Aktualizacje na programosy.pl: Q-Dir PortableQ-DirZD Soft Screen RecorderEventSentryYandex.BrowserMozilla FirefoxGetFLVJ. River Media CenterWashAndGo  

  • Ogłoszenie:

[log] internet wolno chodzi

Bezpieczeństwo systemów, usuwanie wirusów, dobieranie programów antywirusowych. Obowiązkowe logi w tym dziale: trzy z FRST + Gmer.
Wyślij odpowiedź

[log] internet wolno chodzi

Postprzez filip.ludwik 04 Sty 2009, 19:21

reklama
Witam!

Mam od jakiegoś czasu mały problem z internetem - niby wszytko jest ok - torrenty ściągają się pełną prędkością i w ogole fajnie, jednak problem jest podczas przeglądania zwykłych stron.

Nawet onet się długo ładuje , nie wspomne już np. o filmikach z Youtube, generalnie wszytko co związane z http chodzi znacznie wolniej niż powinno.

Log z HT:

Kod: Zaznacz wszystko
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:16:41, on 2009-01-04
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\REALTEK PCI&Cardbus Wireless LAN Driver and Utility\RtWLan.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\autoclk.exe
F:\Programy\Avast\ashDisp.exe
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\Program Files\Portrait Displays\Pivot Software\wpCtrl.exe
C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Portrait Displays\Pivot Software\floater.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Gateway\EzTune\DTHtml.exe
F:\Programy\AutoConnect\AutoConnect.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
F:\Programy\salling click\Salling Clicker\WinClicker.exe
F:\Programy\NOKIA\Nokia PC Suite 7\PCSuite.exe
F:\Programy\NOKIA\Nokia PC Suite 7\PcSync2.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\Common Files\Portrait Displays\Shared\HookManager.exe
C:\Program Files\PC Connectivity Solution\Transports\NclIVTBTSrv.exe
C:\Program Files\Common Files\Nokia\MPAPI\MPAPI3s.exe
F:\Programy\Gadu-Gadu\Gadu-Gadu\7.0\gg.exe
C:\Windows\system32\conime.exe
E:\GRY\GTA IV\Rockstar Games Social Club\1_1_3_0\RGSC.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Java\jre1.5.0_11\bin\jucheck.exe
C:\Program Files\Mozilla Firefox\firefox.exe
F:\Programy\Foobar\foobar2000.exe
F:\Programy\Last.fm\LastFM.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.onet.pl/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Ahsan_Manan_Khan_Bhutta * Internet Explorer *
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Programy\Acrobat Reader 7\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [autoclk] autoclk.exe
O4 - HKLM\..\Run: [avast!] F:\Programy\Avast\ashDisp.exe
O4 - HKLM\..\Run: [AsusStartupHelp] C:\Program Files\ASUS\AASP\1.00.24\AsRunHelp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [RivaTunerStartupDaemon] "F:\Programy\Riva Tuner\RivaTuner v2.06\RivaTuner.exe" /S
O4 - HKLM\..\Run: [PivotSoftware] "C:\Program Files\Portrait Displays\Pivot Software\wpctrl.exe"
O4 - HKLM\..\Run: [DT GWY] C:\Program Files\Common Files\Portrait Displays\Shared\DT_startup.exe -GWY
O4 - HKLM\..\Run: [BtTray] "C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe"
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [AutoConnect] F:\Programy\AutoConnect\AutoConnect.exe
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "F:\Programy\DAEMON Tools Pro\DTProAgent.exe"
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [WinClicker.exe] "F:\Programy\salling click\Salling Clicker\WinClicker.exe" -atboottime
O4 - HKCU\..\Run: [PC Suite Tray] "F:\Programy\NOKIA\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [Nokia.PCSync] "F:\Programy\NOKIA\Nokia PC Suite 7\PCSync2.exe" /NoDialog
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\NPSWF32_FlashUtil.exe -p
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'USŁUGA SIECIOWA')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = F:\Programy\Acrobat Reader 7\Reader\reader_sl.exe
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O4 - Global Startup: Microsoft Office.lnk = F:\Programy\Office\Office10\OSA.EXE
O8 - Extra context menu item: Download All by ASUS Download - F:\Programy\asus router\ASDownloadAll.htm
O8 - Extra context menu item: Download using ASUS Download - F:\Programy\asus router\ASDownload.htm
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://F:\Programy\Office\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O13 - Gopher Prefix:
O16 - DPF: {1E53EA77-34F2-474E-9046-B2B0C86F1821} (OggX Control) - http://www.eska.pl/streamplayers/OggX.ocx
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{6EB56A8A-3FFC-4009-B1D4-DAF5993D3280}: NameServer = 208.67.222.222 208.67.220.220
O23 - Service: Asset Management Daemon - Unknown owner - C:\Program Files\Common Files\Portrait Displays\Plugins\AM\dtsslsrv.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - F:\Programy\Avast\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - F:\Programy\Avast\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - F:\Programy\Avast\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - F:\Programy\Avast\ashWebSv.exe
O23 - Service: BlueSoleilCS - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BsHelpCS - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
O23 - Service: Portrait Displays Display Tune Service (DTSRVC) - Unknown owner - C:\Program Files\Common Files\Portrait Displays\Shared\dtsrvc.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - F:\Programy\Nero\Nero 8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 8288 bytes



Proszę o sprawdzenie, ew. jaka może być inne przyczyna tego?

