Prośba o analizę loga OTL

ďťż




	chomiki Prosze o sprawdzenie loga i pomoc jeżel ktoś ma czas. Prosze o sprawdzenie loga - wolny net Prosze o sprawdzenie Loga!!! Napewno Keylogger!!! Reklamiarz, trojan?? Proszę o sprawdzenie loga... Prosze o sprawdzenie loga i instrukcje co dalej... prosze o sprawdzenie loga HijackThis i ComboFix prosze o sprawdzenie loga, z gory dzieki proszę o sprawdzenie loga, możliwy keylogger Prosze o sprawdzenie loga z HiJackThis Sprzedam SE K750i zanotowane.pl doc.pisz.pl pdf.pisz.pl apv88.opx.pl	chomiki Zmuliło mi jeden z dysków hdd. objaw - kopiowanie dużego pliku staje co 6-7%, transfer 2-3 Mbit, komputer sie wtedy muli. Kopiowanie na drugi dysk (secondary naster na drugiej taśmie) ten sam plik - 6-7 mbit i idzie równo. Dysk primary master sprawdzony mhdd i nie ma z nim problemów. prośba o zerknięcie na log: ------------------------------------------------ OTL logfile created on: 2010-02-25 19:15:29 - Run 1 OTL by OldTimer - Version 3.1.30.2 Folder = C:\Documents and Settings\Jarek\Pulpit Windows XP Home Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 \| Country: Polska \| Language: PLK \| Date Format: yyyy-MM-dd 1 024,00 Mb Total Physical Memory \| 456,00 Mb Available Physical Memory \| 45,00% Memory free 2,00 Gb Paging File \| 1,00 Gb Available in Paging File \| 64,00% Paging File free Paging file location(s): C:\pagefile.sys 768 1536 [binary data] %SystemDrive% = C: \| %SystemRoot% = C:\WINDOWS \| %ProgramFiles% = C:\Program Files Drive C: \| 14,65 Gb Total Space \| 3,42 Gb Free Space \| 23,33% Space Free \| Partition Type: NTFS Drive D: \| 59,87 Gb Total Space \| 20,31 Gb Free Space \| 33,92% Space Free \| Partition Type: NTFS Drive E: \| 1,76 Mb Total Space \| 0,00 Mb Free Space \| 0,00% Space Free \| Partition Type: CDFS F: Drive not present or media not loaded Drive G: \| 7,44 Gb Total Space \| 5,31 Gb Free Space \| 71,43% Space Free \| Partition Type: FAT32 H: Drive not present or media not loaded Drive I: \| 29,80 Gb Total Space \| 3,10 Gb Free Space \| 10,40% Space Free \| Partition Type: FAT32 Drive J: \| 2,66 Gb Total Space \| 0,00 Gb Free Space \| 0,00% Space Free \| Partition Type: UDF Unable to calculate disk information. Computer Name: MIJ Current User Name: Jarek Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard ========== Processes (SafeList) ========== PRC - [2010-02-25 19:12:22 \| 000,549,888 \| ---- \| M] (OldTimer Tools) -- C:\Documents and Settings\Jarek\Pulpit\OTL.exe PRC - [2010-01-23 18:24:29 \| 000,908,248 \| ---- \| M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2009-12-13 13:23:59 \| 002,043,160 \| ---- \| M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgtray.exe PRC - [2009-08-20 11:44:50 \| 000,486,680 \| ---- \| M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgrsx.exe PRC - [2009-08-20 11:44:49 \| 000,693,016 \| ---- \| M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgcsrvx.exe PRC - [2009-08-20 11:44:30 \| 000,595,736 \| ---- \| M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgnsx.exe PRC - [2009-08-20 11:44:27 \| 000,908,056 \| ---- \| M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgemc.exe PRC - [2009-08-20 11:44:09 \| 000,297,752 \| ---- \| M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgwdsvc.exe PRC - [2009-01-14 23:05:50 \| 000,073,728 \| ---- \| M] (ProQuest Business Solutions) -- C:\Program Files\BHPS\Gmg\bin\DBMonService.exe