x-kom hosting

problem z explorer.exe

sloniuuu87
utworzono
utworzono

Witam! mam problem z aplikacją explorer.exe, gdy włączam komputer zużycie procesora pokazuje mi jakieś 100% i nie chce spaść i właśnie ta aplikacja tyle ciągnie. Mam vistę i laptopa acer 5920. Proszę o pomoc:( Moje gg xxxxxx. Dzięki

//Pomagamy na forum, nie na gg, po to zostało stworzone to forum.

//jesiona

Gość
komentarz
komentarz

antywirus w pierwszej kolejności odpal

sloniuuu87
komentarz
komentarz

przeskanowałem AVG, Kasperskim i NODem i nadal nic....

Mateusz J.
komentarz
komentarz

Sprawdź temperatury poszczególnych podzespołów.

sloniuuu87
komentarz
komentarz

w jaki sposób mam to sprawdzić?

Psycholandia
komentarz
komentarz

Ściągnij program Everest, on pokazuje temperatury.

sloniuuu87
komentarz
komentarz

Procesor 64 C

WDC 44 C

Tak to sie przedstawia...to dobrze czy zle?:)

Aha i zużycie procesora się tak przedstawia że mam 2 rdzeniowy i 1 rdzeń pokazuje zużycie na 0% a drugi w granicach 90%. To może pierwszy rdzeń mi padł??

Mateusz J.
komentarz
komentarz

Jak na laptopa temp. ok.

Spróbuj powyłączać wszystkie możliwe programy jakie masz uruchomione, zobaczymy czy zużycie spadnie.

