Wolny internet na neostradzie 512kB/s

lembryk · 2 Listopad 2007 21:05

Hej. Mam problem jak w temacie. Sprawdzając prędkość łącza na http://www.twojeip.wp.pl i http://www.numion.com/YourSpeed3/ sporadycznie przekracza 100 kB/s. Nie wiem czy problem jest po stronie kompa czy neostrady.

Logfile of HijackThis v1.99.1 Scan saved at 21:34:36, on 2007-11-02 Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Common Files\Symantec Shared\ccProxy.exe C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Norton Internet Security\ISSVC.exe C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\WINDOWS\system32\lxdjcoms.exe C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe C:\WINDOWS\system32\nvsvc32.exe D:\gry\moha\UnrealEngine3\MOHAGame\pb\PnkBstrA.exe C:\Program Files\CyberLink\Shared Files\RichVideo.exe C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe C:\Program Files\Lexmark 1400 Series\lxdjamon.exe C:\Program Files\DAEMON Tools\daemon.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\L\Pulpit\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.gazeta.pl/reloadwww?atex=521 … 3077234296 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: Winamp Toolbar BHO - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O2 - BHO: Norton Internet Security - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O3 - Toolbar: Norton Internet Security - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll O4 - HKLM…\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM…\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM…\Run: [nwiz] nwiz.exe /install O4 - HKLM…\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM…\Run: [ccApp] “C:\Program Files\Common Files\Symantec Shared\ccApp.exe” O4 - HKLM…\Run: [symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer O4 - HKLM…\Run: [sunJavaUpdateSched] “C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe” O4 - HKLM…\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM…\Run: [lxdjmon.exe] “C:\Program Files\Lexmark 1400 Series\lxdjmon.exe” O4 - HKLM…\Run: [lxdjamon] “C:\Program Files\Lexmark 1400 Series\lxdjamon.exe” O4 - HKLM…\Run: [LXDJCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXDJtime.dll,_RunDLLEntry@16 O4 - HKCU…\Run: [DAEMON Tools] “C:\Program Files\DAEMON Tools\daemon.exe” -lang 1033 O4 - HKCU…\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O8 - Extra context menu item: &Winamp Toolbar Search - C:\Documents and Settings\All Users\Dane aplikacji\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra ‘Tools’ menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra ‘Tools’ menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe O23 - Service: Harmonogram automatycznej usługi LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: ISSvc (ISSVC) - Symantec Corporation - C:\Program Files\Norton Internet Security\ISSVC.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: lxdj_device - - C:\WINDOWS\system32\lxdjcoms.exe O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PunkBuster (PnkBstrA) - Unknown owner - D:\gry\moha\UnrealEngine3\MOHAGame\pb\PnkBstrA.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe

Krzychuu · 3 Listopad 2007 08:24

Zfixuj wpisy w HJT.

Daj loga z ComboFix.

Przejrzyj Optymalizację Autostartu.

