Niski transfer

drag703 · 24 Grudzień 2007 11:22

Witam.

Ostatnio mój transfer spadł dość znacząco lecz czasami wraca do normalności, nie wiem czy to jest wina mojego usługodawcy czy też mam na kompie jakiegoś syfa.

Bardzo proszę o sprawdzenie tego loga. z góry serdecznie dziękuje

Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 11:53, on 2007-12-24 Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Ahead\InCD\InCDsrv.exe C:\Program Files\Sygate\SPF\smc.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\nvraidservice.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe C:\Program Files\Ahead\InCD\InCD.exe C:\Program Files\PowerISO\PWRISOVM.EXE C:\Program Files\Winamp\winampa.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe C:\Program Files\WinPVR\TVCardRemote.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\WIDCOMM\Oprogramowanie interfejsu Bluetooth\bin\btwdins.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Eraser\eraser.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe C:\Program Files\WIDCOMM\Oprogramowanie interfejsu Bluetooth\BTTray.exe C:\WINDOWS\system32\PnkBstrA.exe C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\wbem\unsecapp.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\explorer.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O3 - Toolbar: I.R.I.S. Desktop Search - {577EBCA9-8ED3-45FC-A514-55B3817D4BCF} - C:\Program Files\IRIS Desktop Search\IRISDesktopSearchIntegration910.dll O3 - Toolbar: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL O4 - HKLM…\Run: [NVRaidService] C:\WINDOWS\system32\nvraidservice.exe O4 - HKLM…\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM…\Run: [ATICCC] “C:\Program Files\ATI Technologies\ATI.ACE\cli.exe” runtime O4 - HKLM…\Run: [RemoteControl] “C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe” O4 - HKLM…\Run: [inCD] C:\Program Files\Ahead\InCD\InCD.exe O4 - HKLM…\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM…\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE O4 - HKLM…\Run: [smcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui O4 - HKLM…\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM…\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM…\Run: [ToolBoxFX] “C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe” /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on O4 - HKLM…\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM…\Run: [softickPPP] “C:\Program Files\Softick\PPP\Bin\PPPGate.exe” O4 - HKLM…\Run: [sunJavaUpdateSched] “C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe” O4 - HKLM…\Run: [sVRemote] C:\Program Files\WinPVR\TVCardRemote.exe O4 - HKLM…\Run: [soundMan] SOUNDMAN.EXE O4 - HKCU…\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU…\Run: [i.R.I.S. Desktop Search] “C:\PROGRA~1\IRISDE~1\IRISDE~1.EXE” /tray O4 - HKCU…\Run: [MSMSGS] “C:\Program Files\Messenger\msmsgs.exe” /background O4 - HKCU…\Run: [Eraser] C:\Program Files\Eraser\eraser.exe -hide O4 - HKUS\S-1-5-19…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘USŁUGA LOKALNA’) O4 - HKUS\S-1-5-20…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘USŁUGA SIECIOWA’) O4 - HKUS\S-1-5-18…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SYSTEM’) O4 - HKUS.DEFAULT…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘Default user’) O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe O4 - Global Startup: BTTray.lnk = ? O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Wyślij do interfejsu &Bluetooth - C:\Program Files\WIDCOMM\Oprogramowanie interfejsu Bluetooth\btsendto_ie_ctx.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra ‘Tools’ menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Oprogramowanie interfejsu Bluetooth\btsendto_ie.htm O9 - Extra ‘Tools’ menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Oprogramowanie interfejsu Bluetooth\btsendto_ie.htm O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso … 4869059171 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Oprogramowanie interfejsu Bluetooth\bin\btwdins.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - NetGroup - Politecnico di Torino - C:\Program Files\WinPcap\rpcapd.exe O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe – End of file - 8061 bytes

Ciuci · 24 Grudzień 2007 11:37

Nic w Twoim logu nie widze.

Otymalizacja XP - viewtopic.php?f=7&t=76580

Wesołych Świąt

Gutek · 25 Grudzień 2007 23:52

Optymalizacja autostartu: http://www.bezpieczenstwosystemow.pl/in … opic=116.0

Czyszczenie rejestru:

RegCleaner - http://www.dobreprogramy.pl/index.php?dz=2&t=29&id=177

możesz rejestr przelecieć albo

jv16 PowerTools - http://www.dobreprogramy.pl/index.php?dz=2&t=29&id=509

Daj log z ComboFix

drag703 · 26 Grudzień 2007 23:32

To jest log z ComboFix, jeszcze raz dziękuje za sprawdzenie

ComboFix 07-12-21.4 - Dawid 2007-12-27 0:26:15.7 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.2.1250.48.1045.18.161 [GMT 1:00] Running from: C:\Documents and Settings\Dawid\Pulpit\ComboFix.exe . ((((((((((((((((((((((((( Files Created from 2007-11-26 to 2007-12-26 ))))))))))))))))))))))))))))))) . 2007-12-25 22:30 . 2007-12-25 22:30 2007-12-25 20:05 . 2007-12-25 20:05 2007-12-25 19:57 . 2007-12-25 19:57 2007-12-25 19:55 . 2002-01-05 09:37 344,064 --a------ C:\WINDOWS\system32\msvcr70.dll 2007-12-25 19:52 . 2007-12-25 19:52 2007-12-25 19:52 . 2007-12-25 19:52 249,856 --------- C:\WINDOWS\Setup1.exe 2007-12-25 19:52 . 2007-12-25 19:52 73,216 --a------ C:\WINDOWS\ST6UNST.EXE 2007-12-25 10:24 . 2007-12-25 22:33 2007-12-25 03:16 . 2007-12-25 19:44 2007-12-25 02:31 . 2007-12-25 19:44 2007-12-24 00:58 . 2007-12-24 01:00 2007-12-24 00:31 . 2007-12-24 00:31 2007-12-23 22:36 . 2007-12-23 22:36 2007-12-23 00:54 . 2007-12-23 00:54 2007-12-23 00:54 . 2007-12-23 00:54 16 --a------ C:\WINDOWS\nraesg.exe 2007-12-22 19:25 . 2007-12-22 19:25 32,229 --a------ C:\122207_192531.wma 2007-12-22 19:25 . 2007-12-22 19:25 5,717 --a------ C:\122207_192528.wma 2007-12-22 15:40 . 2007-12-22 15:40 2007-12-21 20:55 . 2007-12-21 20:55 169 --a------ C:\WINDOWS\RtlRack.ini 2007-12-21 20:33 . 2007-12-21 20:33 2007-12-21 20:33 . 2007-12-21 20:33 32 --a------ C:\Documents and Settings\All Users\Dane aplikacji\ezsid.dat 2007-12-21 20:32 . 2007-12-21 20:35 2007-12-21 20:31 . 2007-12-21 20:31 2007-12-21 20:31 . 2007-12-21 20:31 2007-12-21 20:31 . 2007-12-21 20:31 2007-12-20 23:21 . 2007-12-20 23:21 2007-12-20 23:19 . 2007-12-20 23:19 2007-12-20 23:19 . 2007-12-20 23:19 2007-12-20 16:29 . 2007-12-20 16:35 2007-12-18 16:33 . 2007-12-18 16:33 2007-12-18 16:33 . 2007-12-19 13:48 2007-12-18 16:33 . 2004-06-06 22:42 45,952 --a------ C:\WINDOWS\system32\drivers\filedisk.sys 2007-12-17 16:43 . 2007-12-17 16:43 2007-12-17 16:43 . 2007-12-17 16:43 2007-12-16 13:54 . 2007-12-16 13:54 2007-12-16 13:54 . 2007-12-16 13:54 2007-12-15 22:02 . 2007-12-15 22:02 2007-12-15 22:02 . 2006-11-12 11:39 483,328 --a------ C:\WINDOWS\system32\actskn45.ocx 2007-12-14 22:53 . 2007-12-14 22:53 2007-12-12 17:51 . 2007-12-25 03:07 2007-12-12 17:51 . 2007-12-12 17:59 2007-12-12 16:57 . 2007-12-12 16:57 2007-12-12 16:56 . 2007-12-12 16:56 2007-12-12 16:56 . 2007-03-07 00:45 3,086,336 --a------ C:\WINDOWS\system32\NCMedia.dll 2007-12-12 16:56 . 2007-03-07 00:45 3,086,336 --a------ C:\WINDOWS\system32\flvvideo.dll 2007-12-12 16:56 . 2007-02-25 15:36 383,238 --a------ C:\WINDOWS\system32\libmp3lame-0.dll 2007-12-12 16:20 . 2007-12-12 16:20 2007-12-10 13:52 . 2007-12-10 13:52 2007-12-10 13:48 . 2007-12-10 13:48 2007-12-10 13:47 . 2007-12-10 13:47 2007-12-10 13:24 . 2007-12-10 13:28 2007-12-10 13:23 . 2007-12-10 13:23 2007-12-09 10:49 . 2007-12-09 10:49 2007-12-09 10:48 . 2007-12-09 10:48 2007-12-09 10:48 . 2007-12-09 10:48 2007-12-09 10:47 . 2006-06-14 10:38 336,128 -ra------ C:\WINDOWS\system32\drivers\Cap7134.sys 2007-12-08 18:42 . 2007-12-08 18:42 2007-12-08 14:31 . 2007-12-08 14:31 2007-12-07 10:43 . 