Mój komputer się bardzo zacina. Co mam zrobić?

Oprogramowanie komputerowe Problemy z oprogramowaniem
#1

Witam

Mam problem z kompem jest strasznie zmulony i kiedy nic nie robię na kompie to i tak jest 100% użycie procesora. Robilem wszystko defragmentacje partycji, oczyszczenie kompa, format, re instalke itd. Używałem do pomocy takie o to programy: Avast, Ccleaner, TuneUpUtilities 2010. Wszystkie wirusy jakie miałem usunąłem przez Avasta ale to i tak nic nie dało.Problem zaczął się ok 1 września 2 dni przed tym kolega przyniósł pendrajwa z grą i on nie poszedł wiec pojechał po drugiego i dopiero tamten się uruchomił. Formata robiłem w styczniu też nic nie dało.

Co Mam Zrobić?

PLIK Z OTL:

OTL logfile created on: 2010-05-30 15:50:51 - Run 2

OTL by OldTimer - Version 3.2.5.0 Folder = C:\Documents and Settings\Filip\Pulpit

Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 7.0.5730.13)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

511,00 Mb Total Physical Memory | 145,00 Mb Available Physical Memory | 28,00% Memory free

1,00 Gb Paging File | 1,00 Gb Available in Paging File | 74,00% Paging File free

Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 23,51 Gb Total Space | 4,48 Gb Free Space | 19,05% Space Free | Partition Type: FAT32

Drive D: | 25,38 Gb Total Space | 5,92 Gb Free Space | 23,31% Space Free | Partition Type: FAT32

Drive E: | 25,60 Gb Total Space | 8,65 Gb Free Space | 33,78% Space Free | Partition Type: FAT32

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: SPECIAL-XP

Current User Name: Filip

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: All users

Company Name Whitelist: Off

Skip Microsoft Files: Off

File Age = 30 Days

Output = Standard

========== Processes (All) ==========

PRC - [2010-05-25 15:59:08 | 000,571,904 | ---- | M] (OldTimer Tools) – C:\Documents and Settings\Filip\Pulpit\OTL.exe

PRC - [2010-05-21 14:50:34 | 000,053,248 | RHS- | M] (URJqcIYS) – C:\Documents and Settings\Filip\mevaj.exe

PRC - [2010-05-12 12:26:24 | 000,242,997 | ---- | M] () – C:\Documents and Settings\Filip\Menu Start\Programy\Autostart\servicess.exe

PRC - [2010-03-15 15:10:30 | 000,570,668 | ---- | M] () – C:\Documents and Settings\Filip\Menu Start\Programy\Autostart\data.exe

PRC - [2010-01-23 16:13:52 | 000,189,488 | ---- | M] () – C:\WINDOWS\system32\PnkBstrB.exe

PRC - [2010-01-22 15:25:20 | 000,075,064 | ---- | M] () – C:\WINDOWS\system32\PnkBstrA.exe

PRC - [2010-01-20 16:04:54 | 000,152,984 | ---- | M] (Sun Microsystems, Inc.) – C:\Program Files\Java\jre6\bin\jqs.exe

PRC - [2010-01-20 16:04:54 | 000,136,600 | ---- | M] (Sun Microsystems, Inc.) – C:\Program Files\Java\jre6\bin\jusched.exe

PRC - [2010-01-09 01:42:42 | 000,285,744 | ---- | M] () – C:\Program Files\Hotspot Shield\bin\hsswd.exe

PRC - [2009-12-23 17:14:30 | 014,100,888 | ---- | M] (Redefine Sp z o.o.) – C:\Program Files\ipla\ipla.exe

PRC - [2009-10-29 12:27:54 | 001,074,568 | ---- | M] (LogMeIn Inc.) – C:\Program Files\LogMeIn Hamachi\hamachi-2.exe

PRC - [2009-08-06 19:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\wuauclt.exe

PRC - [2009-02-09 12:25:58 | 000,111,104 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\services.exe

PRC - [2008-10-12 09:27:40 | 002,127,296 | ---- | M] (Gadu-Gadu S.A.) – C:\Program Files\Gadu-Gadu\gg.exe

PRC - [2008-08-18 13:25:10 | 000,468,224 | ---- | M] (ESET) – C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

PRC - [2008-08-18 13:23:50 | 001,447,168 | ---- | M] (ESET) – C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe

PRC - [2008-08-17 14:05:22 | 000,977,408 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\explorer.exe

PRC - [2008-08-04 00:02:20 | 000,036,352 | ---- | M] () – C:\Program Files\Winamp\winampa.exe

PRC - [2008-04-29 10:04:58 | 000,572,928 | ---- | M] (Nokia.) – C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

PRC - [2008-04-29 10:03:58 | 000,130,560 | ---- | M] () – C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe

PRC - [2008-04-16 12:53:46 | 001,079,808 | ---- | M] (Nokia) – E:\Program Files\Nokia\Nokia PC Suite 6\PCSuite.exe

PRC - [2008-04-15 12:00:00 | 000,126,464 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\wbem\wmiapsrv.exe

PRC - [2008-04-15 11:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\winlogon.exe

PRC - [2008-04-15 11:00:00 | 000,057,856 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\spoolsv.exe

PRC - [2008-04-15 11:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\smss.exe

PRC - [2008-04-15 11:00:00 | 000,044,544 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\alg.exe

PRC - [2008-04-15 11:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\ctfmon.exe

PRC - [2008-04-15 11:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\svchost.exe [WUDFSERVICEGROUP]

PRC - [2008-04-15 11:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\svchost.exe [RPCSS]

PRC - [2008-04-15 11:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]

PRC - [2008-04-15 11:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\svchost.exe [NETSVCS]

PRC - [2008-04-15 11:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]

PRC - [2008-04-15 11:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]

PRC - [2008-04-15 11:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\svchost.exe [imgSVC]

PRC - [2008-04-15 11:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]

PRC - [2008-04-15 11:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\lsass.exe

PRC - [2008-04-15 11:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\csrss.exe

PRC - [2008-02-22 09:11:02 | 000,120,320 | ---- | M] () – C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe

PRC - [2007-02-13 16:20:50 | 001,205,840 | ---- | M] () – C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe

PRC - [2005-05-12 00:40:38 | 000,204,800 | ---- | M] (Hewlett-Packard Co.) – C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe

PRC - [2005-05-11 23:23:26 | 000,282,624 | ---- | M] (Hewlett-Packard Co.) – C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

PRC - [2005-05-11 23:16:22 | 000,077,824 | ---- | M] (Hewlett-Packard Co.) – C:\Program Files\HP\Digital Imaging\Product Assistant\bin\hprblog.exe

PRC - [2005-05-11 23:12:54 | 000,049,152 | ---- | M] (Hewlett-Packard Co.) – C:\Program Files\HP\HP Software Update\hpwuSchd2.exe

PRC - [2004-09-20 08:09:00 | 000,127,043 | ---- | M] (NVIDIA Corporation) – C:\WINDOWS\system32\nvsvc32.exe

PRC - [2004-05-14 08:47:18 | 000,067,072 | ---- | M] (Realtek Semiconductor Corp.) – C:\WINDOWS\SOUNDMAN.EXE

========== Modules (All) ==========

MOD - [2010-05-25 15:59:08 | 000,571,904 | ---- | M] (OldTimer Tools) – C:\Documents and Settings\Filip\Pulpit\OTL.exe

MOD - [2009-12-08 11:25:46 | 000,474,112 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\shlwapi.dll

MOD - [2009-06-25 09:27:54 | 000,056,832 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\secur32.dll

MOD - [2009-04-15 15:54:38 | 000,585,216 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\rpcrt4.dll

MOD - [2009-03-21 15:09:00 | 001,018,368 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\kernel32.dll

MOD - [2009-02-09 11:53:44 | 000,722,944 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\ntdll.dll

MOD - [2009-02-09 11:53:44 | 000,686,592 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\advapi32.dll

MOD - [2008-11-20 21:11:26 | 000,219,648 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\uxtheme.dll

MOD - [2008-10-23 13:42:42 | 000,286,720 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\gdi32.dll

