x-kom hosting

Komputer zamula, wykryto wirusa

delws
utworzono
utworzono (edytowane)

Witam
Mam pewien problem ze swoim laptopem.. Ok. miesiąc temu zainstalowalem antywirusa i wykrylo wirusa ( chyba trojan) usunelo go bez problemu ale po ok. 2-3 dniach windows zaczal sie uruchamiac ok. 10 min, a jak sie wgral to jeszcze przez ok 2 min byl lekko zamulony. Zrobilem format calego dysku i zainstalowalem Viste, która również chodziła 2-3 dni i to samo. Sprawdzalem podzespoly laptopa programem diagnostycznym i nie wykryło żadnych błędów. Na XP to samo co na viscie a win 7 w ogole sie wgrac juz nie chce... Proszę o pomoc. Z góry dziękuję.

MarekM25
komentarz
komentarz

Daj loga z OTL.

delws
komentarz
komentarz

Nie wiem czy o to chodziło ale wstawiam:

[color="#FF0000"]//Logi wstawiamy w tagi !!!
//Zmieniam
//Tomek01[/color]


[log][code]OTL logfile created on: 2008-09-15 18:35:20 - Run 1
OTL by OldTimer - Version 3.2.9.1 Folder = C:\Users\Kuba\Downloads
Windows Vista Home Basic Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 33,00% Memory free
5,00 Gb Paging File | 4,00 Gb Available in Paging File | 67,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 59,11 Gb Total Space | 46,79 Gb Free Space | 79,17% Space Free | Partition Type: NTFS
Drive D: | 238,98 Gb Total Space | 224,24 Gb Free Space | 93,83% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: KUBA-PC
Current User Name: Kuba
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2010-07-23 04:15:35 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010-07-23 04:15:35 | 000,014,808 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
PRC - [2010-07-22 01:24:16 | 012,477,024 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe
PRC - [2010-07-18 13:16:39 | 017,317,008 | ---- | M] (Blizzard Entertainment) -- D:\gry\World of Warcraft TBC\Wow.exe
PRC - [2008-09-15 18:35:07 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\Kuba\Downloads\OTL.exe
PRC - [2008-01-21 04:34:05 | 002,927,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008-01-21 04:33:00 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe


[color=#E56717]========== Modules (SafeList) ==========[/color]

