Wolne działanie systemu ;-(

tubart · 6 Czerwiec 2007 20:19

Cześć, będę wdzięczny jeżeli mi pomożecie! Dzięki, pozdrawiam!

Logfile of HijackThis v1.99.1 Scan saved at 22:14:04, on 2007-06-06 Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:/WINDOWS/System32/smss.exe C:/WINDOWS/system32/winlogon.exe C:/WINDOWS/system32/services.exe C:/WINDOWS/system32/lsass.exe C:/WINDOWS/system32/svchost.exe C:/WINDOWS/System32/svchost.exe C:/WINDOWS/system32/ZoneLabs/vsmon.exe C:/WINDOWS/Explorer.EXE C:/Program Files/Alwil Software/Avast4/aswUpdSv.exe C:/Program Files/Alwil Software/Avast4/ashServ.exe C:/WINDOWS/system32/spoolsv.exe C:/WINDOWS/System32/svchost.exe C:/Program Files/Alwil Software/Avast4/ashMaiSv.exe C:/Program Files/Alwil Software/Avast4/ashWebSv.exe C:/Program Files/Zone Labs/ZoneAlarm/zlclient.exe C:/PROGRA~1/ALWILS~1/Avast4/ashDisp.exe C:/Program Files/Nokia/Nokia PC Suite 6/LaunchApplication.exe C:/Program Files/PC Connectivity Solution/ServiceLayer.exe C:/WINDOWS/system32/wuauclt.exe C:/Documents and Settings/komputer/Pulpit/HijackThis.exe R0 - HKCU/Software/Microsoft/Internet Explorer/Toolbar,LinksFolderName = Łącza O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:/Program Files/Adobe/Acrobat 7.0/ActiveX/AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:/Program Files/Spybot - Search & Destroy/SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:/Program Files/Java/jre1.6.0/bin/ssv.dll O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:/Program Files/Free Download Manager/iefdmcks.dll O4 - HKLM/…/Run: [ZoneAlarm Client] “C:/Program Files/Zone Labs/ZoneAlarm/zlclient.exe” O4 - HKLM/…/Run: [avast!] C:/PROGRA~1/ALWILS~1/Avast4/ashDisp.exe O4 - HKLM/…/Run: [PCSuiteTrayApplication] C:/Program Files/Nokia/Nokia PC Suite 6/LaunchApplication.exe -startup O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:/PROGRA~1/MICROS~2/Office10/EXCEL.EXE/3000 O8 - Extra context menu item: Pobierz w Free Download Manager - file://C:/Program Files/Free Download Manager/dllink.htm O8 - Extra context menu item: Pobierz wszystkie pliki w Free Download Manager - file://C:/Program Files/Free Download Manager/dlall.htm O8 - Extra context menu item: Pobierz zaznaczone w Free Download Manager - file://C:/Program Files/Free Download Manager/dlselected.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:/Program Files/Java/jre1.6.0/bin/npjpi160.dll O9 - Extra ‘Tools’ menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:/Program Files/Java/jre1.6.0/bin/npjpi160.dll O17 - HKLM/System/CCS/Services/Tcpip/…/{07B2EA82-A399-4AB6-B0BD-07EC31A3775C}: NameServer = 208.67.222.222,208.67.220.220 O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:/Program Files/Alwil Software/Avast4/aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:/Program Files/Alwil Software/Avast4/ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:/Program Files/Alwil Software/Avast4/ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:/Program Files/Alwil Software/Avast4/ashWebSv.exe" /service (file missing) O23 - Service: Pml Driver HPZ12 - HP - C:/WINDOWS/System32/HPZipm12.exe O23 - Service: ServiceLayer - Nokia. - C:/Program Files/PC Connectivity Solution/ServiceLayer.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:/WINDOWS/system32/ZoneLabs/vsmon.exe