MOD - [2008-08-18 13:33:54 | 000,010,496 | ---- | M] (ESET) – C:\Program Files\ESET\ESET NOD32 Antivirus\eplgHooks.dll

MOD - [2008-06-17 20:03:16 | 008,489,984 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\shell32.dll

MOD - [2008-04-15 12:00:00 | 000,498,688 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\clbcatq.dll

MOD - [2008-04-15 12:00:00 | 000,185,344 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\wbem\framedyn.dll

MOD - [2008-04-15 12:00:00 | 000,067,584 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\srclient.dll

MOD - [2008-04-15 11:00:00 | 001,287,168 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\ole32.dll

MOD - [2008-04-15 11:00:00 | 001,054,208 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll

MOD - [2008-04-15 11:00:00 | 000,997,888 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\setupapi.dll

MOD - [2008-04-15 11:00:00 | 000,822,272 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\comres.dll

MOD - [2008-04-15 11:00:00 | 000,732,672 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\userenv.dll

MOD - [2008-04-15 11:00:00 | 000,580,096 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\user32.dll

MOD - [2008-04-15 11:00:00 | 000,551,936 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\oleaut32.dll

MOD - [2008-04-15 11:00:00 | 000,343,040 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\msvcrt.dll

MOD - [2008-04-15 11:00:00 | 000,297,984 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\MSCTF.dll

MOD - [2008-04-15 11:00:00 | 000,280,064 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\comdlg32.dll

MOD - [2008-04-15 11:00:00 | 000,177,152 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\MSCTFIME.IME

MOD - [2008-04-15 11:00:00 | 000,146,432 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\winspool.drv

MOD - [2008-04-15 11:00:00 | 000,110,592 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\msscript.ocx

MOD - [2008-04-15 11:00:00 | 000,110,080 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\imm32.dll

MOD - [2008-04-15 11:00:00 | 000,084,992 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\olepro32.dll

MOD - [2008-04-15 11:00:00 | 000,023,040 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\psapi.dll

MOD - [2008-04-15 11:00:00 | 000,018,944 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\version.dll

========== Win32 Services (SafeList) ==========

SRV - [2010-01-09 01:42:42 | 000,285,744 | ---- | M] () [Auto | Running] – C:\Program Files\Hotspot Shield\bin\hsswd.exe – (HssWd)

SRV - [2009-10-29 12:27:54 | 001,074,568 | ---- | M] (LogMeIn Inc.) [Auto | Running] – C:\Program Files\LogMeIn Hamachi\hamachi-2.exe – (Hamachi2Svc)

SRV - [2008-08-18 13:30:58 | 000,019,200 | ---- | M] (ESET) [On_Demand | Stopped] – C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe – (EHttpSrv)

SRV - [2008-08-18 13:25:10 | 000,468,224 | ---- | M] (ESET) [Auto | Running] – C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe – (ekrn)

SRV - [2008-04-29 10:04:58 | 000,572,928 | ---- | M] (Nokia.) [On_Demand | Running] – C:\Program Files\PC Connectivity Solution\ServiceLayer.exe – (ServiceLayer)

SRV - [2004-09-29 12:14:36 | 000,069,632 | ---- | M] (HP) [Auto | Stopped] – C:\WINDOWS\system32\HPZipm12.exe – (Pml Driver HPZ12)

========== Driver Services (SafeList) ==========

DRV - [2009-09-23 09:41:58 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\hamachi.sys – (hamachi)

DRV - [2008-11-20 21:12:10 | 000,062,208 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] – C:\WINDOWS\system32\drivers\si3112.sys – (Si3112)

DRV - [2008-08-18 13:27:42 | 000,034,312 | ---- | M] () [Kernel | System | Running] – C:\WINDOWS\system32\drivers\epfwtdir.sys – (epfwtdir)

DRV - [2008-08-18 13:18:26 | 000,039,944 | ---- | M] (ESET) [Kernel | Auto | Running] – C:\WINDOWS\system32\drivers\eamon.sys – (eamon)

DRV - [2007-11-29 10:39:42 | 000,016,896 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\ccdcmb.sys – (nmwcd)

DRV - [2007-11-29 10:39:42 | 000,008,064 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\usbser_lowerflt.sys – (upperdev)

DRV - [2007-11-29 10:39:40 | 000,019,328 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\ccdcmbo.sys – (nmwcdc)

DRV - [2007-09-17 15:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\pccsmcfd.sys – (pccsmcfd)

DRV - [2007-02-18 00:15:34 | 000,232,816 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] – C:\WINDOWS\system32\drivers\VMM.sys – (vmm)

DRV - [2007-01-29 06:20:34 | 000,059,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\VMNetSrv.sys – (VPCNetS2)

DRV - [2007-01-04 13:48:04 | 000,104,344 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\e4usbaw.sys – (e4usbaw)

DRV - [2007-01-04 13:47:48 | 000,069,656 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] – C:\WINDOWS\system32\drivers\e4ldr.sys – (E4LOADER) General Purpose USB Driver (e4ldr.sys)

DRV - [2004-09-20 08:09:00 | 002,738,592 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\nv4_mini.sys – (nv)

DRV - [2004-05-14 16:24:10 | 000,622,172 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\ALCXWDM.SYS – (ALCXWDM) Service for Realtek AC97 Audio (WDM)

DRV - [2004-02-24 04:08:52 | 000,400,384 | ---- | M] (Sensaura) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\ALCXSENS.SYS – (ALCXSENS)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKU.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKU.DEFAULT\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s

IE - HKU.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s

IE - HKU\S-1-5-21-1214440339-842925246-1614895754-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKU\S-1-5-21-1214440339-842925246-1614895754-1003\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s

IE - HKU\S-1-5-21-1214440339-842925246-1614895754-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0

========== FireFox ==========

FF - prefs.js…browser.search.suggest.enabled: false

FF - prefs.js…extensions.enabledItems: jqs@sun.com:1.0

FF - prefs.js…extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\Components: C:\Program Files\Mozilla Firefox\components [2010-03-11 17:20:26 | 000,000,000 | —D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-01-20 16:24:16 | 000,000,000 | —D | M]

[2010-01-20 17:01:16 | 000,000,000 | —D | M] – C:\Documents and Settings\Filip\Dane aplikacji\Mozilla\Extensions

[2010-01-20 17:01:16 | 000,000,000 | —D | M] – C:\Documents and Settings\Filip\Dane aplikacji\Mozilla\Firefox\Profiles\j801v18d.default\extensions

[2010-01-23 18:51:44 | 000,000,000 | —D | M] (Microsoft .NET Framework Assistant) – C:\Documents and Settings\Filip\Dane aplikacji\Mozilla\Firefox\Profiles\j801v18d.default\extensions{20a82645-c095-46ed-80e3-08825760534b}

[2010-05-21 17:59:52 | 000,000,000 | —D | M] (Adblock Plus) – C:\Documents and Settings\Filip\Dane aplikacji\Mozilla\Firefox\Profiles\j801v18d.default\extensions{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}

[2010-01-21 16:42:16 | 000,000,000 | —D | M] – C:\Documents and Settings\Filip\Dane aplikacji\Mozilla\Firefox\Profiles\j801v18d.default\extensions\battlefieldheroespatcher@ea.com

[2010-03-11 17:20:26 | 000,000,000 | —D | M] – C:\Program Files\Mozilla Firefox\extensions

[2009-06-01 13:22:18 | 000,874,008 | ---- | M] (ParallelGraphics) – C:\Program Files\Mozilla Firefox\plugins\npCortona.dll

[2010-01-16 02:08:36 | 000,002,767 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml

[2010-01-16 02:08:36 | 000,001,406 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml

[2010-01-16 02:08:36 | 000,000,917 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml

[2010-01-16 02:08:36 | 000,000,858 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml

[2010-01-16 02:08:36 | 000,001,183 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml

[2010-01-16 02:08:36 | 000,001,683 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2008-04-15 11:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)

O2 - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files\Hotspot Shield\hssie\HssIE.dll (AnchorFree Inc.)

O2 - BHO: (SMTTB2009 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\HyperCam Toolbar\tbcore3.dll ()

O3 - HKLM…\Toolbar: (HyperCam Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\HyperCam Toolbar\tbcore3.dll ()

O3 - HKLM…\Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - No CLSID value found.