PZDR!
UBOT 3D
Awatar użytkownika
filip.ludwik
~user
 
Posty: 2129
Dołączenie: 12 Sty 2006, 19:10
Miejscowość: W-ce
Pochwały: 80


Góra

[log] internet wolno chodzi

Postprzez Okocza 04 Sty 2009, 19:26

filip.ludwik, daj log z Combofixa (chyba że nie ruszy Ci na Viście, to z RSITa)

Autor postu otrzymał pochwałę
eMachines E730G - Core i5-430M, 2GiB RAM, ATI Mobility Radeon HD5470, WD 320GiB; Cort Z-44,DR 0.09-0.42, Peavey Backstage
Mac OS X 10.7.4 Lion // Windows 7 Professional x64 // NIE POMAGAM NA PW/GG/E-MAIL
Image
"Moje Ego i Anima spotykają się i wymieniają przepisami na ciasteczka" - Maynard James Keenan
Awatar użytkownika
Okocza
~user
 
Posty: 8001
Dołączenie: 19 Mar 2006, 11:53
Pochwały: 406

Góra

[log] internet wolno chodzi

Postprzez filip.ludwik 04 Sty 2009, 19:44

Okocza napisał(a):log z Combofixa


Kod: Zaznacz wszystko
ComboFix 09-01-02.01 - Filip Ludwikowski 2009-01-04 18:36:09.1 - NTFSx86
Microsoft® Windows Vista™ Ultimate   6.0.6001.1.1250.1.1045.18.3326.2330 [GMT 1:00]
Uruchomiony z: e:\dowload\ComboFix.exe
* Utworzono nowy punkt przywracania
.

(((((((((((((((((((((((((   Pliki utworzone od 2008-12-04 do 2009-01-04  )))))))))))))))))))))))))))))))
.

2099-01-16 09:03 . 2008-12-29 17:22   <DIR>   d--------   c:\windows\System32\catroot2
2099-01-16 09:03 . 2007-10-31 18:09   <DIR>   d--------   c:\windows\Debug
2099-01-16 09:00 . 2099-01-16 09:04   <DIR>   d--------   c:\windows\Panther
2099-01-16 09:00 . 2008-12-08 18:33   <DIR>   d--hs----   C:\Boot
2099-01-16 09:00 . 2008-01-18 23:45   333,203   -rahs----   C:\bootmgr
2009-01-01 19:03 . 2009-01-01 19:03   0   --ah-----   c:\windows\System32\drivers\Msft_User_PCCSWpdDriver_01_05_00.Wdf
2008-12-10 00:21 . 2008-12-10 00:21   0   --ah-----   c:\windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf
2008-12-09 19:20 . 2008-12-02 23:11   801,312   --a------   c:\windows\System32\nvcplui.exe
2008-12-09 19:20 . 2008-12-02 23:11   420,384   --a------   c:\windows\System32\nvcpl.cpl
2008-12-09 19:19 . 2008-12-09 19:19   <DIR>   d--------   C:\NVIDIA
2008-12-09 19:19 . 2008-12-02 10:13   453,152   --a------   c:\windows\System32\NVUNINST.EXE
2008-12-09 17:48 . 2008-04-14 19:51   171,136   -rahs----   C:\grldr
2008-12-08 20:46 . 2008-12-08 20:55   <DIR>   d--------   c:\program files\Microsoft Games for Windows - LIVE
2008-12-08 20:46 . 2008-05-30 14:11   3,850,760   --a------   c:\windows\System32\D3DX9_38.dll
2008-12-08 20:46 . 2008-05-30 14:11   1,491,992   --a------   c:\windows\System32\D3DCompiler_38.dll
2008-12-08 20:46 . 2008-05-30 14:19   507,400   --a------   c:\windows\System32\XAudio2_1.dll
2008-12-08 20:46 . 2008-05-30 14:11   467,984   --a------   c:\windows\System32\d3dx10_38.dll
2008-12-08 20:46 . 2008-05-30 14:18   238,088   --a------   c:\windows\System32\xactengine3_1.dll
2008-12-08 20:46 . 2008-05-30 14:17   65,032   --a------   c:\windows\System32\XAPOFX1_0.dll
2008-12-08 20:46 . 2008-05-30 14:17   25,608   --a------   c:\windows\System32\X3DAudio1_4.dll
2008-12-08 18:27 . 2008-12-08 18:27   <DIR>   d--------   C:\PerfLogs
2008-12-08 18:13 . 2008-12-08 17:53   152,576   --a------   c:\windows\System32\SPWizUI.dll
2008-12-08 18:13 . 2008-12-08 17:53   47,560   --a------   c:\windows\System32\SPReview.exe
2008-12-08 18:04 . 2008-01-18 23:36   6,656   --a------   c:\windows\System32\sdspres.dll
2008-12-08 18:03 . 2008-01-18 23:33   599,552   --a------   c:\windows\System32\vsp1cln.exe
2008-12-08 18:03 . 2008-01-18 23:33   193,024   --a------   c:\windows\System32\recdisc.exe
2008-12-08 18:03 . 2008-01-18 23:36   142,336   --a------   c:\windows\System32\spp.dll
2008-12-08 18:03 . 2008-01-18 23:36   28,160   --a------   c:\windows\System32\sxproxy.dll
2008-12-08 17:58 . 2008-01-18 23:33   5,714,432   --a------   c:\windows\System32\logon.scr
2008-12-08 17:56 . 2008-01-18 23:36   2,588,160   --a------   c:\windows\System32\UIHub.dll
2008-12-08 17:55 . 2008-01-18 23:33   44,032   --a------   c:\windows\System32\cbsra.exe
2008-12-08 17:53 . 2008-12-08 17:53   <DIR>   d--------   C:\52747fa9b5085de9655fc7
2008-12-08 17:53 . 2008-12-08 18:14   327,680   --a------   c:\windows\SPInstall.etl