Pobierz program SDFix

lembryk · 3 Listopad 2007 09:41

ComboFix 07-11-01.1** - L 2007-11-03 10:03:55.1 - FAT32x86 Microsoft Windows XP Professional 5.1.2600.2.1250.1.1045.18.1576 [GMT 1:00] Running from: C:\Documents and Settings\L\Pulpit\ComboFix.exe * Created a new restore point . ((((((((((((((((((((((((( Files Created from 2007-10-03 to 2007-11-03 ))))))))))))))))))))))))))))))) . 2007-11-03 10:03 51,200 --a------ C:\WINDOWS\NirCmd.exe 2007-11-02 22:31 2007-11-02 21:18 2007-11-02 21:18 2007-11-02 21:18 2007-11-02 21:18 2007-11-02 21:18 2007-11-02 21:18 2007-11-02 21:18 2007-11-02 21:10 289,144 --a------ C:\WINDOWS\system32\VCCLSID.exe 2007-11-02 21:10 288,417 --a------ C:\WINDOWS\system32\SrchSTS.exe 2007-11-02 21:10 53,248 --a------ C:\WINDOWS\system32\Process.exe 2007-11-02 21:10 51,200 --a------ C:\WINDOWS\system32\dumphive.exe 2007-11-02 21:10 25,600 --a------ C:\WINDOWS\system32\WS2Fix.exe 2007-11-02 21:10 1,652 --a------ C:\WINDOWS\system32\tmp.reg 2007-11-02 17:02 2007-10-31 17:41 2007-10-28 16:23 2007-10-28 16:21 2007-10-28 16:21 2007-10-28 12:34 2007-10-28 12:34 1,039,360 --a------ C:\WINDOWS\system32\MSJet35.dll 2007-10-28 12:34 403,216 --a------ C:\WINDOWS\system32\MsRepl35.dll 2007-10-28 12:34 251,664 --a------ C:\WINDOWS\system32\MSRD2x35.dll 2007-10-28 12:34 78,608 --a------ C:\WINDOWS\system32\VB5DB.dll 2007-10-28 12:34 77,824 --a------ C:\WINDOWS\system32\ODBCTL32.dll 2007-10-28 12:34 37,136 --a------ C:\WINDOWS\system32\MSJInt35.dll 2007-10-28 12:34 24,336 --a------ C:\WINDOWS\system32\MSJtEr35.dll 2007-10-25 15:10 2007-10-25 15:10 107,888 --a------ C:\WINDOWS\system32\CmdLineExt.dll 2007-10-25 15:09 2007-10-25 14:54 2,414,360 --a------ C:\WINDOWS\system32\d3dx9_31.dll 2007-10-25 14:54 68,888 --a------ C:\WINDOWS\system32\xinput1_3.dll 2007-10-25 14:53 2007-10-25 14:53 2007-10-25 14:53 2007-10-23 16:01 2007-10-23 15:57 2007-10-23 15:57 344,064 --a------ C:\WINDOWS\system32\lxdjcoin.dll 2007-10-23 15:57 40,960 --a------ C:\WINDOWS\system32\lxdjvs.dll 2007-10-23 15:52 2007-10-22 22:29 2007-10-22 20:45 2007-10-22 20:45 2007-10-22 20:45 2007-10-22 20:45 2007-10-22 20:39 2007-10-22 20:39 2007-10-22 20:38 2007-10-22 20:23 2007-10-22 00:58 2007-10-21 18:56 10 --a------ C:\WINDOWS\popcinfo.dat 2007-10-21 18:35 2007-10-21 12:54 2007-10-21 12:54 2007-10-21 00:34 2007-10-21 00:34 2007-10-20 23:31 2007-10-20 23:19 12,800 --a------ C:\WINDOWS\system32\WING32.DLL 2007-10-20 23:16 2007-10-20 23:16 2007-10-20 23:16 2007-10-20 23:11 2007-10-20 23:11 24,064 --------- C:\WINDOWS\system32\msxml3a.dll 2007-10-20 23:05 2007-10-20 23:04 2007-10-20 23:02 2007-10-20 23:02 2007-10-20 23:02 2007-10-20 23:00 2007-10-20 22:56 2007-10-20 22:52 2007-10-20 22:51 1,467 --a------ C:\WINDOWS\mozver.dat 2007-10-20 22:50 0 --a------ C:\WINDOWS\nsreg.dat 2007-10-20 22:23 103,424 --a------ C:\WINDOWS\system32\dllcache\eqnclass.dll 2007-10-20 22:23 24,661 --a------ C:\WINDOWS\system32\dllcache\spxcoins.dll 2007-10-20 22:23 15,360 --a------ C:\WINDOWS\system32\dllcache\taskman.exe 2007-10-20 22:23 11,264 --a------ C:\WINDOWS\system32\dllcache\irenum.sys 2007-10-20 22:23 8,704 --a------ C:\WINDOWS\system32\dllcache\batt.dll 2007-10-20 21:47 2007-10-20 21:19 470,048 -ra------ C:\WINDOWS\system32\drivers\ar5211.sys 2007-10-20 21:09 2007-10-20 21:09 4,608 --a------ C:\WINDOWS\system32\drivers\symlcbrd.sys 2007-10-20 21:08 2007-10-20 21:08 2007-10-20 21:08 2007-10-20 21:08 2007-10-20 21:08 124,016 --a------ C:\WINDOWS\system32\drivers\SYMEVENT.SYS 2007-10-20 21:08 91,904 --a------ C:\WINDOWS\system32\S32EVNT1.DLL 2007-10-20 21:06 2007-10-20 21:05 685,816 --a------ C:\WINDOWS\system32\drivers\sptd.sys . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2007-10-20 19:46 --------- d-----w C:\Program Files\DIFX 2007-10-20 19:45 --------- d-----w C:\Program Files\Realtek 2007-10-20 19:42 --------- d–h--w C:\Program Files\InstallShield Installation Information 2007-10-20 19:42 --------- d-----w C:\Program Files\Common Files\InstallShield 2007-10-20 19:32 --------- d-----w C:\Program Files\microsoft frontpage 2007-10-20 19:31 --------- d-----w C:\Program Files\Usługi online 2007-09-17 01:10 356,352 ----a-w C:\WINDOWS\system32\NVUNINST.EXE 2007-09-17 00:07 81,920 ----a-w C:\WINDOWS\system32\nvwddi.dll 2007-09-17 00:07 81,920 ----a-w C:\WINDOWS\system32\nvmctray.dll 2007-09-17 00:07 8,491,008 ----a-w C:\WINDOWS\system32\nvcpl.dll 2007-09-17 00:07 753,664 ----a-w C:\WINDOWS\system32\nvcplui.exe 2007-09-17 00:07 6,853,088 ----a-w C:\WINDOWS\system32\drivers\nv4_mini.sys 2007-09-17 00:07 6,853,088 ----a-w C:\WINDOWS\system32\dllcache\nv4_mini.sys 2007-09-17 00:07 6,746,112 ----a-w C:\WINDOWS\system32\nvoglnt.dll 2007-09-17 00:07 6,344,704 ----a-w C:\WINDOWS\system32\nvdisps.dll 2007-09-17 00:07 5,783,040 ----a-w C:\WINDOWS\system32\nv4_disp.dll 2007-09-17 00:07 5,783,040 ----a-w C:\WINDOWS\system32\dllcache\nv4_disp.dll 2007-09-17 00:07 466,944 ----a-w C:\WINDOWS\system32\nvshell.dll 2007-09-17 00:07 45,056 ----a-w C:\WINDOWS\system32\nvmccsrs.dll 2007-09-17 00:07 442,368 ----a-w