O3 - HKU\S-1-5-21-1214440339-842925246-1614895754-1003…\Toolbar\WebBrowser: (HyperCam Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\HyperCam Toolbar\tbcore3.dll ()

O4 - HKLM…\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe File not found

O4 - HKLM…\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)

O4 - HKLM…\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)

O4 - HKLM…\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)

O4 - HKLM…\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe (NVIDIA Corporation)

O4 - HKLM…\Run: [soundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)

O4 - HKLM…\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe ()

O4 - HKU\S-1-5-21-1214440339-842925246-1614895754-1003…\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.)

O4 - HKU\S-1-5-21-1214440339-842925246-1614895754-1003…\Run: [iPLA!] C:\Program Files\ipla\ipla.exe (Redefine Sp z o.o.)

O4 - HKU\S-1-5-21-1214440339-842925246-1614895754-1003…\Run: [mevaj] C:\Documents and Settings\Filip\mevaj.exe (URJqcIYS)

O4 - HKU\S-1-5-21-1214440339-842925246-1614895754-1003…\Run: [PC Suite Tray] E:\Program Files\Nokia\Nokia PC Suite 6\PCSuite.exe (Nokia)

O4 - HKU.DEFAULT…\RunOnce: [_nltide_2] File not found

O4 - HKU\S-1-5-18…\RunOnce: [_nltide_2] File not found

O4 - HKU\S-1-5-19…\RunOnce: [_nltide_2] File not found

O4 - HKU\S-1-5-20…\RunOnce: [_nltide_2] File not found

O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe ()

O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Gamma Loader.exe.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)

O4 - Startup: C:\Documents and Settings\Filip\Menu Start\Programy\Autostart\data.exe ()

O4 - Startup: C:\Documents and Settings\Filip\Menu Start\Programy\Autostart\servicess.exe ()

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O7 - HKU.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-21-1214440339-842925246-1614895754-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)

O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)

O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - Reg Error: Value error. File not found

O9 - Extra ‘Tools’ menuitem : &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - Reg Error: Value error. File not found

O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} http://cdn.scan.onecare.live.com/resour … se6087.cab (Windows Live Safety Center Base Module)

O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class)

O16 - DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} https://www.battlefieldheroes.com/stati … 0.27.0.cab (Battlefield Heroes Updater)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_10)

O16 - DPF: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_10)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_10)

O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)

O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home

O24 - Desktop WallPaper: C:\Documents and Settings\Filip\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp

O24 - Desktop BackupWallPaper: C:\Documents and Settings\Filip\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2010-01-20 15:52:40 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT – [FAT32]

O32 - AutoRun File - [2010-02-23 15:11:24 | 000,208,092 | ---- | M] () - C:\AUTO.pat – [FAT32]

O32 - AutoRun File - [2010-02-23 15:11:24 | 000,000,020 | ---- | M] () - C:\AUTO.pst – [FAT32]

O33 - MountPoints2{7cec8324-163e-11df-a1b2-4d6564696130}\Shell - “” = AutoRun

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

O35 - HKLM…comfile [open] – “%1” %*

O35 - HKLM…exefile [open] – “%1” %*

O37 - HKLM…com [@ = comfile] – “%1” %*

O37 - HKLM…exe [@ = exefile] – “%1” %*

NetSvcs: 6to4 - File not found

NetSvcs: Ias - C:\WINDOWS\system32\ias [2010-01-20 15:28:24 | 000,000,000 | —D | M]

NetSvcs: Iprip - File not found

NetSvcs: Irmon - File not found

NetSvcs: NWCWorkstation - File not found

NetSvcs: Nwsapagent - File not found

NetSvcs: WmdmPmSp - File not found

SafeBootMin: Base - Driver Group

SafeBootMin: Boot Bus Extender - Driver Group

SafeBootMin: Boot file system - Driver Group

SafeBootMin: File system - Driver Group

SafeBootMin: Filter - Driver Group

SafeBootMin: PCI Configuration - Driver Group

SafeBootMin: PNP Filter - Driver Group

SafeBootMin: Primary disk - Driver Group

SafeBootMin: SCSI Class - Driver Group

SafeBootMin: sermouse.sys - Driver

SafeBootMin: System Bus Extender - Driver Group

SafeBootMin: vga.sys - Driver

SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers

SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive

SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive

SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller

SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc

SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard

SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse

SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters

SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter

SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System

SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive

SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume

SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group

SafeBootNet: Boot Bus Extender - Driver Group

SafeBootNet: Boot file system - Driver Group

SafeBootNet: File system - Driver Group

SafeBootNet: Filter - Driver Group

SafeBootNet: Hamachi2Svc - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)

SafeBootNet: NDIS Wrapper - Driver Group

SafeBootNet: NetBIOSGroup - Driver Group

SafeBootNet: NetDDEGroup - Driver Group

SafeBootNet: Network - Driver Group

SafeBootNet: NetworkProvider - Driver Group

SafeBootNet: PCI Configuration - Driver Group

SafeBootNet: PNP Filter - Driver Group

SafeBootNet: PNP_TDI - Driver Group

SafeBootNet: Primary disk - Driver Group

SafeBootNet: SCSI Class - Driver Group

SafeBootNet: sermouse.sys - Driver

SafeBootNet: Streams Drivers - Driver Group

SafeBootNet: System Bus Extender - Driver Group

SafeBootNet: TDI - Driver Group

SafeBootNet: vga.sys - Driver

SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers

SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive

SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive

SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller

SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc

SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard

SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse

SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net

SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient

SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService

SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans

SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters

SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter

SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System

SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive

SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume

SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

========== Files/Folders - Created Within 30 Days ==========

[2010-05-28 15:14:00 | 000,000,000 | -HSD | C] – C:\FOUND.005

[2010-05-27 21:37:00 | 000,000,000 | —D | C] – C:\Documents and Settings\Filip\Dane aplikacji\Unity

[2010-05-27 21:27:24 | 000,000,000 | —D | C] – C:\Documents and Settings\Filip\Ustawienia lokalne\Dane aplikacji\Unity

[2010-05-25 19:20:22 | 000,000,000 | —D | C] – C:\Documents and Settings\Filip\Dane aplikacji\Image Zone Express

[2010-05-25 15:47:13 | 000,571,904 | ---- | C] (OldTimer Tools) – C:\Documents and Settings\Filip\Pulpit\OTL.exe

[2010-05-25 13:24:19 | 000,000,000 | —D | C] – C:\Documents and Settings\Filip\Ustawienia lokalne\Dane aplikacji\NOS

[2010-05-21 14:50:32 | 000,053,248 | RHS- | C] (URJqcIYS) – C:\Documents and Settings\Filip\mevaj.exe

[2010-05-21 14:49:59 | 000,000,000 | -H-D | C] – C:\WINDOWS\System32\GroupPolicy

[2010-05-21 11:51:30 | 000,000,000 | —D | C] – C:\Documents and Settings\Filip\Ustawienia lokalne\Dane aplikacji\IVONA_INST

[2010-05-19 18:15:14 | 000,000,000 | -HSD | C] – C:\FOUND.004

[2010-05-19 17:35:54 | 000,000,000 | -HSD | C] – C:\FOUND.003

[2010-05-18 23:04:21 | 000,457,216 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\dllcache\mrxsmb.sys

[2010-05-18 23:03:03 | 003,558,912 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\dllcache\moviemk.exe

[2010-05-18 19:40:13 | 000,000,000 | RH-D | C] – C:\Documents and Settings\Filip\Recent

[2010-05-18 19:35:03 | 000,293,376 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\browserchoice.exe

[2010-05-18 19:34:59 | 000,000,000 | —D | C] – C:\Program Files\CCleaner

[2010-05-18 13:17:04 | 000,000,000 | —D | C] – C:\Documents and Settings\Filip\Dane aplikacji\TuneUp Software

[2010-05-18 13:16:06 | 000,000,000 | —D | C] – C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software

[2010-05-18 13:15:47 | 000,000,000 | -HSD | C] – C:\Documents and Settings\All Users\Dane aplikacji{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}