.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-01-04 15:37   ---------   d-----w   c:\users\Filip Ludwikowski\AppData\Roaming\uTorrent
2009-01-02 14:16   ---------   d-----w   c:\users\Filip Ludwikowski\AppData\Roaming\foobar2000
2008-12-09 18:27   ---------   d-----w   c:\programdata\NVIDIA
2008-12-08 19:09   ---------   d--h--w   c:\program files\InstallShield Installation Information
2008-12-08 17:33   174   --sha-w   c:\program files\desktop.ini
2008-12-08 17:28   ---------   d-----w   c:\program files\Windows Sidebar
2008-12-08 17:28   ---------   d-----w   c:\program files\Windows Photo Gallery
2008-12-08 17:28   ---------   d-----w   c:\program files\Windows Mail
2008-12-08 17:28   ---------   d-----w   c:\program files\Windows Journal
2008-12-08 17:28   ---------   d-----w   c:\program files\Windows Defender
2008-12-08 17:28   ---------   d-----w   c:\program files\Windows Collaboration
2008-12-08 17:28   ---------   d-----w   c:\program files\Windows Calendar
2008-12-08 17:18   101,888   ----a-w   c:\windows\System32\ifxcardm.dll
2008-12-08 17:17   82,432   ----a-w   c:\windows\System32\axaltocm.dll
2008-11-26 15:08   83,456   ----a-w   c:\windows\System32\wudriver.dll
2008-11-26 15:08   561,688   ----a-w   c:\windows\System32\wuapi.dll
2008-11-26 15:08   51,224   ----a-w   c:\windows\System32\wuauclt.exe
2008-11-26 15:08   43,544   ----a-w   c:\windows\System32\wups2.dll
2008-11-26 15:08   34,328   ----a-w   c:\windows\System32\wups.dll
2008-11-26 15:08   1,809,944   ----a-w   c:\windows\System32\wuaueng.dll
2008-11-26 15:08   1,524,736   ----a-w   c:\windows\System32\wucltux.dll
2008-11-26 15:07   31,232   ----a-w   c:\windows\System32\wuapp.exe
2008-11-26 15:07   162,064   ----a-w   c:\windows\System32\wuwebv.dll
2008-11-25 18:35   183,112   ----a-w   c:\windows\System32\PnkBstrB.exe
2008-11-25 18:35   138,184   ----a-w   c:\windows\system32\drivers\PnkBstrK.sys
2008-11-18 22:58   66,872   ----a-w   c:\windows\System32\PnkBstrA.exe
2008-11-18 22:54   ---------   d-----w   c:\users\Filip Ludwikowski\AppData\Roaming\Leadertech
2008-11-05 23:00   ---------   d-----w   c:\program files\Common Files\PCSuite
2008-11-05 23:00   ---------   d-----w   c:\program files\Common Files\Nokia
2008-11-05 22:59   ---------   d-----w   c:\programdata\Installations
2008-10-28 16:41   14,303,392   ----a-w   c:\windows\System32\xlive.dll
2008-10-28 16:41   13,643,936   ----a-w   c:\windows\System32\xlivefnt.dll
2008-10-26 18:54   85,432   ----a-w   c:\users\Filip Ludwikowski\AppData\Roaming\GDIPFONTCACHEV1.DAT
2008-10-23 17:03   107,888   ----a-w   c:\windows\System32\CmdLineExt.dll
2007-11-13 22:18   22,328   ----a-w   c:\users\Filip Ludwikowski\AppData\Roaming\PnkBstrK.sys
2008-12-19 13:49   67,688   ----a-w   c:\program files\mozilla firefox\components\jar50.dll
2008-12-19 13:49   54,368   ----a-w   c:\program files\mozilla firefox\components\jsd3250.dll
2008-12-19 13:49   34,944   ----a-w   c:\program files\mozilla firefox\components\myspell.dll
2008-12-19 13:49   46,712   ----a-w   c:\program files\mozilla firefox\components\spellchk.dll
2008-12-19 13:49   172,136   ----a-w   c:\program files\mozilla firefox\components\xpinstal.dll
2008-04-23 11:59   16,384   --sha-w   c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
2008-04-23 11:59   32,768   --sha-w   c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
2008-04-23 11:59   16,384   --sha-w   c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
.