C:\WINDOWS\system32\nvappbar.exe 2007-09-17 00:07 425,984 ----a-w C:\WINDOWS\system32\keystone.exe 2007-09-17 00:07 364,544 ----a-w C:\WINDOWS\system32\nvapi.dll 2007-09-17 00:07 36,864 ----a-w C:\WINDOWS\system32\nvcodins.dll 2007-09-17 00:07 36,864 ----a-w C:\WINDOWS\system32\nvcod.dll 2007-09-17 00:07 356,352 ----a-w C:\WINDOWS\system32\nvudisp.exe 2007-09-17 00:07 307,200 ----a-w C:\WINDOWS\system32\nvexpbar.dll 2007-09-17 00:07 3,551,232 ----a-w C:\WINDOWS\system32\nvvitvs.dll 2007-09-17 00:07 3,334,144 ----a-w C:\WINDOWS\system32\nvgames.dll 2007-09-17 00:07 286,720 ----a-w C:\WINDOWS\system32\nvnt4cpl.dll 2007-09-17 00:07 229,376 ----a-w C:\WINDOWS\system32\nvmccs.dll 2007-09-17 00:07 2,371,584 ----a-w C:\WINDOWS\system32\nvwss.dll 2007-09-17 00:07 188,416 ----a-w C:\WINDOWS\system32\nvmccss.dll 2007-09-17 00:07 155,716 ----a-w C:\WINDOWS\system32\nvsvc32.exe 2007-09-17 00:07 147,456 ----a-w C:\WINDOWS\system32\nvcolor.exe 2007-09-17 00:07 1,703,936 ----a-w C:\WINDOWS\system32\nvwdmcpl.dll 2007-09-17 00:07 1,626,112 ----a-w C:\WINDOWS\system32\nwiz.exe 2007-09-17 00:07 1,478,656 ----a-w C:\WINDOWS\system32\nview.dll 2007-09-17 00:07 1,339,392 ----a-w C:\WINDOWS\system32\nvdspsch.exe 2007-09-17 00:07 1,150,976 ----a-w C:\WINDOWS\system32\nvmobls.dll 2007-09-17 00:07 1,019,904 ----a-w C:\WINDOWS\system32\nvwimg.dll . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown [HKEY_LOCAL_MACHINE~\Browser Helper Objects{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}] 2007-10-04 22:06 1135968 --a------ C:\Program Files\Winamp Toolbar\winamptb.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] “{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2}”= C:\Program Files\Winamp Toolbar\winamptb.dll [2007-10-04 22:06 1135968] [HKEY_CLASSES_ROOT\CLSID{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2}] [HKEY_CLASSES_ROOT\WINAMPTB.AOLToolBand.1] [HKEY_CLASSES_ROOT\TypeLib{538CD77C-BFDD-49b0-9562-77419CAB89D1}] [HKEY_CLASSES_ROOT\WINAMPTB.AOLToolBand] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser] “{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}”= C:\Program Files\Winamp Toolbar\winamptb.dll [2007-10-04 22:06 1135968] [HKEY_CLASSES_ROOT\CLSID{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}] [HKEY_CLASSES_ROOT\WINAMPTB.AOLToolBand.1] [HKEY_CLASSES_ROOT\TypeLib{538CD77C-BFDD-49b0-9562-77419CAB89D1}] [HKEY_CLASSES_ROOT\WINAMPTB.AOLToolBand] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] “RTHDCPL”=“RTHDCPL.EXE” [2006-08-01 13:10 C:\WINDOWS\RTHDCPL.EXE] “nwiz”=“nwiz.exe” [2007-09-17 01:07 C:\WINDOWS\system32\nwiz.exe] “NvMediaCenter”=“C:\WINDOWS\system32\NvMcTray.dll” [2007-09-17 01:07] “ccApp”=“C:\Program Files\Common Files\Symantec Shared\ccApp.exe” [2007-02-22 10:58] “Symantec NetDriver Monitor”=“C:\PROGRA~1\SYMNET~1\SNDMon.exe” [2007-10-20 21:47] “SunJavaUpdateSched”=“C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe” [2007-09-25 01:11] “NeroFilterCheck”=“C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe” [2006-01-12 15:40] “lxdjmon.exe”=“C:\Program Files\Lexmark 1400 Series\lxdjmon.exe” [] “lxdjamon”=“C:\Program Files\Lexmark 1400 Series\lxdjamon.exe” [2007-03-06 04:40] “LXDJCATS”=“C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXDJtime.dll” [2007-02-10 01:21] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] “DAEMON Tools”=“C:\Program Files\DAEMON Tools\daemon.exe” [2007-08-16 13:24] “SpybotSD TeaTimer”=“C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe” [2007-08-17 19:48] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] “Skype”=“C:\Program Files\Skype\Phone\Skype.exe” /nosplash /minimized [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] “LanguageShortcut”=“C:\Program Files\CyberLink\PowerDVD\Language\Language.exe” “QuickTime Task”=“C:\Program Files\QuickTime\qttask.exe” -atboottime “RemoteControl”=“C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe” “SkyTel”=SkyTel.EXE “NvCplDaemon”=RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup R0 iteraid;ITERAID_Service_Install;C:\WINDOWS\system32\DRIVERS\iteraid.sys R2 Harmonogram automatycznej usługi LiveUpdate;Harmonogram automatycznej usługi LiveUpdate;“C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe” *Newly Created Service* - CATCHME . Contents of the ‘Scheduled Tasks’ folder “2007-10-20 20:15:26 C:\WINDOWS\Tasks\Norton AntiVirus - Skanuj komputer - L.job” - C:\PROGRA~1\NORTON~1\NORTON~1\Navw32.exe . ************************************************************************** catchme 0.3.1250 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2007-11-03 10:04:27 Windows 5.1.2600 Dodatek Service Pack 2 FAT NTAPI scanning hidden processes … scanning hidden autostart entries … HKLM\Software\Microsoft\Windows\CurrentVersion\Run LXDJCATS = rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXDJtime.dll,_RunDLLEntry@16??? scanning hidden files … scan completed successfully hidden files: 0 ************************************************************************** . Completion time: 2007-11-03 10:04:41 . — E O F —

