Skocz do zawartości


Zdjęcie

komputer strasznie zamula

Rozpoczęty przez Wróżka Zębuszka , 21 04 2008 20:03

  • Zaloguj się, aby dodać odpowiedź
3 odpowiedzi w tym temacie

#1 Wróżka Zębuszka

Wróżka Zębuszka

    Nowy

  • 2 postów

Napisano 21 04 2008 - 20:03

witam,

od 2 miesiecy mam tak skonfigurowanego kompa:

intel core 2 quad 2,4ghz
geforce 8800gt
3gb ramu
asus p5k
Seagate 250GB 16MB SATAII

komputer kiepsko pracuje, otwieranie kolejnych okienek wyraznie sprawia mu problemy.....zanim cokolwiek otworzy czasem i kilka sekund sie zastanawia;
nie wiem w czym jest problem :rolleyes:

moje logi:

Deckard's System Scanner v20071014.68
Run by Administrator on 2008-04-21 19:59:35
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Successfully created a Deckard's System Scanner Restore Point.


-- Last 5 Restore Point(s) --
7: 2008-04-21 17:59:39 UTC - RP56 - Deckard's System Scanner Restore Point
6: 2008-04-21 17:25:13 UTC - RP55 - Zainstalowano ESET NOD32 Antivirus
5: 2008-04-21 17:16:16 UTC - RP54 - Usunięto ESET NOD32 Antivirus
4: 2008-04-21 17:10:53 UTC - RP53 - Zainstalowano ESET NOD32 Antivirus
3: 2008-04-21 17:06:04 UTC - RP52 - Usunięto ESET NOD32 Antivirus


-- First Restore Point --
1: 2008-04-20 13:21:33 UTC - RP50 - Punkt kontrolny systemu


Backed up registry hives.
Performed disk cleanup.



-- HijackThis Clone ------------------------------------------------------------


Emulating logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2008-04-21 20:01:00
Platform: Windows XP Dodatek Service Pack 2 (5.01.2600)
MSIE: Internet Explorer (7.00.6000.20583)
Boot mode: Normal

Running processes:
C:\WINDOWS\system32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\CTSVCCDA.EXE
C:\Program Files\Creative\Shared Files\CTDevSrv.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\PSIService.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\RTHDCPL.exe
C:\Program Files\Canon\Memory Card Utility\iP6220D\PDUiP6220DMon.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AutoConnect\AutoConnect.exe
C:\Program Files\Creative\Creative Media Lite\CTZDetec.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\WINDOWS\system32\CF3018.exe
C:\Documents and Settings\Administrator\Pulpit\dss.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.onet.pl/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R3 - Default URLSearchHook is missing
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [PDUiP6220DMon] C:\Program Files\Canon\Memory Card Utility\iP6220D\PDUiP6220DMon.exe
O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [CorelDRAW Graphics Suite 11b] C:\Program Files\Corel\Corel Graphics 12\Languages\PL\Programs\Registration.exe /title="CorelDRAW Graphics Suite 12" /date=042208 serial=DR12WUT-1835238-BPS lang=PL
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [AutoConnect] C:\Program Files\AutoConnect\AutoConnect.exe
O4 - HKCU\..\Run: [CTRegRun] C:\WINDOWS\CTRegRun.EXE
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O11 - Options Group: [TABS] Tabbed Browsing
O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/softwareupdate/su/...031/CTSUEng.cab
O17 - HKLM\SYSTEM\CCS\Services\Tcpip\..\{C4E410C3-D211-42E7-AA5D-D851659122EB}: NameServer = 194.204.159.1 217.98.63.164
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTSVCCDA.EXE
O23 - Service: CT Device Query service (CTDevice_Srv) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTDevSrv.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Nero BackItUp Scheduler 3 - Unknown owner - C:\Program Files\Nero\Nero8\Nero
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe


--
End of file - 9418 bytes

-- File Associations -----------------------------------------------------------

.cpl - cplfile - shell\cplopen\command - rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.cpl - cplfile - shell\runas\command - rundll32.exe shell32.dll,Control_RunDLLAsUser "%1",%*