PRC - [2009-01-14 23:05:49 \| 001,748,992 \| ---- \| M] (Transaction Software, D 81737 Munich) -- C:\Program Files\BHPS\Gmg\bin\tbkern32.exe PRC - [2009-01-14 23:05:48 \| 000,380,928 \| ---- \| M] (Transaction Software, D 81737 Munich) -- C:\Program Files\BHPS\Gmg\bin\tbmux32.exe PRC - [2009-01-14 23:05:26 \| 000,069,632 \| ---- \| M] (ProQuest Business Solutions) -- C:\Program Files\BHPS\Gmg\bin\TomcatMonService.exe PRC - [2009-01-14 23:04:35 \| 000,069,632 \| ---- \| M] (ProQuest Business Solutions) -- C:\Program Files\BHPS\Pmap1\bin\MapperMonService.exe PRC - [2009-01-14 23:00:49 \| 000,028,779 \| ---- \| M] () -- C:\Program Files\BHPS\JRE142\bin\javaw.exe PRC - [2009-01-14 23:00:49 \| 000,024,681 \| ---- \| M] () -- C:\Program Files\BHPS\JRE142\bin\java.exe PRC - [2008-11-02 09:56:39 \| 000,614,136 \| ---- \| M] () -- C:\Program Files\COMODO\Firewall\cmdagent.exe PRC - [2008-11-02 09:55:29 \| 001,797,880 \| ---- \| M] () -- C:\Program Files\COMODO\Firewall\cfp.exe PRC - [2007-06-13 14:23:49 \| 001,034,752 \| ---- \| M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2005-12-10 15:57:19 \| 000,133,016 \| ---- \| M] (DT Soft Ltd.) -- C:\Program Files\DAEMON Tools\daemon.exe PRC - [2005-02-02 06:51:00 \| 000,826,916 \| ---- \| M] (C. Ghisler & Co.) -- C:\totalcmd\TOTALCMD.EXE PRC - [2004-03-25 08:44:28 \| 000,094,208 \| ---- \| M] (Lexmark International, Inc.) -- C:\Program Files\Lexmark 5200 Series\lxbtbmon.exe PRC - [2004-03-25 08:35:28 \| 000,057,344 \| ---- \| M] (Lexmark International, Inc.) -- C:\Program Files\Lexmark 5200 Series\lxbtbmgr.exe PRC - [2001-10-26 18:29:52 \| 000,024,064 \| ---- \| M] (Creative Technology Ltd.) -- C:\WINDOWS\system32\devldr32.exe ========== Modules (SafeList) ========== MOD - [2010-02-25 19:12:22 \| 000,549,888 \| ---- \| M] (OldTimer Tools) -- C:\Documents and Settings\Jarek\Pulpit\OTL.exe MOD - [2006-08-25 16:51:13 \| 001,054,208 \| ---- \| M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll ========== Win32 Services (SafeList) ========== SRV - File not found [Auto \| Running] -- -- (pqeauto.engine.tomcatmonitor.GMG) SRV - [2009-08-20 11:44:27 \| 000,908,056 \| ---- \| M] (AVG Technologies CZ, s.r.o.) [Auto \| Running] -- C:\Program Files\AVG\AVG8\avgemc.exe -- (avg8emc) SRV - [2009-08-20 11:44:09 \| 000,297,752 \| ---- \| M] (AVG Technologies CZ, s.r.o.) [Auto \| Running] -- C:\Program Files\AVG\AVG8\avgwdsvc.exe -- (avg8wd) SRV - [2009-01-14 23:05:50 \| 000,073,728 \| ---- \| M] (ProQuest Business Solutions) [Auto \| Running] -- C:\Program Files\BHPS\Gmg\bin\DBMonService.exe -- (pqeauto.database.dbmonitor.GMG) SRV - [2009-01-14 23:04:35 \| 000,069,632 \| ---- \| M] (ProQuest Business Solutions) [Auto \| Running] -- C:\Program Files\BHPS\Pmap1\bin\MapperMonService.exe -- (pqeauto.energy.mappermonitor) SRV - [2008-11-02 09:56:39 \| 000,614,136 \| ---- \| M] () [Auto \| Running] -- C:\Program Files\COMODO\Firewall\cmdagent.exe -- (cmdAgent) SRV - [2004-08-04 00:44:02 \| 000,027,648 \| ---- \| M] (Microsoft Corporation) [Auto \| Running] -- C:\WINDOWS\system32\irmon.dll -- (Irmon) SRV - [2004-02-20 14:10:08 \| 000,421,888 \| ---- \| M] (Lexmark International, Inc.) [On_Demand \| Stopped] -- C:\WINDOWS\System32\lxbtcoms.exe -- (lxbt_device) ========== Driver Services (SafeList) ========== DRV - [2009-08-20 11:44:50 \| 000,335,240 \| ---- \| M] (AVG Technologies CZ, s.r.o.) [Kernel \| System \| Running] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86) DRV - [2009-08-20 11:44:49 \| 000,027,784 \| ---- \| M] (AVG Technologies CZ, s.r.o.) [File_System \| System \| Running] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86) DRV - [2009-05-08 08:35:10 \| 000,108,552 \| ---- \| M] (AVG Technologies CZ, s.r.o.) [Kernel \| System \| Running] -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX) DRV - [2008-11-02 09:56:37 \| 000,079,504 \| ---- \| M] (COMODO) [Kernel \| Boot \| Running] -- C:\WINDOWS\System32\DRIVERS\inspect.sys -- (Inspect) DRV - [2008-11-02 09:56:36 \| 000,099,856 \| ---- \| M] (COMODO) [File_System \| System \| Running] -- C:\WINDOWS\system32\drivers\cmdguard.sys -- (cmdGuard) DRV - [2008-11-02 09:56:36 \| 000,031,504 \| ---- \| M] (COMODO) [Kernel \| System \| Running] -- C:\WINDOWS\system32\drivers\cmdhlp.sys -- (cmdHlp) DRV - [2008-10-08 18:48:45 \| 000,223,128 \| ---- \| M] () [Kernel \| On_Demand \| Running] -- C:\WINDOWS\System32\Drivers\dtscsi.sys -- (dtscsi) DRV - [2008-10-08 18:39:29 \| 000,642,560 \| ---- \| M] () [Kernel \| Boot \| Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2007-11-13 11:25:55 \| 000,020,480 \| ---- \| M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel \| On_Demand \| Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv) DRV - [2006-03-02 13:00:00 \| 000,017,792 \| ---- \| M] (Parallel Technologies, Inc.) [Kernel \| On_Demand \| Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink) DRV - [2004-08-04 00:08:22 \| 000,010,624 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum) DRV - [2004-08-03 23:29:56 \| 001,897,408 \| ---- \| M] (NVIDIA Corporation) [Kernel \| On_Demand \| Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2001-08-17 21:49:10 \| 000,026,624 \| ---- \| M] (SigmaTel, Inc.) [Kernel \| On_Demand \| Stopped] -- C:\WINDOWS\system32\drivers\irstusb.sys -- (STIrUsb) DRV - [2001-08-17 21:19:34 \| 000,036,480 \| ---- \| M] (Creative Technology Ltd.) [Kernel \| On_Demand \| Running] -- C:\WINDOWS\system32\drivers\sfmanm.sys -- (sfman) Sterownik Creative SoundFont Manager (WDM) DRV - [2001-08-17 21:19:28 \| 000,006,912 \| ---- \| M] (Creative Technology Ltd.) [Kernel \| On_Demand \| Running] -- C:\WINDOWS\system32\drivers\ctlfacem.sys -- (emu10k1) Sterownik Creative Interface Manager (WDM) DRV - [2001-08-17 21:19:26 \| 000,283,904 \| ---- \| M] (Creative Technology Ltd.) [Kernel \| On_Demand \| Running] -- C:\WINDOWS\system32\drivers\emu10k1m.sys -- (emu10k) Creative SB Live! (WDM) DRV - [2001-08-17 21:19:20 \| 000,003,712 \| ---- \| M] (Creative Technology Ltd.) [Kernel \| On_Demand \| Running] -- C:\WINDOWS\system32\drivers\ctljystk.sys -- (ctljystk) DRV - [2001-08-17 21:11:06 \| 000,066,591 \| ---- \| M] (3Com Corporation) [Kernel \| On_Demand \| Running] -- C:\WINDOWS\system32\drivers\el90xbc5.sys -- (EL90XBC) DRV - [2000-10-22 12:44:10 \| 000,054,156 \| ---- \| M] (Warp Nine Engineering) [Kernel \| On_Demand \| Stopped] -- I:\ferdek\kenwood\ Files\KEnOZooiK Loader\PAR1284.SYS -- (PAR1284) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.comodo.com/search/ IE - HKCU\..\URLSearchHook: {0579B4B6-0293-4d73-B02D-5EBB0BA0F0A2} - Reg Error: Key error. File not found IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - Reg Error: Key error. File not found IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll () IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://pl.start.