooth Drivers-->MsiExec.exe /X{AC7EE5F1-0DE4-4256-8E43-92B73C8E6019}
LG PC Suite IV-->C:\Program Files\LG Electronics\LG PC Suite IV\uninstall.exe
LG USB Modem Drivers-->MsiExec.exe /X{3E8DE1A6-B365-4FF6-B917-2892A34990E8}
Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - PLK-->MsiExec.exe /I{036FD544-AED6-3F33-856D-A2292D0CF471}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - PLK-->MsiExec.exe /I{7C77393F-8237-3825-A88A-AFAF3C69C072}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 Language Pack - plk-->MsiExec.exe /I{F31E509D-3597-324E-83CF-0C160B2320F0}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7-->"C:\WINDOWS\$NtUninstallWdf01007$\spuninst\spuninst.exe"
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9-->"C:\WINDOWS\$NtUninstallWdf01009$\spuninst\spuninst.exe"
Microsoft Office Professional Edition 2003-->MsiExec.exe /I{90110415-6000-11D3-8CFE-0150048383C9}
Microsoft SQL Server Compact 3.5 Design Tools ENU-->MsiExec.exe /X{2E5C075E-11AB-4BDD-918C-7B9A68953FF8}
Microsoft SQL Server Compact 3.5 ENU-->MsiExec.exe /I{BCC899FE-2DAA-460C-A5FB-60291E73D9C3}
Microsoft Visual C# 2008 Express Edition - ENU-->C:\Program Files\Microsoft Visual Studio 9.0\Microsoft Visual C# 2008 Express Edition - ENU\setup.exe
Microsoft Visual C# 2008 Express Edition - ENU-->MsiExec.exe /X{2D07422C-CA35-375A-A3A8-3631AB85BFE5}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Windows SDK for Visual Studio 2008 Express Tools for .NET Framework-->MsiExec.exe /X{B4C0A315-07FB-39F9-85CD-8CE20C019350}
Microsoft Windows SDK for Visual Studio 2008 Express Tools for Win32-->MsiExec.exe /X{07FCBED5-94C3-4F94-B9D3-360FA27C7B06}
Mozilla Firefox (3.6.13)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Mozilla Thunderbird (3.1.7)-->C:\Program Files\Mozilla Thunderbird\uninstall\helper.exe
MSXML 4.0 SP2 Parser and SDK-->MsiExec.exe /I{716E0306-8318-4364-8B8F-0CC4E9376BAC}
MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
Narzędzie karty sieciowej DW WLAN-->"C:\Program Files\Dell\DW WLAN Card\bcmwlu00.exe" verbose /rootkey="Software\Broadcom\802.11\UninstallInfo" /rootdir="C:\Program Files\Dell\DW WLAN Card"
Nero - Burning Rom-->MsiExec.exe /X{A4D7B764-4140-11D4-88EB-0050DA3579C0}
NetBeans IDE 6.5-->"C:\Program Files\NetBeans 6.5\uninstall.exe"
NFZ-KO 2011.1.1.1-->"C:\Program Files\NFZ-KO\unins000.exe"
Notepad++-->C:\Program Files\Notepad++\uninstall.exe
Pakiet językowy programu Microsoft .NET Framework 3.5 — PLK-->c:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - plk\setup.exe
REALTEK GbE & FE Ethernet PCI-E NIC Driver-->C:\Program Files\InstallShield Installation Information\{C9BED750-1211-4480-B1A5-718A3BE15525}\setup.exe -runfromtemp -removeonly
Skype™ 3.6-->MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}
SubEdit-Player-->"C:\Program Files\SubEdit-Player\unins000.exe"
TeamViewer 5-->C:\Program Files\TeamViewer\Version5\uninstall.exe
TeXaide 4-->"C:\Program Files\TeXaide\Dssetup.exe" -R
Total Commander (Remove or Repair)-->c:\Program Files\Total Commander 7.56\tcuninst.exe
VSO Image Resizer 4.0.2.5-->"C:\Program Files\VSO\Image Resizer 4\unins000.exe"
WampServer 2.0-->"c:\wamp\unins000.exe"
WIDCOMM Bluetooth Software-->MsiExec.exe /X{84814E6B-2581-46EC-926A-823BD1C670F6}
Winamp Lyrics (Explorer Version) v1.22-->rundll32.exe C:\PROGRA~1\Winamp\Plugins\GEN_LY~1.DLL,Uninstall
Winamp-->"C:\Program Files\Winamp\UninstWA.exe"
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"

======System event log======

Computer Name: KWIETKO-KUBA
Event Code: 7036
Message: Usługa Konfiguracja zerowej sieci bezprzewodowej weszła w stan zatrzymania.

Record Number: 3566
Source Name: Service Control Manager
Time Written: 20101025222118.000000+120
Event Type: informacje
User:

Computer Name: KWIETKO-KUBA
Event Code: 7035
Message: Do usługi Konfiguracja zerowej sieci bezprzewodowej został pomyślnie wysłany kod sterowania zatrzymaj.

Record Number: 3565
Source Name: Service Control Manager
Time Written: 20101025222117.000000+120
Event Type: informacje
User: ZARZĄDZANIE NT\SYSTEM

Computer Name: KWIETKO-KUBA
Event Code: 7036
Message: Usługa Przeglądarka komputera weszła w stan zatrzymania.