MOD - [2008-09-15 18:35:07 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\Kuba\Downloads\OTL.exe
MOD - [2008-01-21 04:34:21 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx
MOD - [2008-01-21 04:33:14 | 001,684,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2008-01-21 04:33:00 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - [2008-09-10 09:35:00 | 007,587,328 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2008-08-25 03:22:52 | 000,015,872 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvsmu.sys -- (nvsmu)
DRV - [2008-08-18 18:58:42 | 000,145,952 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor32.sys -- (nvstor32)
DRV - [2008-08-18 18:58:42 | 000,133,152 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvrd32.sys -- (nvrd32)
DRV - [2008-07-08 03:32:52 | 001,050,656 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvmfdx32.sys -- (NVENETFD)
DRV - [2008-06-30 19:56:12 | 000,917,504 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2008-05-27 13:55:00 | 000,173,576 | ---- | M] (AMD Technologies Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ahcix86s.sys -- (ahcix86s)
DRV - [2008-05-22 17:22:10 | 000,392,512 | ---- | M] (LSI Corporation, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasr.sys -- (MegaSR)
DRV - [2008-01-21 04:32:53 | 000,149,560 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)
DRV - [2008-01-21 04:32:53 | 000,031,288 | ---- | M] (LSI Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)
DRV - [2008-01-21 04:32:52 | 000,101,432 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)
DRV - [2008-01-21 04:32:52 | 000,074,808 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2008-01-21 04:32:52 | 000,040,504 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)
DRV - [2008-01-21 04:32:51 | 000,300,600 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)
DRV - [2008-01-21 04:32:50 | 001,122,360 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)
DRV - [2008-01-21 04:32:50 | 000,118,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel(R)
DRV - [2008-01-21 04:32:50 | 000,079,928 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)
DRV - [2008-01-21 04:32:49 | 000,235,064 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)
DRV - [2008-01-21 04:32:49 | 000,130,616 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2008-01-21 04:32:49 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)
DRV - [2008-01-21 04:32:49 | 000,096,312 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV - [2008-01-21 04:32:49 | 000,079,416 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arc.sys -- (arc)
DRV - [2008-01-21 04:32:48 | 000,342,584 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)
DRV - [2008-01-21 04:32:48 | 000,096,312 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2008-01-21 04:32:47 | 000,102,968 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid)
DRV - [2008-01-21 04:32:47 | 000,045,112 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)
DRV - [2008-01-21 04:32:46 | 000,422,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV - [2008-01-21 04:32:45 | 000,238,648 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)
DRV - [2008-01-21 04:32:21 | 000,020,024 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)
DRV - [2008-01-21 04:32:21 | 000,019,000 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)
DRV - [2008-01-21 04:32:21 | 000,017,464 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)
DRV - [2007-11-30 11:56:26 | 000,100,192 | ---- | M] (LSI Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2007-09-29 14:30:52 | 000,065,024 | ---- | M] (JMicron Technology Corp.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\jraid.sys -- (JRAID)
DRV - [2006-11-02 11:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV - [2006-11-02 11:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)
DRV - [2006-11-02 11:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV - [2006-11-02 11:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)
DRV - [2006-11-02 11:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)
DRV - [2006-11-02 11:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)
DRV - [2006-11-02 11:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)
DRV - [2006-11-02 11:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)
DRV - [2006-11-02 11:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)
DRV - [2006-11-02 11:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)
DRV - [2006-11-02 11:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)
DRV - [2006-11-02 10:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006-11-02 10:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)
DRV - [2006-11-02 10:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)
DRV - [2006-11-02 10:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)
DRV - [2006-11-02 10:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)
DRV - [2006-11-02 10:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006-11-02 09:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]


FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2008-09-14 16:22:10 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2008-09-14 16:22:09 | 000,000,000 | ---D | M]

[2008-09-14 16:27:48 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\mozilla\Extensions
[2008-09-14 16:27:48 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\mozilla\Firefox\Profiles\x4q7t1bq.default\extensions
[2008-09-14 16:22:09 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010-07-23 02:41:44 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-07-23 02:41:44 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-07-23 02:41:44 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-07-23 02:41:44 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-07-23 02:41:44 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-07-23 02:41:44 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2006-09-18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.)
O4 - HKCU..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img22.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img22.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{bae2fffb-8267-11dd-b6f0-001e330d4916}\Shell\AutoRun\command - "" = F:\1weicxa.com -- File not found
O33 - MountPoints2\{bae2fffb-8267-11dd-b6f0-001e330d4916}\Shell\explore\Command - "" = F:\1weicxa.com -- File not found
O33 - MountPoints2\{bae2fffb-8267-11dd-b6f0-001e330d4916}\Shell\open\Command - "" = F:\1weicxa.com -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 90 Days ==========[/color]

