prosze o sprawdzenia loga

[bioly]

witam!!!
od paru dni mam coś z kompem po każdym włączeniu jest inna godzina i do tego strasznie sie ścina nawet przy słuchaniu muzyki chyba cos siedzi skanowałem ewido i coś tam usunął z góry dzięki

Logfile of HijackThis v1.99.1
Scan saved at 23:13:16, on 2007-10-17
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Gadu-Gadu\gg.exe
C:\Program Files\WLAN\WConfig\WConfig.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Mozilla Firefox\firefox.exe
D:\progo\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.windowsxlive.net
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\gg.exe" /tray
O4 - Global Startup: WConfig.lnk = ?
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe

[wojtas]

po każdym włączeniu jest inna godzina

tu bym stawial na baterie od plyty glownej

do tego strasznie sie ścina nawet przy słuchaniu muzyki

Zobacz Menadżer Urządzeń-->Kontroler IDE ATA/ATAPI --> Podstawowy kanał IDE> ustrawienia zaawansowane >sprawdz jaki masz tryb transferu oraz wykonaj tak samo w Pomocniczym kanale.

daj loga z combofixa

[bioly]

witam po długiej przerwie!!!

wiec tak mam ustawiony w podstawowym kanale tryb dma jezeli dostepny a bieżący tryb transferu to pio a w pomocniczym dma jezeli dostepny a biezacy tryb to ultra dma tryb 2

log z combofixa

ComboFix 07-10-19.1 - bioly 2007-10-19 19:54:45.3 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1250.1.1045.18.618 [GMT 2:00]
Running from: C:\Documents and Settings\bioly\Pulpit\ComboFix.exe
* Created a new restore point
.

((((((((((((((((((((((((( Files Created from 2007-09-19 to 2007-10-19 )))))))))))))))))))))))))))))))
.