[2010-05-17 15:14:31 | 000,000,000 | —D | C] – C:\Program Files\HD Tune

[2010-05-17 11:55:20 | 000,000,000 | R–D | C] – C:\Documents and Settings\Filip\Moje dokumenty\Moje obrazy

[2010-05-17 11:19:51 | 000,000,000 | —D | C] – C:\Program Files\HyperCam Toolbar

[2010-05-17 11:19:22 | 000,000,000 | —D | C] – C:\Program Files\HyCam2

[2010-05-16 11:45:07 | 000,000,000 | —D | C] – C:\Program Files\Windows Live Safety Center

[2010-05-15 15:10:52 | 000,147,456 | ---- | C] (curquhart.co.uk) – C:\Documents and Settings\Filip\Pulpit\Windows Error Message Creator.exe

[2010-05-12 12:12:18 | 000,000,000 | —D | C] – C:\Program Files\SkanerOnline

[2010-05-11 16:16:37 | 000,000,000 | —D | C] – C:\Program Files\Alwil Software

[2010-05-10 16:34:12 | 000,000,000 | —D | C] – C:\Program Files\JoWood

[2010-05-01 17:04:36 | 000,000,000 | —D | C] – C:\Documents and Settings\Filip\Moje dokumenty\Mount&Blade Savegames

[2010-05-01 17:02:00 | 000,000,000 | —D | C] – C:\Documents and Settings\Filip\Dane aplikacji\Mount&Blade

[2010-05-01 16:59:58 | 000,000,000 | —D | C] – C:\Program Files\Mount&Blade

[3 C:\WINDOWS*.tmp files -> C:\WINDOWS*.tmp ->]

[1 C:\WINDOWS\System32*.tmp files -> C:\WINDOWS\System32*.tmp ->]

========== Files - Modified Within 30 Days ==========

[2010-05-30 14:03:02 | 000,000,260 | ---- | M] () – C:\WINDOWS\tasks\WGASetup.job

[2010-05-30 14:02:00 | 000,007,275 | ---- | M] () – C:\WINDOWS\System32\nvapps.xml

[2010-05-30 14:01:52 | 000,000,006 | -H-- | M] () – C:\WINDOWS\tasks\SA.DAT

[2010-05-30 14:01:48 | 000,002,048 | --S- | M] () – C:\WINDOWS\bootstat.dat

[2010-05-30 13:22:30 | 004,456,448 | -H-- | M] () – C:\Documents and Settings\Filip\NTUSER.DAT

[2010-05-30 13:22:30 | 000,000,188 | -HS- | M] () – C:\Documents and Settings\Filip\ntuser.ini

[2010-05-30 13:22:22 | 003,751,100 | -H-- | M] () – C:\Documents and Settings\Filip\Ustawienia lokalne\Dane aplikacji\IconCache.db

[2010-05-25 15:59:08 | 000,571,904 | ---- | M] (OldTimer Tools) – C:\Documents and Settings\Filip\Pulpit\OTL.exe

[2010-05-23 13:27:40 | 000,002,225 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\Nokia PC Suite.lnk

[2010-05-23 07:49:44 | 000,002,228 | ---- | M] () – C:\WINDOWS\System32\wpa.dbl

[2010-05-21 14:53:44 | 000,000,414 | RHS- | M] () – C:\Documents and Settings\All Users\ntuser.pol

[2010-05-21 14:50:34 | 000,053,248 | RHS- | M] (URJqcIYS) – C:\Documents and Settings\Filip\mevaj.exe

[2010-05-19 18:40:28 | 000,000,535 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\croNous.lnk

[2010-05-18 23:37:08 | 000,001,374 | ---- | M] () – C:\WINDOWS\imsins.BAK

[2010-05-17 17:27:08 | 000,023,085 | ---- | M] () – C:\Documents and Settings\Filip\Moje dokumenty\HDTune_Error_Scan_WDC_WD800JB-00JJA0.png

[2010-05-17 17:26:58 | 000,029,677 | ---- | M] () – C:\Documents and Settings\Filip\Moje dokumenty\HDTune_Health_WDC_WD800JB-00JJA0.png

[2010-05-17 17:26:44 | 000,029,243 | ---- | M] () – C:\Documents and Settings\Filip\Moje dokumenty\HDTune_Info_WDC_WD800JB-00JJA0.png

[2010-05-17 17:26:32 | 000,032,015 | ---- | M] () – C:\Documents and Settings\Filip\Moje dokumenty\HDTune_Benchmark_WDC_WD800JB-00JJA0.png

[2010-05-17 11:49:48 | 016,777,216 | ---- | M] () – C:\Documents and Settings\Filip\Moje dokumenty\clip0003.avi

[2010-05-17 11:49:30 | 000,053,978 | ---- | M] () – C:\Documents and Settings\Filip\Moje dokumenty\clip0005.avi

[2010-05-17 11:49:28 | 000,272,110 | ---- | M] () – C:\Documents and Settings\Filip\Moje dokumenty\clip0004.avi

[2010-05-17 11:49:10 | 000,780,000 | ---- | M] () – C:\Documents and Settings\Filip\Moje dokumenty\clip0003.avi.bak

[2010-05-17 11:49:00 | 010,453,672 | ---- | M] () – C:\Documents and Settings\Filip\Moje dokumenty\clip0002.avi

[2010-05-17 11:27:48 | 000,012,484 | ---- | M] () – C:\Documents and Settings\Filip\Moje dokumenty\clip0001.avi

[2010-05-16 15:23:00 | 000,010,752 | ---- | M] () – C:\Documents and Settings\Filip\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2010-05-14 19:49:48 | 000,002,596 | ---- | M] () – C:\WINDOWS\System32\CONFIG.NT

[2010-05-12 12:26:24 | 000,242,997 | ---- | M] () – C:\Documents and Settings\Filip\Menu Start\Programy\Autostart\servicess.exe

[2010-05-10 22:30:46 | 000,001,642 | ---- | M] () – C:\Documents and Settings\Filip\Pulpit\Skrót do Photoshp.lnk

[2010-05-10 17:12:12 | 000,001,652 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\Gothic II.lnk

[2010-05-08 14:14:58 | 000,012,141 | ---- | M] () – C:\Documents and Settings\Filip\Moje dokumenty\Tabela.docx

[2010-05-03 18:45:32 | 000,000,622 | ---- | M] () – C:\Documents and Settings\Filip\Pulpit\Mount&Blade.lnk

[3 C:\WINDOWS*.tmp files -> C:\WINDOWS*.tmp ->]

[1 C:\WINDOWS\System32*.tmp files -> C:\WINDOWS\System32*.tmp ->]

========== Files Created - No Company Name ==========

[2010-05-21 14:53:43 | 000,000,414 | RHS- | C] () – C:\Documents and Settings\All Users\ntuser.pol

[2010-05-19 18:40:27 | 000,000,535 | ---- | C] () – C:\Documents and Settings\All Users\Pulpit\croNous.lnk

[2010-05-18 22:19:31 | 000,001,374 | ---- | C] () – C:\WINDOWS\imsins.BAK

[2010-05-17 17:27:07 | 000,023,085 | ---- | C] () – C:\Documents and Settings\Filip\Moje dokumenty\HDTune_Error_Scan_WDC_WD800JB-00JJA0.png

[2010-05-17 17:26:56 | 000,029,677 | ---- | C] () – C:\Documents and Settings\Filip\Moje dokumenty\HDTune_Health_WDC_WD800JB-00JJA0.png

[2010-05-17 17:26:43 | 000,029,243 | ---- | C] () – C:\Documents and Settings\Filip\Moje dokumenty\HDTune_Info_WDC_WD800JB-00JJA0.png

[2010-05-17 17:26:30 | 000,032,015 | ---- | C] () – C:\Documents and Settings\Filip\Moje dokumenty\HDTune_Benchmark_WDC_WD800JB-00JJA0.png

[2010-05-17 11:49:26 | 000,053,978 | ---- | C] () – C:\Documents and Settings\Filip\Moje dokumenty\clip0005.avi

[2010-05-17 11:49:20 | 000,272,110 | ---- | C] () – C:\Documents and Settings\Filip\Moje dokumenty\clip0004.avi