Record Number: 3564
Source Name: Service Control Manager
Time Written: 20101025222116.000000+120
Event Type: informacje
User:

Computer Name: KWIETKO-KUBA
Event Code: 7036
Message: Usługa Usługa bramy warstwy aplikacji weszła w stan uruchomienia.

Record Number: 3563
Source Name: Service Control Manager
Time Written: 20101025222116.000000+120
Event Type: informacje
User:

Computer Name: KWIETKO-KUBA
Event Code: 7035
Message: Do usługi Usługa bramy warstwy aplikacji został pomyślnie wysłany kod sterowania uruchom.

Record Number: 3562
Source Name: Service Control Manager
Time Written: 20101025222116.000000+120
Event Type: informacje
User: ZARZĄDZANIE NT\SYSTEM

=====Application event log=====

Computer Name: KWIETKO-KUBA
Event Code: 1000
Message: Liczniki wydajności dla usługi MSDTC (MSDTC) zostały pomyślnie załadowane.
Dane rekordu zawierają nowe wartości indeksu przypisane
do tej usługi.

Record Number: 5
Source Name: LoadPerf
Time Written: 20100910153521.000000+120
Event Type: informacje
User:

Computer Name: KWIETKO-KUBA
Event Code: 1000
Message: Liczniki wydajności dla usługi TermService (Usługi terminalowe) zostały pomyślnie załadowane.
Dane rekordu zawierają nowe wartości indeksu przypisane
do tej usługi.

Record Number: 4
Source Name: LoadPerf
Time Written: 20100910153519.000000+120
Event Type: informacje
User:

Computer Name: KWIETKO-KUBA
Event Code: 1000
Message: Liczniki wydajności dla usługi RemoteAccess (Routing i dostęp zdalny) zostały pomyślnie załadowane.
Dane rekordu zawierają nowe wartości indeksu przypisane
do tej usługi.

Record Number: 3
Source Name: LoadPerf
Time Written: 20100910153437.000000+120
Event Type: informacje
User:

Computer Name: KWIETKO-KUBA
Event Code: 1000
Message: Liczniki wydajności dla usługi PSched (PSched) zostały pomyślnie załadowane.
Dane rekordu zawierają nowe wartości indeksu przypisane
do tej usługi.

Record Number: 2
Source Name: LoadPerf
Time Written: 20100910153432.000000+120
Event Type: informacje
User:

Computer Name: KWIETKO-KUBA
Event Code: 1000
Message: Liczniki wydajności dla usługi RSVP (QoS RSVP) zostały pomyślnie załadowane.
Dane rekordu zawierają nowe wartości indeksu przypisane
do tej usługi.

Record Number: 1
Source Name: LoadPerf
Time Written: 20100910153432.000000+120
Event Type: informacje
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"NUMBER_OF_PROCESSORS"=4
"OS"=Windows_NT
"Path"=D:\Informatyka\Programowanie\Android\android-sdk-windows\tools\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 37 Stepping 2, GenuineIntel
"PROCESSOR_LEVEL"=6
"PROCESSOR_REVISION"=2502
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"windir"=%SystemRoot%

-----------------EOF-----------------

[/log]

[log]
Logfile of random's system information tool 1.08 (written by random/random)
Run by Kuba at 2010-12-18 20:05:52
Microsoft Windows XP Professional Dodatek Service Pack 3
System drive C: has 81 GB (81%) free of 100 GB
Total RAM: 1911 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:05:54, on 2010-12-18
Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\idt\wdm\stacsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Dell\Dell WWAN\WMCore\WMCore.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\WLTRAY.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\AESTFltr.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\LinkAir.exe
C:\Program Files\Gadu-Gadu\gg.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Program Files\Mozilla Firefox\firefox.exe
D:\Dokumenty\Instalki programów\OTL.exe
D:\Dokumenty\Instalki programów\RSIT.exe
C:\Program Files\trend micro\Kuba.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: LinkAirBrowserHelper HistoryTriggerBHO - {21A88CB9-84D2-4020-A2D1-B25A21034884} - C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [AESTFltr] %SystemRoot%\system32\AESTFltr.exe /NoDlg
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Kuba\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [LG LinkAir] C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\LinkAir.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: LG Air Sync (R-Click) - Save as Mobile Image - res://C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/206
O8 - Extra context menu item: LG Air Sync (R-Click) - Save as Mobile Memo - res://C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/208
O8 - Extra context menu item: LG Air Sync (R-Click) - Save as Mobile Text file - res://C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/210
O8 - Extra context menu item: LG Air Sync (R-Click) - Set as Mobile Wallpaper - res://C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/205
O8 - Extra context menu item: LG Air Sync Option - res://C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/209
O8 - Extra context menu item: Wyślij do interfejsu Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Wyślij do urządzenia &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - c:\program files\idt\wdm\stacsv.exe
O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe
O23 - Service: DW WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE
O23 - Service: Mobile Broadband Core Service (WMCoreService) - Unknown owner - C:\Program Files\Dell\Dell WWAN\WMCore\WMCore.exe