2007-10-18 23:38 <DIR> d-------- C:\Program Files\City Interactive
2007-10-18 20:06 <DIR> d-------- C:\Program Files\Alcohol Soft
2007-10-18 20:06 159,616 --a------ C:\WINDOWS\system32\drivers\Vax347b.sys
2007-10-18 20:06 5,248 --a------ C:\WINDOWS\system32\drivers\Vax347s.sys
2007-10-17 17:17 <DIR> d-------- C:\Program Files\Realtek Sound Manager
2007-10-16 21:01 <DIR> d-------- C:\Program Files\ewido anti-spyware 4.0
2007-10-15 19:35 <DIR> d-------- C:\Program Files\Ares
2007-10-15 15:39 <DIR> d-------- C:\Program Files\a-squared Free
2007-10-14 19:39 <DIR> d-------- C:\Program Files\Hewlett-Packard
2007-10-14 19:39 <DIR> d-------- C:\Program Files\Common Files\HP
2007-10-13 14:40 <DIR> d-------- C:\Documents and Settings\bioly\Dane aplikacji\HP
2007-10-13 14:40 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\HP
2007-10-13 14:32 282,680 --a------ C:\WINDOWS\system32\HPZidr12.dll
2007-10-13 14:32 204,800 --a------ C:\WINDOWS\system32\HPZipr12.dll
2007-10-13 14:32 94,208 --a------ C:\WINDOWS\system32\HPZipt12.dll
2007-10-13 14:32 69,632 --a------ C:\WINDOWS\system32\HPZipm12.exe
2007-10-13 14:32 65,536 --a------ C:\WINDOWS\system32\HPZinw12.exe
2007-10-13 14:32 57,344 --a------ C:\WINDOWS\system32\HPZisn12.dll
2007-10-13 14:31 <DIR> d-------- C:\Program Files\HP
2007-10-13 14:29 77,824 -ra------ C:\WINDOWS\system32\hpzids01.dll
2007-10-13 14:29 48,640 --a------ C:\WINDOWS\system32\hpzll4pi.dll
2007-10-13 14:26 25,856 --a------ C:\WINDOWS\system32\drivers\usbprint.sys
2007-10-13 14:26 25,856 --a--c--- C:\WINDOWS\system32\dllcache\usbprint.sys
2007-10-13 14:26 9,600 --a------ C:\WINDOWS\system32\drivers\hidusb.sys
2007-10-13 14:26 9,600 --a--c--- C:\WINDOWS\system32\dllcache\hidusb.sys
2007-10-13 14:25 31,616 --a------ C:\WINDOWS\system32\drivers\usbccgp.sys
2007-10-13 14:25 31,616 --a--c--- C:\WINDOWS\system32\dllcache\usbccgp.sys
2007-10-10 19:43 <DIR> d-------- C:\sims
2007-10-10 17:19 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Nokia
2007-10-08 19:14 <DIR> d-------- C:\Program Files\Return to Castle Wolfenstein
2007-10-08 18:25 103,736 --a------ C:\WINDOWS\system32\PnkBstrB.exe
2007-10-08 18:25 66,872 --a------ C:\WINDOWS\system32\PnkBstrA.exe
2007-10-08 18:25 22,328 --a------ C:\WINDOWS\system32\drivers\PnkBstrK.sys
2007-10-08 13:49 <DIR> d-------- C:\Program Files\Digitalo Studios
2007-10-06 18:06 <DIR> d-------- C:\Program Files\AviSynth 2.5
2007-10-06 18:05 <DIR> d-------- C:\Program Files\Easy RealMedia Tools
2007-10-06 18:05 <DIR> d-------- C:\Program Files\AC3Filter
2007-10-06 15:53 <DIR> d-------- C:\WINDOWS\system32\LogFiles
2007-10-06 14:42 <DIR> d-------- C:\Program Files\Wolfenstein - Enemy Territory
2007-10-05 19:59 <DIR> d-------- C:\Program Files\Common Files\Adobe
2007-10-05 17:54 321,583 --a------ C:\WINDOWS\supervisor.exe
2007-10-05 17:49 <DIR> d-------- C:\Program Files\ATS2
2007-10-04 20:42 <DIR> d-------- C:\Program Files\TGTSoft
2007-10-04 20:10 <DIR> d-------- C:\Program Files\ATS
2007-10-01 20:37 <DIR> d--h----- C:\WINDOWS\PIF
2007-10-01 20:24 <DIR> d-------- C:\Program Files\Lavalys
2007-10-01 19:06 46,327 --a------ C:\WINDOWS\BricoPackUninst.cmd
2007-10-01 19:02 2,514 --a------ C:\WINDOWS\BricoPackFoldersDelete.cmd
2007-10-01 19:01 <DIR> d-------- C:\WINDOWS\BricoPacks
2007-09-29 09:34 92,208 --a------ C:\WINDOWS\system32\WING.DLL
2007-09-29 09:34 12,800 --a------ C:\WINDOWS\system32\WING32.DLL
2007-09-29 09:32 <DIR> d-------- C:\Program Files\DK
2007-09-24 14:57 <DIR> d-------- C:\Program Files\URUSoft
2007-09-23 18:33 <DIR> d-------- C:\Documents and Settings\bioly\Dane aplikacji\Teleca
2007-09-23 18:33 <DIR> d-------- C:\Documents and Settings\All Users\Documents
2007-09-23 18:32 <DIR> d-------- C:\Program Files\Sony Ericsson
2007-09-23 18:32 <DIR> d-------- C:\Program Files\Common Files\Teleca Shared
2007-09-23 18:32 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Teleca
2007-09-23 18:32 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Sony Ericsson
2007-09-23 18:27 58,288 --a------ C:\WINDOWS\system32\drivers\k510bus.sys
2007-09-23 18:27 5,808 --a------ C:\WINDOWS\system32\drivers\k510whnt.sys
2007-09-23 18:27 5,808 --a------ C:\WINDOWS\system32\drivers\k510wh.sys
2007-09-23 18:25 <DIR> d-------- C:\WINDOWS\Downloaded Installations
2007-09-20 17:09 <DIR> d-------- C:\Program Files\jv16 PowerTools 2005
2007-09-19 14:29 <DIR> d-------- C:\Documents and Settings\bioly\Dane aplikacji\Ahead
2007-09-19 14:27 <DIR> d-------- C:\Program Files\Nero
2007-09-19 14:27 <DIR> d-------- C:\Program Files\Common Files\Ahead
2007-09-19 14:24 <DIR> d-------- C:\Program Files\XviD
2007-09-19 14:22 <DIR> d-------- C:\Program Files\SubEdit-Player
2007-09-19 14:21 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Apple Computer