-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R0 Si3112 - c:\windows\system32\drivers\si3112.sys <Not Verified; Silicon Image, Inc.; SiI 3112 SATALink controller>


-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

R2 Bonjour Service (##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##) - "c:\program files\bonjour\mdnsresponder.exe" <Not Verified; Apple Computer, Inc.; Bonjour>
R2 CTDevice_Srv (CT Device Query service) - c:\program files\creative\shared files\ctdevsrv.exe <Not Verified; Creative Technology Ltd; CTDevSrv Application>
R2 Nero BackItUp Scheduler 3 - c:\program files\nero\nero8\nero backitup\nbservice.exe
R2 PLFlash DeviceIoControl Service - c:\windows\system32\ioctlsvc.exe <Not Verified; Prolific Technology Inc.; IoctlSvc Application>

S3 FLEXnet Licensing Service - "c:\program files\common files\macrovision shared\flexnet publisher\fnplicensingservice.exe" <Not Verified; Macrovision Europe Ltd.; FLEXnet Publisher (32 bit)>


-- Device Manager: Disabled ----------------------------------------------------

Class GUID:
Description: Kontroler Ethernet
Device ID: PCI\VEN_1969&DEV_1048&SUBSYS_82261043&REV_B0\4&625283&0&00E5
Manufacturer:
Name: Kontroler Ethernet
PNP Device ID: PCI\VEN_1969&DEV_1048&SUBSYS_82261043&REV_B0\4&625283&0&00E5
Service:

Class GUID:
Description:
Device ID: ACPI\ATK0110\1010110
Manufacturer:
Name:
PNP Device ID: ACPI\ATK0110\1010110
Service:

Class GUID:
Description: Kontroler magistrali zarządzania systemem
Device ID: PCI\VEN_8086&DEV_2930&SUBSYS_82771043&REV_02\3&11583659&0&FB
Manufacturer:
Name: Kontroler magistrali zarządzania systemem
PNP Device ID: PCI\VEN_8086&DEV_2930&SUBSYS_82771043&REV_02\3&11583659&0&FB
Service:


-- Files created between 2008-03-21 and 2008-04-21 -----------------------------

2008-04-21 19:55:15 422400 --a------ C:\WINDOWS\system32\CF3994.exe <Not Verified; Microsoft Corporation; System operacyjny Microsoft® Windows®>
2008-04-21 19:55:11 0 d-------- C:\327882R2FWJFW
2008-04-16 17:48:40 53248 -----n--- C:\WINDOWS\Ctregrun.exe <Not Verified; Creative Technology Ltd; Creative Product Registration>
2008-04-16 17:48:36 25088 -----n--- C:\WINDOWS\system32\CTSVCCTL.EXE <Not Verified; Creative Technology Ltd; Creative Service Control>
2008-04-16 17:48:36 44032 -----n--- C:\WINDOWS\system32\CTSVCCDA.EXE <Not Verified; Creative Technology Ltd; Creative Service for CDROM Access>
2008-04-16 17:48:34 0 d-------- C:\Program Files\Creative
2008-04-12 22:10:48 0 d-------- C:\Program Files\SopCast
2008-04-08 17:54:35 0 d-------- C:\Program Files\GIMP-2.0
2008-04-08 15:17:30 0 d-------- C:\Program Files\IrfanView
2008-04-07 21:01:45 0 d-------- C:\Program Files\Common Files\Corel
2008-04-07 17:42:11 2828 --ahs---- C:\WINDOWS\system32\KGyGaAvL.sys
2008-04-07 17:42:11 88 -r-hs---- C:\WINDOWS\system32\A31B0895F7.sys
2008-04-07 17:38:04 0 d-------- C:\Program Files\Corel
2008-04-06 22:46:25 0 d-------- C:\Program Files\Bonjour
2008-04-06 22:40:47 0 d-------- C:\Program Files\Common Files\Macrovision Shared
2008-04-06 18:55:01 0 d-------- C:\Program Files\SuperMemo Power Words!
2008-04-06 18:54:40 327168 --a------ C:\WINDOWS\IsUn0415.exe <Not Verified; InstallShield Software Corporation; InstallShield® unInstaller>
2008-04-06 18:52:49 0 d-------- C:\Program Files\DAEMON Tools Lite
2008-04-06 18:49:17 90112 --a------ C:\Progr_.dll
2008-04-06 18:38:28 0 d-------- C:\Documents and Settings\All Users\Application Data
2008-04-06 18:38:28 0 d-------- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Pro
2008-04-06 18:21:30 717296 --a------ C:\WINDOWS\system32\drivers\sptd.sys
2008-04-05 21:43:01 0 d-------- C:\Program Files\Game Cam
2008-04-05 18:44:44 0 d-------- C:\Program Files\Microsoft SQL Server
2008-04-05 18:44:03 0 d-------- C:\Program Files\Vstplugins
2008-04-05 18:43:50 0 d-------- C:\Program Files\Sony
2008-04-05 18:43:01 0 d-------- C:\Program Files\Sony Setup
2008-04-05 00:10:27 0 d-------- C:\Program Files\Common Files\Xara
2008-04-02 07:23:11 0 d-------- C:\Documents and Settings\All Users\Documents
2008-04-02 07:23:03 0 d-------- C:\Program Files\Common Files\Teleca Shared
2008-04-02 07:22:56 0 d-------- C:\Program Files\Sony Ericsson
2008-04-02 07:20:46 0 d------c- C:\WINDOWS\system32\DRVSTORE
2008-04-02 07:18:47 0 d-------- C:\WINDOWS\Downloaded Installations
2008-03-31 19:01:27 0 d-------- C:\WINDOWS\SoftwareDistribution
2008-03-31 18:57:14 163840 --a------ C:\WINDOWS\BJPSUNST.EXE <Not Verified; CANON INC.; BJPSUNST.EXE>
2008-03-31 18:56:40 306688 --a------ C:\WINDOWS\IsUninst.exe <Not Verified; InstallShield Software Corporation; InstallShield® unInstaller>
2008-03-31 18:56:14 0 d-------- C:\WINDOWS\StartHtmico
2008-03-31 18:55:00 0 d-------- C:\Program Files\Canon
2008-03-31 16:09:37 90112 -ra------ C:\WINDOWS\system32\CNMCP7C.exe <Not Verified; CANON INC.; Canon BJ Raster Printer Driver Installer>
2008-03-30 13:45:42 0 d-------- C:\matura20081
2008-03-29 11:01:46 0 d-------- C:\Program Files\Total Video Converter
2008-03-29 01:11:42 0 d-------- C:\WINDOWS\Sun
2008-03-29 00:59:13 0 d-------- C:\Program Files\Skype
2008-03-29 00:59:12 0 d-------- C:\Program Files\Common Files\Skype
2008-03-29 00:55:38 0 d-------- C:\WINDOWS\Cache
2008-03-29 00:43:47 0 d-------- C:\Program Files\AutoConnect
2008-03-29 00:34:50 0 d-------- C:\DOWNLOADS
2008-03-29 00:34:50 0 d-------- C:\!Temp
2008-03-29 00:34:37 0 d-------- C:\Program Files\BearShare Pro
2008-03-28 23:14:03 0 d-------- C:\WINDOWS\048298C9A4D3490B9FF9AB023A9238F3.TMP
2008-03-28 22:24:21 0 d-------- C:\WINDOWS\pss
2008-03-28 22:17:11 0 d-------- C:\Program Files\NeroInstall.bak
2008-03-28 22:15:11 0 d-------- C:\Program Files\Nero
2008-03-28 22:15:11 0 d-------- C:\Program Files\Common Files\Nero
2008-03-28 22:14:25 0 d-------- C:\WINDOWS\system32\DirectX
2008-03-28 20:16:41 0 d-------- C:\Program Files\uTorrent
2008-03-28 19:46:06 0 d-------- C:\Program Files\Winamp
2008-03-28 18:21:33 0 --a------ C:\WINDOWS\nsreg.dat
2008-03-28 18:18:39 0 d-------- C:\Program Files\Gadu-Gadu
2008-03-28 18:16:03 0 d-------- C:\Program Files\Microsoft Works
2008-03-28 18:15:59 0 d-------- C:\Program Files\MSBuild
2008-03-28 18:15:19 0 d-------- C:\Program Files\Microsoft.NET
2008-03-28 18:13:21 0 d-------- C:\WINDOWS\SHELLNEW
2008-03-28 18:12:56 0 dr-h----- C:\MSOCache
2008-03-28 18:05:40 0 d-------- C:\Program Files\Common Files\Adobe
2008-03-28 18:05:26 0 d-------- C:\Program Files\Media Player Classic
2008-03-28 18:04:54 0 d-------- C:\Program Files\SubEdit-Player
2008-03-28 17:58:33 0 d-------- C:\Program Files\Common Files\ODBC