Gutek · 6 Czerwiec 2007 20:25

Daj log z Combofix

tubart · 7 Czerwiec 2007 07:51

“komputer” - 2007-06-07 9:47:28 Dodatek Service Pack 2 NTFS ComboFix 07-06-3B - Running from: “C:\Documents and Settings\komputer\Pulpit” ((((((((((((((((((((((((( Files Created from 2007-05-07 to 2007-06-07 ))))))))))))))))))))))))))))))) 2007-06-06 12:44 1,744 --a------ C:\WINDOWS\system32\d3d9caps.dat 2007-06-06 12:31 2007-06-06 12:19 2007-06-06 12:09 2007-06-06 12:09 2007-06-06 12:08 2007-06-06 12:04 2007-06-06 12:00 2007-06-06 12:00 2007-06-06 12:00 2007-06-06 12:00 2007-06-06 11:59 90,624 --a------ C:\WINDOWS\system32\nmwcdcls.dll 2007-06-06 11:59 2007-06-06 11:59 2007-06-06 11:57 8,192 --a------ C:\WINDOWS\system32\wshirda.dll 2007-06-06 11:57 27,648 --a------ C:\WINDOWS\system32\irmon.dll 2007-06-06 11:57 153,088 --a------ C:\WINDOWS\system32\irftp.exe 2007-05-26 19:16 2007-05-26 18:31 2007-05-26 18:14 2007-05-26 17:58 2007-05-26 17:57 2007-05-26 17:57 2007-05-26 17:55 2007-05-26 17:53 2007-05-26 17:52 2007-05-26 17:47 1,156 --a------ C:\WINDOWS\mozver.dat 2007-05-26 17:46 0 --a------ C:\WINDOWS\nsreg.dat 2007-05-26 17:42 2007-05-26 17:42 2007-05-26 17:37 2007-05-26 17:37 2007-05-26 17:36 2007-05-26 17:36 2007-05-26 17:36 2007-05-26 17:36 2007-05-26 17:35 3,596,288 --a------ C:\WINDOWS\system32\qt-dx331.dll 2007-05-26 17:35 10,752 --a------ C:\WINDOWS\system32\ff_vfw.dll 2007-05-26 17:35 1,415,680 --a------ C:\WINDOWS\system32\WMV9VCM.dll 2007-05-26 17:35 2007-05-26 17:35 2007-05-26 17:35 2007-05-26 17:32 12,800 --a------ C:\Program Files\ggbkiller2v2_1.exe 2007-05-26 17:32 2007-05-26 17:32 2007-05-26 17:30 2007-05-26 17:29 2007-05-26 17:12 2007-05-26 16:56 2007-05-26 16:44 95,872 --a------ C:\WINDOWS\system32\AvastSS.scr 2007-05-26 16:44 94,552 --a------ C:\WINDOWS\system32\drivers\aswmon2.sys 2007-05-26 16:44 85,952 --a------ C:\WINDOWS\system32\drivers\aswmon.sys 2007-05-26 16:44 745,600 --a------ C:\WINDOWS\system32\aswBoot.exe 2007-05-26 16:44 43,176 --a------ C:\WINDOWS\system32\drivers\aswTdi.sys 2007-05-26 16:44 26,888 --a------ C:\WINDOWS\system32\drivers\aavmker4.sys 2007-05-26 16:44 23,416 --a------ C:\WINDOWS\system32\drivers\aswRdr.sys 2007-05-26 16:44 2007-05-26 16:42 2007-05-26 16:36 2007-05-26 16:36 2007-05-26 16:34 2007-05-26 16:31 22,752 --a------ C:\WINDOWS\system32\spupdsvc.exe 2007-05-26 16:29 2007-05-26 16:26 4,569 --------- C:\WINDOWS\system32\secupd.dat 2007-05-26 16:26 11,776 --------- C:\WINDOWS\system32\spnpinst.exe 2007-05-26 15:59 2007-05-26 15:41 956,416 --a------ C:\WINDOWS\system32\msdtctm.dll 2007-05-26 15:41 91,136 --a------ C:\WINDOWS\system32\mtxoci.dll 2007-05-26 15:41 77,312 --a------ C:\WINDOWS\system32\browser.dll 2007-05-26 15:41 66,560 --a------ C:\WINDOWS\system32\mtxclu.dll 2007-05-26 15:41 625,152 --a------ C:\WINDOWS\system32\catsrvut.dll 2007-05-26 15:41 614,912 --a------ C:\WINDOWS\system32\h323msp.dll 2007-05-26 15:41 60,416 --a------ C:\WINDOWS\system32\colbact.dll 2007-05-26 15:41 581,120 --a------ C:\WINDOWS\system32\rpcrt4.dll 2007-05-26 15:41 540,160 --a------ C:\WINDOWS\system32\comuid.dll 2007-05-26 15:41 426,496 --a------ C:\WINDOWS\system32\msdtcprx.dll 2007-05-26 15:41 40,960 --a------ C:\WINDOWS\system32\mf3216.dll 2007-05-26 15:41 397,824 --a------ C:\WINDOWS\system32\rpcss.dll 2007-05-26 15:41 331,264 --a------ C:\WINDOWS\system32\ipnathlp.dll 2007-05-26 15:41 243,200 --a------ C:\WINDOWS\system32\es.dll 2007-05-26 15:41 225,792 --a------ C:\WINDOWS\system32\catsrv.dll 2007-05-26 15:41 161,280 --a------ C:\WINDOWS\system32\msdtcuiu.dll 2007-05-26 15:41 110,080 --a------ C:\WINDOWS\system32\clbcatex.dll 2007-05-26 15:41 101,376 --a------ C:\WINDOWS\system32\txflog.dll 2007-05-26 15:41 1,284,608 --a------ C:\WINDOWS\system32\ole32.dll 2007-05-26 15:41 1,267,200 --a------ C:\WINDOWS\system32\comsvcs.dll 2007-05-26 15:38 240,128 --a------ C:\WINDOWS\system32\srrstr.dll 2007-05-26 15:37 26,112 --a------ C:\WINDOWS\system32\xpsp1hfm.exe 2007-05-26 15:31 2007-05-26 15:30 8,192 --------- C:\WINDOWS\system32\bitsprx2.dll 2007-05-26 15:30 7,168 --------- C:\WINDOWS\system32\bitsprx3.dll 2007-05-26 15:30 351,232 --a------ C:\WINDOWS\system32\winhttp.dll 2007-05-26 15:30 18,944 --a------ C:\WINDOWS\system32\qmgrprxy.dll 2007-05-26 15:27 466,200 --a------ C:\WINDOWS\system32\wuapi.dll 2007-05-26 15:27 41,240 --a------ C:\WINDOWS\system32\wups.dll 2007-05-26 15:27 195,352 --a------ C:\WINDOWS\system32\wuaueng1.dll 2007-05-26 15:27 18,200 --a------ C:\WINDOWS\system32\wups2.dll 2007-05-26 15:27 175,384 --a------ C:\WINDOWS\system32\wuauclt1.exe 2007-05-26 15:27 128,280 --a------ C:\WINDOWS\system32\wucltui.dll 2007-05-26 15:26 (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) 2007-06-06 10:21:53 64,342 ----a-w C:\WINDOWS\system32\perfc015.dat 2007-06-06 10:21:53 429,946 ----a-w C:\WINDOWS\system32\perfh015.dat 2007-04-18 16:14:32 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll 2007-03-17 13:45:36 293,376 ----a-w C:\WINDOWS\system32\winsrv.dll 2007-03-08 15:38:47 579,072 ----a-w C:\WINDOWS\system32\user32.dll 2007-03-08 15:38:47 281,600 ----a-w C:\WINDOWS\system32\gdi32.dll 2007-03-08 15:37:33 1,843,840 ----a-w C:\WINDOWS\system32\win32k.sys ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) *Note* empty entries & legit default entries are not shown [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}=C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2005-09-24 06:12] {53707962-6F74-2D53-2644-206D7942484F}=C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2005-05-31 01:04] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}=C:\Program Files\Java\jre1.6.0\bin\ssv.dll [2007-05-26 17:43] {CC59E0F9-7E43-44FA-9FAA-8377850BF205}=C:\Program Files\Free Download Manager\iefdmcks.dll [2006-08-20 19:55] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] “ZoneAlarm Client”=“C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe” [2007-03-09 00:02] “avast!”=“C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe” [2007-04-30 17:42] “PCSuiteTrayApplication”=“C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe” [2007-03-23 13:20] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] “ClearRecentDocsOnExit”=1 (0x1) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] bthsvcs BthServ HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost *netsvcs* ************************************************************************** catchme 0.3.692 W2K/XP/Vista - userland rootkit detector by Gmer, http://www.gmer.net Rootkit scan 2007-06-07 09:48:48 Windows 5.1.2600 Dodatek Service Pack 2 NTFS scanning hidden processes … scanning hidden autostart entries … scanning hidden files … scan completed successfully hidden files: 0 ************************************************************************** [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\BTHPORT\Parameters\Services{00000001-0000-1000-8000-0002ee000002}] [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\BTHPORT\Parameters\Services{00001000-0000-1000-8000-00805f9b34fb}] [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\BTHPORT\Parameters\Services{00001115-0000-1000-8000-00805f9b34fb}] Completion time: 2007-06-07 9:49:39 — E O F —

Gutek · 7 Czerwiec 2007 15:39

Skan AVG Anti-Spyware 7.5 po update

Optymalizacja XP: http://forum.dobreprogramy.pl/viewtopic.php?t=76580