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-10-17 15:17 --------- d-----w C:\Program Files\AvRack
2007-10-10 17:39 --------- d--h--w C:\Program Files\InstallShield Installation Information
2007-10-10 15:19 --------- d-----w C:\Program Files\Nokia
2007-10-10 15:19 --------- d-----w C:\Program Files\Common Files\Nokia
2007-10-10 12:27 --------- d-----w C:\Documents and Settings\bioly\Dane aplikacji\DataLayer
2007-10-09 14:07 --------- d-----w C:\Program Files\Gadu-Gadu
2007-10-09 11:36 --------- d-----w C:\Program Files\MoorHunt
2007-10-08 14:05 14,336 ----a-w C:\WINDOWS\system32\svchost.exe
2007-10-01 17:15 --------- d-----w C:\Program Files\AVPersonal
2007-10-01 17:06 219,648 ----a-w C:\WINDOWS\system32\uxtheme.dll
2007-09-29 07:29 --------- d-----w C:\Program Files\Common Files\InstallShield
2007-09-24 12:45 --------- d-----w C:\Program Files\NAPI-PROJEKT
2007-09-22 10:57 --------- d-----w C:\Program Files\Fox
2007-09-21 19:09 --------- d-----w C:\Program Files\BitComet
2007-09-19 12:20 --------- d-----w C:\Program Files\K-Lite Codec Pack
2007-09-16 16:41 --------- d-----w C:\Program Files\EA Games
2007-09-15 14:24 --------- d-----w C:\Program Files\Piranha Bytes
2007-09-12 15:57 --------- d-----w C:\Documents and Settings\bioly\Dane aplikacji\LimeWire
2007-09-12 15:51 --------- d-----w C:\Program Files\Total Video Converter
2007-09-06 10:09 801,144 ----a-w C:\WINDOWS\system32\aswBoot.exe
2007-09-06 10:05 94,416 ----a-w C:\WINDOWS\system32\drivers\aswmon2.sys
2007-09-06 10:05 92,848 ----a-w C:\WINDOWS\system32\drivers\aswmon.sys
2007-09-06 10:03 23,152 ----a-w C:\WINDOWS\system32\drivers\aswRdr.sys
2007-09-06 10:02 42,912 ----a-w C:\WINDOWS\system32\drivers\aswTdi.sys
2007-09-06 10:00 95,608 ----a-w C:\WINDOWS\system32\AVASTSS.scr
2007-09-06 10:00 26,624 ----a-w C:\WINDOWS\system32\drivers\aavmker4.sys
2007-09-05 17:00 --------- d-----w C:\Program Files\Java
2007-09-05 16:57 --------- d-----w C:\Program Files\Common Files\Java
2007-09-05 16:51 --------- d-----w C:\Documents and Settings\bioly\Dane aplikacji\Media Player Classic
2007-09-05 16:50 --------- d-----w C:\Documents and Settings\bioly\Dane aplikacji\Nokia Multimedia Player
2007-09-05 16:32 --------- d-----w C:\Documents and Settings\bioly\Dane aplikacji\Nokia
2007-09-05 16:27 --------- d-----w C:\Program Files\DIFX
2007-09-05 16:27 --------- d-----w C:\Documents and Settings\bioly\Dane aplikacji\PC Suite
2007-09-05 16:27 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
2007-09-05 16:26 --------- d-----w C:\Program Files\Common Files\PCSuite
2007-09-05 16:23 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\Downloaded Installations
2007-09-02 14:42 --------- d-----w C:\Program Files\Zylom Games
2007-09-02 09:00 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\Zylom
2007-09-01 13:40 --------- d-----w C:\Documents and Settings\bioly\Dane aplikacji\PlayFirst
2007-09-01 13:40 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\PlayFirst
2007-08-27 13:11 --------- d-----w C:\Program Files\Privacy Shield
2007-08-27 13:10 --------- d-----w C:\Program Files\Peer2Mail