2007-12-23 20:53 542 --a------ C:\WINDOWS\wcx_ftp.ini 2007-12-06 19:08 . 2007-12-06 19:08 2007-12-06 19:08 . 2007-12-06 19:08 2007-12-06 19:08 . 2007-12-06 19:08 2007-12-06 19:08 . 2004-06-03 03:40 294,400 -ra------ C:\WINDOWS\system32\SET39.tmp 2007-12-06 19:08 . 2004-06-03 03:40 18,432 -ra------ C:\WINDOWS\system32\SET43.tmp 2007-12-06 19:07 . 2001-07-05 17:19 164 --------- C:\WINDOWS\avrack.ini 2007-12-06 19:02 . 2007-12-06 19:02 2007-12-06 19:02 . 2007-12-06 19:02 2007-12-06 16:43 . 2007-12-06 16:43 2007-12-06 16:37 . 2007-12-06 16:37 2007-12-06 16:37 . 2007-09-24 23:31 69,632 --a------ C:\WINDOWS\system32\javacpl.cpl 2007-12-06 16:33 . 2007-12-06 16:33 2007-12-02 00:33 . 2007-12-02 00:33 2007-11-30 18:25 . 2007-11-30 18:25 2007-11-30 17:59 . 2007-11-30 18:06 2007-11-30 17:57 . 2007-11-30 18:19 2007-11-29 23:00 . 2007-11-29 22:59 103,736 --a------ C:\WINDOWS\system32\PnkBstrB.exe 2007-11-29 23:00 . 2007-11-29 23:00 22,328 --a------ C:\WINDOWS\system32\drivers\PnkBstrK.sys 2007-11-29 22:59 . 2007-11-29 22:59 2007-11-29 22:59 . 2007-11-29 22:59 66,872 --a------ C:\WINDOWS\system32\PnkBstrA.exe . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2007-12-26 23:22 --------- d-----w C:\Program Files\Eraser 2007-12-26 21:48 --------- d-----w C:\Program Files\SpeedFan 2007-12-26 18:26 --------- d-----w C:\Documents and Settings\Dawid\Dane aplikacji\uTorrent 2007-12-25 00:47 --------- d–h--w C:\Program Files\InstallShield Installation Information 2007-12-17 19:34 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\HPSSUPPLY 2007-12-13 20:14 --------- d-----w C:\Program Files\NAPI-PROJEKT 2007-12-12 18:28 --------- d-----w C:\Documents and Settings\Dawid\Dane aplikacji\Vso 2007-12-07 17:19 --------- d-----w C:\Program Files\Total Video Converter 2007-12-06 18:07 --------- d-----w C:\Program Files\AvRack 2007-12-04 14:56 93,264 ----a-w C:\WINDOWS\system32\drivers\aswmon.sys 2007-12-04 14:55 94,544 ----a-w C:\WINDOWS\system32\drivers\aswmon2.sys 2007-12-04 14:53 23,152 ----a-w C:\WINDOWS\system32\drivers\aswRdr.sys 2007-12-04 14:51 42,912 ----a-w C:\WINDOWS\system32\drivers\aswTdi.sys 2007-12-04 14:49 26,624 ----a-w C:\WINDOWS\system32\drivers\aavmker4.sys 2007-12-04 13:04 837,496 ----a-w C:\WINDOWS\system32\aswBoot.exe 2007-12-04 12:54 95,608 ----a-w C:\WINDOWS\system32\AvastSS.scr 2007-11-25 08:33 --------- d-----w C:\Program Files\WapSter 2007-11-24 13:24 108,144 ----a-w C:\WINDOWS\system32\CmdLineExt.dll 2007-11-23 17:44 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\Test Drive Unlimited 2007-11-23 15:55 --------- d-----w C:\Program Files\Alcohol Soft 2007-11-18 08:37 --------- d-----w C:\Program Files\DVDFab Platinum 3 2007-11-18 08:33 47,360 ----a-w C:\WINDOWS\system32\drivers\pcouffin.sys 2007-11-18 08:33 47,360 ----a-w C:\Documents and Settings\Dawid\Dane aplikacji\pcouffin.sys 2007-11-15 18:36 --------- d-----w C:\Program Files\Kwyshell 2007-11-15 18:33 --------- d-----w C:\Program Files\Sjboy Emulator 2007-11-13 20:03 --------- d-----w C:\Program Files\Softick 2007-11-13 10:25 20,480 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys 2007-11-12 18:53 --------- d-----w C:\Program Files\Common Files\Adobe 2007-11-11 18:28 --------- d-----w C:\Program Files\MSXML 4.0 2007-11-10 13:46 --------- d-----w C:\Documents and Settings\Dawid\Dane aplikacji\Media Player Classic 2007-11-10 12:18 --------- d-----w C:\Program Files\Real Alternative 2007-11-10 12:18 --------- d-----w