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:pl:official" FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:8.5.0.429 FF - prefs.js..extensions.enabledItems: avg@igeared:3.011.025.005 FF - prefs.js..extensions.enabledItems: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.2.0.7 FF - prefs.js..extensions.enabledItems: support@pdfcreator-toolbar.org:1.0 FF - prefs.js..extensions.enabledItems: {0b38152b-1b20-484d-a11f-5e04a9b0661f}:5.6.10.1 FF - prefs.js..keyword.URL: "http://us.yhs.search.yahoo.com/avg/search?fr=yhs-avg&type=yahoo_avg_hs2-tb-web_us&p=" FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG8\Firefox [2009-12-27 20:35:53 \| 000,000,000 \| ---D \| M] FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG8\Toolbar\Firefox\avg@igeared [2009-12-28 21:31:28 \| 000,000,000 \| ---D \| M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-01-23 18:25:07 \| 000,000,000 \| ---D \| M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-01-23 18:25:07 \| 000,000,000 \| ---D \| M] [2008-09-24 18:53:30 \| 000,000,000 \| ---D \| M] -- C:\Documents and Settings\Jarek\Dane aplikacji\Mozilla\Extensions [2008-09-24 18:53:30 \| 000,000,000 \| ---D \| M] -- C:\Documents and Settings\Jarek\Dane aplikacji\Mozilla\Firefox\Profiles\5ab422at.default\extensions [2010-02-20 13:55:08 \| 000,000,000 \| ---D \| M] -- C:\Documents and Settings\Jarek\Dane aplikacji\Mozilla\Firefox\Profiles\97nk64sk.default\extensions [2009-03-13 22:38:26 \| 000,000,000 \| ---D \| M] (Winamp Toolbar) -- C:\Documents and Settings\Jarek\Dane aplikacji\Mozilla\Firefox\Profiles\97nk64sk.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f} [2009-12-29 11:11:55 \| 000,000,000 \| ---D \| M] (FlashGot) -- C:\Documents and Settings\Jarek\Dane aplikacji\Mozilla\Firefox\Profiles\97nk64sk.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34} [2009-03-13 22:38:49 \| 000,001,196 \| ---- \| M] () -- C:\Documents and Settings\Jarek\Dane aplikacji\Mozilla\Firefox\Profiles\97nk64sk.default\searchplugins\winamp-search.xml [2010-02-20 14:04:58 \| 000,000,000 \| ---D \| M] -- C:\Program Files\Mozilla Firefox\extensions [2009-01-14 23:33:51 \| 000,163,840 \| ---- \| M] (ProQuest Automotive) -- C:\Program Files\Mozilla Firefox\plugins\npImgrPlg.dll [2010-01-23 18:24:45 \| 000,002,767 \| ---- \| M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-01-23 18:24:45 \| 000,001,406 \| ---- \| M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-01-23 18:24:45 \| 000,000,917 \| ---- \| M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-01-23 18:24:45 \| 000,000,858 \| ---- \| M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-01-23 18:24:45 \| 000,001,183 \| ---- \| M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-01-23 18:24:45 \| 000,001,683 \| ---- \| M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2009-01-08 17:04:23 \| 000,000,027 \| ---- \| M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Ask Search Assistant BHO) - {0579B4B1-0293-4d73-B02D-5EBB0BA0F0A2} - C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL (Ask.com) O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.) O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (AVG Technologies CZ, s.r.o.) O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll () O2 - BHO: (PDFCreator Toolbar Helper) - {C451C08A-EC37-45DF-AAAD-18B51AB5E837} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll () O2 - BHO: (Ask Toolbar BHO) - {F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL (Ask.com) O3 - HKLM\..