[2008-11-11 18:04:21 | 000,000,000 | ---D | C] -- C:\Windows\Users
[2008-11-11 18:03:34 | 000,173,576 | ---- | C] (AMD Technologies Inc.) -- C:\Windows\System32\drivers\ahcix86s.sys
[2008-09-15 02:00:16 | 000,000,000 | -HSD | C] -- C:\Boot
[2008-09-15 01:59:59 | 000,000,000 | ---D | C] -- C:\Windows\PANTHER
[2008-09-15 01:59:59 | 000,000,000 | ---D | C] -- C:\Windows\System32\OEM
[2008-09-15 01:59:10 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\pl-PL
[2008-09-15 01:59:10 | 000,000,000 | ---D | C] -- C:\Windows\pl-PL
[2008-09-15 01:59:09 | 000,000,000 | ---D | C] -- C:\Windows\System32\pl
[2008-09-15 01:58:06 | 000,010,752 | ---- | C] (Agere Systems) -- C:\Windows\System32\drivers\pl-PL\ltmdmnt.sys.mui
[2008-09-15 01:58:06 | 000,006,656 | ---- | C] (Marvell) -- C:\Windows\System32\drivers\pl-PL\yk60x86.sys.mui
[2008-09-15 01:57:44 | 000,004,608 | ---- | C] (N-trig Innovative Technologies) -- C:\Windows\System32\drivers\pl-PL\ntrigdigi.sys.mui
[2008-09-15 01:57:39 | 000,002,560 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\pl-PL\BRPARWDM.SYS.mui
[2008-09-15 01:57:35 | 000,004,608 | ---- | C] (Gemplus) -- C:\Windows\System32\drivers\pl-PL\grserial.sys.mui
[2008-09-15 01:57:35 | 000,004,096 | ---- | C] (SCM Microsystems, Inc.) -- C:\Windows\System32\drivers\pl-PL\pscr.sys.mui
[2008-09-15 01:57:35 | 000,004,096 | ---- | C] (SCM Microsystems) -- C:\Windows\System32\drivers\pl-PL\SCR111.sys.mui
[2008-09-15 01:57:35 | 000,003,584 | ---- | C] (SCM Microsystems, Inc.) -- C:\Windows\System32\drivers\pl-PL\stcusb.sys.mui
[2008-09-15 01:57:35 | 000,003,584 | ---- | C] (Gemplus) -- C:\Windows\System32\drivers\pl-PL\gpr400.sys.mui
[2008-09-15 01:57:35 | 000,003,072 | ---- | C] (OMNIKEY) -- C:\Windows\System32\drivers\pl-PL\cxbp0wdm.sys.mui
[2008-09-15 01:57:35 | 000,003,072 | ---- | C] (OMNIKEY AG) -- C:\Windows\System32\drivers\pl-PL\cmbp0wdm.sys.mui
[2008-09-15 01:57:28 | 000,010,752 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\pl-PL\BrSerId.sys.mui
[2008-09-14 16:27:45 | 000,000,000 | ---D | C] -- C:\Users\Kuba\AppData\Roaming\Mozilla
[2008-09-14 16:27:45 | 000,000,000 | ---D | C] -- C:\Users\Kuba\AppData\Local\Mozilla
[2008-09-14 16:22:08 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2008-09-14 16:20:50 | 000,000,000 | ---D | C] -- C:\Users\Kuba\AppData\Roaming\Adobe
[2008-09-14 16:20:47 | 000,000,000 | ---D | C] -- C:\Users\Kuba\AppData\Local\cache
[2008-09-14 16:20:46 | 000,000,000 | ---D | C] -- C:\Users\Kuba\AppData\Roaming\Macromedia
[2008-09-14 16:20:23 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2008-09-14 16:20:02 | 000,000,000 | ---D | C] -- C:\Users\Kuba\AppData\Roaming\Gadu-Gadu 10