(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-18 1233920]
"AutoConnect"="f:\programy\AutoConnect\AutoConnect.exe" [2004-08-28 295424]
"DAEMON Tools Pro Agent"="f:\programy\DAEMON Tools Pro\DTProAgent.exe" [2007-09-06 136136]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-18 125952]
"WinClicker.exe"="f:\programy\salling click\Salling Clicker\WinClicker.exe" [2007-05-11 1150976]
"PC Suite Tray"="f:\programy\NOKIA\Nokia PC Suite 7\PCSuite.exe" [2008-10-02 1124352]
"Nokia.PCSync"="f:\programy\NOKIA\Nokia PC Suite 7\PCSync2.exe" [2008-06-17 1249280]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-18 202240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="f:\programy\Avast\ashDisp.exe" [2008-07-19 78008]
"AsusStartupHelp"="c:\program files\ASUS\AASP\1.00.24\AsRunHelp.exe" [2006-12-29 363008]
"SunJavaUpdateSched"="c:\program files\Java\jre1.5.0_11\bin\jusched.exe" [2006-12-15 75520]
"RivaTunerStartupDaemon"="f:\programy\Riva Tuner\RivaTuner v2.06\RivaTuner.exe" [2007-10-30 2650112]
"PivotSoftware"="c:\program files\Portrait Displays\Pivot Software\wpctrl.exe" [2007-02-09 694008]
"DT GWY"="c:\program files\Common Files\Portrait Displays\Shared\DT_startup.exe" [2007-10-09 81920]
"BtTray"="c:\program files\IVT Corporation\BlueSoleil\BtTray.exe" [2008-05-26 258134]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2006-12-18 868352]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-12-02 13683232]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-12-02 92704]
"autoclk"="autoclk.exe" [2003-01-30 c:\windows\autoclk.exe]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - f:\programy\Acrobat Reader 7\Reader\reader_sl.exe [2007-11-23 29696]
DSLMON.lnk - c:\program files\SAGEM\SAGEM F@st 800-840\dslmon.exe [2007-10-31 962660]
Microsoft Office.lnk - f:\programy\Office\Office10\OSA.EXE [2007-11-23 83360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.FFDS"= c:\progra~1\COMBIN~1\Filters\FFDShow\ff_vfw.dll
"msacm.avis"= ff_acm.acm
"vidc.mjpg"= pvmjpg30.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
--a------ 2007-09-20 15:35 202024 c:\program files\Common Files\Nero\Lib\NMBgMonitor.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]
--a------ 2007-09-20 10:51 1836328 f:\programy\Nero\Nero 8\Nero BackItUp\NBKeyScan.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--a------ 2007-03-01 15:57 153136 c:\program files\Common Files\Nero\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinClicker.exe]
--a------ 2007-05-11 11:25 1150976 f:\programy\salling click\Salling Clicker\WinClicker.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-1391150800-3616949329-3190412359-1000]
"EnableNotifications"=dword:00000001
"EnableNotificationsRef"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"TCP Query User{BFFBF966-DDC4-4FAC-A9DD-6A749CE2EAFE}f:\\programy\\gadu-gadu\\gadu-gadu\\gg.exe"= UDP:f:\programy\gadu-gadu\gadu-gadu\gg.exe:Gadu-Gadu - program glowny
"UDP Query User{5F03A989-BF3F-4C40-AF41-57F933220971}f:\\programy\\gadu-gadu\\gadu-gadu\\gg.exe"= TCP:f:\programy\gadu-gadu\gadu-gadu\gg.exe:Gadu-Gadu - program glowny
"{90A97FBA-3B6A-4392-893C-CFFDBC866BDC}"= UDP:c:\program files\uTorrent\uTorrent.exe:µTorrent
"{8509A1AB-2A7F-454B-8631-ACE471E28F67}"= TCP:c:\program files\uTorrent\uTorrent.exe:µTorrent
"TCP Query User{CE0A76FD-F900-42E2-96F7-69A7F4DBB98C}f:\\programy\\last.fm\\lastfm.exe"= UDP:f:\programy\last.fm\lastfm.exe:Last.fm
"UDP Query User{8CCC6FBF-7624-4DC5-AB03-7887B8161446}f:\\programy\\last.fm\\lastfm.exe"= TCP:f:\programy\last.fm\lastfm.exe:Last.fm
"TCP Query User{2094BC15-4D24-48DA-8782-89AA5A8C9759}f:\\programy\\napi-projekt\\napisy.exe"= UDP:f:\programy\napi-projekt\napisy.exe:www.napiprojekt.pl
"UDP Query User{D3143D48-32D4-45A1-ACBF-6A8040E4439E}f:\\programy\\napi-projekt\\napisy.exe"= TCP:f:\programy\napi-projekt\napisy.exe:www.napiprojekt.pl
"{BE0A7BCE-132F-4A05-B1A3-1687FE97ADDC}"= UDP:e:\gry\Crysis\Bin32\Crysis.exe:Crysis_32
"{A651DBDA-46E1-403B-A073-BB189B3D87C3}"= TCP:e:\gry\Crysis\Bin32\Crysis.exe:Crysis_32
"{12F474AB-75AF-4FA9-9960-06DF077D7B09}"= UDP:e:\gry\Crysis\Bin32\CrysisDedicatedServer.exe:CrysisDedicatedServer_32
"{CF79AD40-9B20-4774-8ABC-1A297AD6FDA5}"= TCP:e:\gry\Crysis\Bin32\CrysisDedicatedServer.exe:CrysisDedicatedServer_32
"{FE3075FD-C10B-46AC-A36A-6A371298E9D7}"= UDP:c:\windows\System32\PnkBstrA.exe:PnkBstrA
"{25FFAA76-7CA6-4C21-A83A-4B6804DAB6C5}"= TCP:c:\windows\System32\PnkBstrA.exe:PnkBstrA
"{08FBFCD9-097C-4FE9-B59C-A1CBE6D07F6F}"= UDP:c:\windows\System32\PnkBstrB.exe:PnkBstrB
