Logfile created: 2011-10-07 20:06:23 Ad-Aware version: 9.5.1 Extended engine: 3 Extended engine version: 3.1.2770 User performing scan: grazyna *********************** Definitions database information *********************** Lavasoft definition file: 150.588 Genotype definition file version: 2011/09/21 13:56:01 Extended engine definition file: 10690.0 ******************************** Scan results: ********************************* Scan profile name: Smart Scan (ID: smart) Objects scanned: 22436 Objects detected: 1 Type Detected ========================== Processes.......: 0 Registry entries: 0 Hostfile entries: 0 Files...........: 0 Folders.........: 0 LSPs............: 0 Cookies.........: 1 Browser hijacks.: 0 MRU objects.....: 0 Removed items: Description: *statcounter* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409185 Family ID: 0 Scan and cleaning complete: Finished correctly after 246 seconds *********************************** Settings *********************************** Scan profile: ID: smart, enabled:1, value: Smart Scan ID: folderstoscan, enabled:1, value: ID: useantivirus, enabled:1, value: true ID: sections, enabled:1 ID: scancriticalareas, enabled:1, value: true ID: scanrunningapps, enabled:1, value: true ID: scanregistry, enabled:1, value: true ID: scanlsp, enabled:1, value: true ID: scanads, enabled:1, value: false ID: scanhostsfile, enabled:1, value: false ID: scanmru, enabled:1, value: false ID: scanbrowserhijacks, enabled:1, value: true ID: scantrackingcookies, enabled:1, value: true ID: closebrowsers, enabled:1, value: false ID: filescanningoptions, enabled:1 ID: archives, enabled:1, value: false ID: onlyexecutables, enabled:1, value: true ID: skiplargerthan, enabled:1, value: 20480 ID: scanrootkits, enabled:1, value: true ID: rootkitlevel, enabled:1, value: mild, domain: medium,mild,strict ID: usespywareheuristics, enabled:1, value: true Scan global: ID: global, enabled:1 ID: addtocontextmenu, enabled:1, value: true ID: playsoundoninfection, enabled:1, value: false ID: soundfile, enabled:0, value: N/A Scheduled scan settings: Update settings: ID: updates, enabled:1 ID: launchthreatworksafterscan, enabled:1, value: off, domain: normal,off,silently ID: deffiles, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall ID: licenseandinfo, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall ID: schedules, enabled:1, value: true ID: updatedaily1, enabled:1, value: Daily 1 ID: time, enabled:1, value: Fri Oct 07 20:02:00 2011 ID: frequency, enabled:1, value: daily, domain: daily,monthly,once,systemstart,weekly ID: weekdays, enabled:1 ID: monday, enabled:1, value: false ID: tuesday, enabled:1, value: false ID: wednesday, enabled:1, value: false ID: thursday, enabled:1, value: false ID: friday, enabled:1, value: false ID: saturday, enabled:1, value: false ID: sunday, enabled:1, value: false ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31 ID: scanprofile, enabled:1, value: ID: auto_deal_with_infections, enabled:1, value: false ID: updatedaily2, enabled:1, value: Daily 2 ID: time, enabled:1, value: Fri Oct 07 02:02:00 2011 ID: frequency, enabled:1, value: daily, domain: daily,monthly,once,systemstart,weekly ID: weekdays, enabled:1 ID: monday, enabled:1, value: false ID: tuesday, enabled:1, value: false ID: wednesday, enabled:1, value: false ID: thursday, enabled:1, value: false ID: friday, enabled:1, value: false ID: saturday, enabled:1, value: false ID: sunday, enabled:1, value: false ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31 ID: scanprofile, enabled:1, value: ID: auto_deal_with_infections, enabled:1, value: false ID: updatedaily3, enabled:1, value: Daily 3 ID: time, enabled:1, value: Fri Oct 07 08:02:00 2011 ID: frequency, enabled:1, value: daily, domain: daily,monthly,once,systemstart,weekly ID: weekdays, enabled:1 ID: monday, enabled:1, value: false ID: tuesday, enabled:1, value: false ID: wednesday, enabled:1, value: false ID: thursday, enabled:1, value: false ID: friday, enabled:1, value: false ID: saturday, enabled:1, value: false ID: sunday, enabled:1, value: false ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31 ID: scanprofile, enabled:1, value: ID: auto_deal_with_infections, enabled:1, value: false ID: updatedaily4, enabled:1, value: Daily 4 ID: time, enabled:1, value: Fri Oct 07 14:02:00 2011 ID: frequency, enabled:1, value: daily, domain: daily,monthly,once,systemstart,weekly ID: weekdays, enabled:1 