2008-03-28 17:58:30 0 dr------- C:\Program Files
2008-03-28 17:58:30 0 d-------- C:\Program Files\Common Files
2008-03-28 17:58:30 0 d-------- C:\Program Files\Common Files\SpeechEngines
2008-03-28 17:58:19 59904 --a------ C:\WINDOWS\NOTEPAD.EXE <Not Verified; Microsoft Corporation; System operacyjny Microsoft® Windows®>
2008-03-28 17:58:11 0 d-------- C:\Documents and Settings\All Users\Ulubione
2008-03-28 17:58:11 0 d--h----- C:\Documents and Settings\All Users\Szablony
2008-03-28 17:58:11 0 d-------- C:\Documents and Settings\All Users\Pulpit
2008-03-28 17:58:11 0 dr------- C:\Documents and Settings\All Users\Menu Start
2008-03-28 17:58:11 0 dr------- C:\Documents and Settings\All Users\Dokumenty
2008-03-28 17:57:05 1531904 --a------ C:\WINDOWS\adiras.exe <Not Verified; ; adiras Application>
2008-03-28 17:57:04 127456 --a------ C:\WINDOWS\system32\ipdetect.exe <Not Verified; ; IPDETECT>
2008-03-28 17:57:04 126976 --a------ C:\WINDOWS\system32\coclassfast.dll
2008-03-28 17:57:03 114688 --a------ C:\WINDOWS\system32\unaddrv.exe <Not Verified; Analog Devices.; UnADdrv>
2008-03-28 17:57:03 46892 --a------ C:\WINDOWS\system32\adadix16.dll
2008-03-28 17:57:02 143360 --a------ C:\WINDOWS\autoclk.exe <Not Verified; ; autoclk Application>
2008-03-28 17:56:58 0 d-------- C:\Program Files\SAGEM
2008-03-28 17:56:42 0 d--hs---- C:\WINDOWS\ftpcache
2008-03-28 17:56:13 0 d-------- C:\WINDOWS\system32\CatRoot2
2008-03-28 17:56:13 0 d-------- C:\WINDOWS\system32\CatRoot
2008-03-28 17:56:08 0 dr-h----- C:\Documents and Settings\All Users\Dane aplikacji
2008-03-28 17:55:42 0 d--hs---- C:\System Volume Information
2008-03-28 17:55:42 0 d-------- C:\Documents and Settings
2008-03-28 17:51:07 0 d-------- C:\WINDOWS\system32\Lang
2008-03-28 17:49:56 49152 --a------ C:\WINDOWS\system32\ChCfg.exe
2008-03-28 17:49:46 0 d-------- C:\WINDOWS\system32\RTCOM
2008-03-28 17:49:10 0 d-------- C:\Program Files\Realtek
2008-03-28 17:49:09 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-03-28 17:48:56 520192 --a------ C:\WINDOWS\RtlExUpd.dll <Not Verified; Realtek Semiconductor Corp.; RtlExUpd Dynamic Link Library>
2008-03-28 17:48:56 315392 --a------ C:\WINDOWS\HideWin.exe <Not Verified; Realtek Semiconductor Corp.; HD Audio Hide windows program>
2008-03-28 17:48:55 0 d-------- C:\WINDOWS
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\WinSxS
2008-03-28 17:48:55 0 dr------- C:\WINDOWS\Web
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\twain_32
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\wins
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\wbem
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\usmt
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\spool
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\ShellExt
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\Setup
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\ras
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\PreInstall
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\pl-pl
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\npp
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\mui
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\inetsrv
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\IME
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\icsxml
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\ias
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\export
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\drivers
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\drivers\UMDF
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\drivers\etc
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\drivers\disdn
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\dhcp
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\config
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\3com_dmi
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\3076
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\2052
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\1054
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\1045
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\1042
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\1041
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\1037
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\1033
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\1031
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\1028
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system32\1025
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\system
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\security
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\Resources
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\repair
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\Provisioning
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\PeerNet