[2008-09-14 16:20:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Gadu-Gadu 10
[2008-09-14 16:19:59 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2008-09-14 16:19:20 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10
[2008-09-14 16:17:18 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2008-09-14 16:15:17 | 000,917,504 | ---- | C] (Atheros Communications, Inc.) -- C:\Windows\System32\drivers\athr.sys
[2008-09-14 16:15:17 | 000,917,504 | ---- | C] (Atheros Communications, Inc.) -- C:\Windows\System32\athr.sys
[2008-09-14 16:15:17 | 000,393,216 | ---- | C] (Atheros) -- C:\Windows\System32\athihvs.dll
[2008-09-14 16:15:17 | 000,376,832 | ---- | C] (Atheros) -- C:\Windows\System32\S64CPA.exe
[2008-09-14 16:15:17 | 000,053,248 | ---- | C] (Atheros) -- C:\Windows\System32\athihvui.dll
[2008-09-14 16:15:17 | 000,000,000 | ---D | C] -- C:\Windows\System32\nn-NO
[2008-09-14 16:14:44 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2008-09-14 16:14:43 | 000,000,000 | ---D | C] -- C:\Program Files\Atheros
[2008-09-14 16:14:42 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2008-09-14 16:14:42 | 000,000,000 | ---D | C] -- C:\Program Files\Cisco
[2008-09-14 16:14:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Atheros
[2008-09-14 16:14:27 | 000,000,000 | ---D | C] -- C:\Users\Kuba\AppData\Roaming\InstallShield
[2008-09-14 16:12:57 | 000,000,000 | ---D | C] -- C:\fsc.tmp
[2008-09-14 16:11:43 | 000,000,000 | ---D | C] -- C:\Windows\LastGood.Tmp
[2008-09-14 16:11:26 | 000,000,000 | ---D | C] -- C:\DeskUpdate.tmp
[2008-09-14 16:10:12 | 000,000,000 | R--D | C] -- C:\Users\Kuba\Searches
[2008-09-14 16:10:04 | 000,000,000 | ---D | C] -- C:\Users\Kuba\AppData\Roaming\Identities
[2008-09-14 16:10:02 | 000,000,000 | R--D | C] -- C:\Users\Kuba\Contacts
[2008-09-14 16:10:00 | 000,000,000 | ---D | C] -- C:\Users\Kuba\AppData\Local\VirtualStore
[2008-09-14 16:09:58 | 000,000,000 | --SD | C] -- C:\Users\Kuba\AppData\Roaming\Microsoft
[2008-09-14 16:09:58 | 000,000,000 | R--D | C] -- C:\Users\Kuba\Videos
[2008-09-14 16:09:58 | 000,000,000 | R--D | C] -- C:\Users\Kuba\Saved Games
[2008-09-14 16:09:58 | 000,000,000 | R--D | C] -- C:\Users\Kuba\Pictures
[2008-09-14 16:09:58 | 000,000,000 | R--D | C] -- C:\Users\Kuba\Music
[2008-09-14 16:09:58 | 000,000,000 | R--D | C] -- C:\Users\Kuba\Links
[2008-09-14 16:09:58 | 000,000,000 | R--D | C] -- C:\Users\Kuba\Favorites
[2008-09-14 16:09:58 | 000,000,000 | R--D | C] -- C:\Users\Kuba\Downloads
[2008-09-14 16:09:58 | 000,000,000 | R--D | C] -- C:\Users\Kuba\Documents
[2008-09-14 16:09:58 | 000,000,000 | R--D | C] -- C:\Users\Kuba\Desktop