\Toolbar: (PDFCreator Toolbar) - {31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll () O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll () O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.) O3 - HKLM\..\Toolbar: (Ask Toolbar) - {F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL (Ask.com) O3 - HKCU\..\Toolbar\ShellBrowser: (Ask Toolbar) - {F0D4B239-DA4B-4DAF-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL (Ask.com) O3 - HKCU\..\Toolbar\WebBrowser: (PDFCreator Toolbar) - {31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll () O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll () O3 - HKCU\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.) O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {F0D4B239-DA4B-4DAF-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL (Ask.com) O4 - HKLM..\Run: [AVG8_TRAY] C:\Program Files\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [COMODO Firewall Pro] C:\Program Files\COMODO\Firewall\cfp.exe () O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\Firewall\cfp.exe () O4 - HKLM..\Run: [DAEMON Tools] C:\Program Files\DAEMON Tools\daemon.exe (DT Soft Ltd.) O4 - HKLM..\Run: [Lexmark 5200 series] C:\Program Files\Lexmark 5200 series\lxbtbmgr.exe (Lexmark International, Inc.) O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh) O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe (Sun Microsystems, Inc.) O4 - Startup: C:\Documents and Settings\Jarek\Menu Start\Programy\Autostart\OpenOffice.ux.pl 3.0.lnk = C:\Program Files\OpenOffice.ux.pl 3\program\quickstart.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8 - Extra context menu item: &Winamp Search - C:\Documents and Settings\All Users\Dane aplikacji\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html () O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone. O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/produ...indows-i586.cab (Java Plug-in 1.6.0_07) O16 - DPF: {CAC677B6-4963-4305-9066-0BD135CD9233} https://asp.photoprintit.de/microsite/3111/defaults/activex/ips/IPSUploader4.cab (IPSUploader4 Control) O16 - DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} http://java.sun.com/produ...indows-i586.cab (Java Plug-in 1.4.2_03) O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/produ...indows-i586.cab (Java Plug-in 1.6.0_07) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macrome...ash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.76.39.211 212.76.39.205 O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (AVG Technologies CZ, s.r.o.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Jarek\Dane aplikacji\Mozilla\Firefox\Tapeta pulpitu.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Jarek\Dane aplikacji\Mozilla\Firefox\Tapeta pulpitu.