"{02F46DDD-262F-474A-AB80-D6C08A959D1C}"= TCP:c:\windows\System32\PnkBstrB.exe:PnkBstrB
"TCP Query User{4079715D-8262-4081-A4B1-CC00B539EF63}f:\\programy\\miranda\\miranda im\\miranda32.exe"= UDP:f:\programy\miranda\miranda im\miranda32.exe:Miranda IM
"UDP Query User{5A7725AB-6953-4DDE-920A-DCF6CC8800CA}f:\\programy\\miranda\\miranda im\\miranda32.exe"= TCP:f:\programy\miranda\miranda im\miranda32.exe:Miranda IM
"TCP Query User{76528325-D3CD-420E-BB32-C5CBF3CB4CFB}d:\\portablemiranda\\miranda\\plugins\\miranda\\miranda32.exe"= UDP:d:\portablemiranda\miranda\plugins\miranda\miranda32.exe:Miranda IM
"UDP Query User{A9625E54-F8F3-4EE3-90A7-CE0DA5BA616C}d:\\portablemiranda\\miranda\\plugins\\miranda\\miranda32.exe"= TCP:d:\portablemiranda\miranda\plugins\miranda\miranda32.exe:Miranda IM
"TCP Query User{33949F63-5939-48A6-A9D4-A7A21B5D62D7}e:\\dysk f\\programy\\gadu-gadu\\gadu-gadu\\gg.exe"= UDP:e:\dysk f\programy\gadu-gadu\gadu-gadu\gg.exe:Gadu-Gadu - program glowny
"UDP Query User{B8EFB4B6-FBF5-4A1E-BE30-CF61913EF70F}e:\\dysk f\\programy\\gadu-gadu\\gadu-gadu\\gg.exe"= TCP:e:\dysk f\programy\gadu-gadu\gadu-gadu\gg.exe:Gadu-Gadu - program glowny
"TCP Query User{EDE1DFB3-80EF-499F-B757-C6C979074751}e:\\dysk f\\programy\\miranda\\miranda im\\miranda32.exe"= UDP:e:\dysk f\programy\miranda\miranda im\miranda32.exe:Miranda IM
"UDP Query User{88ACA3CB-ACC7-4534-B2F9-32E022FB74B3}e:\\dysk f\\programy\\miranda\\miranda im\\miranda32.exe"= TCP:e:\dysk f\programy\miranda\miranda im\miranda32.exe:Miranda IM
"{41563EA8-70E6-46B8-9C25-2F6526123F2F}"= UDP:e:\gry\Unreal Tournament 3\Binaries\UT3.exe:Unreal Tournament 3
"{9974EEC1-5ED2-4963-96A5-63ADE263AEA0}"= TCP:e:\gry\Unreal Tournament 3\Binaries\UT3.exe:Unreal Tournament 3
"TCP Query User{00E90172-30E8-46E9-9150-BB288A3B52FF}f:\\programy\\psi\\psi.exe"= UDP:f:\programy\psi\psi.exe:psi
"UDP Query User{2E92865F-95BA-46C5-9AD0-4655B8122F58}f:\\programy\\psi\\psi.exe"= TCP:f:\programy\psi\psi.exe:psi
"TCP Query User{ACB5DE4E-AC1A-4C69-89D2-6D44DD841C6D}e:\\dowload\\miniserver.exe"= UDP:e:\dowload\miniserver.exe:miniserver
"UDP Query User{9AAA5445-7730-4166-8C1D-038BB245E14E}e:\\dowload\\miniserver.exe"= TCP:e:\dowload\miniserver.exe:miniserver
"TCP Query User{C36F26B4-DB4E-4728-B601-0780E229860C}f:\\programy\\gadu-gadu\\gadu-gadu\\7.0\\gg.exe"= UDP:f:\programy\gadu-gadu\gadu-gadu\7.0\gg.exe:Gadu-Gadu - program główny
"UDP Query User{1774FE05-6D6E-4A57-B2DA-7E639A44A173}f:\\programy\\gadu-gadu\\gadu-gadu\\7.0\\gg.exe"= TCP:f:\programy\gadu-gadu\gadu-gadu\7.0\gg.exe:Gadu-Gadu - program główny
"{5A68932D-53C9-4C32-A632-6316A9675405}"= UDP:f:\programy\salling click\Salling Clicker\WinClicker.exe:WinClicker.exe
"{8DD75836-8507-4E38-99E6-C757B2809C96}"= TCP:f:\programy\salling click\Salling Clicker\WinClicker.exe:WinClicker.exe
"{D3BCDE96-FC87-4413-BB91-0903C0D51CC5}"= TCP:5353:Salling Clicker mDNS
"TCP Query User{002C9EB7-D781-40A5-A1C2-AA66FCB3A3A7}f:\\programy\\salling click\\salling clicker\\winclicker.exe"= UDP:f:\programy\salling click\salling clicker\winclicker.exe:Salling Clicker
"UDP Query User{31CAD11E-A30B-4897-BE23-278E5789432E}f:\\programy\\salling click\\salling clicker\\winclicker.exe"= TCP:f:\programy\salling click\salling clicker\winclicker.exe:Salling Clicker
"TCP Query User{C4BD5528-5208-45EC-90CD-771CE4C5B954}f:\\programy\\gadu-gadu\\gadu-gadu\\7.0\\gg.exe"= UDP:f:\programy\gadu-gadu\gadu-gadu\7.0\gg.exe:Gadu-Gadu - program główny
"UDP Query User{86690CF0-6247-4FA2-A805-35AFD58040C8}f:\\programy\\gadu-gadu\\gadu-gadu\\7.0\\gg.exe"= TCP:f:\programy\gadu-gadu\gadu-gadu\7.0\gg.exe:Gadu-Gadu - program główny
"{201F732D-3A46-4E03-882E-93F63E863806}"= UDP:c:\program files\uTorrent\uTorrent.exe:µTorrent
"{269B132D-D51A-434F-BC50-E47194B82E14}"= TCP:c:\program files\uTorrent\uTorrent.exe:µTorrent
"TCP Query User{16637C4E-72CF-4309-A67F-7C35251258FE}f:\\programy\\psi\\psi.exe"= UDP:f:\programy\psi\psi.exe:psi
"UDP Query User{0A7DA272-1137-4041-8A16-060EBE2CC45B}f:\\programy\\psi\\psi.exe"= TCP:f:\programy\psi\psi.exe:psi
"{160A68A5-1C41-4E7B-AF75-F277DBE86C35}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{D121919B-097B-491F-9383-F6114EBF8B76}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"TCP Query User{702B2245-399C-4650-A5CD-84E61314FC06}e:\\gry\\unreal tournament 3\\binaries\\ut3.exe"= UDP:e:\gry\unreal tournament 3\binaries\ut3.exe:UT3
"UDP Query User{DC91299D-3495-45C5-9D91-44AAA0F67CB6}e:\\gry\\unreal tournament 3\\binaries\\ut3.exe"= TCP:e:\gry\unreal tournament 3\binaries\ut3.exe:UT3