[2008-09-14 16:09:58 | 000,000,000 | -HSD | C] -- C:\Users\Kuba\Ustawienia lokalne
[2008-09-14 16:09:58 | 000,000,000 | -HSD | C] -- C:\Users\Kuba\AppData\Local\Temporary Internet Files
[2008-09-14 16:09:58 | 000,000,000 | -HSD | C] -- C:\Users\Kuba\Szablony
[2008-09-14 16:09:58 | 000,000,000 | -HSD | C] -- C:\Users\Kuba\SendTo
[2008-09-14 16:09:58 | 000,000,000 | -HSD | C] -- C:\Users\Kuba\Recent
[2008-09-14 16:09:58 | 000,000,000 | -HSD | C] -- C:\Users\Kuba\PrintHood
[2008-09-14 16:09:58 | 000,000,000 | -HSD | C] -- C:\Users\Kuba\NetHood
[2008-09-14 16:09:58 | 000,000,000 | -HSD | C] -- C:\Users\Kuba\Documents\Moje wideo
[2008-09-14 16:09:58 | 000,000,000 | -HSD | C] -- C:\Users\Kuba\Documents\Moje obrazy
[2008-09-14 16:09:58 | 000,000,000 | -HSD | C] -- C:\Users\Kuba\Moje dokumenty
[2008-09-14 16:09:58 | 000,000,000 | -HSD | C] -- C:\Users\Kuba\Documents\Moja muzyka
[2008-09-14 16:09:58 | 000,000,000 | -HSD | C] -- C:\Users\Kuba\Menu Start
[2008-09-14 16:09:58 | 000,000,000 | -HSD | C] -- C:\Users\Kuba\AppData\Local\Historia
[2008-09-14 16:09:58 | 000,000,000 | -HSD | C] -- C:\Users\Kuba\Dane aplikacji
[2008-09-14 16:09:58 | 000,000,000 | -HSD | C] -- C:\Users\Kuba\AppData\Local\Dane aplikacji
[2008-09-14 16:09:58 | 000,000,000 | -HSD | C] -- C:\Users\Kuba\Cookies
[2008-09-14 16:09:58 | 000,000,000 | -H-D | C] -- C:\Users\Kuba\AppData
[2008-09-14 16:09:58 | 000,000,000 | ---D | C] -- C:\Users\Kuba\AppData\Local\Temp
[2008-09-14 16:09:58 | 000,000,000 | ---D | C] -- C:\Users\Kuba\AppData\Local\Microsoft
[2008-09-14 16:07:10 | 000,000,000 | -HSD | C] -- C:\ProgramData\Ulubione
[2008-09-14 16:07:10 | 000,000,000 | -HSD | C] -- C:\ProgramData\Szablony
[2008-09-14 16:07:10 | 000,000,000 | -HSD | C] -- C:\ProgramData\Pulpit
[2008-09-14 16:07:10 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje wideo
[2008-09-14 16:07:10 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje obrazy
[2008-09-14 16:07:10 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moja muzyka
[2008-09-14 16:07:10 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Start
[2008-09-14 16:07:10 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2008-09-14 16:07:10 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dane aplikacji
[2008-09-14 16:06:50 | 000,000,000 | ---D | C] -- C:\Windows\Debug
[2008-09-14 16:04:40 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2008-09-14 16:01:25 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2008-09-14 16:01:14 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2 C:\*.tmp files -> C:\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 90 Days ==========[/color]