Pokaż log z programu HijackThis. http://www.forumpc.pl/index.php?showtopic=11017

sloniuuu87
komentarz
komentarz
Logfile of Trend Micro HijackThis v2.0.2Scan saved at 23:36:28, on 2009-06-16Platform: Windows Vista SP1 (WinNT 6.00.1905)MSIE: Internet Explorer v8.00 (8.00.6001.18702)Boot mode: NormalRunning processes:C:\Windows\system32\taskeng.exeC:\Windows\system32\Dwm.exeC:\Windows\Explorer.EXEC:\Program Files\Windows Defender\MSASCui.exeC:\Program Files\Synaptics\SynTP\SynTPStart.exeC:\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exeC:\Acer\Empowering Technology\eAudio\eAudio.exeC:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exeC:\Windows\RtHDVCpl.exeC:\Windows\system32\igfxsrvc.exeC:\Users\SONIU~1\AppData\Local\Temp\RtkBtMnt.exeC:\Program Files\Launch Manager\QtZgAcer.EXEC:\Program Files\Synaptics\SynTP\SynTPEnh.exeC:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exeC:\Program Files\Microsoft Office\Office12\GrooveMonitor.exeC:\Windows\System32\igfxtray.exeC:\Windows\System32\hkcmd.exeC:\Windows\System32\igfxpers.exeC:\Program Files\Java\jre6\bin\jusched.exeC:\Program Files\AVG\AVG8\avgtray.exeC:\Program Files\Winamp\winampa.exeC:\Program Files\Windows Sidebar\sidebar.exeC:\Windows\system32\igfxext.exeC:\Windows\system32\igfxsrvc.exeC:\Windows\ehome\ehtray.exeC:\Windows\ehome\ehmsas.exeC:\Acer\Empowering Technology\ENET\ENMTRAY.EXEC:\Acer\Empowering Technology\EPOWER\EPOWER_DMC.EXEC:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXEC:\Acer\Empowering Technology\eRecovery\ERAGENT.EXEC:\Windows\system32\conime.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\Windows\system32\SearchFilterHost.exeC:\Program Files\Trend Micro\HijackThis\HijackThis.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://pl.intl.acer.yahoo.comR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://pl.intl.acer.yahoo.comR0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dllO1 - Hosts: ::1 localhostO1 - Hosts: 66.98.148.65 auto.search.msn.comO1 - Hosts: 66.98.148.65 auto.search.msn.esO2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dllO2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dllO2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dllO2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dllO2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dllO2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dllO2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dllO2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllO2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dllO2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dllO2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dllO3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dllO3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dllO3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dllO3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dllO3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dllO3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dllO4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hideO4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStartO4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartupO4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInitO4 - HKLM\..\Run: [synTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exeO4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exeO4 - HKLM\..\Run: [eAudio] "C:\Acer\Empowering Technology\eAudio\eAudio.exe"O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exeO4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exeO4 - HKLM\..\Run: [setPanel] C:\Acer\APanel\APanel.cmdO4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXEO4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe"O4 - HKLM\..\Run: [WarReg_PopUp] C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exeO4 - HKLM\..\Run: [PLFSet] rundll32.exe C:\Windows\PLFSet.dll,PLFDefSettingO4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exeO4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exeO4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exeO4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exeO4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startupO4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRunO4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorunO4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exeO4 - HKCU\..\Run: [Nowe Gadu-Gadu] "C:\Program Files\Nowe Gadu-Gadu\gg.exe"O4 - HKCU\..\Run: [ALLUpdate] "C:\Program Files\ALLPlayer\ALLUpdate.exe" "sleep"O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exeO4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM')O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'Default user')O4 - Startup: Orion.lnk = C:\Convesoft\Orion\Messenger.exeO4 - Global Startup: Empowering Technology Launcher.lnk = ?O4 - Global Startup: SETAUDIO.EXEO4 - Global Startup: SETRES.EXEO8 - Extra context menu item: &Winamp Search - C:\ProgramData\Winamp Toolbar\ieToolbar\resources\en-US\local\search.htmlO8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dllO9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dllO9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dllO9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dllO9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Users\Public\Documents\PokerStarsUpdate.exeO9 - Extra button: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exeO9 - Extra 'Tools' menuitem: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exeO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLLO9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Programs\PartyGaming\PartyPoker\RunApp.exe (file missing)O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Programs\PartyGaming\PartyPoker\RunApp.exe (file missing)O9 - Extra button: Unibet Poker - {C53BFCFC-7A54-4627-AEBA-2CD4871FCA97} - C:\Microgaming\Poker\UnibetpokerMPP\MPPoker.exeO9 - Extra button: Bodog Poker - {F47C1DB5-ED21-4dc1-853E-D1495792D4C5} - C:\Program Files\Bodog Poker\BPGame.exe (file missing)O9 - Extra button: UltimateBet - {3EB3B7E8-1466-405A-B5BC-44513AF85E34} - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltimateBet\UltimateBet.lnk (HKCU)O9 - Extra 'Tools' menuitem: UltimateBet - {3EB3B7E8-1466-405A-B5BC-44513AF85E34} - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltimateBet\UltimateBet.lnk (HKCU)O13 - Gopher Prefix: O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} (MksSkanerOnline Class) - http://www.mks.com.pl/skaner/SkanerOnline.cabO16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cabO18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dllO18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dllO20 - AppInit_DLLs: avgrsstx.dllO23 - Service: Norton 2009 Reset (.norton2009Reset) - Unknown owner - C:\ProgramData\Norton\Norton2009Reset.exeO23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exeO23 - Service: eDataSecurity Service - Egis Incorporated - C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exeO23 - Service: eLock Service (eLockService) - Acer Inc. - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exeO23 - Service: eNet Service - Acer Inc. - C:\Acer\Empowering Technology\eNet\eNet Service.exeO23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exeO23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exeO23 - Service: Intel? PROSet/Wireless Event Log (EvtEng) - Intel? Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exeO23 - Service: Intel? Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exeO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exeO23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exeO23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exeO23 - Service: Intel? PROSet/Wireless Registry Service (RegSrvc) - Intel? Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exeO23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exeO23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exeO23 - Service: ePower Service (WMIService) - acer - C:\Acer\Empowering Technology\ePower\ePowerSvc.exeO23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe--End of file - 13184 bytes

To mój log

Gość
komentarz
komentarz
O1 - Hosts: 66.98.148.65 auto.search.msn.comO1 - Hosts: 66.98.148.65 auto.search.msn.esO2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStartO4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartupO4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInitO4 - HKLM\..\Run: [synTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exeO4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exeO4 - HKLM\..\Run: [eAudio] "C:\Acer\Empowering Technology\eAudio\eAudio.exe"O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exeO4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exeO4 - HKLM\..\Run: [setPanel] C:\Acer\APanel\APanel.cmdO4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXEO4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe"O4 - HKLM\..\Run: [WarReg_PopUp] C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exeO4 - HKLM\..\Run: [PLFSet] rundll32.exe C:\Windows\PLFSet.dll,PLFDefSettingO4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startupO4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRunO4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorunO4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exeO4 - HKCU\..\Run: [Nowe Gadu-Gadu] "C:\Program Files\Nowe Gadu-Gadu\gg.exe"O4 - HKCU\..\Run: [ALLUpdate] "C:\Program Files\ALLPlayer\ALLUpdate.exe" "sleep"O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exeO4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM')O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'Default user')O4 - Startup: Orion.lnk = C:\Convesoft\Orion\Messenger.exeO4 - Global Startup: Empowering Technology Launcher.lnk = ?O4 - Global Startup: SETAUDIO.EXEO4 - Global Startup: SETRES.EXEO9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Users\Public\Documents\PokerStarsUpdate.exeO9 - Extra button: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exeO9 - Extra 'Tools' menuitem: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exeO9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Programs\PartyGaming\PartyPoker\RunApp.exe (file missing)O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Programs\PartyGaming\PartyPoker\RunApp.exe (file missing)O9 - Extra button: Unibet Poker - {C53BFCFC-7A54-4627-AEBA-2CD4871FCA97} - C:\Microgaming\Poker\UnibetpokerMPP\MPPoker.exeO9 - Extra button: Bodog Poker - {F47C1DB5-ED21-4dc1-853E-D1495792D4C5} - C:\Program Files\Bodog Poker\BPGame.exe (file missing