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\pchealth
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\Offline Web Pages
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\Network Diagnostic
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\mui
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\msapps
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\Media
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\java
2008-03-28 17:48:55 0 d--hs---- C:\WINDOWS\Installer
2008-03-28 17:48:55 0 d--h----- C:\WINDOWS\inf
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\ime
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\Help
2008-03-28 17:48:55 0 dr--s---- C:\WINDOWS\Fonts
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\Driver Cache
2008-03-28 17:48:55 0 d---s---- C:\WINDOWS\Downloaded Program Files
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\Debug
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\Cursors
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\Connection Wizard
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\Config
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\AppPatch
2008-03-28 17:48:55 0 d-------- C:\WINDOWS\addins
2008-03-28 17:44:02 0 d-------- C:\WINDOWS\nview
2008-03-28 17:43:48 0 d-------- C:\Program Files\Common Files\InstallShield
2008-03-28 17:43:42 0 d-------- C:\NVIDIA
2008-03-28 17:42:59 0 d-------- C:\WINDOWS\system32\appmgmt
2008-03-28 17:11:09 0 d---s---- C:\WINDOWS\system32\Microsoft
2008-03-28 17:11:09 0 d-------- C:\WINDOWS\Prefetch
2008-03-28 17:07:26 0 d-------- C:\WINDOWS\system32\URTTemp
2008-03-28 17:06:57 0 d-------- C:\Program Files\Real Alternative
2008-03-28 17:06:44 0 d-------- C:\Program Files\QuickTime Alternative
2008-03-28 17:06:28 0 d-------- C:\Program Files\Java
2008-03-28 17:06:28 0 d-------- C:\Program Files\Common Files\Java
2008-03-28 17:05:57 0 d--h----- C:\WINDOWS\$hf_mig$
2008-03-28 17:05:40 0 -rahs---- C:\MSDOS.SYS
2008-03-28 17:05:40 0 -rahs---- C:\IO.SYS
2008-03-28 17:05:40 0 --a------ C:\CONFIG.SYS
2008-03-28 17:05:40 0 --a------ C:\AUTOEXEC.BAT
2008-03-28 17:05:27 0 d-------- C:\WINDOWS\system32\dllcache
2008-03-28 17:04:57 0 d--hs---- C:\Documents and Settings\All Users\DRM
2008-03-28 17:04:25 0 d---s---- C:\WINDOWS\Tasks
2008-03-28 17:04:24 0 d-------- C:\Program Files\Common Files\MSSoap
2008-03-28 17:04:21 0 d-------- C:\WINDOWS\system32\Macromed
2008-03-28 17:04:14 0 d-------- C:\Program Files\Movie Maker
2008-03-28 17:04:08 0 d-------- C:\WINDOWS\system32\Restore
2008-03-28 17:04:04 325120 --a------ C:\WINDOWS\system32\mstask.dll <Not Verified; Microsoft Corporation; System operacyjny Microsoft® Windows®>
2008-03-28 17:03:35 21856 --a------ C:\WINDOWS\system32\emptyregdb.dat
2008-03-28 17:03:22 0 d-------- C:\WINDOWS\Registration
2008-03-28 17:03:07 0 d-------- C:\Program Files\Windows Media Connect 2
2008-03-28 17:03:03 0 d-------- C:\Program Files\MSN Gaming Zone
2008-03-28 17:02:59 152576 --a------ C:\WINDOWS\system32\sndvol32.exe <Not Verified; Microsoft Corporation; System operacyjny Microsoft® Windows®>
2008-03-28 17:02:57 122880 --a------ C:\WINDOWS\system32\winmine.exe <Not Verified; Microsoft Corporation; System operacyjny Microsoft® Windows®>
2008-03-28 17:02:57 60416 --a------ C:\WINDOWS\system32\sol.exe <Not Verified; Microsoft Corporation; System operacyjny Microsoft® Windows®>
2008-03-28 17:02:57 83968 --a------ C:\WINDOWS\system32\charmap.exe <Not Verified; Microsoft Corporation; System operacyjny Microsoft® Windows®>
2008-03-28 17:02:57 118272 --a------ C:\WINDOWS\system32\calc.exe <Not Verified; Microsoft Corporation; System operacyjny Microsoft® Windows®>
2008-03-28 17:02:56 131584 --a------ C:\WINDOWS\system32\mshearts.exe <Not Verified; Microsoft Corporation; System operacyjny Microsoft® Windows®>
2008-03-28 17:02:56 58880 --a------ C:\WINDOWS\system32\freecell.exe <Not Verified; Microsoft Corporation; System operacyjny Microsoft® Windows®>
2008-03-28 17:02:49 0 d-------- C:\Program Files\Windows NT
2008-03-28 17:02:48 181248 --a------ C:\WINDOWS\system32\sndrec32.exe <Not Verified; Microsoft Corporation; System operacyjny Microsoft® Windows®>
2008-03-28 17:02:48 442368 --a------ C:\WINDOWS\system32\mspaint.exe <Not Verified; Microsoft Corporation; System operacyjny Microsoft® Windows®>
2008-03-28 17:02:47 543232 --a------ C:\WINDOWS\system32\spider.exe <Not Verified; Microsoft Corporation; System operacyjny Microsoft® Windows®>
2008-03-28 17:02:46 1894400 --a------ C:\WINDOWS\system32\mstscax.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2008-03-28 17:02:46 718336 --a------ C:\WINDOWS\system32\mstsc.exe <Not Verified; Microsoft Corporation; System operacyjny Microsoft® Windows®>
2008-03-28 17:02:45 0 d-------- C:\WINDOWS\system32\MsDtc
2008-03-28 17:02:43 0 d-------- C:\WINDOWS\system32\Com