[2008-09-15 18:35:15 | 000,524,288 | -HS- | M] () -- C:\Users\Kuba\NTUSER.DAT
[2008-09-15 18:35:03 | 000,003,712 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2008-09-15 18:35:03 | 000,003,712 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2008-09-15 17:24:12 | 001,469,036 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2008-09-15 17:24:12 | 000,662,112 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2008-09-15 17:24:12 | 000,587,178 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2008-09-15 17:24:12 | 000,126,908 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2008-09-15 17:24:12 | 000,101,250 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2008-09-15 17:22:43 | 000,027,744 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2008-09-15 17:21:58 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2008-09-15 02:00:17 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK
[2008-09-15 01:58:58 | 000,332,832 | ---- | M] () -- C:\Windows\System32\perfi015.dat
[2008-09-15 01:58:58 | 000,037,468 | ---- | M] () -- C:\Windows\System32\perfd015.dat
[2008-09-15 01:58:06 | 000,010,752 | ---- | M] (Agere Systems) -- C:\Windows\System32\drivers\pl-PL\ltmdmnt.sys.mui
[2008-09-15 01:58:06 | 000,006,656 | ---- | M] (Marvell) -- C:\Windows\System32\drivers\pl-PL\yk60x86.sys.mui
[2008-09-15 01:57:44 | 000,004,608 | ---- | M] (N-trig Innovative Technologies) -- C:\Windows\System32\drivers\pl-PL\ntrigdigi.sys.mui
[2008-09-15 01:57:39 | 000,002,560 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\pl-PL\BRPARWDM.SYS.mui
[2008-09-15 01:57:35 | 000,004,608 | ---- | M] (Gemplus) -- C:\Windows\System32\drivers\pl-PL\grserial.sys.mui
[2008-09-15 01:57:35 | 000,004,096 | ---- | M] (SCM Microsystems, Inc.) -- C:\Windows\System32\drivers\pl-PL\pscr.sys.mui
[2008-09-15 01:57:35 | 000,004,096 | ---- | M] (SCM Microsystems) -- C:\Windows\System32\drivers\pl-PL\SCR111.sys.mui
[2008-09-15 01:57:35 | 000,003,584 | ---- | M] (SCM Microsystems, Inc.) -- C:\Windows\System32\drivers\pl-PL\stcusb.sys.mui
[2008-09-15 01:57:35 | 000,003,584 | ---- | M] (Gemplus) -- C:\Windows\System32\drivers\pl-PL\gpr400.sys.mui
[2008-09-15 01:57:35 | 000,003,072 | ---- | M] (OMNIKEY) -- C:\Windows\System32\drivers\pl-PL\cxbp0wdm.sys.mui
[2008-09-15 01:57:35 | 000,003,072 | ---- | M] (OMNIKEY AG) -- C:\Windows\System32\drivers\pl-PL\cmbp0wdm.sys.mui
[2008-09-15 01:57:28 | 000,010,752 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\pl-PL\BrSerId.sys.mui
[2008-09-14 16:22:11 | 000,001,724 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2008-09-14 16:20:47 | 000,002,432 | ---- | M] () -- C:\Users\Kuba\AppData\Local\Tempaa3700.html
[2008-09-14 16:20:47 | 000,002,089 | ---- | M] () -- C:\Users\Kuba\AppData\Local\TempRX3700.html
[2008-09-14 16:20:01 | 000,000,841 | ---- | M] () -- C:\Users\Public\Desktop\OpenFM.lnk
[2008-09-14 16:20:01 | 000,000,812 | ---- | M] () -- C:\Users\Public\Desktop\Gadu-Gadu 10.lnk
[2008-09-14 16:17:52 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf
[2008-09-14 16:17:05 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2008-09-14 16:16:49 | 2682,667,008 | -HS- | M] () -- C:\hiberfil.sys