ID: monday, enabled:1, value: false ID: tuesday, enabled:1, value: false ID: wednesday, enabled:1, value: false ID: thursday, enabled:1, value: false ID: friday, enabled:1, value: false ID: saturday, enabled:1, value: false ID: sunday, enabled:1, value: false ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31 ID: scanprofile, enabled:1, value: ID: auto_deal_with_infections, enabled:1, value: false ID: updateweekly1, enabled:1, value: Weekly ID: time, enabled:1, value: Fri Oct 07 20:02:00 2011 ID: frequency, enabled:1, value: weekly, domain: daily,monthly,once,systemstart,weekly ID: weekdays, enabled:1 ID: monday, enabled:1, value: true ID: tuesday, enabled:1, value: false ID: wednesday, enabled:1, value: false ID: thursday, enabled:1, value: false ID: friday, enabled:1, value: true ID: saturday, enabled:1, value: false ID: sunday, enabled:1, value: false ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31 ID: scanprofile, enabled:1, value: ID: auto_deal_with_infections, enabled:1, value: false Appearance settings: ID: appearance, enabled:1 ID: skin, enabled:1, value: default.egl, reglocation: HKEY_LOCAL_MACHINE\SOFTWARE\Lavasoft\Ad-Aware\Resource ID: showtrayicon, enabled:1, value: true ID: autoentertainmentmode, enabled:1, value: true ID: guimode, enabled:1, value: mode_simple, domain: mode_advanced,mode_simple ID: language, enabled:1, value: en, reglocation: HKEY_LOCAL_MACHINE\SOFTWARE\Lavasoft\Ad-Aware\Language Realtime protection settings: ID: realtime, enabled:1 ID: layers, enabled:1 ID: useantivirus, enabled:1, value: true ID: usespywareheuristics, enabled:1, value: true ID: maintainbackup, enabled:1, value: true ID: infomessages, enabled:1, value: onlyimportant, domain: display,dontnotify,onlyimportant ID: modules, enabled:1 ID: processprotection, enabled:1, value: true ID: onaccessprotection, enabled:1, value: true ID: registryprotection, enabled:1, value: true ID: networkprotection, enabled:1, value: true ****************************** System information ****************************** Computer name: GRAZYNA-HP Processor name: Pentium(R) Dual-Core CPU E6300 @ 2.80GHz Processor identifier: x86 Family 6 Model 23 Stepping 10 Processor speed: ~2800MHZ Raw info: processorarchitecture 0, processortype 586, processorlevel 6, processor revision 5898, number of processors 2, processor features: [MMX,SSE,SSE2,SSE3] Physical memory available: 1512054784 bytes Physical memory total: 3220430848 bytes Virtual memory available: 1906782208 bytes Virtual memory total: 2147352576 bytes Memory load: 53% Microsoft (build 7600) Windows startup mode: Running processes: PID: 284 name: C:\windows\System32\smss.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 368 name: C:\PROGRA~1\AVG\AVG2012\avgrsx.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 400 name: C:\Program Files\AVG\AVG2012\avgcsrvx.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 632 name: C:\windows\System32\csrss.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 696 name: C:\windows\System32\csrss.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 704 name: C:\windows\System32\wininit.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 744 name: C:\windows\System32\services.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 768 name: C:\windows\System32\lsass.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 780 name: C:\windows\System32\lsm.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 812 name: C:\windows\System32\winlogon.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 940 name: C:\windows\System32\svchost.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 1028 name: C:\windows\System32\svchost.exe owner: USŁUGA SIECIOWA domain: ZARZĄDZANIE NT PID: 1120 name: C:\windows\System32\atiesrxx.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 1152 name: C:\windows\System32\svchost.exe owner: USŁUGA LOKALNA domain: ZARZĄDZANIE NT PID: 1184 name: C:\windows\System32\svchost.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 1212 name: C:\windows\System32\svchost.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 1340 name: C:\windows\System32\svchost.exe owner: USŁUGA LOKALNA domain: ZARZĄDZANIE NT PID: 1432 name: C:\windows\System32\svchost.exe owner: USŁUGA SIECIOWA domain: ZARZĄDZANIE NT PID: 1556 name: C:\windows\System32\spoolsv.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 1600 name: C:\windows\System32\svchost.exe owner: USŁUGA LOKALNA domain: ZARZĄDZANIE NT PID: 1696 name: C:\windows\System32\atieclxx.