--
End of file - 6908 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1390067357-725345543-946637946-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1390067357-725345543-946637946-1003UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{21A88CB9-84D2-4020-A2D1-B25A21034884}]
HistoryTriggerBHO Class - C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll [2010-06-16 35688]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-11-16 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-11-16 79648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Broadcom Wireless Manager UI"=C:\WINDOWS\system32\WLTRAY.exe [2010-09-10 2498560]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2010-07-14 136216]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2010-07-14 170008]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2010-07-14 145432]
"AESTFltr"=C:\WINDOWS\system32\AESTFltr.exe [2008-12-17 729088]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-10 1791272]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe []
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2010-04-07 495708]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Documents and Settings\Kuba\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2010-10-15 136176]
"LG LinkAir"=C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\LinkAir.exe [2010-06-16 2373992]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\wamp\bin\apache\Apache2.2.11\bin\httpd.exe"="C:\wamp\bin\apache\Apache2.2.11\bin\httpd.exe:*:Enabled:Apache HTTP Server"
"C:\Program Files\Java\jre1.6.0_05\bin\java.exe"="C:\Program Files\Java\jre1.6.0_05\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Java\jdk1.6.0_05\bin\java.exe"="C:\Program Files\Java\jdk1.6.0_05\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"D:\Informatyka\Programowanie $\Delphi\PROGRAMY\LanTransfer\lan.exe"="D:\Informatyka\Programowanie $\Delphi\PROGRAMY\LanTransfer\lan.exe:*:Enabled:lan"
"C:\Program Files\TC UP\TOTALCMD.EXE"="C:\Program Files\TC UP\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit"
"C:\Program Files\TeamViewer\Version5\TeamViewer.exe"="C:\Program Files\TeamViewer\Version5\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\HTTP-Tunnel\HTTP-TunnelClient.exe"="C:\Program Files\HTTP-Tunnel\HTTP-TunnelClient.exe:*:Enabled:HTTP-Tunnel Client"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Total Commander 7.56\TOTALCMD.EXE"="C:\Program Files\Total Commander 7.56\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-12-18 20:05:52 ----D---- C:\rsit
2010-12-18 20:05:52 ----D---- C:\Program Files\trend micro
2010-12-11 11:24:22 ----D---- C:\WINDOWS\RegisteredPackages
2010-12-11 11:23:51 ----N---- C:\WINDOWS\system32\vxblock.dll
2010-12-11 11:23:51 ----N---- C:\WINDOWS\system32\pxwave.dll
2010-12-11 11:23:51 ----N---- C:\WINDOWS\system32\pxsfs.dll
2010-12-11 11:23:51 ----N---- C:\WINDOWS\system32\pxmas.dll
2010-12-11 11:23:51 ----N---- C:\WINDOWS\system32\pxinsa64.exe
2010-12-11 11:23:51 ----N---- C:\WINDOWS\system32\pxhpinst.exe
2010-12-11 11:23:51 ----N---- C:\WINDOWS\system32\pxdrv.dll
2010-12-11 11:23:51 ----N---- C:\WINDOWS\system32\pxcpya64.exe
2010-12-11 11:23:51 ----N---- C:\WINDOWS\system32\pxafs.dll
2010-12-11 11:23:51 ----N---- C:\WINDOWS\system32\px.dll
2010-12-11 11:23:51 ----N---- C:\WINDOWS\system32\drivers\PxHelp20.sys
2010-12-11 11:23:51 ----N---- C:\WINDOWS\system32\drivers\cdralw2k.sys
2010-12-11 11:23:51 ----N---- C:\WINDOWS\system32\drivers\cdr4_xp.sys
2010-12-11 11:23:51 ----D---- C:\Documents and Settings\Kuba\Dane aplikacji\Winamp
2010-12-11 11:18:21 ----D---- C:\Program Files\Total Commander 7.56
2010-12-11 11:18:21 ----D---- C:\Documents and Settings\Kuba\Dane aplikacji\GHISLER
2010-12-11 11:18:21 ----A---- C:\WINDOWS\UC.PIF
2010-12-11 11:18:21 ----A---- C:\WINDOWS\RAR.PIF
2010-12-11 11:18:21 ----A---- C:\WINDOWS\PKZIP.PIF
2010-12-11 11:18:21 ----A---- C:\WINDOWS\PKUNZIP.PIF
2010-12-11 11:18:21 ----A---- C:\WINDOWS\NOCLOSE.PIF
2010-12-11 11:18:21 ----A---- C:\WINDOWS\LHA.PIF
2010-12-11 11:18:21 ----A---- C:\WINDOWS\ARJ.PIF
2010-12-10 00:10:13 ----A---- C:\WINDOWS\system32\DBCLIENT.DLL
2010-12-10 00:10:05 ----A---- C:\WINDOWS\system32\PDFENC32.DLL
2010-12-10 00:10:05 ----A---- C:\WINDOWS\system32\midas.dll
2010-12-10 00:10:04 ----D---- C:\Program Files\NFZ-KO
2010-12-04 21:52:58 ----D---- C:\Documents and Settings\Kuba\Dane aplikacji\Adobe
2010-11-22 22:32:52 ----SHD---- C:\RECYCLER
2010-11-22 17:30:42 ----D---- C:\Documents and Settings\Kuba\Dane aplikacji\VSO
2010-11-22 17:30:06 ----D---- C:\Program Files\VSO