C:\Program Files\K-Lite Codec Pack 2007-11-10 12:09 --------- d-----w C:\Program Files\Microsoft.NET 2007-11-10 12:09 --------- d-----w C:\Program Files\Microsoft Works 2007-11-10 11:12 --------- d-----w C:\Program Files\WIDCOMM 2007-11-10 11:10 --------- d-----w C:\Program Files\IRIS Desktop Search 2007-11-10 11:09 --------- d-----w C:\Program Files\Readiris Pro 11 HP 2007-11-10 11:06 --------- d-----w C:\Documents and Settings\Dawid\Dane aplikacji\HP 2007-11-10 11:06 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\Hewlett-Packard 2007-11-10 11:01 --------- d-----w C:\Program Files\HP 2007-11-10 11:01 --------- d-----w C:\Program Files\Common Files\HP 2007-11-10 11:01 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\HP 2007-11-10 11:00 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\zvprt50 2007-11-10 10:57 --------- d-----w C:\Program Files\Hewlett-Packard 2007-11-10 10:57 --------- d-----w C:\Program Files\Common Files\Hewlett-Packard 2007-11-10 10:41 --------- d-----w C:\Program Files\Alwil Software 2007-11-10 10:31 --------- d-----w C:\Program Files\Winamp 2007-11-10 10:30 --------- d-----w C:\Documents and Settings\Dawid\Dane aplikacji\Lavasoft 2007-11-10 10:29 --------- d-----w C:\Program Files\Sygate 2007-11-10 10:29 --------- d-----w C:\Program Files\Lavasoft 2007-11-10 10:29 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard 2007-11-10 10:28 --------- d-----w C:\Program Files\Gadu-Gadu 2007-11-10 10:28 --------- d-----w C:\Documents and Settings\Dawid\Dane aplikacji\Gadu-Gadu 2007-11-10 10:24 --------- d-----w C:\Program Files\PowerISO 2007-11-10 10:20 --------- d-----w C:\Documents and Settings\Dawid\Dane aplikacji\InterTrust 2007-11-10 10:18 --------- d-----w C:\Program Files\Common Files\Ahead 2007-11-10 10:18 --------- d-----w C:\Program Files\Ahead 2007-11-10 10:17 --------- d-----w C:\Program Files\CyberLink DVD Solution 2007-11-10 10:17 --------- d-----w C:\Program Files\CyberLink 2007-11-10 10:17 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\CyberLink 2007-11-10 10:14 --------- d-----w C:\Documents and Settings\Dawid\Dane aplikacji\ATI 2007-11-10 10:08 --------- d-----w C:\Program Files\Common Files\InstallShield 2007-11-10 10:08 --------- d-----w C:\Program Files\ATI Technologies 2007-11-10 10:02 --------- d-----w C:\Program Files\AMD 2007-11-10 10:01 --------- d-----w C:\Program Files\Realtek Sound Manager 2007-11-10 09:49 --------- d-----w C:\Program Files\microsoft frontpage 2007-11-10 09:48 --------- d-----w C:\Program Files\Usługi online 2007-10-29 22:44 1,291,264 ----a-w C:\WINDOWS\system32\quartz.dll 2007-10-25 09:00 230,912 ----a-w C:\WINDOWS\system32\wmasf.dll 2007-10-22 02:39 267,272 ----a-w C:\WINDOWS\system32\xactengine2_10.dll 2007-10-22 02:37 17,928 ----a-w C:\WINDOWS\system32\X3DAudio1_2.dll 2007-10-20 00:56 200,704 ----a-w C:\WINDOWS\system32\ssldivx.dll 2007-10-20 00:56 1,044,480 ----a-w C:\WINDOWS\system32\libdivx.dll 2007-10-12 14:14 3,734,536 ----a-w C:\WINDOWS\system32\d3dx9_36.dll 2007-10-12 14:14 1,374,232 ----a-w C:\WINDOWS\system32\D3DCompiler_36.dll 2007-10-02 08:56 444,776 ----a-w C:\WINDOWS\system32\d3dx10_36.dll 2005-03-31 21:17 40,960 ----a-w C:\Program Files\Uninstall_CDS.exe . ((((((((((((((((((((((((((((( snapshot@2007-12-24_12.38.23.48 ))))))))))))))))))))))))))))))))))))))))) . - 2005-03-18 16:19:58 2,337,488 ----a-w C:\WINDOWS\system32\d3dx9_25.dll + 2005-03-19 