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 1880 name: C:\Program Files\AVG\AVG2012\avgwdsvc.exe owner: domain: PID: 1916 name: C:\windows\System32\svchost.exe owner: USŁUGA LOKALNA domain: ZARZĄDZANIE NT PID: 1952 name: C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 1984 name: C:\Program Files\Microsoft LifeCam\MSCamS32.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 240 name: C:\Program Files\PDF Complete\pdfsvc.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 340 name: C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 628 name: C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 2008 name: C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe owner: domain: PID: 2284 name: C:\Program Files\AVG\AVG2012\avgnsx.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 2684 name: C:\windows\System32\taskhost.exe owner: grazyna domain: grazyna-HP PID: 2820 name: C:\windows\System32\dwm.exe owner: grazyna domain: grazyna-HP PID: 2840 name: C:\windows\explorer.exe owner: grazyna domain: grazyna-HP PID: 3048 name: C:\windows\System32\WUDFHost.exe owner: USŁUGA LOKALNA domain: ZARZĄDZANIE NT PID: 3820 name: C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe owner: grazyna domain: grazyna-HP PID: 3836 name: C:\Program Files\Common Files\Java\Java Update\jusched.exe owner: grazyna domain: grazyna-HP PID: 3876 name: C:\Program Files\AVG\AVG2012\avgtray.exe owner: domain: PID: 3884 name: C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe owner: grazyna domain: grazyna-HP PID: 3892 name: C:\Program Files\Skype\Phone\Skype.exe owner: grazyna domain: grazyna-HP PID: 3900 name: C:\Program Files\Windows Sidebar\sidebar.exe owner: grazyna domain: grazyna-HP PID: 2436 name: C:\Program Files\Skype\Plugin Manager\skypePM.exe owner: grazyna domain: grazyna-HP PID: 3436 name: C:\windows\System32\SearchIndexer.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 3776 name: C:\windows\System32\SearchProtocolHost.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 2960 name: C:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe owner: USŁUGA LOKALNA domain: ZARZĄDZANIE NT PID: 3096 name: C:\Users\grazyna\AppData\Local\Google\Chrome\Application\chrome.exe owner: grazyna domain: grazyna-HP PID: 564 name: C:\Users\grazyna\AppData\Local\Google\Chrome\Application\chrome.exe owner: grazyna domain: grazyna-HP PID: 3040 name: C:\Users\grazyna\AppData\Local\Google\Chrome\Application\chrome.exe owner: grazyna domain: grazyna-HP PID: 3852 name: C:\Users\grazyna\AppData\Local\Google\Chrome\Application\chrome.exe owner: grazyna domain: grazyna-HP PID: 2164 name: C:\Users\grazyna\AppData\Local\Google\Chrome\Application\chrome.exe owner: grazyna domain: grazyna-HP PID: 3856 name: C:\Users\grazyna\AppData\Local\Google\Chrome\Application\chrome.exe owner: grazyna domain: grazyna-HP PID: 3644 name: C:\windows\System32\rundll32.exe owner: grazyna domain: grazyna-HP PID: 1424 name: C:\Users\grazyna\AppData\Local\Google\Chrome\Application\chrome.exe owner: grazyna domain: grazyna-HP PID: 3008 name: C:\windows\System32\wuauclt.exe owner: grazyna domain: grazyna-HP PID: 2532 name: C:\windows\System32\msiexec.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 3596 name: C:\windows\System32\svchost.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 4960 name: C:\windows\servicing\TrustedInstaller.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 5216 name: C:\windows\System32\wbem\WmiPrvSE.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 5152 name: C:\Program Files\Microsoft LifeCam\LifeTray.exe owner: grazyna domain: grazyna-HP PID: 4600 name: C:\Program Files\Microsoft LifeCam\LifeEnC2.exe owner: grazyna domain: grazyna-HP PID: 4544 name: C:\windows\System32\SearchFilterHost.