[2010-05-17 11:49:08 | 016,777,216 | ---- | C] () – C:\Documents and Settings\Filip\Moje dokumenty\clip0003.avi

[2010-05-17 11:49:08 | 000,780,000 | ---- | C] () – C:\Documents and Settings\Filip\Moje dokumenty\clip0003.avi.bak

[2010-05-17 11:28:27 | 010,453,672 | ---- | C] () – C:\Documents and Settings\Filip\Moje dokumenty\clip0002.avi

[2010-05-17 11:27:44 | 000,012,484 | ---- | C] () – C:\Documents and Settings\Filip\Moje dokumenty\clip0001.avi

[2010-05-12 12:26:22 | 000,242,997 | ---- | C] () – C:\Documents and Settings\Filip\Menu Start\Programy\Autostart\servicess.exe

[2010-05-10 17:12:10 | 000,001,652 | ---- | C] () – C:\Documents and Settings\All Users\Pulpit\Gothic II.lnk

[2010-05-08 14:14:56 | 000,012,141 | ---- | C] () – C:\Documents and Settings\Filip\Moje dokumenty\Tabela.docx

[2010-05-03 18:45:30 | 000,000,622 | ---- | C] () – C:\Documents and Settings\Filip\Pulpit\Mount&Blade.lnk

[2010-01-26 23:29:59 | 000,000,040 | ---- | C] () – C:\WINDOWS\System32\Sx5363.ini

[2010-01-22 15:25:43 | 000,139,016 | ---- | C] () – C:\WINDOWS\System32\drivers\PnkBstrK.sys

[2010-01-20 17:33:46 | 000,000,164 | ---- | C] () – C:\WINDOWS\avrack.ini

[2010-01-20 17:33:39 | 000,155,648 | ---- | C] () – C:\WINDOWS\System32\RtlCPAPI.dll

[2010-01-20 16:50:32 | 000,000,169 | ---- | C] () – C:\WINDOWS\adidsl.ini

[2010-01-20 16:50:32 | 000,000,021 | ---- | C] () – C:\WINDOWS\Fast800.ini

[2010-01-20 16:50:21 | 000,000,990 | ---- | C] () – C:\WINDOWS\adiras.ini

[2010-01-20 16:50:13 | 000,200,704 | ---- | C] () – C:\WINDOWS\System32\coclassfast.dll

[2010-01-20 16:50:11 | 000,046,892 | ---- | C] () – C:\WINDOWS\System32\ADADIX16.DLL

[2010-01-20 16:45:45 | 000,000,026 | ---- | C] () – C:\WINDOWS\tsctv.ini

[2010-01-20 16:23:54 | 000,164,352 | ---- | C] () – C:\WINDOWS\System32\unrar.dll

[2010-01-20 16:23:53 | 000,000,038 | ---- | C] () – C:\WINDOWS\avisplitter.ini

[2008-11-29 11:12:58 | 000,000,076 | ---- | C] () – C:\WINDOWS\System32\oeminfo.ini

[2008-08-18 13:27:42 | 000,034,312 | ---- | C] () – C:\WINDOWS\System32\drivers\epfwtdir.sys

[2007-03-29 23:00:40 | 000,203,264 | R— | C] () – C:\WINDOWS\System32\CddbCdda.dll

[2001-07-06 15:30:02 | 000,003,234 | ---- | C] () – C:\WINDOWS\System32\HPTCPMON.INI

========== LOP Check ==========

[2010-01-20 16:40:50 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Dane aplikacji\ESET

[2010-01-21 21:11:00 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Dane aplikacji\ipla

[2010-02-01 22:31:52 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Dane aplikacji\Installations

[2010-02-01 22:38:42 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Dane aplikacji\PC Suite

[2010-03-05 17:04:32 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10

[2010-05-18 13:15:48 | 000,000,000 | -HSD | M] – C:\Documents and Settings\All Users\Dane aplikacji{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}

[2010-05-18 13:16:08 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software

[2010-01-21 21:11:00 | 000,000,000 | —D | M] – C:\Documents and Settings\Filip\Dane aplikacji\ipla

[2010-02-01 22:36:08 | 000,000,000 | —D | M] – C:\Documents and Settings\Filip\Dane aplikacji\Nokia

[2010-02-01 22:38:42 | 000,000,000 | —D | M] – C:\Documents and Settings\Filip\Dane aplikacji\PC Suite

[2010-02-01 22:53:20 | 000,000,000 | —D | M] – C:\Documents and Settings\Filip\Dane aplikacji\Nokia Multimedia Player

[2010-02-14 19:35:12 | 000,000,000 | —D | M] – C:\Documents and Settings\Filip\Dane aplikacji\Gadu-Gadu

[2010-02-26 16:00:18 | 000,000,000 | —D | M] – C:\Documents and Settings\Filip\Dane aplikacji\Toolbar4

[2010-03-05 17:04:32 | 000,000,000 | —D | M] – C:\Documents and Settings\Filip\Dane aplikacji\Gadu-Gadu 10

[2010-03-26 13:50:06 | 000,000,000 | —D | M] – C:\Documents and Settings\Filip\Dane aplikacji\DMCache

[2010-04-19 14:57:16 | 000,000,000 | —D | M] – C:\Documents and Settings\Filip\Dane aplikacji\Hide IP NG

[2010-05-01 17:02:02 | 000,000,000 | —D | M] – C:\Documents and Settings\Filip\Dane aplikacji\Mount&Blade

[2010-05-18 13:17:06 | 000,000,000 | —D | M] – C:\Documents and Settings\Filip\Dane aplikacji\TuneUp Software

[2010-05-25 19:20:24 | 000,000,000 | —D | M] – C:\Documents and Settings\Filip\Dane aplikacji\Image Zone Express

[2010-05-27 21:37:02 | 000,000,000 | —D | M] – C:\Documents and Settings\Filip\Dane aplikacji\Unity

[2010-05-30 14:03:02 | 000,000,260 | ---- | M] () – C:\WINDOWS\Tasks\WGASetup.job

========== Purity Check ==========

========== Custom Scans ==========

< %systemdrive%*.* >

[2010-05-30 14:01:44 | 805,306,368 | -HS- | M] () – C:\PAGEFILE.SYS

[2008-04-15 11:00:00 | 000,004,952 | RHS- | M] () – C:\Bootfont.bin

[2008-04-15 11:00:00 | 000,251,152 | RHS- | M] () – C:\ntldr

[2008-04-15 11:00:00 | 000,047,564 | RHS- | M] () – C:\NTDETECT.COM

[2010-01-20 15:42:30 | 000,000,211 | -HS- | M] () – C:\boot.ini

[2010-01-20 15:52:40 | 000,000,000 | ---- | M] () – C:\CONFIG.SYS

[2010-01-20 15:52:40 | 000,000,000 | ---- | M] () – C:\AUTOEXEC.BAT

[2010-01-20 15:52:40 | 000,000,000 | RHS- | M] () – C:\IO.SYS

[2010-01-20 15:52:40 | 000,000,000 | RHS- | M] () – C:\MSDOS.SYS

[2010-01-20 16:45:42 | 000,007,671 | ---- | M] () – C:\pltemp.ini

[2010-02-23 15:11:24 | 000,208,092 | ---- | M] () – C:\AUTO.pat

[2010-02-23 15:11:24 | 000,000,020 | ---- | M] () – C:\AUTO.pst

< MD5 for: AGP440.SYS >

[2008-11-20 21:17:12 | 017,820,050 | ---- | M] () .cab file – C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys

[2008-04-13 23:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 – C:\WINDOWS\system32\drivers\AGP440.SYS

< MD5 for: ATAPI.SYS >

[2008-11-20 21:17:12 | 017,820,050 | ---- | M] () .cab file – C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys

[2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 – C:\WINDOWS\system32\drivers\atapi.sys

< MD5 for: BEEP.SYS >

[2008-04-15 11:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 – C:\WINDOWS\system32\drivers\beep.sys

< MD5 for: CDROM.SYS >

[2008-11-20 21:17:12 | 017,820,050 | ---- | M] () .cab file – C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys

[2008-04-15 11:00:00 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE – C:\WINDOWS\system32\drivers\cdrom.sys

< MD5 for: NDIS.SYS >

[2008-04-15 11:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D – C:\WINDOWS\system32\drivers\ndis.sys

< MD5 for: USERINIT.EXE >

[2008-04-15 11:00:00 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=2A5B37D520508BE6570A3EA79695F5B5 – C:\WINDOWS\system32\userinit.exe

< MD5 for: WINLOGON.EXE >

[2008-04-15 11:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 – C:\WINDOWS\system32\winlogon.exe

< End of report >

#2

fifi12666 ,

Proszę zapoznać się z tematem TYTUŁOWANIE TEMATÓW DOTYCZĄCYCH LOGÓW i poprawić tytuł na konkretny, mówiący o problemie. W celu dokonania zaleconej korekty proszę użyć przycisku Edytuj przy poście otwierającym ten temat.