-- Find3M Report ---------------------------------------------------------------

2008-04-21 18:31:43 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\uTorrent
2008-04-20 10:30:06 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\Skype
2008-04-20 10:29:52 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\skypePM
2008-04-17 00:13:37 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\gtk-2.0
2008-04-16 20:10:02 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\Media Player Classic
2008-04-07 21:05:26 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\Corel
2008-04-07 17:37:51 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\InstallShield
2008-04-06 22:58:52 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\Adobe
2008-04-06 18:50:51 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\DAEMON Tools
2008-04-06 18:39:17 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\DAEMON Tools Pro
2008-04-05 18:48:38 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\Publish Providers
2008-04-05 18:45:05 476484 --a------ C:\WINDOWS\system32\perfh015.dat
2008-04-05 18:45:05 86754 --a------ C:\WINDOWS\system32\perfc015.dat
2008-04-05 18:44:33 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\Sony
2008-04-03 19:33:12 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\Real
2008-04-02 07:23:53 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\Teleca
2008-03-29 20:26:45 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\GetRight Pro
2008-03-29 10:43:42 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\WinRAR
2008-03-28 23:09:33 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\Identities
2008-03-28 22:16:35 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\Nero
2008-03-28 19:59:03 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\Winamp
2008-03-28 18:21:32 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla
2008-03-28 18:19:23 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\Gadu-Gadu
2008-03-28 18:08:56 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\Macromedia
2008-03-28 17:58:11 62 --ahs---- C:\Documents and Settings\Administrator\Dane aplikacji\desktop.ini
2008-03-28 17:06:13 0 d-------- C:\Documents and Settings\Administrator\Dane aplikacji\Sun