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 4588 name: C:\Program Files\Lavasoft\Ad-Aware\Ad-Aware.exe owner: grazyna domain: grazyna-HP PID: 4076 name: C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 2832 name: C:\windows\System32\wbem\unsecapp.exe owner: SYSTEM domain: ZARZĄDZANIE NT PID: 1536 name: C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe owner: grazyna domain: grazyna-HP Startup items: Name: NortonOnlineBackupReminder imagepath: "C:\Program Files\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED Name: PDF Complete imagepath: C:\Program Files\PDF Complete\pdfsty.exe Name: LifeCam imagepath: "C:\Program Files\Microsoft LifeCam\LifeExp.exe" Name: Adobe Reader Speed Launcher imagepath: "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" Name: Adobe ARM imagepath: "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" Name: SunJavaUpdateSched imagepath: "C:\Program Files\Common Files\Java\Java Update\jusched.exe" Name: AVG_TRAY imagepath: "C:\Program Files\AVG\AVG2012\avgtray.exe" Name: WebCheck imagepath: {E6FB5E20-DE35-11CF-9C87-00AA005127ED} Name: imagepath: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini Bootexecute items: Name: imagepath: autocheck autochk * Name: imagepath: C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart Running services: Name: AeLookupSvc displayname: Użytkowanie aplikacji Name: AMD External Events Utility displayname: AMD External Events Utility Name: Appinfo displayname: Informacje o aplikacji Name: AudioEndpointBuilder displayname: Konstruktor punktów końcowych audio systemu Windows Name: Audiosrv displayname: Windows Audio Name: AVGIDSAgent displayname: AVGIDSAgent Name: avgwd displayname: AVG WatchDog Name: BFE displayname: Podstawowy aparat filtrowania Name: BITS displayname: Usługa inteligentnego transferu w tle Name: CryptSvc displayname: Usługi kryptograficzne Name: DcomLaunch displayname: Program uruchamiający proces serwera DCOM Name: Dhcp displayname: Klient DHCP Name: Dnscache displayname: Klient DNS Name: DPS displayname: Usługa zasad diagnostyki Name: eventlog displayname: Dziennik zdarzeń systemu Windows Name: EventSystem displayname: System zdarzeń COM+ Name: FDResPub displayname: Publikacja zasobów odnajdowania funkcji Name: FontCache displayname: Usług systemu Windows buforowania czcionek Name: FontCache3.0.0.0 displayname: Usługa buforowania czcionek platformy Windows Presentation Foundation, wersja 3.0.0.0 Name: gpsvc displayname: Klient zasad grupy Name: hidserv displayname: Dostęp do urządzeń interfejsu HID Name: IKEEXT displayname: Moduły obsługi kluczy IPsec IKE i AuthIP Name: iphlpsvc displayname: Pomoc IP Name: IviRegMgr displayname: IviRegMgr Name: LanmanServer displayname: Serwer Name: LanmanWorkstation displayname: Stacja robocza Name: lmhosts displayname: Pomoc TCP/IP NetBIOS Name: MMCSS displayname: Harmonogram klas multimediów Name: MpsSvc displayname: Zapora systemu Windows Name: MSCamSvc displayname: MSCamSvc Name: msiserver displayname: Instalator Windows Name: Netman displayname: Połączenia sieciowe Name: netprofm displayname: Usługa listy sieci Name: NlaSvc displayname: Rozpoznawanie lokalizacji w sieci Name: nsi displayname: Usługa interfejsu magazynu sieciowego Name: PcaSvc displayname: Usługa Asystent zgodności programów Name: pdfcDispatcher displayname: PDF Document Manager Name: PlugPlay displayname: Plug and Play Name: Power displayname: Zasilanie Name: ProfSvc displayname: Usługa profilów użytkowników Name: PSI_SVC_2 displayname: Protexis Licensing V2 Name: RpcEptMapper displayname: Program mapowania punktów końcowych wywołań RPC Name: RpcSs displayname: Zdalne wywoływanie procedur (RPC) Name: SamSs displayname: Menedżer kont zabezpieczeń Name: Schedule displayname: Harmonogram zadań Name: SeaPort displayname: SeaPort Name: SENS displayname: Usługa powiadamiania o zdarzeniach systemowych Name: ShellHWDetection displayname: Wykrywanie sprzętu powłoki Name: Spooler displayname: Bufor wydruku Name: SSDPSRV displayname: Odnajdywanie SSDP Name: swprv displayname: Dostawca kopiowania w tle oprogramowania firmy Microsoft Name: SysMain displayname: Wstępne ładowanie do pamięci Name: Themes displayname: Kompozycje Name: TrkWks displayname: Klient śledzenia łączy rozproszonych Name: TrustedInstaller displayname: Instalator modułów systemu Windows Name: UxSms displayname: Menedżer sesji Menedżera okien pulpitu Name: WdiServiceHost displayname: Host usługi diagnostyki Name: WdiSystemHost displayname: Host systemu diagnostyki Name: WinHttpAutoProxySvc displayname: Usługa autowykrywania serwera proxy w sieci Web WinHTTP Name: Winmgmt displayname: Instrumentacja zarządzania Windows Name: WPDBusEnum displayname: Usługa modułu wyliczającego urządzenia przenośne Name: wscsvc displayname: Centrum zabezpieczeń Name: WSearch displayname: Windows Search Name: wuauserv displayname: Windows Update Name: wudfsvc displayname: Windows Driver Foundation — User-mode Driver Framework Name: Lavasoft Ad-Aware Service displayname: Lavasoft Ad-Aware Service