Zamieszczenie logów na forum - przeczytaj i zastosuj się do zaleceń.

Zignorowanie zaleceń będzie skutkowało usunięciem tematu do Kosza.

#3

Po pierwsze pobierz sobie Malwerbytes antymalwer (http://www.dobreprogramy.pl/Malwarebyte … 13117.html) po pobraniu i zainstalowaniu zaktualizuj bazę sygnatur, przeskanuj szczegułowo kompa co znajdzie usuń. Z autostartu powywalaj niepotrzebne programy.Użyj do czyszczenia polskiego programu Odkurzacz (http://www.dobreprogramy.pl/Odkurzacz,P … 12322.html) (co niepotrzebne znajdzie to usuń).Zmień antywirusa na Eset smart security . Z tego co tutaj zauważyłem( [2010-01-20 16:40:50 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Dane aplikacji\ESET)to wczesniej miałeś Eseta '.Awast nic nie usuną jeszcze przepuścił.

#4

i tyle?

nie pomogło za bardzo

teraz tylko nie mam takiego użycia procesora tyko 5% czy ileś tam

ale komp dalej muli tylko mniej

#5

Tu masz syf.

#6

wiem ale servicess i mevaj już nie ma

#7

wklej w OTL i naciśnij wykonaj skrypt:

dajesz log z usuwania i nowy log z OTL

#8

jeszcze mi się komp sam wyłącza jak włączę jakąś grę

zrobiłem przywracanie systemu ale to nic nie dało

Dodane 11.08.2010 (Śr) 16:06

OTL logfile created on: 2010-08-10 16:02:18 - Run 3

OTL by OldTimer - Version 3.2.5.0 Folder = C:\Documents and Settings\Filip\Pulpit

Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 7.0.5730.13)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

511,00 Mb Total Physical Memory | 230,00 Mb Available Physical Memory | 45,00% Memory free

1,00 Gb Paging File | 1,00 Gb Available in Paging File | 80,00% Paging File free

Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 23,51 Gb Total Space | 2,17 Gb Free Space | 9,21% Space Free | Partition Type: FAT32

Drive D: | 25,38 Gb Total Space | 3,72 Gb Free Space | 14,67% Space Free | Partition Type: FAT32

Drive E: | 25,60 Gb Total Space | 2,55 Gb Free Space | 9,98% Space Free | Partition Type: FAT32

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: SPECIAL-XP

Current User Name: Filip

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: All users

Company Name Whitelist: Off

Skip Microsoft Files: Off

File Age = 30 Days

Output = Standard

========== Processes (SafeList) ==========

PRC - [2010-07-24 12:58:26 | 000,014,808 | ---- | M] (Mozilla Corporation) – C:\Program Files\Mozilla Firefox\plugin-container.exe

PRC - [2010-07-24 12:58:24 | 000,910,296 | ---- | M] (Mozilla Corporation) – C:\Program Files\Mozilla Firefox\firefox.exe

PRC - [2010-05-25 15:59:08 | 000,571,904 | ---- | M] (OldTimer Tools) – C:\Documents and Settings\Filip\Pulpit\OTL.exe

PRC - [2010-03-15 15:10:30 | 000,570,668 | ---- | M] () – C:\Documents and Settings\Filip\Menu Start\Programy\Autostart\data.exe

PRC - [2010-01-09 01:42:42 | 000,285,744 | ---- | M] () – C:\Program Files\Hotspot Shield\bin\hsswd.exe

PRC - [2009-10-29 12:27:54 | 001,074,568 | ---- | M] (LogMeIn Inc.) – C:\Program Files\LogMeIn Hamachi\hamachi-2.exe

PRC - [2008-08-17 14:05:22 | 000,977,408 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\explorer.exe

PRC - [2007-02-13 16:20:50 | 001,205,840 | ---- | M] () – C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe

PRC - [2004-05-14 08:47:18 | 000,067,072 | ---- | M] (Realtek Semiconductor Corp.) – C:\WINDOWS\SOUNDMAN.EXE

========== Modules (SafeList) ==========

MOD - [2010-05-25 15:59:08 | 000,571,904 | ---- | M] (OldTimer Tools) – C:\Documents and Settings\Filip\Pulpit\OTL.exe

MOD - [2008-04-15 11:00:00 | 000,110,592 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\msscript.ocx

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKU.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKU.DEFAULT\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s

IE - HKU.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s

IE - HKU\S-1-5-21-1214440339-842925246-1614895754-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKU\S-1-5-21-1214440339-842925246-1614895754-1003\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s

IE - HKU\S-1-5-21-1214440339-842925246-1614895754-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0

========== FireFox ==========

FF - prefs.js…browser.search.suggest.enabled: false

FF - prefs.js…extensions.enabledItems: jqs@sun.com:1.0

FF - prefs.js…extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.1

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\Components: C:\Program Files\Mozilla Firefox\components [2010-03-11 17:20:26 | 000,000,000 | —D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-01-20 16:24:16 | 000,000,000 | —D | M]

[2010-01-20 17:01:16 | 000,000,000 | —D | M] – C:\Documents and Settings\Filip\Dane aplikacji\Mozilla\Extensions

[2010-01-20 17:01:16 | 000,000,000 | —D | M] – C:\Documents and Settings\Filip\Dane aplikacji\Mozilla\Firefox\Profiles\j801v18d.default\extensions

[2010-07-10 14:40:28 | 000,000,000 | —D | M] (Microsoft .NET Framework Assistant) – C:\Documents and Settings\Filip\Dane aplikacji\Mozilla\Firefox\Profiles\j801v18d.default\extensions{20a82645-c095-46ed-80e3-08825760534b}

[2010-07-10 14:40:26 | 000,000,000 | —D | M] (Adblock Plus) – C:\Documents and Settings\Filip\Dane aplikacji\Mozilla\Firefox\Profiles\j801v18d.default\extensions{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}

[2010-01-21 16:42:16 | 000,000,000 | —D | M] – C:\Documents and Settings\Filip\Dane aplikacji\Mozilla\Firefox\Profiles\j801v18d.default\extensions\battlefieldheroespatcher@ea.com

[2010-03-11 17:20:26 | 000,000,000 | —D | M] – C:\Program Files\Mozilla Firefox\extensions

[2009-06-01 13:22:18 | 000,874,008 | ---- | M] (ParallelGraphics) – C:\Program Files\Mozilla Firefox\plugins\npCortona.dll

[2010-01-16 02:08:36 | 000,002,767 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml

[2010-01-16 02:08:36 | 000,001,406 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml

[2010-01-16 02:08:36 | 000,000,917 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml

[2010-01-16 02:08:36 | 000,000,858 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml

[2010-01-16 02:08:36 | 000,001,183 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml

[2010-01-16 02:08:36 | 000,001,683 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2008-04-15 11:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)

O2 - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files\Hotspot Shield\hssie\HssIE.dll (AnchorFree Inc.)

O2 - BHO: (SMTTB2009 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\HyperCam Toolbar\tbcore3.dll ()

O3 - HKLM…\Toolbar: (HyperCam Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\HyperCam Toolbar\tbcore3.dll ()

O3 - HKLM…\Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - No CLSID value found.