======List of files/folders modified in the last 1 months======

2010-12-18 20:05:52 ----RD---- C:\Program Files
2010-12-18 20:05:26 ----D---- C:\WINDOWS\Prefetch
2010-12-17 22:29:28 ----D---- C:\Program Files\Mozilla Thunderbird
2010-12-16 23:36:45 ----D---- C:\WINDOWS\Temp
2010-12-16 23:36:39 ----D---- C:\WINDOWS
2010-12-16 22:14:30 ----D---- C:\WINDOWS\security
2010-12-16 22:14:27 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-12-16 22:06:09 ----D---- C:\Program Files\Common Files
2010-12-13 23:49:42 ----A---- C:\WINDOWS\YDPDICT.INI
2010-12-13 16:03:38 ----D---- C:\Program Files\@Programy
2010-12-11 14:09:24 ----HD---- C:\WINDOWS\inf
2010-12-11 11:48:23 ----D---- C:\Program Files\Mozilla Firefox
2010-12-11 11:35:36 ----D---- C:\Program Files\Winamp
2010-12-11 11:24:37 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-12-11 11:24:34 ----D---- C:\Program Files\Windows Media Player
2010-12-11 11:24:33 ----D---- C:\WINDOWS\system32\drivers
2010-12-11 11:24:33 ----D---- C:\WINDOWS\system32
2010-12-11 11:24:22 ----D---- C:\WINDOWS\system32\CatRoot2
2010-12-07 21:52:47 ----SHD---- C:\WINDOWS\Installer
2010-12-07 21:52:47 ----D---- C:\Config.Msi
2010-12-05 16:36:52 ----D---- C:\Program Files\Common Files\Adobe
2010-11-29 16:37:22 ----D---- C:\Documents and Settings\Kuba\Dane aplikacji\Skype
2010-11-29 16:26:36 ----D---- C:\Documents and Settings\Kuba\Dane aplikacji\skypePM
2010-11-28 21:44:25 ----SD---- C:\Documents and Settings\Kuba\Dane aplikacji\Microsoft
2010-11-22 17:50:51 ----D---- C:\WINDOWS\Minidump
2010-11-22 17:31:01 ----D---- C:\wamp

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\WINDOWS\system32\DRIVERS\iaStor.sys [2010-09-10 435736]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-04-28 44944]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-10-12 691696]
R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40448]
R1 kbdhid;Sterownik klawiatury HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
R1 WmiAcpi;Interfejs zarządzania Microsoft Windows dla ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R3 AESTAud;AE Audio Service; C:\WINDOWS\system32\drivers\AESTAud.sys [2008-12-17 112512]
R3 BCM43XX;Sterownik karty sieciowej DW WLAN; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2010-09-10 2649216]
R3 btaudio;Urządzenie dźwiękowe Bluetooth; C:\WINDOWS\system32\drivers\btaudio.sys [2009-09-18 533152]
R3 BTDriver;Sterownik do komunikacji wirtualnej Bluetooth; C:\WINDOWS\system32\DRIVERS\btport.sys [2008-02-04 37160]
R3 BTKRNL;Licznik magistrali Bluetooth; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2009-07-09 991264]
R3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2009-05-11 56992]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2009-09-08 45984]
R3 d554bus;Dell Wireless 5540 HSPA Mini-Card Device driver (WDM); C:\WINDOWS\system32\DRIVERS\d554bus.sys [2009-07-09 91648]
R3 d554gps;Dell Wireless 5540 HSPA Mini-Card GPS Port; C:\WINDOWS\system32\DRIVERS\d554gps.sys [2009-07-10 82984]
R3 d554mdfl;Dell Wireless 5540 HSPA Mini-Card Data Modem Filter; C:\WINDOWS\system32\DRIVERS\d554mdfl.sys [2009-07-09 15104]
R3 d554mdm;Dell Wireless 5540 HSPA Mini-Card Data Modem Driver; C:\WINDOWS\system32\DRIVERS\d554mdm.sys [2009-07-09 123520]
R3 d554mgmt;DellWireless5540 HSPA Mini-Card Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\d554mgmt.sys [2009-07-09 117504]
R3 d554scard;Dell Wireless 5540 HSPA Mini-Card USIM Port; C:\WINDOWS\system32\DRIVERS\d554scard.sys [2009-05-11 50216]
R3 d554unic;Dell Wireless 5540 HSPA Mini-Card Network Adapter (WDM); C:\WINDOWS\system32\DRIVERS\d554unic.sys [2009-07-09 118528]
R3 HDAudBus;Sterownik magistrali Microsoft UAA dla High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2010-06-07 2001920]
R3 Impcd;Impcd; C:\WINDOWS\system32\DRIVERS\Impcd.sys [2010-02-27 132480]
R3 LgBttPort;LGE Bluetooth TransPort; C:\WINDOWS\system32\DRIVERS\lgbtport.sys [2009-09-29 12160]
R3 lgbusenum;LG Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\lgbtbus.sys [2009-09-29 10496]
R3 LGVMODEM;LGE Virtual Modem; C:\WINDOWS\system32\DRIVERS\lgvmodem.sys [2009-09-29 12928]
R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160]
R3 STHDA;IDT High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2010-04-07 1659667]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2010-06-10 1304496]
R3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbstor;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbvideo;Urządzenie wideo USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 Andbus;LGE Android Platform Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgandbus.sys [2010-03-30 14336]
S3 AndDiag;LGE Android Platform USB Serial Port; C:\WINDOWS\system32\DRIVERS\lganddiag.sys [2010-03-30 20864]
S3 AndGps;LGE Android Platform USB GPS NMEA Port; C:\WINDOWS\system32\DRIVERS\lgandgps.sys [2010-03-30 19968]
S3 ANDModem;LGE Android Platform USB Modem; C:\WINDOWS\system32\DRIVERS\lgandmodem.sys [2010-03-30 24960]
S3 Bridge;Mostek MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552]
S3 BridgeMP;Miniport mostka MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552]
S3 BTWDNDIS;Serwer dostępu do sieci LAN Bluetooth; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2008-07-24 156816]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CCDECODE;Dekoder napisów; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 d554nd5;Dell Wireless 5540 HSPA Mini-Card Network Adapter (NDIS); C:\WINDOWS\system32\DRIVERS\d554nd5.sys [2009-07-09 25856]
S3 MSTEE;Konwerter strumieni Tee/Sink-to-Sink Microsoft Streaming; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Koder-dekoder NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Połączenie TV/wideo firmy Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2010-03-08 220112]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 WSTCODEC;Kodery-dekodery teletekstu w standardzie światowym; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2009-12-08 349528]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-11-16 153376]
R2 STacSV;Audio Service; c:\program files\idt\wdm\stacsv.exe [2010-04-07 229458]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
R2 wltrysvc;DW WLAN Tray Service; C:\WINDOWS\System32\WLTRYSVC.EXE [2010-09-10 25088]
R2 WMCoreService;Mobile Broadband Core Service; C:\Program Files\Dell\Dell WWAN\WMCore\WMCore.exe [2009-09-24 688128]
S3 aspnet_state;Usuga stanu ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 wampapache;wampapache; c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe [2008-12-10 24636]
S3 wampmysqld;wampmysqld; c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe [2009-06-17 6582912]
S4 NetTcpPortSharing;Usługa udostępniania portów Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
[/log]