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008-09-21 20:55:40 \| 000,000,000 \| ---- \| M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2009-06-25 20:13:02 \| 126,355,376 \| ---- \| M] () - D:\AutoMapa 5.3.0.676 PL (812).rar -- [ NTFS ] O32 - AutoRun File - [2009-09-30 16:15:48 \| 139,377,514 \| ---- \| M] () - D:\AutoMapa 5.5.3 (711) PL.rar -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk ) - File not found O35 - comfile [open] -- "%1" % O35 - exefile [open] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2010-02-25 19:12:11 \| 000,549,888 \| ---- \| C] (OldTimer Tools) -- C:\Documents and Settings\Jarek\Pulpit\OTL.exe [2010-02-22 22:05:18 \| 000,000,000 \| ---D \| C] -- C:\Documents and Settings\Jarek\Moje dokumenty\CyberLink [2010-02-07 15:42:58 \| 000,000,000 \| ---D \| C] -- C:\Documents and Settings\Jarek\Pulpit\ToSrtConverter 1.1.1 x64 [2010-02-07 15:37:30 \| 000,000,000 \| ---D \| C] -- C:\Documents and Settings\Jarek\Pulpit\ToSrtConverter 1.1.1 x86 [2009-06-29 11:19:21 \| 000,000,000 \| ---D \| M] -- C:\Documents and Settings\LocalService\Dane aplikacji\AVGTOOLBAR [2008-12-30 22:05:04 \| 000,000,000 \| --SD \| M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2008-12-30 22:05:04 \| 000,000,000 \| --SD \| M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2008-12-30 22:05:04 \| 000,000,000 \| ---D \| M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2008-12-30 22:05:04 \| 000,000,000 \| ---D \| M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [4 C:\WINDOWS\.tmp files C:\WINDOWS\.tmp ] [1 C:\WINDOWS\System32\dllcache\.tmp files C:\WINDOWS\System32\dllcache\.tmp ] [1 C:\WINDOWS\System32\.tmp files C:\WINDOWS\System32\.tmp ] ========== Files - Modified Within 30 Days ========== [2010-02-25 19:12:22 \| 000,549,888 \| ---- \| M] (OldTimer Tools) -- C:\Documents and Settings\Jarek\Pulpit\OTL.exe [2010-02-25 19:08:12 \| 000,001,088 \| ---- \| M] () -- C:\WINDOWS\WINCMD.INI [2010-02-25 18:54:57 \| 056,241,522 \| ---- \| M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm [2010-02-25 18:49:00 \| 000,000,006 \| -H-- \| M] () -- C:\WINDOWS\tasks\SA.DAT [2010-02-25 18:48:51 \| 000,002,048 \| --S- \| M] () -- C:\WINDOWS\bootstat.dat [2010-02-24 23:52:12 \| 003,145,728 \| -H-- \| M] () -- C:\Documents and Settings\Jarek\NTUSER.DAT [2010-02-24 23:52:12 \| 000,000,188 \| -HS- \| M] () -- C:\Documents and Settings\Jarek\ntuser.ini [2010-02-24 22:57:19 \| 000,013,646 \| ---- \| M] () -- C:\WINDOWS\System32\wpa.dbl [2010-02-22 21:38:56 \| 000,000,116 \| ---- \| M] () -- C:\WINDOWS\NeroDigital.ini [4 C:\WINDOWS\.tmp files C:\WINDOWS\.tmp ] [1 C:\WINDOWS\System32\dllcache\.tmp files C:\WINDOWS\System32\dllcache\.tmp ] [1 C:\WINDOWS\System32\.tmp files C:\WINDOWS\System32\.tmp ] ========== Files Created - No Company Name ========== [2009-10-27 23:39:28 \| 000,000,014 \| ---- \| C] () -- C:\WINDOWS\System32\pro009dbwin.dll [2009-10-27 23:35:42 \| 000,217,600 \| ---- \| C] () -- C:\WINDOWS\System32\pdftool.dll [2009-09-08 10:34:25 \| 000,000,289 \| ---- \| C] () -- C:\WINDOWS\wcx_ftp.ini [2009-07-08 17:44:19 \| 000,001,088 \| ---- \| C] () -- C:\WINDOWS\WINCMD.INI [2009-06-06 08:33:02 \| 000,000,000 \| ---- \| C] () -- C:\WINDOWS\BBCAUTO.INI [2009-02-25 23:45:13 \| 000,000,000 \| ---- \| C] () -- C:\WINDOWS\OpPrintServer.INI [2008-12-18 22:04:01 \| 000,116,224 \| ---- \| C] () -- C:\WINDOWS\System32\pdfcmnnt.dll [2008-11-15 10:16:52 \| 000,000,116 \| ---- \| C] () -- C:\WINDOWS\NeroDigital.ini [2008-10-11 06:43:53 \| 000,026,624 \| ---- \| C] () -- C:\Documents and Settings\Jarek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2008-10-08 18:48:44 \| 000,223,128 \| ---- \| C] () -- C:\WINDOWS\System32\drivers\dtscsi.sys [2008-10-08 18:39:29 \| 000,642,560 \| ---- \| C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2008-10-08 18:39:29 \| 000,096,256 \| ---- \| C] () -- C:\WINDOWS\System32\drivers\sptd7517.sys [2008-09-24 23:06:16 \| 000,040,960 \| ---- \| C] () -- C:\WINDOWS\System32\lxbtvs.dll [2008-09-24 23:06:14 \| 000,151,552 \| ---- \| C] () -- C:\WINDOWS\System32\lxbthwdf.dll [2008-09-24 23:06:14 \| 000,139,264 \| ---- \| C] () -- C:\WINDOWS\System32\lxbtcoin.dll [2008-09-24 23:06:14 \| 000,126,976 \| ---- \| C] () -- C:\WINDOWS\System32\lxbtsnls.dll [2008-09-24 23:06:04 \| 000,001,832 \| ---- \| C] () -- C:\WINDOWS\System32\lxbtprod.ini [2008-09-24 18:46:55 \| 000,143,096 \| ---- \| C] () -- C:\WINDOWS\System32\guard32.dll [2008-02-09 19:06:28 \| 000,000,008 \| RHS- \| C] () -- C:\WINDOWS\neoqaz2.dll [2005-10-14 10:56:50 \| 003,596,288 \| ---- \| C] () -- C:\WINDOWS\System32\qt-dx331.dll [2005-10-14 10:56:50 \| 000,921,600 \| ---- \| C] () -- C:\WINDOWS\System32\VorbisEnc.dll [2005-10-14 10:56:50 \| 000,761,856 \| ---- \| C] () -- C:\WINDOWS\System32\xvidcore.dll [2005-10-14 10:56:50 \| 000,344,064 \| ---- \| C] () -- C:\WINDOWS\System32\xvid.dll [2005-10-14 10:56:50 \| 000,237,568 \| ---- \| C] () -- C:\WINDOWS\System32\OggDS.dll [2005-10-14 10:56:50 \| 000,188,416 \| ---- \| C] () -- C:\WINDOWS\System32\vorbis.dll [2005-10-14 10:56:50 \| 000,045,056 \| ---- \| C] () -- C:\WINDOWS\System32\ogg.dll ========== Alternate Data Streams ========== @Alternate Data Stream - 8 bytes C:\WINDOWS: < End of report > Odinstaluj Winamp Toolbar oraz Ask Toolbar. Log jest czysty, tylko kosmetyka. Uruchom OTL w oknie Custom Scans/Fixes wklej: :OTL SRV - File not found [Auto \| Running] -- -- (pqeauto.engine.tomcatmonitor.GMG) IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.comodo.com/search/ IE - HKCU\..\URLSearchHook: {0579B4B6-0293-4d73-B02D-5EBB0BA0F0A2} - Reg Error: Key error. File not found IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - Reg Error: Key error. File not found :Commands [emptytemp] Klikasz Run Fix. Następnie: W OTL kliknij CleanUp Przeczyść dysk oraz rejestr CCleaner Wykonaj pełne skanowanie Malwarebytes' Anti-Malware - jeśli coś znajdzie usuń i daj raport Prewencyjnie: 1. Zainstaluj SP3 2. Zainstaluj IE 8 3. Zaktualizuj Firefoksa do 3.6 i wszystkie wtyczki (Flash, Java, QuickTime, Adobe Reader) Raczej jest problem sprzętowy. Wejdź do Menedżera Urządzeń, właściwości podstawowego i pomocniczego kanału IDE i sprawdź, w którym trybie działają (PIO czy Ultra DMA). Jeżeli dysponujesz programem diagnostycznym typu Everest, odczytaj komunikaty SMART twardego dysku i przekaż na forum. Przeskanuj jakimś porządnym narzędziem, czy nie ma uszkodzonych sektorów. http://www.dobreprogramy....Windows,42.html Witam ponownie, CleanUp i CCleaner zrobione, Malwarebytes' Anti-Malware 0 problemów. Dziś wsadziłem drugi dysk NTFS na wspólny kontroler z dyskiem problematycznym NTFS master. Transfery między starym FAT32 i nowym NTFS rewelacja. Odczyt ze starego NTFS master przy kopiowaniu pliku max 3 mbit/s. Zapis jeszcze gorzej - staje co kilka %. Dysk skanowany mhdd ma sporo bloków z odczytem 10 i 50 ms. 1 blok problematyczy z czasem 500ms. Wniosek - skoro drugi NTFS na tym samym IDE dziala ok, to nie problem kontrolera. Master ma 2 partycje i problem na obu, stąd podejrzewam dysk. Przetestuje i zczytam SMART i wrzuce. zanotowane.pl doc.pisz.pl pdf.pisz.pl mandragora32.opx.pl ďťż

Wszelkie Prawa ZastrzeĹźone! chomiki Design by SZABLONY.maniak.pl.

Darmowy hosting zapewnia PRV.PL

chomiki