Prosze o sprawdzenie Loga

03.02.05, 19:51
WIN XP dziala coraz wolniej.
Co mam wywalic??
Z gory dziekuje.
Logfile of HijackThis v1.98.2
Scan saved at 19:48:06, on 2005-02-03
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.ex e
C:\WINDOWS\system32\services.ex e
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Norton Internet Security\ISSVC.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Executive Software\Diskeeper\DkService.ex e
C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\PROGRA~1\NORTON~1\NORTON~1\N PROTECT.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\PROGRA~1\NORTON~1\NORTON~1\S PEEDD~1\NOPDB.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\WINDOWS\system32\RUNDLL32.EX E
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\MSN Apps\Updater\01.02.3000.1001\en -us\msnappau.exe
C:\WINDOWS\system32\rundll32.ex e
C:\PROGRA~1\Lavasoft\AD-AWA~3\A d-Watch.exe
C:\Program Files\DU Meter\DUMeter.exe
C:\WINDOWS\system32\spool\drive rs\w32x86\3\hpztsb09.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.ex e
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\rundll32.ex e
C:\Program Files\MemStat XP\MemStat.exe
C:\Program Files\NetPanel\NetPanel.exe
C:\Documents and Settings\admin\Ustawienia lokalne\Temp\Katalog tymczasowy 1
dla AutoConnect.zip\AutoConnect.exe
C:\Program Files\Yahoo!\Messenger\ypager.e xe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Gadu-Gadu\gg.exe
C:\Program Files\eMule\emule.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\YSe rver.exe
C:\Program Files\Common Files\Real\Update_OB\realsched. exe
C:\Program Files\Mozilla Firefox\firefox.exe
F:\programy podreczne\HijackThis.exe

R0 - HKCU\Software\Microsoft\Interne t Explorer\Main,Start Page =
www.interia.pl/
R1 - HKLM\Software\Microsoft\Interne t Explorer\Main,Search Bar =
red.clientapps.yahoo.com/customize/ie/defaults/sb/ymsgr6/*http://www.yahoo.com/ext/search/search.html
R1 - HKCU\Software\Microsoft\Interne t Explorer\SearchURL,(Default) =
red.clientapps.yahoo.com/customize/ie/defaults/su/ymsgr6/*http://www.yahoo.com
R1 - HKCU\Software\Microsoft\Interne t Explorer\Main,Start Page_bak =
www.interia.pl/
R1 - HKCU\Software\Microsoft\Interne t Explorer\Main,Window Title = Microsoft
Internet Explorer
R0 - HKCU\Software\Microsoft\Interne t Explorer\Toolbar,LinksFolderNam e = Lacza
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04 FD64497} - (no
file)
O2 - BHO: HelperObject Class - {00C6482D-C502-44C8-8409-FCE54A D9C208} -
C:\Program Files\TechSmith\SnagIt 7\SnagItBHO.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D 6BE0B3} -
C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Idea2 SidebarBrowserMonitor Class -
{45AD732C-2CE2-4666-B366-B2214A D57A49} - C:\Program Files\Desktop
Sidebar\sbhelp.dll
O2 - BHO: URLLink Class - {4A2AACF3-ADF6-11D5-98A9-00E018 981B9E} - C:\Program
Files\NewDotNet\newdotnet6_38.d ll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF3 6AF6E4} - C:\Program Files\MSN
Apps\ST\01.02.3000.1002\en-xu\s tmain.dll
O2 - BHO: Norton Internet Security - {9ECB9560-04F9-4bbc-943D-298DDF 1699E1} -
C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4 FF55D0} - C:\Program
Files\MSN Apps\MSN Toolbar\01.02.3000.1001\en-us\m sntb.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B 084872} - C:\Program
Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: CoTGT_BHO Class - {C333CF63-767F-4831-94AC-E683D9 62C63C} - (no file)
O2 - BHO: NTIECatcher Class - {C56CB6B0-0D96-11D6-8C65-B2868B 609932} -
C:\Program Files\Xi\NetTransport 2\NTIEHelper.dll
O2 - BHO: IEHlprObj Class - {CE7C3CF0-4B15-11D1-ABED-709549 C10000} -
C:\Program Files\NetPanel\IEHelper.dll
O2 - BHO: FlashFXP Helper for Internet Explorer -
{E5A1691B-D188-4419-AD02-900020 30B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dl l
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA 6940E3} - (no file)
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4 FF55D0} - C:\Program
Files\MSN Apps\MSN Toolbar\01.02.3000.1001\en-us\m sntb.dll
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB9 5CABE3} - C:\Program
Files\TechSmith\SnagIt 7\SnagItIEAddin.dll
O3 - Toolbar: Norton Internet Security -
{0B53EAC3-8D69-4b9e-9B19-A37C9A 5676A7} - C:\Program Files\Common
Files\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF 00B1D6} -
C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE
C:\WINDOWS\System32\NvCpl.dll,N vStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE
C:\WINDOWS\System32\NvMcTray.dl l,NvTaskbarInit
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NetPanel] "C:\Program Files\NetPanel\Starter.exe"
/path="C:\Program Files\NetPanel"
O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN
Apps\Updater\01.02.3000.1001\en -us\msnappau.exe"
O4 - HKLM\..\Run: [New.net Startup] rundll32