[log]
OTL logfile created on: 2010-12-18 20:05:29 - Run 2
OTL by OldTimer - Version 3.2.17.3 Folder = D:\Dokumenty\Instalki programów
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 69,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 89,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,65 Gb Total Space | 78,75 Gb Free Space | 80,64% Space Free | Partition Type: NTFS
Drive D: | 200,43 Gb Total Space | 187,19 Gb Free Space | 93,40% Space Free | Partition Type: NTFS

Computer Name: KWIETKO-KUBA | User Name: Kuba | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2010-12-18 20:04:48 | 000,575,488 | ---- | M] (OldTimer Tools) -- D:\Dokumenty\Instalki programów\OTL.exe
PRC - [2010-12-17 22:29:24 | 012,584,112 | ---- | M] (Mozilla Messaging) -- C:\Program Files\Mozilla Thunderbird\thunderbird.exe
PRC - [2010-12-11 11:48:16 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010-06-16 12:47:42 | 002,373,992 | ---- | M] (Mobile Leader Co.,Ltd.) -- C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\LinkAir.exe
PRC - [2010-04-07 04:35:04 | 000,495,708 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe
PRC - [2010-04-07 04:35:04 | 000,229,458 | ---- | M] (IDT, Inc.) -- c:\Program Files\IDT\WDM\stacsv.exe
PRC - [2009-09-24 09:48:02 | 000,688,128 | R--- | M] () -- C:\Program Files\Dell\Dell WWAN\WMCore\WMCore.exe
PRC - [2008-12-17 05:41:44 | 000,729,088 | ---- | M] (Andrea Electronics Corporation) -- C:\WINDOWS\system32\AESTFltr.exe
PRC - [2008-04-14 21:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-03-20 11:04:46 | 002,127,296 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\gg.exe


[color=#E56717]========== Modules (SafeList) ==========[/color]