2007-08-27 12:55 --------- d-----w C:\Program Files\MoorHunt + biblioteki
2007-08-27 12:47 --------- d-----w C:\Program Files\DNA-drivers
2007-08-26 12:46 --------- d-----w C:\Program Files\directx
2007-08-25 14:25 --------- d-----w C:\Documents and Settings\bioly\Dane aplikacji\Command & Conquer 3 Tiberium Wars
2007-08-25 13:48 98,304 ----a-w C:\WINDOWS\system32CmdLineExt.dll
2007-08-25 13:48 --------- d--h--r C:\Documents and Settings\bioly\Dane aplikacji\SecuROM
2007-08-25 13:36 --------- d-----w C:\Program Files\DAEMON Tools
2007-08-25 13:32 685,816 ----a-w C:\WINDOWS\system32\drivers\sptd.sys
2007-08-25 13:06 --------- d-----w C:\Program Files\Alwil Software
2007-08-25 13:00 --------- d-----w C:\Program Files\WLAN
2007-08-25 12:57 --------- d-----w C:\Program Files\ATI Technologies
2007-08-25 12:51 --------- d-----w C:\Program Files\Marvell
2007-08-25 12:51 --------- d-----w C:\Program Files\Gigabyte
2007-08-25 12:49 --------- d-----w C:\Program Files\Intel
2007-08-25 12:33 --------- d-----w C:\Program Files\microsoft frontpage
2007-08-25 12:30 --------- d-----w C:\Program Files\Usługi online
2007-07-30 17:19 92,504 ----a-w C:\WINDOWS\system32\cdm.dll
2007-07-30 17:19 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll
2007-07-30 17:19 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe
2007-07-30 17:19 43,352 ----a-w C:\WINDOWS\system32\wups2.dll
2007-07-30 17:19 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll
2007-07-30 17:19 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll
2007-07-30 17:19 1,712,984 ----a-w C:\WINDOWS\system32\wuaueng.dll
2007-07-30 17:18 33,624 ----a-w C:\WINDOWS\system32\wups.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-09-06 12:06]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Gadu-Gadu"="C:\Program Files\Gadu-Gadu\gg.exe" [2006-11-14 11:12]
"ares"="C:\Program Files\Ares\Ares.exe" [2006-01-29 12:26]

C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\
WConfig.lnk - C:\Program Files\WLAN\WConfig\WConfig.exe [2007-08-25 15:00:10]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\group policy\state\S-1-5-21-1202660629-1220945662-682003330-1003\Scripts\Logoff\0\0]
"Script"=C:\Program Files\Privacy Shield\xp.cmd

R3 RT2400PCI;802.11b WLAN PCI;C:\WINDOWS\system32\DRIVERS\RT2400.sys
S3 k510bus;Sony Ericsson K510 Driver driver (WDM);C:\WINDOWS\system32\DRIVERS\k510bus.sys
S3 USBSTOR;Sterownik magazynu masowego USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS

.
**************************************************************************

catchme 0.3.1169 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-10-19 20:06:39
Windows 5.1.2600 Dodatek Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2007-10-19 20:07:41
C:\ComboFix2.txt ... 2007-10-18 00:09
C:\ComboFix3.txt ... 2007-10-17 22:55
.
--- E O F ---

[wojtas]

a bieżący tryb transferu to pio

zmien na DMA . jesli nie bedziesz mogl zmienic odinstaluj podstawowy kanal IDE zresetuj kompa i poczekaj na zainstalowanie kanalu

[bioly]

wielkie dzieki wszystko chodzi tak jak powinno pozdro