Witam
Zależy mi na szybkiej pomocy z ręki profesjonalisty…
Potrzebuje komputera od zaraz do pracy a mam zablokowane edytory którymi się posługiwałem więc potrzebuje natychmiast coś z tym zrobić…
Przedstawię teraz mój problem :
-
blokady ważnych programów
-
dzisiaj komputer odpalił dopiero za 4 razem
-
poważne spowolnienie internetu
-
myszka co i raz się odłącza i trzeba komputer restartować…
Sam już nie wiem co z tym robić
Tutaj wklejam log z hijackthis :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:35:37, on 2009-08-06
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AntiVirenKit\AVKService.exe
C:\Program Files\AntiVirenKit\AVKWCtl.exe
C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
e:\ElsaWin\bin\LcSvrAdm.exe
e:\ElsaWin\bin\LcSvrHis.exe
e:\ElsaWin\bin\LcSvrKdS.exe
C:\WINDOWS\NT\nrcs.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.exe
e:\ElsaWin\bin\LcSvrAuf.exe
C:\PROGRA~1\A4Tech\Keyboard\Ikeymain.exe
C:\PROGRA~1\A4Tech\Mouse\Amoumain.exe
C:\WINDOWS\System32\logon.exe
C:\WINDOWS\System32\algs.exe
C:\WINDOWS\system32\hp32_nword.exe
C:\WINDOWS\system32\msword98.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_AICN03.EXE
C:\Program Files\Messenger\msmsgs.exe
C:\Documents and Settings\ppp\hp32_nword.exe
C:\Documents and Settings\ppp\msword98.exe
C:\Corel\Graphics8\programs\MFIndexer.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\firefox.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\mhpbkvn.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\zjvuvwc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\kzqtkcn.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\ndmetmc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Administrator\Pulpit\hijackthis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.allegro.pl/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
F2 - REG:system.ini: Shell=Explorer.exe C:\WINDOWS\NT\nrcs.exe
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\userinit.exe,C:\WINDOWS\NT\nrcs.exe
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE NvQTwk,NvCplDaemon initialize
O4 - HKLM\..\Run: [iKeyWorks] C:\PROGRA~1\A4Tech\Keyboard\Ikeymain.exe
O4 - HKLM\..\Run: [WheelMouse] C:\PROGRA~1\A4Tech\Mouse\Amoumain.exe
O4 - HKLM\..\Run: [Windows Logon Application] C:\WINDOWS\System32\logon.exe
O4 - HKLM\..\Run: [Microsoft (R) Windows Vista/NT Runtime Compatibility Service] C:\WINDOWS\NT\nrcs.exe
O4 - HKLM\..\Run: [Windows LoL Layer] mhpbkvn.exe
O4 - HKLM\..\Run: [Application Layer Gateway Service] C:\WINDOWS\System32\algs.exe
O4 - HKLM\..\Run: [Microsoft Mozilla Service] firefox.exe
O4 - HKLM\..\Run: [Copic Tilevb] Cilevb.com
O4 - HKLM\..\Run: [hp32_nword] C:\WINDOWS\system32\hp32_nword.exe
O4 - HKLM\..\Run: [Regedit32] C:\WINDOWS\system32\regedit.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [msword98] C:\WINDOWS\system32\msword98.exe
O4 - HKLM\..\RunServices: [Windows LoL Layer] mhpbkvn.exe
O4 - HKLM\..\RunServices: [Microsoft Mozilla Service] firefox.exe
O4 - HKLM\..\RunServices: [Copic Tilevb] Cilevb.com
O4 - HKCU\..\Run: [EPSON Stylus COLOR 480] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_AICN03.EXE /P22 "EPSON Stylus COLOR 480" /O5 "LPT1:" /M "Stylus COLOR 480"
O4 - HKCU\..\Run: [Windows LoL Layer] mhpbkvn.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [hp32_nword] C:\Documents and Settings\ppp\hp32_nword.exe
O4 - HKCU\..\Run: [msword98] "C:\WINDOWS\System32\zjvuvwc.exe"
O4 - HKUS\S-1-5-18\..\Run: [Windows LoL Layer] irhlbzt.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Windows LoL Layer] irhlbzt.exe (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Corel MEDIA FOLDERS INDEXER 8.LNK = C:\Corel\Graphics8\programs\MFIndexer.exe
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O12 - Plugin for .mp3: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin3.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{49A7622F-2954-4676-986D-635BC827AFAF}: NameServer = 213.241.79.37 83.238.255.76
O17 - HKLM\System\CS1\Services\Tcpip\..\{49A7622F-2954-4676-986D-635BC827AFAF}: NameServer = 213.241.79.37 83.238.255.76
O17 - HKLM\System\CS2\Services\Tcpip\..\{49A7622F-2954-4676-986D-635BC827AFAF}: NameServer = 213.241.79.37 83.238.255.76
O23 - Service: AVK Service (AVKService) - Unknown owner - C:\Program Files\AntiVirenKit\AVKService.exe
O23 - Service: Strażnik AVK (AVKWCtl) - Unknown owner - C:\Program Files\AntiVirenKit\AVKWCtl.exe
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
O23 - Service: ELSA Administration Service (LcSvrAdm) - Volkswagen AG - e:\ElsaWin\bin\LcSvrAdm.exe
O23 - Service: ELSA Auftragsverwaltungs Service (LcSvrAuf) - Volkswagen AG - e:\ElsaWin\bin\LcSvrAuf.exe
O23 - Service: ELSA Historie Server (LcSvrHis) - Volkswagen AG - e:\ElsaWin\bin\LcSvrHis.exe
O23 - Service: ELSA KD-Nummern Server (LcSvrKds) - Volkswagen AG - e:\ElsaWin\bin\LcSvrKdS.exe
O23 - Service: Local Service - Unknown owner - C:\WINDOWS\wuaucpl.exe
O23 - Service: Windows Vista/NT Runtime Compatibility Service (ntrcs) - Unknown owner - C:\WINDOWS\NT\nrcs.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Windows Hosts Controller - Unknown owner - C:\WINDOWS\Fonts\unwise_.exe
O24 - Desktop Component 0: (no name) - file:///C:/DOCUME~1/ppp/USTAWI~1/Temp/msoclip1/01/clip_image002.jpg
--
End of file - 6730 bytes
Jestem laikiem w tematach wirusów i ich usówania więc bardzo proszę o jasne i proste tłumaczenia krok po kroku…
Będę bardzo wdzięczny za pomoc