MOD - [2010-12-18 20:04:48 | 000,575,488 | ---- | M] (OldTimer Tools) -- D:\Dokumenty\Instalki programów\OTL.exe
MOD - [2006-12-21 13:30:44 | 000,102,400 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\ggwhook.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2010-04-07 04:35:04 | 000,229,458 | ---- | M] (IDT, Inc.) [Auto | Running] -- c:\Program Files\IDT\WDM\stacsv.exe -- (STacSV)
SRV - [2009-09-24 09:48:02 | 000,688,128 | R--- | M] () [Auto | Running] -- C:\Program Files\Dell\Dell WWAN\WMCore\WMCore.exe -- (WMCoreService)
SRV - [2009-06-17 10:18:42 | 006,582,912 | ---- | M] () [On_Demand | Stopped] -- c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe -- (wampmysqld)
SRV - [2008-12-10 00:10:14 | 000,024,636 | ---- | M] (Apache Software Foundation) [On_Demand | Stopped] -- c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe -- (wampapache)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\ComboFix\catchme.sys -- (catchme)
DRV - [2010-10-12 18:22:38 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010-09-10 19:23:31 | 000,435,736 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\iaStor.sys -- (iaStor)
DRV - [2010-09-10 16:22:03 | 002,649,216 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2010-06-10 18:43:20 | 001,304,496 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SynTP.sys -- (SynTP)
DRV - [2010-06-07 06:26:42 | 002,001,920 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\igxpmp32.sys -- (ialm)
DRV - [2010-04-07 04:35:04 | 001,659,667 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2010-03-30 09:24:52 | 000,020,864 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lganddiag.sys -- (AndDiag)
DRV - [2010-03-30 09:24:52 | 000,019,968 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgandgps.sys -- (AndGps)
DRV - [2010-03-30 09:24:50 | 000,024,960 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgandmodem.sys -- (ANDModem)
DRV - [2010-03-30 09:24:48 | 000,014,336 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lgandbus.sys -- (Andbus)
DRV - [2010-03-08 17:41:48 | 000,220,112 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2010-02-27 04:01:22 | 000,132,480 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Impcd.sys -- (Impcd)
DRV - [2009-09-29 08:11:22 | 000,012,160 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lgbtport.sys -- (LgBttPort)
DRV - [2009-09-29 08:11:20 | 000,012,928 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lgvmodem.sys -- (LGVMODEM)
DRV - [2009-09-29 08:11:20 | 000,010,496 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lgbtbus.sys -- (lgbusenum)
DRV - [2009-09-18 11:54:38 | 000,533,152 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (btaudio)
DRV - [2009-09-08 19:54:44 | 000,045,984 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB)
DRV - [2009-07-10 14:53:22 | 000,082,984 | R--- | M] (Ericsson AB) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\d554gps.sys -- (d554gps)
DRV - [2009-07-09 10:45:00 | 000,991,264 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL)
DRV - [2009-07-09 10:33:40 | 000,123,520 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\d554mdm.sys -- (d554mdm)
DRV - [2009-07-09 10:33:40 | 000,118,528 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\d554unic.sys -- (d554unic) Dell Wireless 5540 HSPA Mini-Card Network Adapter (WDM)
DRV - [2009-07-09 10:33:40 | 000,117,504 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\d554mgmt.sys -- (d554mgmt) DellWireless5540 HSPA Mini-Card Device Management Drivers (WDM)
DRV - [2009-07-09 10:33:40 | 000,091,648 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\d554bus.sys -- (d554bus) Dell Wireless 5540 HSPA Mini-Card Device driver (WDM)
DRV - [2009-07-09 10:33:40 | 000,025,856 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\d554nd5.sys -- (d554nd5) Dell Wireless 5540 HSPA Mini-Card Network Adapter (NDIS)
DRV - [2009-07-09 10:33:40 | 000,015,104 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\d554mdfl.sys -- (d554mdfl)
DRV - [2009-05-11 17:50:58 | 000,050,216 | R--- | M] (Dell) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\d554scard.sys -- (d554scard)
DRV - [2009-05-11 12:45:26 | 000,056,992 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btwhid.sys -- (btwhid)
DRV - [2008-12-17 05:41:44 | 000,112,512 | ---- | M] (Andrea Electronics Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AESTAud.sys -- (AESTAud)
DRV - [2008-07-24 15:37:10 | 000,156,816 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwdndis.sys -- (BTWDNDIS)
DRV - [2008-04-13 21:06:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008-02-04 15:57:44 | 000,037,160 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {a7c6cf7f-112c-4500-a7ea-39801a327e5f}:1.0.9
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22

FF - HKLM\software\mozilla\Firefox\extensions\\{00ADD29A-66F4-4f22-BCC0-4C1D29DA647B}: C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\{00ADD29A-66F4-4f22-BCC0-4C1D29DA647B}\ [2010-11-14 20:31:06 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-12-11 11:48:19 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-12-11 11:48:19 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.1.7\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2010-12-17 22:29:24 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.1.7\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins

[2010-09-11 09:00:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kuba\Dane aplikacji\Mozilla\Extensions
[2010-09-11 09:00:42 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Kuba\Dane aplikacji\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2010-12-17 21:24:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kuba\Dane aplikacji\Mozilla\Firefox\Profiles\2a99rext.default\extensions
[2010-09-30 14:58:44 | 000,000,000 | ---D | M] (FireFTP) -- C:\Documents and Settings\Kuba\Dane aplikacji\Mozilla\Firefox\Profiles\2a99rext.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}
[2010-12-17 21:24:12 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010-09-26 20:49:55 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010-11-16 16:35:50 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2010-11-16 16:35:39 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010-08-25 01:39:29 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-08-25 01:39:29 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-08-25 01:39:29 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-08-25 01:39:29 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-08-25 01:39:29 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-08-25 01:39:29 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2010-11-06 22:23:52 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (HistoryTriggerBHO Class) - {21A88CB9-84D2-4020-A2D1-B25A21034884} - C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll (LG Electronics)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe File not found
O4 - HKLM..\Run: [AESTFltr] C:\WINDOWS\System32\AESTFltr.exe (Andrea Electronics Corporation)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKCU..\Run: [LG LinkAir] C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\LinkAir.exe (Mobile Leader Co.,Ltd.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: LG Air Sync (R-Click) - Save as Mobile Image - C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll (Mobile Leader Co.,Ltd.)
O8 - Extra context menu item: LG Air Sync (R-Click) - Save as Mobile Memo - C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll (Mobile Leader Co.,Ltd.)
O8 - Extra context menu item: LG Air Sync (R-Click) - Save as Mobile Text file - C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll (Mobile Leader Co.,Ltd.)
O8 - Extra context menu item: LG Air Sync (R-Click) - Set as Mobile Wallpaper - C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll (Mobile Leader Co.,Ltd.)
O8 - Extra context menu item: LG Air Sync Option - C:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll (Mobile Leader Co.,Ltd.)
O8 - Extra context menu item: Wyślij do interfejsu Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Wyślij do urządzenia &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/F/6/E/F6E491A6-77E1-4E20-9F5F-94901338C922/wmv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Java Plug-in 1.6.0_05)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - File not found
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - File not found
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - File not found
O20 - HKLM Winlogon: UIHost - (logonui.exe) - File not found
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - File not found
O20 - Winlogon\Notify\crypt32chain: DllName - crypt32.dll - File not found
O20 - Winlogon\Notify\cryptnet: DllName - cryptnet.dll - File not found
O20 - Winlogon\Notify\cscdll: DllName - cscdll.dll - File not found
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - File not found
O20 - Winlogon\Notify\ScCertProp: DllName - wlnotify.dll - File not found
O20 - Winlogon\Notify\Schedule: DllName - wlnotify.dll - File not found
O20 - Winlogon\Notify\sclgntfy: DllName - sclgntfy.dll - File not found
O20 - Winlogon\Notify\SensLogn: DllName - WlNotify.dll - File not found
O20 - Winlogon\Notify\termsrv: DllName - wlnotify.dll - File not found
O20 - Winlogon\Notify\wlballoon: DllName - wlnotify.dll - File not found
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Kuba\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Kuba\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - File not found
O29 - HKLM SecurityProviders - (msapsspc.dll) - File not found
O29 - HKLM SecurityProviders - (schannel.dll) - File not found
O29 - HKLM SecurityProviders - (digest.dll) - File not found
O29 - HKLM SecurityProviders - (msnsspc.dll) - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-09-10 14:37:33 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2010-12-18 20:05:52 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010-12-14 17:16:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kuba\Pulpit\pop-umowa-nocna
[2010-12-11 11:24:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages
[2010-12-11 11:23:51 | 001,858,032 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxsfs.dll
[2010-12-11 11:23:51 | 000,670,192 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\px.dll
[2010-12-11 11:23:51 | 000,551,408 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxdrv.dll
[2010-12-11 11:23:51 | 000,436,720 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwave.dll
[2010-12-11 11:23:51 | 000,219,632 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxmas.dll
[2010-12-11 11:23:51 | 000,129,520 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxafs.dll
[2010-12-11 11:23:51 | 000,096,752 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\vxblock.dll
[2010-12-11 11:23:51 | 000,072,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxhpinst.exe
[2010-12-11 11:23:51 | 000,066,544 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpya64.exe
[2010-12-11 11:23:51 | 000,066,032 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsa64.exe
[2010-12-11 11:23:51 | 000,009,200 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdralw2k.sys
[2010-12-11 11:23:51 | 000,009,072 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys
[2010-12-11 11:23:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kuba\Dane aplikacji\Winamp
[2010-12-11 11:18:21 | 000,000,000 | ---D | C] -- C:\Program Files\Total Commander 7.56
[2010-12-11 11:18:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kuba\Dane aplikacji\GHISLER