O3 - HKU\S-1-5-21-1214440339-842925246-1614895754-1003…\Toolbar\WebBrowser: (HyperCam Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\HyperCam Toolbar\tbcore3.dll ()

O4 - HKLM…\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe File not found

O4 - HKLM…\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)

O4 - HKLM…\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)

O4 - HKLM…\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe (NVIDIA Corporation)

O4 - HKLM…\Run: [soundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)

O4 - HKLM…\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe ()

O4 - HKU.DEFAULT…\RunOnce: [_nltide_2] File not found

O4 - HKU\S-1-5-18…\RunOnce: [_nltide_2] File not found

O4 - HKU\S-1-5-19…\RunOnce: [_nltide_2] File not found

O4 - HKU\S-1-5-20…\RunOnce: [_nltide_2] File not found

O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe ()

O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Gamma Loader.exe.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)

O4 - Startup: C:\Documents and Settings\Filip\Menu Start\Programy\Autostart\data.exe ()

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O7 - HKU.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-21-1214440339-842925246-1614895754-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)

O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)

O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - Reg Error: Value error. File not found

O9 - Extra ‘Tools’ menuitem : &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - Reg Error: Value error. File not found

O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} http://cdn.scan.onecare.live.com/resour … se6087.cab (Windows Live Safety Center Base Module)

O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class)

O16 - DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} https://www.battlefieldheroes.com/stati … 0.27.0.cab (Battlefield Heroes Updater)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_10)

O16 - DPF: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_10)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_10)

O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)

O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home

O24 - Desktop WallPaper: C:\Documents and Settings\Filip\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp

O24 - Desktop BackupWallPaper: C:\Documents and Settings\Filip\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2010-01-20 15:52:40 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT – [FAT32]

O32 - AutoRun File - [2010-02-23 15:11:24 | 000,208,092 | ---- | M] () - C:\AUTO.pat – [FAT32]

O32 - AutoRun File - [2010-02-23 15:11:24 | 000,000,020 | ---- | M] () - C:\AUTO.pst – [FAT32]

O33 - MountPoints2{7cec8324-163e-11df-a1b2-4d6564696130}\Shell - “” = AutoRun

O33 - MountPoints2{ba5443d2-7d3b-11df-a395-4d6564696130}\Shell - “” = AutoRun

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

O35 - HKLM…comfile [open] – “%1” %*

O35 - HKLM…exefile [open] – “%1” %*

O37 - HKLM…com [@ = comfile] – “%1” %*

O37 - HKLM…exe [@ = exefile] – “%1” %*

========== Files/Folders - Created Within 30 Days ==========

[2010-08-10 15:18:15 | 000,000,000 | —D | C] – C:\Program Files\Legion PL

[2010-08-10 15:01:44 | 000,000,000 | -HSD | C] – C:\FOUND.032

[2010-08-09 11:56:46 | 000,000,000 | —D | C] – C:\Program Files\Little Fighters 2.5

[2010-08-08 23:29:02 | 000,000,000 | -HSD | C] – C:\FOUND.031

[2010-08-08 19:47:56 | 000,000,000 | -HSD | C] – C:\FOUND.030

[2010-08-07 15:52:52 | 000,000,000 | -HSD | C] – C:\FOUND.029

[2010-08-06 20:25:56 | 000,000,000 | —D | C] – C:\Documents and Settings\Filip\Moje dokumenty\GTA San Andreas User Files

[2010-08-02 20:35:12 | 000,000,000 | —D | C] – C:\Documents and Settings\Filip\Dane aplikacji\IDM

[2010-08-01 19:29:40 | 000,000,000 | -HSD | C] – C:\FOUND.028

[2010-07-31 20:54:25 | 000,000,000 | —D | C] – C:\Program Files\Common Files\EasyInfo

[2010-07-26 17:54:23 | 000,000,000 | —D | C] – C:\Documents and Settings\All Users\Dane aplikacji\OpenFM

[2010-07-26 17:54:10 | 000,000,000 | —D | C] – C:\Documents and Settings\Filip\Dane aplikacji\OpenFM

[2010-07-24 12:57:08 | 000,000,000 | —D | C] – C:\WINDOWS\System32\MpEngineStore

[2010-07-23 23:44:27 | 000,744,448 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\dllcache\helpsvc.exe

[2010-07-22 13:20:48 | 000,000,000 | —D | C] – C:\Documents and Settings\Filip\Pulpit\STRONA Z WIRUSAMI

[2010-07-20 14:50:36 | 000,000,000 | -HSD | C] – C:\FOUND.027

[2010-07-19 12:15:07 | 000,000,000 | —D | C] – C:\WINDOWS\CSC

[2010-07-19 12:14:58 | 000,000,000 | -HSD | C] – C:\FOUND.026

[1 C:\WINDOWS\System32*.tmp files -> C:\WINDOWS\System32*.tmp ->]

========== Files - Modified Within 30 Days ==========

[2010-08-10 16:06:00 | 004,456,448 | ---- | M] () – C:\Documents and Settings\Filip\ntuser.dat

[2010-08-10 15:59:34 | 000,007,275 | ---- | M] () – C:\WINDOWS\System32\nvapps.xml

[2010-08-10 15:59:26 | 000,000,006 | -H-- | M] () – C:\WINDOWS\tasks\SA.DAT

[2010-08-10 15:59:18 | 000,002,048 | --S- | M] () – C:\WINDOWS\bootstat.dat

[2010-08-10 15:19:40 | 000,001,421 | ---- | M] () – C:\Documents and Settings\Filip\Pulpit\Legion PL.lnk

[2010-08-10 15:14:06 | 000,002,228 | ---- | M] () – C:\WINDOWS\System32\wpa.dbl

[2010-08-07 22:49:40 | 002,641,508 | -H-- | M] () – C:\Documents and Settings\Filip\Ustawienia lokalne\Dane aplikacji\IconCache.db

[2010-08-03 21:01:18 | 000,010,503 | ---- | M] () – C:\Documents and Settings\Filip\Moje dokumenty\Witam.docx

[2010-08-02 22:18:40 | 000,000,188 | -HS- | M] () – C:\Documents and Settings\Filip\ntuser.ini

[2010-07-31 21:51:30 | 000,013,312 | ---- | M] () – C:\Documents and Settings\Filip\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2010-07-27 13:52:36 | 000,004,585 | ---- | M] () – C:\Documents and Settings\Filip\Moje dokumenty\■■■ (spowolnione tempo).piv

[2010-07-27 13:52:14 | 000,004,585 | ---- | M] () – C:\Documents and Settings\Filip\Moje dokumenty\■■■.piv

[2010-07-27 08:30:34 | 008,491,008 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\System32\dllcache\shell32.dll

[2010-07-24 00:53:34 | 000,001,374 | ---- | M] () – C:\WINDOWS\imsins.BAK

[2010-07-24 00:53:06 | 000,000,174 | ---- | M] () – C:\WINDOWS\System32\MRT.INI

[2010-07-19 13:02:40 | 000,000,664 | ---- | M] () – C:\WINDOWS\System32\d3d9caps.dat

[1 C:\WINDOWS\System32*.tmp files -> C:\WINDOWS\System32*.tmp ->]

========== Files Created - No Company Name ==========

[2010-08-10 15:19:38 | 000,001,421 | ---- | C] () – C:\Documents and Settings\Filip\Pulpit\Legion PL.lnk

[2010-08-03 13:31:04 | 004,374,528 | ---- | C] () – C:\Documents and Settings\Filip\ntuser.dat

[2010-07-27 13:52:34 | 000,004,585 | ---- | C] () – C:\Documents and Settings\Filip\Moje dokumenty\■■■ (spowolnione tempo).piv

[2010-07-27 13:52:12 | 000,004,585 | ---- | C] () – C:\Documents and Settings\Filip\Moje dokumenty\■■■.piv

[2010-07-24 00:53:04 | 000,000,174 | ---- | C] () – C:\WINDOWS\System32\MRT.INI

[2010-07-21 15:38:41 | 003,170,341 | ---- | C] () – C:\Documents and Settings\Filip\Moje dokumenty\Obrazy 107.jpg

[2010-07-19 13:02:38 | 000,000,664 | ---- | C] () – C:\WINDOWS\System32\d3d9caps.dat

[2010-06-25 20:45:40 | 000,046,976 | ---- | C] () – C:\WINDOWS\System32\drivers\srenum.sys