[2008-09-14 16:15:53 | 000,524,288 | -HS- | M] () -- C:\Users\Kuba\NTUSER.DAT{d8932e6d-6a6f-11db-b6ab-a038f15a5785}.TMContainer00000000000000000002.regtrans-ms
[2008-09-14 16:15:53 | 000,524,288 | -HS- | M] () -- C:\Users\Kuba\NTUSER.DAT{d8932e6d-6a6f-11db-b6ab-a038f15a5785}.TMContainer00000000000000000001.regtrans-ms
[2008-09-14 16:15:53 | 000,065,536 | -HS- | M] () -- C:\Users\Kuba\NTUSER.DAT{d8932e6d-6a6f-11db-b6ab-a038f15a5785}.TM.blf
[2008-09-14 16:15:50 | 001,023,539 | -H-- | M] () -- C:\Users\Kuba\AppData\Local\IconCache.db
[2008-09-14 16:10:18 | 000,048,600 | ---- | M] () -- C:\Users\Kuba\AppData\Local\GDIPFONTCACHEV1.DAT
[2008-09-14 16:10:17 | 000,000,680 | ---- | M] () -- C:\Users\Kuba\AppData\Local\d3d9caps.dat
[2008-09-14 16:09:58 | 000,000,020 | -HS- | M] () -- C:\Users\Kuba\ntuser.ini
[2008-09-14 16:08:58 | 000,000,012 | ---- | M] () -- C:\Windows\System32\drivers\FSC__RC__ESPRIMO Mobile V6515__FUJITSU SIEMENS_Z17M3.0__Ver 1.00PARTTBL _FSC - 6040000_V1.18 .MRK
[2008-09-14 16:05:15 | 000,065,369 | ---- | M] () -- C:\Windows\System32\license.rtf
[2008-09-14 16:02:37 | 000,229,024 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2008-09-10 09:35:00 | 000,190,706 | ---- | M] () -- C:\Windows\System32\nvapps.xml
[2008-09-10 09:35:00 | 000,035,841 | ---- | M] () -- C:\Windows\System32\nvwsapps.xml
[2008-09-10 09:35:00 | 000,008,780 | ---- | M] () -- C:\Windows\System32\nvdisp.nvu
[2008-08-27 13:56:08 | 000,000,898 | ---- | M] () -- C:\Windows\System32\nvsmu.nvu
[2008-08-21 15:15:06 | 000,002,306 | ---- | M] () -- C:\Windows\System32\nvsmb.nvu
[2008-08-21 15:08:18 | 000,003,932 | ---- | M] () -- C:\Windows\System32\nvnrm.nvu
[2008-07-08 01:45:58 | 000,004,984 | ---- | M] () -- C:\Windows\System32\drivers\nvphy.bin
[2008-07-02 19:43:32 | 000,038,711 | ---- | M] () -- C:\Windows\System32\athrext.cat
[2008-06-30 19:56:12 | 000,917,504 | ---- | M] (Atheros Communications, Inc.) -- C:\Windows\System32\drivers\athr.sys
[2008-06-30 19:56:12 | 000,917,504 | ---- | M] (Atheros Communications, Inc.) -- C:\Windows\System32\athr.sys
[2008-06-30 19:55:12 | 000,116,863 | ---- | M] () -- C:\Windows\System32\netathr.inf
[2008-06-30 13:50:16 | 000,376,832 | ---- | M] (Atheros) -- C:\Windows\System32\S64CPA.exe
[2008-06-30 13:50:04 | 000,053,248 | ---- | M] (Atheros) -- C:\Windows\System32\athihvui.dll
[2008-06-30 13:49:48 | 000,393,216 | ---- | M] (Atheros) -- C:\Windows\System32\athihvs.dll
[2 C:\*.tmp files -> C:\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2008-09-15 17:22:43 | 000,027,744 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2008-09-15 02:00:17 | 000,008,192 | R-S- | C] () -- C:\BOOTSECT.BAK
[2008-09-15 02:00:16 | 000,333,203 | RHS- | C] () -- C:\bootmgr
[2008-09-15 01:59:59 | 000,057,656 | R--- | C] () -- C:\Windows\System32\OEMLOGO.BMP
[2008-09-15 01:59:59 | 000,057,656 | R--- | C] () -- C:\Windows\FSC_LOGO_POSITIVE_JPG_MIDDLE.BMP
[2008-09-15 01:59:24 | 000,662,112 | ---- | C] () -- C:\Windows\System32\perfh015.dat
[2008-09-15 01:59:24 | 000,332,832 | ---- | C] () -- C:\Windows\System32\perfi015.dat
[2008-09-15 01:59:24 | 000,126,908 | ---- | C] () -- C:\Windows\System32\perfc015.dat