00:19:58 2,337,488 ----a-w C:\WINDOWS\system32\d3dx9_25.dll - 2007-11-15 08:06:23 181,040 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT + 2007-12-26 23:23:49 181,832 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT - 2004-08-04 12:00:00 1,392,671 ----a-w C:\WINDOWS\system32\msvbvm60.dll + 2005-04-05 13:28:54 1,386,496 ----a-w C:\WINDOWS\system32\MSVBVM60.DLL - 2007-12-01 07:30:18 2,467,600 ----a-w C:\WINDOWS\system32\Restore\rstrlog.dat + 2007-12-25 18:44:31 438,916 ----a-w C:\WINDOWS\system32\Restore\rstrlog.dat + 2000-07-14 23:00:00 101,888 ----a-w C:\WINDOWS\system32\VB6STKIT.DLL + 2007-12-26 23:23:57 16,384 ----atw C:\WINDOWS\Temp\Perflib_Perfdata_658.dat . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] “CTFMON.EXE”=“C:\WINDOWS\system32\ctfmon.exe” [2004-08-04 13:00] “I.R.I.S. Desktop Search”=“C:\PROGRA~1\IRISDE~1\IRISDE~1.exe” [2006-01-11 14:37] “MSMSGS”=“C:\Program Files\Messenger\msmsgs.exe” [2004-10-13 17:24] “PowerBar”="" [] “Eraser”=“C:\Program Files\Eraser\eraser.exe” [2003-07-25 11:15] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] “NVRaidService”=“C:\WINDOWS\system32\nvraidservice.exe” [2004-01-13 05:36] “ATIPTA”=“C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe” [2005-02-22 21:05] “ATICCC”=“C:\Program Files\ATI Technologies\ATI.ACE\cli.exe” [2005-02-22 22:21] “RemoteControl”=“C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe” [2003-12-08 17:35] “InCD”=“C:\Program Files\Ahead\InCD\InCD.exe” [2005-06-10 15:20] “NeroFilterCheck”=“C:\WINDOWS\system32\NeroCheck.exe” [2001-07-09 11:50] “PWRISOVM.EXE”=“C:\Program Files\PowerISO\PWRISOVM.EXE” [2007-04-09 13:23] “SmcService”=“C:\PROGRA~1\Sygate\SPF\smc.exe” [2004-10-15 19:40] “WinampAgent”=“C:\Program Files\Winamp\winampa.exe” [2007-05-14 23:22] “avast!”=“C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe” [2007-12-04 14:00] “ToolBoxFX”=“C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe” [2007-06-20 20:42] “HP Software Update”=“C:\Program Files\HP\HP Software Update\HPWuSchd2.exe” [2005-02-16 23:11] “SoftickPPP”=“C:\Program Files\Softick\PPP\Bin\PPPGate.exe” [2004-10-20 23:05] “SunJavaUpdateSched”=“C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe” [2007-09-25 01:11] “SVRemote”=“C:\Program Files\WinPVR\TVCardRemote.exe” [2006-05-30 13:45] “SoundMan”=“SOUNDMAN.EXE” [2004-12-22 10:09 C:\WINDOWS\soundman.exe] [HKEY_USERS.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] “CTFMON.EXE”=“C:\WINDOWS\system32\CTFMON.EXE” [2004-08-04 13:00] “ATICCC”=“C:\Program Files\ATI Technologies\ATI.ACE\cli.exe” [2005-02-22 22:21] R3 Cap7134;OEM 7130AC Video Capture;C:\WINDOWS\system32\DRIVERS\Cap7134.sys [2006-06-14 10:38] R3 PhTVTune;OEM 7130AC WDM TVTuner;C:\WINDOWS\system32\DRIVERS\PhTVTune.sys [2006-06-14 10:38] S3 DarkSpy;DarkSpy;C:\WINDOWS\system32\DarkSpyKernel.sys [] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc . ************************************************************************** catchme 0.3.1333 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2007-12-27 00:28:21 Windows 5.1.2600 Dodatek Service Pack 2 NTFS scanning hidden processes … scanning hidden autostart entries … scanning hidden files … scan completed successfully hidden files: 0 ************************************************************************** . Completion time: 2007-12-27 0:28:51 . 2007-12-15 23:21:15 — E O F —

Gutek · 28 Grudzień 2007 18:02

Ja nic nie widzę