C:\PROGRA~1\NEWDOT~1\NEWDOT~1.D LL,NewDotNetStartup -s
O4 - HKLM\..\Run: [AWMON] "C:\PROGRA~1\Lavasoft\AD-AWA~3\ Ad-Watch.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common
Files\Real\Update_OB\realsched. exe" -osboot
O4 - HKLM\..\Run: [DU Meter] C:\Program Files\DU Meter\DUMeter.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility]
C:\WINDOWS\system32\spool\drive rs\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP
Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program
Files\HP\hpcoretech\hpcmpmgr.ex e"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec
Shared\ccApp.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ash Disp.exe
O4 - HKLM\..\Run: [Breg] "C:\Program Files\Common Files\Java\bcre.exe"
O4 - HKLM\..\Run: [BCPC] "C:\Program Files\Bcpc\bcpc.exe"
O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Software\Panda Titanium
Antivirus 2004\APVXDWIN.EXE" /s
O4 - HKLM\..\Run: [StarMap by Tobias Wahl] C:\Program Files\SETI@home\star
map\StarMap.exe
O4 - HKLM\..\Run: [Xcpy1] "C:\Program Files\Common Files\Java\Xcpy1.exe"
O4 - HKLM\..\Run: [ashMaiSv] C:\PROGRA~1\ALWILS~1\Avast4\ash maisv.exe
O4 - HKCU\..\Run: [MemStat] C:\Program Files\MemStat XP\MemStat.exe
O4 - HKCU\..\Run: [AutoConnect] C:\Documents and Settings\admin\Ustawienia
lokalne\Temp\Katalog tymczasowy 1 dla AutoConnect.zip\AutoConnect.exe
O4 - HKCU\..\Run: [seticlient] C:\Program Files\SETI@home\SETI@home.exe -min
O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.e xe
-quiet
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Sk
    • rhemek Re: Prosze o sprawdzenie Loga 03.02.05, 19:55
      i ciag dalszy loga:
      O4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\Powergg.exe" /tray
      O4 - Startup: PowerReg Scheduler.exe
      O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program
      Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
      O8 - Extra context menu item: &Szukaj w NetSprint.pl -
      res://C:\WINDOWS\Downloaded Program Files\CONFLICT.2\toolbar.dll/SE ARCH.HTML
      O8 - Extra context menu item: Blokuj wszystkie obrazy z tego serwera -
      C:\Program Files\Avant Browser\AddAllToADBlackList.htm
      O8 - Extra context menu item: Dodaj do listy blokowanych reklam - C:\Program
      Files\Avant Browser\AddToADBlackList.htm
      O8 - Extra context menu item: Pobierz przez Net Transport - C:\Program
      Files\Xi\NetTransport 2\NTAddLink.html
      O8 - Extra context menu item: Pobierz wszystko przez Net Transport - C:\Program
      Files\Xi\NetTransport 2\NTAddList.html
      O8 - Extra context menu item: Subscribe in Desktop Sidebar - res://C:\Program
      Files\Desktop Sidebar\sbhelp.dll/menuhandler. html
      O8 - Extra context menu item: Szukaj - C:\Program Files\Avant Browser\Search.htm
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C 608501} -
      C:\WINDOWS\System32\msjava.dll
      O9 - Extra 'Tools' menuitem: Sun Java Console -
      {08B0E5C0-4FCB-11CF-AAA5-00401C 608501} - C:\WINDOWS\System32\msjava.dll
      O9 - Extra button: Subscribe in Desktop Sidebar -
      {09FE188B-6E85-479e-9411-51FB22 20DF80} - C:\Program Files\Desktop Sidebar\sbhelp.dll
      O9 - Extra 'Tools' menuitem: Subscribe in Desktop Sidebar -
      {09FE188B-6E85-479e-9411-51FB22 20DF80} - C:\Program Files\Desktop Sidebar\sbhelp.dll
      O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0 318AFE} - (no file)
      O9 - Extra button: eBay - Homepage - {EF79EAC5-3452-4E02-B8BD-BA4C89 F1AC7A} -
      C:\Program Files\IrfanView\Ebay\Ebay.htm
      O10 - Hijacked Internet access by New.Net
      O10 - Hijacked Internet access by New.Net
      O10 - Hijacked Internet access by New.Net
      O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA 18DE71} (RdxIE Class) -
      software-dl.real.com/05b748368ac1e53da805/netzip/RdxIE601.cab
      O16 - DPF: {8626DFA9-2BAC-4BDA-8663-8DAA0F 942C0D} -
      netpanel.gemius.pl/netpanel2/temp/netp/8498/0189/1995/5300/8498018919955300.ocx
      O16 - DPF: {B9191F79-5613-4C76-AA2A-398534 BB8999} -
      us.dl1.yimg.com/download.yahoo.com/dl/installs/suite/yautocomplete.cab
      O16 - DPF: {C2FCEF52-ACE9-11D3-BEBD-00105A A9B6AE} (Symantec RuFSI Registry
      Information Class) -
      security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
      O16 - DPF: {E7544C6C-CFD6-43EA-B4E9-360CEE 20BDF7} (MainControl Class) -
      skaner.mks.com.pl/SkanerOnline.cab
      O16 - DPF: {F96D229F-129A-43B5-9B51-B7820E 1BF2D3} (GameControl2 Control) -
      www.miastoplusa.pl/applets/GameControl104.cab
      O17 - HKLM\System\CCS\Services\Tcpip\ ..\{7FE025DF-42AC-4999-9982-02D CC3A2B21A}:
      NameServer = 194.204.152.34 217.98.63.164
      O18 - Protocol: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D 129300} - C:\Program
      Files\HP\hpcoretech\comp\hpuipr ot.dll
Pełna wersja