[2008-09-15 01:59:24 | 000,037,468 | ---- | C] () -- C:\Windows\System32\perfd015.dat
[2008-09-14 16:22:11 | 000,001,724 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2008-09-14 16:20:47 | 000,002,432 | ---- | C] () -- C:\Users\Kuba\AppData\Local\Tempaa3700.html
[2008-09-14 16:20:47 | 000,002,089 | ---- | C] () -- C:\Users\Kuba\AppData\Local\TempRX3700.html
[2008-09-14 16:20:01 | 000,000,841 | ---- | C] () -- C:\Users\Public\Desktop\OpenFM.lnk
[2008-09-14 16:20:01 | 000,000,812 | ---- | C] () -- C:\Users\Public\Desktop\Gadu-Gadu 10.lnk
[2008-09-14 16:17:52 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf
[2008-09-14 16:15:17 | 000,116,863 | ---- | C] () -- C:\Windows\System32\netathr.inf
[2008-09-14 16:15:17 | 000,038,711 | ---- | C] () -- C:\Windows\System32\athrext.cat
[2008-09-14 16:12:11 | 000,004,984 | ---- | C] () -- C:\Windows\System32\drivers\nvphy.bin
[2008-09-14 16:09:59 | 000,000,680 | ---- | C] () -- C:\Users\Kuba\AppData\Local\d3d9caps.dat
[2008-09-14 16:09:58 | 000,524,288 | -HS- | C] () -- C:\Users\Kuba\NTUSER.DAT{d8932e6d-6a6f-11db-b6ab-a038f15a5785}.TMContainer00000000000000000002.regtrans-ms
[2008-09-14 16:09:58 | 000,524,288 | -HS- | C] () -- C:\Users\Kuba\NTUSER.DAT{d8932e6d-6a6f-11db-b6ab-a038f15a5785}.TMContainer00000000000000000001.regtrans-ms
[2008-09-14 16:09:58 | 000,524,288 | -HS- | C] () -- C:\Users\Kuba\NTUSER.DAT
[2008-09-14 16:09:58 | 000,262,144 | -H-- | C] () -- C:\Users\Kuba\ntuser.dat.LOG1
[2008-09-14 16:09:58 | 000,065,536 | -HS- | C] () -- C:\Users\Kuba\NTUSER.DAT{d8932e6d-6a6f-11db-b6ab-a038f15a5785}.TM.blf
[2008-09-14 16:09:58 | 000,000,020 | -HS- | C] () -- C:\Users\Kuba\ntuser.ini
[2008-09-14 16:09:58 | 000,000,000 | -H-- | C] () -- C:\Users\Kuba\ntuser.dat.LOG2
[2008-09-14 16:08:58 | 000,000,012 | ---- | C] () -- C:\Windows\System32\drivers\FSC__RC__ESPRIMO Mobile V6515__FUJITSU SIEMENS_Z17M3.0__Ver 1.00PARTTBL _FSC - 6040000_V1.18 .MRK
[2008-09-14 16:06:06 | 2682,667,008 | -HS- | C] () -- C:\hiberfil.sys
[2008-09-10 09:35:00 | 000,190,706 | ---- | C] () -- C:\Windows\System32\nvapps.xml
[2008-09-10 09:35:00 | 000,035,841 | ---- | C] () -- C:\Windows\System32\nvwsapps.xml
[2008-09-10 09:35:00 | 000,008,780 | ---- | C] () -- C:\Windows\System32\nvdisp.nvu
[2008-08-27 13:56:08 | 000,000,898 | ---- | C] () -- C:\Windows\System32\nvsmu.nvu
[2008-08-21 15:15:06 | 000,002,306 | ---- | C] () -- C:\Windows\System32\nvsmb.nvu
[2008-08-21 15:08:18 | 000,003,932 | ---- | C] () -- C:\Windows\System32\nvnrm.nvu
[2006-11-02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini

[color=#E56717]========== LOP Check ==========[/color]

[2008-09-14 16:20:46 | 000,000,000 | ---D | M] -- C:\Users\Kuba\AppData\Roaming\Gadu-Gadu 10
[2008-09-14 16:15:56 | 000,004,544 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

[color=#E56717]========== Purity Check ==========[/color]


< End of report >
[/code][/log]

Problem rozwiązany
Powód: sporo bad sectorów na dysku prawdopodobnie przez wirusy.
Nie rozumiem dlaczego moderator przeniósł ten temat do tego działu. Pozdrawiam.

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.