Te w/w wpisy sfiksuj w Hijacku:

>>Hijack>>scan(Do a system scan only)>>zaznacz je >>Fix checked.

Pokaż log z DDS + OTList 2: http://www.forumpc.pl/index.php?showtopic=104338&hl=

.

sloniuuu87
komentarz
komentarz
DDS (Ver_09-05-14.01) - NTFSx86  Run by Soniu at 15:47:27,52 on 2009-06-17Internet Explorer: 8.0.6001.18783 BrowserJavaVersion: 1.6.0_13Microsoft® Windows Vista™ Home Premium   6.0.6001.1.1250.48.1033.18.3062.1766 [GMT 2:00]AV: AVG Anti-Virus *On-access scanning enabled* (Updated)   {17DDD097-36FF-435F-9E1B-52D74245D6BF}SP: AVG Anti-Virus *enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}============== Running Processes ===============C:\Windows\system32\wininit.exeC:\Windows\system32\lsm.exeC:\Windows\system32\svchost.exe -k DcomLaunchC:\Windows\system32\svchost.exe -k rpcssC:\Windows\System32\svchost.exe -k secsvcsC:\Windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\Windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\Windows\system32\svchost.exe -k netsvcsC:\Windows\system32\svchost.exe -k GPSvcGroupC:\Windows\system32\SLsvc.exeC:\Windows\system32\svchost.exe -k LocalServiceC:\Windows\system32\svchost.exe -k NetworkServiceC:\Windows\system32\WLANExt.exeC:\Windows\System32\spoolsv.exeC:\Windows\system32\svchost.exe -k LocalServiceNoNetworkC:\PROGRA~1\AVG\AVG8\avgwdsvc.exeC:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exeC:\Acer\Empowering Technology\eLock\Service\eLockServ.exeC:\Acer\Empowering Technology\eNet\eNet Service.exeC:\PROGRA~1\AVG\AVG8\avgam.exeC:\PROGRA~1\AVG\AVG8\avgrsx.exeC:\Program Files\Intel\WiFi\bin\EvtEng.exeC:\PROGRA~1\AVG\AVG8\avgnsx.exeC:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exeC:\Program Files\Common Files\LightScribe\LSSrvc.exeC:\Acer\Mobility Center\MobilityService.exeC:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestrictedC:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exeC:\Program Files\CyberLink\Shared Files\RichVideo.exeC:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exeC:\Windows\system32\svchost.exe -k imgsvcC:\Windows\System32\svchost.exe -k WerSvcGroupC:\Windows\system32\SearchIndexer.exeC:\Windows\system32\DRIVERS\xaudio.exeC:\Acer\Empowering Technology\eRecovery\eRecoveryService.exeC:\Acer\Empowering Technology\eSettings\Service\capuserv.exeC:\Acer\Empowering Technology\ePower\ePowerSvc.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Windows\system32\taskeng.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Windows\system32\wbem\unsecapp.exeC:\Windows\system32\Dwm.exeC:\Windows\system32\taskeng.exeC:\Windows\Explorer.EXEC:\Program Files\Windows Defender\MSASCui.exeC:\Windows\system32\igfxsrvc.exeC:\Program Files\Launch Manager\QtZgAcer.EXEC:\Program Files\Synaptics\SynTP\SynTPEnh.exeC:\Users\SONIU~1\AppData\Local\Temp\RtkBtMnt.exeC:\Program Files\AVG\AVG8\avgtray.exeC:\Program Files\PC Connectivity Solution\ServiceLayer.exeC:\Windows\system32\igfxext.exeC:\Windows\system32\igfxsrvc.exeC:\Program Files\Windows Media Player\wmpnetwk.exeC:\Windows\ehome\ehmsas.exeC:\Acer\Empowering Technology\EPOWER\EPOWER_DMC.EXEC:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXEC:\Acer\Empowering Technology\eRecovery\ERAGENT.EXEC:\Program Files\Nowe Gadu-Gadu\spellchecker_gg.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\Windows\system32\taskeng.exeC:\Windows\system32\taskeng.exeC:\Windows\system32\conime.exeC:\Windows\system32\vssvc.exeC:\Windows\System32\svchost.exe -k swprvC:\Users\Słoniu\Desktop\dds.pif============== Pseudo HJT Report ===============mStart Page = hxxp://pl.intl.acer.yahoo.commDefault_Page_URL = hxxp://pl.intl.acer.yahoo.comuURLSearchHooks: Winamp Search Class: {57bca5fa-5dbb-45a2-b558-1755c3f6253b} - c:\program files\winamp toolbar\winamptb.dllmURLSearchHooks: Winamp Search Class: {57bca5fa-5dbb-45a2-b558-1755c3f6253b} - c:\program files\winamp toolbar\winamptb.dllmURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg8\toolbar\IEToolbar.dllBHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dllBHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dllBHO: Winamp Toolbar Loader: {25cee8ec-5730-41bc-8b58-22ddc8ab8c20} - c:\program files\winamp toolbar\winamptb.dllBHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dllBHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No FileBHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dllBHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dllBHO: ShowBarObj Class: {83a2f9b1-01a2-4aa5-87d1-45b6b8505e96} - c:\acer\empowering technology\edatasecurity\x86\ActiveToolBand.dllBHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dllBHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg8\toolbar\IEToolbar.dllBHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dllBHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - c:\program files\windows live\toolbar\wltcore.dllTB: Acer eDataSecurity Management: {5cbe3b7c-1e47-477e-a7dd-396db0476e29} - c:\acer\empowering technology\edatasecurity\x86\eDStoolbar.dllTB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dllTB: DAEMON Tools Toolbar: {32099aac-c132-4136-9e9a-4e364a424e17} - c:\program files\daemon tools toolbar\DTToolbar.dllTB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files\windows live\toolbar\wltcore.dllTB: Winamp Toolbar: {ebf2ba02-9094-4c5a-858b-bb198f3d8de2} - c:\program files\winamp toolbar\winamptb.dllTB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg8\toolbar\IEToolbar.dllTB: {A057A204-BACC-4D26-9990-79A187E2698E} - No FilemRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hidemRun: [NvSvc] RUNDLL32.EXE c:\windows\system32\nvsvc.dll,nvsvcStartmRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartupmRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInitmRun: [synTPStart] c:\program files\synaptics\syntp\SynTPStart.exemRun: [eDataSecurity Loader] c:\acer\empowering technology\edatasecurity\x86\eDSloader.exemRun: [eAudio] "c:\acer\empowering technology\eaudio\eAudio.exe"mRun: [iAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exemRun: [RtHDVCpl] RtHDVCpl.exemRun: [setPanel] c:\acer\apanel\APanel.cmdmRun: [LManager] c:\progra~1\launch~1\QtZgAcer.EXEmRun: [PlayMovie] "c:\program files\acer arcade deluxe\play movie\PMVService.exe"mRun: [WarReg_PopUp] c:\program files\acer\wr_popup\WarReg_PopUp.exemRun: [eRecoveryService] mRun: [PLFSet] rundll32.exe c:\windows\PLFSet.dll,PLFDefSettingmRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"mRun: [igfxTray] c:\windows\system32\igfxtray.exemRun: [HotKeysCmds] c:\windows\system32\hkcmd.exemRun: [Persistence] c:\windows\system32\igfxpers.exemRun: [sunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exemRun: [WinampAgent] "c:\program files\winamp\winampa.exe"mRun: [PCSuiteTrayApplication] c:\program files\nokia\nokia pc suite 6\LaunchApplication.exe -startupdRun: [Nokia.PCSync] c:\program files\nokia\nokia pc suite 6\PcSync2.exe /NoDialogStartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\empowe~1.lnk - c:\acer\empowering technology\eAPLauncher.exeStartupFolder: c:\programdata\microsoft\windows\start menu\programs\startup\SETAUDIO.EXEStartupFolder: c:\programdata\microsoft\windows\start menu\programs\startup\SETRES.EXEmPolicies-system: EnableUIADesktopToggle = 0 (0x0)IE: &Winamp Search - c:\programdata\winamp toolbar\ietoolbar\resources\en-us\local\search.htmlIE: E&ksportuj do programu Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000IE: {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - c:\users\public\documents\PokerStarsUpdate.exeIE: {49783ED4-258D-4f9f-BE11-137C18D3E543} - c:\poker\titan poker\casino.exeIE: {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - c:\programs\partygaming\partypoker\RunApp.exeIE: {C53BFCFC-7A54-4627-AEBA-2CD4871FCA97} - c:\microgaming\poker\unibetpokermpp\MPPoker.exeIE: {F47C1DB5-ED21-4dc1-853E-D1495792D4C5} - c:\program files\bodog poker\BPGame.exeIE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dllIE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dllIE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLLDPF: {68282C51-9459-467B-95BF-3C0E89627E55} - hxxp://www.mks.com.pl/skaner/SkanerOnline.cabDPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cabDPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cabDPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cabDPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cabHandler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dllHandler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dllNotify: igfxcui - igfxdev.dllAppInit_DLLs: avgrsstx.dllSEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll================= FIREFOX ===================FF - ProfilePath - c:\users\soniu~1\appdata\roaming\mozilla\firefox\profiles\b854hmqe.default\FF - prefs.js: browser.search.defaulturl - hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query=FF - prefs.js: browser.search.selectedEngine - GoogleFF - prefs.js: browser.startup.homepage - www.google.plFF - prefs.js: keyword.URL - hxxp://search.live.com/results.aspx?FORM=IEFM1&q=FF - component: c:\program files\avg\avg8\firefox\components\avgssff.dllFF - component: c:\program files\avg\avg8\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils2.dllFF - component: c:\program files\avg\avg8\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils3.dllFF - component: c:\program files\avg\avg8\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils35.dllFF - component: c:\program files\avg\avg8\toolbar\firefox\avg@igeared\components\xpavgtbapi.dllFF - component: c:\users\słoniu\appdata\roaming\mozilla\firefox\profiles\b854hmqe.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}\components\WinampTBPlayer.dllFF - plugin: c:\program files\microsoft\office live\npOLW.dllFF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll============= SERVICES / DRIVERS ===============R0 AvgRkx86;avgrkx86.sys;c:\windows\system32\drivers\avgrkx86.sys [2009-4-22 12552]R1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2009-4-22 327688]R1 AvgTdiX;AVG8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2009-4-22 108552]R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\drivers\klim6.sys [2008-3-26 20496]R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};{49DE1C67-83F8-4102-99E0-C16DCC7EEC796};c:\program files\acer arcade deluxe\play movie\000.fcl [2009-2-5 41456]R2 avg8wd;AVG8 WatchDog;c:\progra~1\avg\avg8\avgwdsvc.exe [2009-4-23 298776]R2 SeaPort;SeaPort;c:\program files\microsoft\search enhancement pack\seaport\SeaPort.exe [2009-5-19 240512]R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2008-3-13 179712]R3 NETw5v32;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\drivers\NETw5v32.sys [2008-11-17 3668480]R3 winbondcir;Winbond IR Transceiver;c:\windows\system32\drivers\winbondcir.sys [2008-3-13 43008]S2 .norton2009Reset;Norton 2009 Reset;c:\programdata\norton\Norton2009Reset.exe [2009-2-12 280833]S3 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr.sys [2009-4-2 55280]S3 fsssvc;Windows Live Family Safety;c:\program files\windows live\family safety\fsssvc.exe [2009-2-6 533360]============== File Associations ===============regfile="regedit.exe" "%1"=============== Created Last 30 ================2009-06-16 23:36	<DIR>	--d-----	c:\program files\Trend Micro2009-06-16 20:38	<DIR>	--d-----	c:\program files\Lavalys2009-06-16 18:29	<DIR>	--d-----	c:\programdata\AVG Security Toolbar2009-06-16 18:29	<DIR>	--d-----	c:\progra~2\AVG Security Toolbar2009-06-16 18:19	72,704	a-------	c:\windows\system32\admparse.dll2009-06-16 15:18	<DIR>	--d-----	c:\program files\ESET2009-06-16 11:21	<DIR>	--d-----	c:\program files\SkanerOnline2009-06-14 15:40	428,544	a-------	c:\windows\system32\EncDec.dll2009-06-14 15:40	293,376	a-------	c:\windows\system32\psisdecd.dll2009-06-14 15:40	217,088	a-------	c:\windows\system32\psisrndr.ax2009-06-14 15:40	177,664	a-------	c:\windows\system32\mpg2splt.ax2009-06-14 15:40	80,896	a-------	c:\windows\system32\MSNP.ax2009-06-14 15:32	2,033,152	a-------	c:\windows\system32\win32k.sys2009-06-14 15:32	784,896	a-------	c:\windows\system32\rpcrt4.dll2009-06-14 15:31	636,928	a-------	c:\windows\system32\localspl.dll2009-06-11 15:13	<DIR>	--d-----	c:\users\soniu~1\appdata\roaming\Moje pliki Bitwy o Śródziemie™ II2009-06-09 16:19	<DIR>	--d-----	C:\Casino2009-05-28 19:34	<DIR>	--d-----	c:\program files\PKR2009-05-28 16:30	<DIR>	--d-----	c:\program files\bwin2009-05-28 16:12	<DIR>	--d-----	c:\program files\Poker Heaven2009-05-28 15:30	<DIR>	--d-----	C:\Poker Application2009-05-26 00:02	<DIR>	--d-h---	c:\windows\msdownld.tmp2009-05-26 00:02	<DIR>	--d-----	c:\windows\system32\directx2009-05-25 22:57	<DIR>	--d-----	c:\program files\Microsoft WSE2009-05-24 17:52	<DIR>	--d-----	c:\users\soniu~1\appdata\roaming\PacificPoker2009-05-24 17:47	<DIR>	--d-----	c:\program files\PacificPoker==================== Find3M  ====================2009-06-17 15:47	2,359,296	a--sh---	c:\users\słoniu\ntuser.dat2009-06-16 18:29	327,688	a-------	c:\windows\system32\drivers\avgldx86.sys2009-05-28 19:13	8,224	a-------	c:\windows\system32\GDIPFONTCACHEV1.DAT2009-05-09 07:50	915,456	