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-12-05 02:41]
"nwiz"="nwiz.exe" [2007-12-05 02:41 C:\WINDOWS\system32\nwiz.exe]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2007-12-05 02:41]
"RTHDCPL"="RTHDCPL.EXE" [2008-03-06 18:14 C:\WINDOWS\RTHDCPL.exe]
"Alcmtr"="ALCMTR.EXE" [2005-05-03 19:43 C:\WINDOWS\Alcmtr.exe]
"PDUiP6220DMon"="C:\Program Files\Canon\Memory Card Utility\iP6220D\PDUiP6220DMon.exe" [2005-05-06 18:17]
"Easy-PrintToolBox"="C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.exe" [2004-01-14 03:10]
"@"="" []
"ISUSPM Startup"="C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-06-16 06:03]
"ISUSScheduler"="C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" [2004-06-16 06:03]
"CorelDRAW Graphics Suite 11b"="C:\Program Files\Corel\Corel Graphics 12\Languages\PL\Programs\Registration.exe" [2004-06-23 00:20]
"egui"="C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" [2008-03-13 16:48]
"MSConfig"="C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe" [2007-07-27 21:25]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 02:44]
"AutoConnect"="C:\Program Files\AutoConnect\AutoConnect.exe" [2004-08-28 20:27]
"CTRegRun"="C:\WINDOWS\CTRegRun.EXE" [2006-10-06 14:17]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\runonce]
"nltide_2"=regsvr32 /s /n /i:U shell32
"nltide_3"=rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"DisableStatusMessages"=1 (0x1)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"disableregistrytools"=0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMMyPictures"=1 (0x1)
"NoSMConfigurePrograms"=1 (0x1)
"NoSMHelp"=1 (0x1)
"NoRecentDocsMenu"=1 (0x1)
"NoRecentDocsHistory"=1 (0x1)
"NoStartBanner"=1 (0x1)
"NoLowDiskSpaceChecks"=1 (0x1)
"NoResolveTrack"=1 (0x1)
"LinkResolveIgnoreLinkInfo"=1 (0x1)
"NoResolveSearch"=1 (0x1)

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoSMMyPictures"=1 (0x1)
"NoSMConfigurePrograms"=1 (0x1)
"NoSMHelp"=1 (0x1)
"NoRecentDocsMenu"=1 (0x1)
"NoRecentDocsHistory"=1 (0x1)
"NoStartBanner"=1 (0x1)
"NoLowDiskSpaceChecks"=1 (0x1)
"NoResolveTrack"=1 (0x1)
"LinkResolveIgnoreLinkInfo"=1 (0x1)
"NoResolveSearch"=1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Administrator^Menu Start^Programy^Autostart^Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk]
path=C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk
backup=C:\WINDOWS\pss\Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Adobe Reader Speed Launch.lnk]
path=C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Reader Speed Launch.lnk
backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Adobe Reader Synchronizer.lnk]
path=C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Reader Synchronizer.lnk
backup=C:\WINDOWS\pss\Adobe Reader Synchronizer.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^DSLMON.lnk]
path=C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\DSLMON.lnk
backup=C:\WINDOWS\pss\DSLMON.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^GetRight.lnk]
path=C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\GetRight.lnk
backup=C:\WINDOWS\pss\GetRight.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
"C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTZDetec.exe]
C:\Program Files\Creative\Creative Media Lite\CTZDetec.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
"C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gadu-Gadu]
"C:\Program Files\Gadu-Gadu\gg.exe" /tray

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
"C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
"C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]
"C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
"C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]
"C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
"e:\steam\steam.exe" -silent

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
"C:\Program Files\Winamp\winampa.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalService WebClient LmHosts upnphost SSDPSRV