[2010-06-15 17:39:46 | 000,354,816 | ---- | C] () – C:\WINDOWS\System32\psisdecd.dll

[2010-01-26 23:29:59 | 000,000,040 | ---- | C] () – C:\WINDOWS\System32\Sx5363.ini

[2010-01-22 15:25:43 | 000,139,016 | ---- | C] () – C:\WINDOWS\System32\drivers\PnkBstrK.sys

[2010-01-20 17:33:46 | 000,000,164 | ---- | C] () – C:\WINDOWS\avrack.ini

[2010-01-20 17:33:39 | 000,155,648 | ---- | C] () – C:\WINDOWS\System32\RtlCPAPI.dll

[2010-01-20 16:50:32 | 000,000,169 | ---- | C] () – C:\WINDOWS\adidsl.ini

[2010-01-20 16:50:32 | 000,000,021 | ---- | C] () – C:\WINDOWS\Fast800.ini

[2010-01-20 16:50:21 | 000,000,990 | ---- | C] () – C:\WINDOWS\adiras.ini

[2010-01-20 16:50:13 | 000,200,704 | ---- | C] () – C:\WINDOWS\System32\coclassfast.dll

[2010-01-20 16:50:11 | 000,046,892 | ---- | C] () – C:\WINDOWS\System32\ADADIX16.DLL

[2010-01-20 16:45:45 | 000,000,026 | ---- | C] () – C:\WINDOWS\tsctv.ini

[2010-01-20 16:23:54 | 000,164,352 | ---- | C] () – C:\WINDOWS\System32\unrar.dll

[2010-01-20 16:23:53 | 000,000,038 | ---- | C] () – C:\WINDOWS\avisplitter.ini

[2008-11-29 11:12:58 | 000,000,076 | ---- | C] () – C:\WINDOWS\System32\oeminfo.ini

[2008-08-18 13:27:42 | 000,034,312 | ---- | C] () – C:\WINDOWS\System32\drivers\epfwtdir.sys

[2007-03-29 23:00:40 | 000,203,264 | R— | C] () – C:\WINDOWS\System32\CddbCdda.dll

[2001-07-06 15:30:02 | 000,003,234 | ---- | C] () – C:\WINDOWS\System32\HPTCPMON.INI

========== Custom Scans ==========

< :OTL >

< O2 - BHO: (SMTTB2009 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\HyperCam Toolbar\tbcore3.dll () >

< O3 - HKLM…\Toolbar: (HyperCam Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\HyperCam Toolbar\tbcore3.dll () >

< O3 - HKLM…\Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - No CLSID value found. >

< O3 - HKU\S-1-5-21-1214440339-842925246-1614895754-1003…\Toolbar\WebBrowser: (HyperCam Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\HyperCam Toolbar\tbcore3.dll () >

< O4 - HKU.DEFAULT…\RunOnce: [_nltide_2] File not found >

< O4 - HKU\S-1-5-18…\RunOnce: [_nltide_2] File not found >

< O4 - HKU\S-1-5-19…\RunOnce: [_nltide_2] File not found >

< O4 - HKU\S-1-5-20…\RunOnce: [_nltide_2] File not found >

< O4 - Startup: C:\Documents and Settings\Filip\Menu Start\Programy\Autostart\data.exe () >

< O4 - Startup: C:\Documents and Settings\Filip\Menu Start\Programy\Autostart\servicess.exe () >

< O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - Reg Error: Value error. File not found >

< O9 - Extra ‘Tools’ menuitem : &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - Reg Error: Value error. File not found >

< [2010-05-28 15:14:00 | 000,000,000 | -HSD | C] – C:\FOUND.005 >

< [2010-05-21 14:50:32 | 000,053,248 | RHS- | C] (URJqcIYS) – C:\Documents and Settings\Filip\mevaj.exe >

< [2010-05-19 18:15:14 | 000,000,000 | -HSD | C] – C:\FOUND.004 >

< [2010-05-19 17:35:54 | 000,000,000 | -HSD | C] – C:\FOUND.003 >

< [2010-05-21 14:50:34 | 000,053,248 | RHS- | M] (URJqcIYS) – C:\Documents and Settings\Filip\mevaj.exe >

< >

< :Reg >

< [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2] >

< >

< :Commands >

< [emptytemp] >

< [start explorer] >

< [Reboot] >

========== Files - Unicode (All) ==========

[2010-06-10 14:54:44 | 000,000,000 | —D | C](C:\Documents and Settings\Filip\Moje dokumenty???[[[[[MXT]]]]]???VIP???) – C:\Documents and Settings\Filip\Moje dokumenty\中国顶尖[[[[[MXT]]]]]暴力战队影子妹精简路线冲刺VIP专用版

[2008-01-18 03:52:54 | 000,000,000 | —D | M](C:\Documents and Settings\Filip\Moje dokumenty???[[[[[MXT]]]]]???VIP???) – C:\Documents and Settings\Filip\Moje dokumenty\中国顶尖[[[[[MXT]]]]]暴力战队影子妹精简路线冲刺VIP专用版

< End of report >

nie wiem czy to?

#9

nie wykonałeś mojego polecenia. miałeś wkleić skrypt w białe okienko OTL i nacisnąć wykonaj skrypt, a ty chyba nacisnąłeś skanuj

#10

przemo no i co to ma do rzeczy

Dodane 12.08.2010 (Cz) 15:43

a jak się ten skrypt robi kiedy ja mam tylko funkcje skanowania ???

#11

masz napisałem, ci na rysunku gdzie wklejasz skrypt i gdzie jest wykonaj skrypt http://img202.imageshack.us/img202/9876/bez2tytuu.png

#12

AHA to już wiem jak thx

Dodane 12.08.2010 (Cz) 18:23

All processes killed

========== OTL ==========

Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{FCBCCB87-9224-4B8D-B117-F56D924BEB18}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID{FCBCCB87-9224-4B8D-B117-F56D924BEB18}\ not found.

File C:\Program Files\HyperCam Toolbar\tbcore3.dll not found.

Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\{338B4DFE-2E2C-4338-9E41-E176D497299E} not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID{338B4DFE-2E2C-4338-9E41-E176D497299E}\ not found.

File C:\Program Files\HyperCam Toolbar\tbcore3.dll not found.

Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\{E0E899AB-F487-11D5-8D29-0050BA6940E3} not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID{E0E899AB-F487-11D5-8D29-0050BA6940E3}\ not found.

Registry value HKEY_USERS\S-1-5-21-1214440339-842925246-1614895754-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{338B4DFE-2E2C-4338-9E41-E176D497299E} not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID{338B4DFE-2E2C-4338-9E41-E176D497299E}\ not found.

File C:\Program Files\HyperCam Toolbar\tbcore3.dll not found.

Registry value HKEY_USERS.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce\_nltide_2 not found.

Invalid CLSID key: _nltide_2

Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce\_nltide_2 not found.

Invalid CLSID key: _nltide_2

Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\_nltide_2 not found.

Invalid CLSID key: _nltide_2

Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\_nltide_2 not found.

Invalid CLSID key: _nltide_2

File C:\Documents and Settings\Filip\Menu Start\Programy\Autostart\data.exe not found.

File C:\Documents and Settings\Filip\Menu Start\Programy\Autostart\servicess.exe not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions{D6E814A0-E0C5-11d4-8D29-0050BA6940E3}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID{D6E814A0-E0C5-11d4-8D29-0050BA6940E3}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions{D6E814A0-E0C5-11d4-8D29-0050BA6940E3}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID{D6E814A0-E0C5-11d4-8D29-0050BA6940E3}\ not found.

Folder C:\FOUND.005\ not found.

File C:\Documents and Settings\Filip\mevaj.exe not found.

Folder C:\FOUND.004\ not found.

Folder C:\FOUND.003\ not found.

File C:\Documents and Settings\Filip\mevaj.exe not found.

File KEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2] not found.

File ptytemp] not found.

File art explorer] not found.

File boot] not found.

OTL by OldTimer - Version 3.2.5.0 log created on 08112010_181916

Files\Folders moved on Reboot…

Registry entries deleted on Reboot…

chyba to