a-------	c:\windows\system32\wininet.dll2009-05-09 07:34	71,680	a-------	c:\windows\system32\iesetup.dll2009-05-07 23:28	0	a---h---	c:\windows\system32\drivers\Msft_User_PCCSWpdDriver_01_05_00.Wdf2009-05-07 23:28	143,360	a-------	c:\windows\inf\infstrng.dat2009-05-07 23:28	51,200	a-------	c:\windows\inf\infpub.dat2009-05-07 23:26	86,016	a-------	c:\windows\inf\infstor.dat2009-04-30 10:13	11,952	a-------	c:\windows\system32\avgrsstx.dll2009-04-30 10:13	108,552	a-------	c:\windows\system32\drivers\avgtdix.sys2009-04-30 10:13	12,552	a-------	c:\windows\system32\drivers\avgrkx86.sys2009-02-05 17:22	665,600	a-------	c:\windows\inf\drvindex.dat2008-01-21 04:43	174	a--sh---	c:\program files\desktop.ini2006-11-02 14:42	287,440	a-------	c:\windows\inf\perflib\0409\perfi.dat2006-11-02 14:42	287,440	a-------	c:\windows\inf\perflib\0409\perfh.dat2006-11-02 14:42	30,674	a-------	c:\windows\inf\perflib\0409\perfd.dat2006-11-02 14:42	30,674	a-------	c:\windows\inf\perflib\0409\perfc.dat2006-11-02 11:20	287,440	a-------	c:\windows\inf\perflib\0000\perfi.dat2006-11-02 11:20	287,440	a-------	c:\windows\inf\perflib\0000\perfh.dat2006-11-02 11:20	30,674	a-------	c:\windows\inf\perflib\0000\perfd.dat2006-11-02 11:20	30,674	a-------	c:\windows\inf\perflib\0000\perfc.dat============= FINISH: 15:47:56,11 ===============UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH ITDDS (Ver_09-05-14.01)Microsoft® Windows Vista™ Home Premium Boot Device: \Device\HarddiskVolume2Install Date: 2005-05-07 17:24:05System Uptime: 2009-06-17 15:29:57 (0 hours ago)Motherboard: Acer, Inc. |  | Chapala		 Processor: Intel® Core2 Duo CPU	 T5750  @ 2.00GHz | U2E1 | 2000/166mhz==== Disk Partitions =========================C: is FIXED (NTFS) - 111 GiB total, 14,354 GiB free.D: is FIXED (NTFS) - 108 GiB total, 8,687 GiB free.E: is CDROM ()F: is CDROM ()==== Disabled Device Manager Items =============Class GUID: {eec5ad98-8080-425f-922a-dabf3de3f69a}Description: Nokia 6300Device ID: ROOT\WPD\0000Manufacturer: NokiaName: Nokia 6300PNP Device ID: ROOT\WPD\0000Service: WUDFRd==== System Restore Points ===================RP262: 2009-06-09 17:51:05 - Scheduled CheckpointRP264: 2009-06-11 15:11:39 - Installed DirectXRP265: 2009-06-14 15:40:11 - Windows UpdateRP266: 2009-06-15 09:15:44 - Windows UpdateRP267: 2009-06-15 18:47:34 - Windows UpdateRP268: 2009-06-16 17:59:15 - Windows UpdateRP270: 2009-06-16 18:25:50 - Avg8 UpdateRP272: 2009-06-16 18:29:09 - Avg8 Update==== Installed Programs ======================Acer Arcade DeluxeAcer Crystal Eye webcamAcer eAudio ManagementAcer eDataSecurity ManagementAcer eLock ManagementAcer Empowering TechnologyAcer eNet ManagementAcer ePower ManagementAcer ePresentation ManagementAcer eSettings ManagementAcer GridVistaAcer Mobility Center Plug-InAcer ScreenSaverActivation Assistant for the 2007 Microsoft Office suitesAdobe Flash Player 10 PluginAdobe Flash Player ActiveXAdobe Reader 8.1.4Adobe Shockwave Player 11Aktualizacja produktu Microsoft Office Excel 2007 Help (KB963678)Aktualizacja produktu Microsoft Office Powerpoint 2007 Help (KB963669)Aktualizacja produktu Microsoft Office Word 2007 Help (KB963665)ALLPlayer V3.XArchiwizator WinRARASIO4ALLµTorrentAVG 8.5Betsson (remove only)Betsson Tournament Director's Poker ClockBitwa o Śródziemie™ IIBroadcom Gigabit Integrated Controllerbwin Poker (remove only)Call of Duty® 2Choice GuardCollabDAEMON Tools ToolbarESET Online Scanner v3EVEREST Home Edition v2.20Everest Poker (Remove Only)Expekt PokerFL Studio 8Full Tilt PokerGameShadowGameSpy ArcadeHDAUDIO Soft Data Fax Modem with SmartCPHijackThis 2.0.2Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)IL Download ManagerIntel PROSet WirelessIntel® Graphics Media Accelerator DriverIntel® TV WizardIntel® Matrix Storage ManagerJava 6 Update 13Junk Mail filter updateLaunch ManagerLightScribe  1.4.142.1MafiaMansionPokerMicrosoft .NET Framework 3.5 SP1Microsoft Application Error ReportingMicrosoft Games for Windows - LIVE RedistributableMicrosoft Office 2007 Service Pack 2 (SP2)Microsoft Office Access MUI (Polish) 2007Microsoft Office Enterprise 2007Microsoft Office Excel MUI (Polish) 2007Microsoft Office Groove MUI (Polish) 2007Microsoft Office InfoPath MUI (Polish) 2007Microsoft Office Live Add-in 1.3Microsoft Office OneNote MUI (Polish) 2007Microsoft Office Outlook ConnectorMicrosoft Office Outlook MUI (Polish) 