-- End of Deckard's System Scanner: finished at 2008-04-21 20:01:46 ------------


proszę o pomoc Dołączona grafika

  • 0

#2 Saperqq

Saperqq

    Nowy

  • 3 postów

Napisano 21 04 2008 - 22:48

Powinieneś wyłączyć parę nie potrzebnych na co dzień aplikacji startujących z windowsem, ja bym proponował wyłączyć te:

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.onet.pl/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O4 - HKLM\..\Run: [PDUiP6220DMon] C:\Program Files\Canon\Memory Card Utility\iP6220D\PDUiP6220DMon.exe
O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [CorelDRAW Graphics Suite 11b] C:\Program Files\Corel\Corel Graphics 12\Languages\PL\Programs\Registration.exe /title="CorelDRAW Graphics Suite 12" /date=042208 serial=DR12WUT-1835238-BPS lang=PL
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O11 - Options Group: [TABS] Tabbed Browsing
O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/softwareupdate/su/...031/CTSUEng.cab
O18 - Protocol: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Nero BackItUp Scheduler 3 - Unknown owner - C:\Program Files\Nero\Nero8\Nero
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe


Po tym zabiegu komputer powinien znacznie przyspieszyć dzięki zwiększeniu ilości wolnej pamięci operacyjnej oraz czasu procesora.

  • 0

#3 wncvirus

wncvirus

    Leń !

  • 851 postów

Napisano 22 04 2008 - 10:00

Dodatkowo możesz usunąć leganlego szpiega.Zrobisz to tak ze odpalisz hjt wybierzesz opcje do a system scan only.Zrobi Ci się log i zaznacz kwadraty obok poniższego wspiu i daj fix.Tak samo usuń wpisy które

O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE

Ponad to zrób

SmitfraudFix.
Użyj go z opcji "Clean", czyli wpisz 2 i naciśnij ENTER.
Po jego użyciu może zajść potrzeba ustawiania od nowa tapety (czyli prawoklik na ekranie>>właściwości, itd. )
Daj z niego raport z C:\Repport.txt
[quote]Instrukcja obsługi:
1. Zastartuj komputer do trybu awaryjnego co jest opisane TUTAJ.
(można spróbować najpierw usuwać w Trybie Normalnym -często to się udaje)
2.Uruchom SmitfraudFix.exe ( podwójnie go kliknij)
3. Zainicjuje się linia komend i dostaniesz pierwszy z ekranów z prośbą o "wciśniecie jakiegokolwiek klawisza by kontynuować" więc z klawiatury ENTER:
4. Dostaniesz menu wyboru opcji na niebieskim ekranie: wpisz 2 i naciśnij ENTER
5. Zostanie uruchomione czyszczenie właściwe rozpoczęte od zabicia procesu explorer.exe (zniknie Pulpit i pasek zadań).
Następnie padnie pytanie Do you want to clean the registry? - wpisz z klawiatury Y i ENTER,
co zainicjuje usuwania kluczyków i restrykcji tapetek.
6.W dalszej kolejności narzędzie sprawdzi czy plik wininet.dll jest zainfekowany a jeśli tak, to może paść pytanie o podmianę pliku,
o ile czystą kopię znaleziono: Replace infected file? = Y i ENTER. Jeśli „wininet” nie jest zarażony, to to zostanie pominięte.
7.Finalnie może być wymagany reset komputera by ukończyć sprzątanie.


Po wykonaniu tego daj loga combofix w celu odchudzenia rejestru.
  • 0

#4 Wróżka Zębuszka

Wróżka Zębuszka

    Nowy

  • 2 postów

Napisano 22 04 2008 - 11:16

wieczorem bede z tym walczył i oczywiscie podziele sie wnioskami- dziekuje za pomoc Dołączona grafika

  • 0
Zobacz więcej tematów z tagiem: powolny komputer wolny komputer zamulanie komputera Windows Movie Maker
Wróć do Archiwum


Użytkownicy przeglądający ten temat: 0

0 użytkowników, 0 gości, 0 anonimowych

  1. Forum Komputerowe Tweaks.pl
  2. Społeczność Tweaks.pl
  3. Archiwum
  4. Polityka prywatności
  5. Szukaj
  6. Regulamin Forum ·