Złączono Posta : 03.11.2007 (Sob) 10:44

Z góry dzieki za pomoc

SDFix: Version 1.113 Run by L on 2007-11-03 at 10:31 Microsoft Windows XP [Wersja 5.1.2600] Running From: C:\SDFix Safe Mode: Checking Services: Restoring Windows Registry Values Restoring Windows Default Hosts File Rebooting… Normal Mode: Checking Files: No Trojan Files Found Removing Temp Files… ADS Check: C:\WINDOWS No streams found. C:\WINDOWS\system32 No streams found. C:\WINDOWS\system32\svchost.exe No streams found. C:\WINDOWS\system32\ntoskrnl.exe No streams found. Final Check: catchme 0.3.1253 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2007-11-03 10:38:20 Windows 5.1.2600 Dodatek Service Pack 2 FAT NTAPI scanning hidden processes … scanning hidden services … scanning hidden autostart entries … HKLM\Software\Microsoft\Windows\CurrentVersion\Run LXDJCATS = rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXDJtime.dll,_RunDLLEntry@16??? scanning hidden files … scan completed successfully hidden processes: 0 hidden services: 0 hidden files: 0 Remaining Services: ------------------ Authorized Application Key Export: [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] Remaining Files: --------------- Files with Hidden Attributes: Finished!

jessica · 3 Listopad 2007 09:55

Raczej jest czysto.

Ten powyższy plik ma dwie wersje: jedna prawidłowa, druga to Trojan.

Nie da się rozpoznać w logu, bo obie wersje mają identyczną ścieżkę.

Sprawdź go na --> http://virusscan.jotti.org/

Opis, jak korzystać z JOTTI --> http://otfans.pl/forums/showthread.php?tid=552

albo na http://www.virustotal.com/en/indexf.html.

(korzysta się podobnie jak z JOTTI).

jessi

lembryk · 3 Listopad 2007 12:25

Sprawdziłem ten plik i jest czysty. Więc to pewnie wina telekomunikacji.