2007Microsoft Office PowerPoint MUI (Polish) 2007Microsoft Office Proof (English) 2007Microsoft Office Proof (German) 2007Microsoft Office Proof (Polish) 2007Microsoft Office Proofing (Polish) 2007Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)Microsoft Office Publisher MUI (Polish) 2007Microsoft Office Shared MUI (Polish) 2007Microsoft Office Word MUI (Polish) 2007Microsoft Search Enhancement PackMicrosoft SilverlightMicrosoft SQL Server 2005 Compact Edition [ENU]Microsoft Sync Framework Runtime Native v1.0 (x86)Microsoft Sync Framework Services Native v1.0 (x86)Microsoft Visual C++ 2005 RedistributableMicrosoft WorksMicrosoft WSE 3.0 RuntimeMozilla Firefox (3.0.11)MSVCRTMSXML 4.0 SP2 (KB954430)NAPIPROJEKT 1.0.6.2Nokia Connectivity Cable DriverNokia PC SuiteNowe Gadu-GaduNTI Backup NOW! 4.7NTI CD & DVD-MakeroDC (remove only)Oprogramowanie Intel® PROSet/Wireless WiFiPacific PokerParadisePokerPC Connectivity SolutionPKRPoiZonePoker HeavenPokerStarsPowerProducerRealtek High Definition Audio DriverRICOH R5C83x/84x Flash Media Controller Driver Ver.3.52.02Security Update for 2007 Microsoft Office System (KB969559)Security Update for 2007 Microsoft Office System (KB969679)Security Update for Microsoft Office Excel 2007 (KB969682)Security Update for Microsoft Office PowerPoint 2007 (KB957789)Security Update for Microsoft Office system 2007 (KB969613)Security Update for Microsoft Office Word 2007 (KB969604)Skaner on-line mks_virSynaptics Pointing Device DriverSystem Requirements LabThe Sims™ 3Titan PokerToxic BiohazardUltimateBetUnibet PokerUpdate for 2007 Microsoft Office System (KB967642)Update for Microsoft Office Outlook 2007 (KB969907)Update for Outlook 2007 Junk Email Filter (kb970012)Victor ChandlerWinampWinamp ToolbarWinbond CIR DriversWindows Driver Package - Nokia Modem  (11/03/2006 6.82.0.1)Windows Live CallWindows Live Communications PlatformWindows Live EssentialsWindows Live Family SafetyWindows Live MailWindows Live MessengerWindows Live Movie Maker BetaWindows Live Photo GalleryWindows Live Sign-in AssistantWindows Live SyncWindows Live ToolbarWindows Live Upload ToolWindows Live WriterWindows Media Player Firefox PluginXP Codec PackYahoo! Toolbar==== Event Viewer Messages From Past Week ========2009-06-15 09:17:08, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.2009-06-15 09:17:08, Error: Service Control Manager [7000]  - The Windows Search service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.2009-06-15 09:17:08, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1053" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}2009-06-14 13:46:06, Error: EventLog [6008]  - The previous system shutdown at 13:45:03 on 2009-06-14 was unexpected.2009-06-14 10:33:41, Error: EventLog [6008]  - The previous system shutdown at 23:06:32 on 2009-06-13 was unexpected.2009-06-13 17:18:53, Error: Server [2505]  - The server could not bind to the transport \Device\NetBT_Tcpip_{9E30246A-D319-4DAE-8F7E-6A8D3270C113} because another computer on the network has the same name.  The server could not start.2009-06-13 17:18:46, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 82.160.130.102 for the Network Card with network address 001F3C2A97B4 has been denied by the DHCP server 0.0.0.0 (The DHCP Server sent a DHCPNACK message).2009-06-13 05:34:00, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the NlaSvc service.2009-06-11 22:17:51, Error: EventLog [6008]  - The previous system shutdown at 22:16:10 on 2009-06-11 was unexpected.2009-06-11 20:26:27, Error: Microsoft-Windows-Dhcp-Client [1002]  - The IP address lease 82.160.130.111 for the Network Card with network address 001F3C2A97B4 has been denied by the DHCP server 0.0.0.0 (The DHCP Server sent a DHCPNACK message).2009-06-10 21:16:43, Error: EventLog [6008]  - The previous system shutdown at 21:15:11 on 2009-06-10 was unexpected.2009-06-10 08:52:08, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Norton 2009 Reset service to connect.2009-06-10 08:52:08, Error: Service Control Manager [7000]  - The Parallel port driver service failed to start due to the following error:  The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.2009-06-10 08:52:08, Error: Service Control Manager [7000]  - The Norton 2009 Reset service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.==== End Of File ===========================[code]