[2010-12-10 00:10:05 | 000,383,488 | ---- | C] (Borland Software Corporation) -- C:\WINDOWS\System32\midas.dll
[2010-12-10 00:10:04 | 000,000,000 | ---D | C] -- C:\Program Files\NFZ-KO
[2010-12-09 17:23:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kuba\Pulpit\umowa-normalna
[2010-12-08 10:26:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kuba\Pulpit\umowa-nocna
[2010-12-05 12:19:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kuba\Ustawienia lokalne\Dane aplikacji\Adobe
[2010-12-04 21:52:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kuba\Dane aplikacji\Adobe
[2010-11-22 22:32:52 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010-11-22 17:30:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kuba\Dane aplikacji\VSO
[2010-11-22 17:30:06 | 000,000,000 | ---D | C] -- C:\Program Files\VSO
[2010-09-10 23:49:40 | 000,004,096 | ---- | C] ( ) -- C:\WINDOWS\System32\IGFXDEVLib.dll
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2010-12-18 19:41:00 | 000,001,128 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1390067357-725345543-946637946-1003UA.job
[2010-12-16 23:36:09 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-12-16 23:36:08 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-12-15 17:40:05 | 000,013,030 | ---- | M] () -- C:\PDOXUSRS.NET
[2010-12-13 23:49:42 | 000,000,813 | ---- | M] () -- C:\WINDOWS\YDPDICT.INI
[2010-12-13 16:32:53 | 000,009,396 | ---- | M] () -- C:\Documents and Settings\Kuba\Pulpit\asd.gif
[2010-12-13 00:17:47 | 000,008,086 | ---- | M] () -- C:\index.php
[2010-12-13 00:14:53 | 000,000,454 | ---- | M] () -- C:\page.php
[2010-12-12 15:41:00 | 000,001,076 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1390067357-725345543-946637946-1003Core.job
[2010-12-11 11:24:31 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010-12-10 00:10:09 | 000,000,606 | ---- | M] () -- C:\Documents and Settings\Kuba\Pulpit\NFZ-KO.lnk
[2010-12-08 10:18:55 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010-12-04 10:49:35 | 000,001,218 | ---- | M] () -- C:\Documents and Settings\Kuba\Pulpit\Informatyka.lnk
[2010-12-04 10:49:21 | 000,001,212 | ---- | M] () -- C:\Documents and Settings\Kuba\Pulpit\Dokumenty.lnk
[2010-11-29 07:56:00 | 000,000,545 | ---- | M] () -- C:\WINDOWS\UC.PIF
[2010-11-29 07:56:00 | 000,000,545 | ---- | M] () -- C:\WINDOWS\RAR.PIF
[2010-11-29 07:56:00 | 000,000,545 | ---- | M] () -- C:\WINDOWS\PKZIP.PIF
[2010-11-29 07:56:00 | 000,000,545 | ---- | M] () -- C:\WINDOWS\PKUNZIP.PIF
[2010-11-29 07:56:00 | 000,000,545 | ---- | M] () -- C:\WINDOWS\NOCLOSE.PIF
[2010-11-29 07:56:00 | 000,000,545 | ---- | M] () -- C:\WINDOWS\LHA.PIF
[2010-11-29 07:56:00 | 000,000,545 | ---- | M] () -- C:\WINDOWS\ARJ.PIF
[2010-11-25 23:12:40 | 000,000,036 | ---- | M] () -- C:\Documents and Settings\Kuba\.org.eclipse.epp.usagedata.recording.userId
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010-12-13 16:32:53 | 000,009,396 | ---- | C] () -- C:\Documents and Settings\Kuba\Pulpit\asd.gif
[2010-12-13 00:15:24 | 000,008,086 | ---- | C] () -- C:\index.php
[2010-12-13 00:14:45 | 000,000,454 | ---- | C] () -- C:\page.php
[2010-12-11 11:18:21 | 000,000,545 | ---- | C] () -- C:\WINDOWS\UC.PIF
[2010-12-11 11:18:21 | 000,000,545 | ---- | C] () -- C:\WINDOWS\RAR.PIF
[2010-12-11 11:18:21 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKZIP.PIF
[2010-12-11 11:18:21 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKUNZIP.PIF
[2010-12-11 11:18:21 | 000,000,545 | ---- | C] () -- C:\WINDOWS\NOCLOSE.PIF
[2010-12-11 11:18:21 | 000,000,545 | ---- | C] () -- C:\WINDOWS\LHA.PIF
[2010-12-11 11:18:21 | 000,000,545 | ---- | C] () -- C:\WINDOWS\ARJ.PIF
[2010-12-10 00:10:15 | 000,013,030 | ---- | C] () -- C:\PDOXUSRS.NET
[2010-12-10 00:10:13 | 000,183,808 | ---- | C] () -- C:\WINDOWS\System32\BDEADMIN.CPL
[2010-12-10 00:10:09 | 000,000,606 | ---- | C] () -- C:\Documents and Settings\Kuba\Pulpit\NFZ-KO.lnk
[2010-12-10 00:10:05 | 000,107,008 | ---- | C] () -- C:\WINDOWS\System32\PDFENC32.DLL
[2010-12-08 07:47:16 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010-12-04 10:48:23 | 000,001,218 | ---- | C] () -- C:\Documents and Settings\Kuba\Pulpit\Informatyka.lnk
[2010-12-04 10:48:23 | 000,001,212 | ---- | C] () -- C:\Documents and Settings\Kuba\Pulpit\Dokumenty.lnk
[2010-11-25 23:12:40 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Kuba\.org.eclipse.epp.usagedata.recording.userId
[2010-10-27 22:37:23 | 000,000,052 | ---- | C] () -- C:\WINDOWS\mafosav.INI
[2010-10-19 20:09:19 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
[2010-10-14 00:08:48 | 000,426,320 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-10-12 18:22:38 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-09-24 21:03:45 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-09-24 21:03:45 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010-09-24 21:03:44 | 000,790,528 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-09-24 21:03:44 | 000,134,144 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-09-24 21:03:44 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010-09-18 17:08:37 | 000,000,813 | ---- | C] () -- C:\WINDOWS\YDPDICT.INI
[2010-09-12 13:31:35 | 000,080,416 | ---- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll
[2010-09-11 11:30:19 | 000,000,663 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2010-09-11 10:13:55 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\ezsid.dat
[2010-09-10 16:31:41 | 000,004,722 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010-09-10 16:17:26 | 000,757,760 | ---- | C] () -- C:\WINDOWS\System32\bcm1xsup.dll
[2010-09-10 16:17:26 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\preflib.dll
[2010-06-15 02:29:18 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\StarOpen.sys
[2009-12-08 10:54:02 | 002,860,384 | ---- | C] () -- C:\WINDOWS\System32\btwicons.dll
[2003-04-08 10:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2001-11-14 11:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll

< End of report >
[/log]

Pozdrawiam,
K.

Tomek01
komentarz
komentarz

Cześć ;)

Czyściutko tu u Ciebie kolego :)
Przerywanie net'u nie wynika z infekcji.

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.