"TCP Query User{B35984F0-AE3C-44FD-B44D-4B1B6E0235BB}e:\\gry\\tdu\\testdriveunlimited.exe"= UDP:e:\gry\tdu\testdriveunlimited.exe:Test Drive Unlimited
"UDP Query User{3FAA781D-9432-4404-901B-E7153657B821}e:\\gry\\tdu\\testdriveunlimited.exe"= TCP:e:\gry\tdu\testdriveunlimited.exe:Test Drive Unlimited
"{C809D5FD-04DA-41B0-86A0-69F4D4647C96}"= UDP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleil.exe:BlueSoleil
"{A8994201-6ADF-439A-8145-AF85643419DE}"= TCP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleil.exe:BlueSoleil
"{13F8B369-68D3-4081-8B00-C026A767B744}"= UDP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleil.exe:BlueSoleil
"{7D83A539-AC76-4CEA-93A4-2A1FBD1C7752}"= TCP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleil.exe:BlueSoleil
"{57C0FF52-A036-48AF-933D-5A3A5EC22A68}"= UDP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe:BlueSoleilCS
"{9C36FE93-9F46-4854-AA64-F02B7064152F}"= TCP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe:BlueSoleilCS
"{F7251E6B-3246-4897-AC15-5E2C49034A6E}"= UDP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe:BlueSoleilCS
"{4BD7F3BF-C0A0-4C29-89A4-AB30E663C8D9}"= TCP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe:BlueSoleilCS
"{4041E8FC-CC90-4066-8273-DD4D8E8C4E46}"= UDP:c:\program files\uTorrent\uTorrent.exe:µTorrent (TCP-In)
"{789E02F2-9B64-446C-815E-6BBA78A9F339}"= TCP:c:\program files\uTorrent\uTorrent.exe:µTorrent (UDP-In)
"{4085BDB9-8DE9-488A-A133-8315F4E90C33}"= UDP:f:\programy\PINACLE\Programs\RM.exe:Render Manager
"{D3898378-A16D-4C35-B632-28F1582825E5}"= TCP:f:\programy\PINACLE\Programs\RM.exe:Render Manager
"{34D6C8DB-1FDC-4FEC-A6F1-03D8AEBBD427}"= UDP:f:\programy\PINACLE\Programs\Studio.exe:Studio
"{EA90765D-C167-47D4-BA7D-1CB6AE970951}"= TCP:f:\programy\PINACLE\Programs\Studio.exe:Studio
"{56A5DC59-E82A-4BBD-99E1-F9F061B3B351}"= UDP:f:\programy\PINACLE\Programs\umi.exe:umi
"{84A2783A-BB66-4D54-8D0C-33A30A60B3C3}"= TCP:f:\programy\PINACLE\Programs\umi.exe:umi
"TCP Query User{EC66C71D-120A-4296-BF01-AF526E17519A}c:\\program files\\nokia\\nokia software updater\\nsu_ui_client.exe"= UDP:c:\program files\nokia\nokia software updater\nsu_ui_client.exe:Nokia Software Updater
"UDP Query User{ADBFAD70-7E4D-4353-AD28-D6955FA2C715}c:\\program files\\nokia\\nokia software updater\\nsu_ui_client.exe"= TCP:c:\program files\nokia\nokia software updater\nsu_ui_client.exe:Nokia Software Updater
"TCP Query User{B478C9D2-9453-4D59-9EDB-CC6ED5EF285F}c:\\program files\\common files\\nokia\\service layer\\a\\nsl_host_process.exe"= UDP:c:\program files\common files\nokia\service layer\a\nsl_host_process.exe:Nokia Service Layer Host Process
"UDP Query User{E98BB7B0-0607-4FDA-B5B6-9E03F4094798}c:\\program files\\common files\\nokia\\service layer\\a\\nsl_host_process.exe"= TCP:c:\program files\common files\nokia\service layer\a\nsl_host_process.exe:Nokia Service Layer Host Process
"TCP Query User{2E910D23-4DAB-42FE-BFCA-568370646A5D}e:\\gry\\cs 1.6\\hl.exe"= UDP:e:\gry\cs 1.6\hl.exe:Half-Life Launcher
"UDP Query User{307909A2-1CF1-4F7C-B4A6-8B1EE2A6E70A}e:\\gry\\cs 1.6\\hl.exe"= TCP:e:\gry\cs 1.6\hl.exe:Half-Life Launcher
"TCP Query User{6E1DF542-F25D-41EB-9E1B-A919638C22F6}e:\\gry\\cs 1.6\\hl.exe"= UDP:e:\gry\cs 1.6\hl.exe:Half-Life Launcher
"UDP Query User{373BB45F-550D-41D8-A9B9-010023E03D90}e:\\gry\\cs 1.6\\hl.exe"= TCP:e:\gry\cs 1.6\hl.exe:Half-Life Launcher
"TCP Query User{D8102D38-7C5E-447B-84BE-234781D5547C}e:\\gry\\cs 1.6\\hlds.exe"= UDP:e:\gry\cs 1.6\hlds.exe:HLDS Launcher
"UDP Query User{5106FE1D-E16D-4F8E-87BE-07FE07E6CAC8}e:\\gry\\cs 1.6\\hlds.exe"= TCP:e:\gry\cs 1.6\hlds.exe:HLDS Launcher
"{A5199193-3B36-460F-9C0E-1268A78D6BA6}"= UDP:e:\gry\GTA IV\Rockstar Games Social Club\RGSCLauncher.exe:Rockstar Games Social Club
"{C4380D59-764A-4DF1-A3C6-060D30C67371}"= TCP:e:\gry\GTA IV\Rockstar Games Social Club\RGSCLauncher.exe:Rockstar Games Social Club
"{A0CE0BEA-4F12-4D34-9B84-D1225B3815D3}"= UDP:e:\gry\GTA IV\Grand Theft Auto IV\LaunchGTAIV.exe:Grand Theft Auto IV
"{4EE44A2A-4889-46D9-8052-5FEBDF8EFE79}"= TCP:e:\gry\GTA IV\Grand Theft Auto IV\LaunchGTAIV.exe:Grand Theft Auto IV
"TCP Query User{1CC1E21A-31FA-466A-98F5-0B0FF2E00F28}e:\\gry\\gta iv\\grand theft auto iv\\gtaiv.exe"= UDP:e:\gry\gta iv\grand theft auto iv\gtaiv.exe:Grand Theft Auto IV
"UDP Query User{A69B5CD9-67C6-4F28-8BEB-BFF812A19A1A}e:\\gry\\gta iv\\grand theft auto iv\\gtaiv.exe"= TCP:e:\gry\gta iv\grand theft auto iv\gtaiv.exe:Grand Theft Auto IV