To był DDS i Attach, a tego OTLisIt2 nie mogę nigdzie znaleźć do pobrania, ten link z forum nie działa.

Gość
komentarz
komentarz

W logach nic nie ma. :niepewny:

1. Posprzątaj po ComboFixie i różnych narzędziach >>> OTCleanIt.

2. Użyj programu Malwarebytes.

Wciskamy Skanuj, wybieramy dyski do skanowania i Rozpoczynamy skanowanie, na końcu wciskamy Usuń zaznaczone jak będą i Ok.

Wrzuć wygenerowany raport po usuwaniu MBAMem.

.

sloniuuu87
komentarz
komentarz

po użyciu Malwarebites zużycie procesora spadło mi do 30 paru%...explorer.exe już nic nie ciągnie lecz dalej te 30 % pozostaje, a taskmanager nie pokazuje co tyle ciągnie...wszystkie aplikacje na poziomie 0%..jest jakiś sposób żeby sprawdzić gdzie te 30 % jest w użyciu?

i Malwarebites znalazło mi jakiegoś trojana i coś tam jeszcze czego NOD, Kasperski i AVG nie zrobiły...jak to jest możliwe?

Mateusz J.
komentarz
komentarz

Kliknij w menadżerze zadań: Pokaż procesy wszystkich użytkowników.

Wtedy sprawdź co ma tyle %.

sloniuuu87
komentarz
komentarz

W menedżerze śmiga takie coś jak System Idle Process 90% około....co to takiego??

Mateusz J.
komentarz
komentarz

To jest proces bezczynności.

Czyli 10% jest w użyciu.

sloniuuu87
komentarz
komentarz

natomiast liczniki nadal użycie procka pokazują na granicy 80-90%:( wszystko muli:( pozostaje mi chyba format:(

Mateusz J.
komentarz
komentarz

Pokaż zrzut ekranowy menadżera zadań z zakładki procesy.

sloniuuu87
komentarz
komentarz

już nie trzeba bo coś zaskoczyło i jest już normalnie:) dzięki serdeczne za pomoc:)

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.