R1 aswSP;avast! Self Protection;c:\windows\System32\drivers\aswSP.sys [2008-05-06 78416]
R1 RtlProt;Realtke RtlProt WLAN Utility Protocol Driver;c:\windows\System32\drivers\RtlProt.sys [2008-01-08 25896]
R4 aswFsBlk;aswFsBlk;c:\windows\System32\drivers\aswFsBlk.sys [2008-05-06 20560]
R4 aswMonFlt;aswMonFlt;c:\windows\System32\drivers\aswMonFlt.sys [2007-11-23 51280]
R4 TimerStop;TimerStop;c:\windows\System32\TimerStop.sys [2007-10-31 4096]
S3 RTL85n86;Realtek 8180/8185 Extensible 802.11 Wireless Device Driver;c:\windows\System32\drivers\RTL85n86.sys [2008-01-08 356352]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{0ee20459-8cb6-11dd-ae8d-ecf4e67e9d46}]
\shell\AutoRun\command - I:\wjlfhtfm.cmd
\shell\explore\Command - I:\wjlfhtfm.cmd
\shell\open\Command - I:\wjlfhtfm.cmd

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{13a8197f-e055-11dc-a98f-000000000000}]
\shell\Auto\command - Cn911.exe
\shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Cn911.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{4ba7b750-c867-11dc-9419-000000000000}]
\shell\AutoRun\command - H:\Autorun.exe

*Newly Created Service* - PROCEXP90
.
Zawartość folderu 'Zaplanowane zadania'

2009-01-04 c:\windows\Tasks\RtlVistaStart.job
- c:\program files\REALTEK PCI&Cardbus Wireless LAN Driver and Utility\RtWLan.exe [2007-06-28 13:11]

2009-01-04 c:\windows\Tasks\User_Feed_Synchronization-{42B987FD-CBA1-4D39-96D3-AF22ADF5F379}.job
- c:\windows\system32\msfeedssync.exe [2008-01-18 23:33]
.
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://www.onet.pl/
IE: Download All by ASUS Download - f:\programy\asus router\ASDownloadAll.htm
IE: Download using ASUS Download - f:\programy\asus router\ASDownload.htm
IE: E&ksport do programu Microsoft Excel - f:\programy\Office\Office10\EXCEL.EXE/3000
TCP: {6EB56A8A-3FFC-4009-B1D4-DAF5993D3280} = 208.67.222.222 208.67.220.220

c:\windows\Downloaded Program Files\OggX.ocx - O16 -: {1E53EA77-34F2-474E-9046-B2B0C86F1821}
hxxp://www.eska.pl/streamplayers/OggX.ocx
FF - ProfilePath - c:\users\Filip Ludwikowski\AppData\Roaming\Mozilla\Firefox\Profiles\9ux39cnz.default\
FF - prefs.js: browser.startup.homepage - www.onet.pl
FF - component: c:\program files\Mozilla Firefox\components\xpinstal.dll
FF - component: c:\program files\Mozilla Firefox\extensions\talkback@mozilla.org\components\qfaservices.dll

[color=red]ATTENTION: FIREFOX POLICES IS IN FORCE [/color]
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.allow_platform_file_picker", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.cookie.p3plevel",             1); // 0=low, 1=medium, 2=high, 3=custom
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.enablePad",                   false); // Allow client to do proxy autodiscovery
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.remember_cert_checkbox_default_setting", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.urlbar.hideGoButton", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.search.param.Google.1.default", "chrome://branding/content/searchconfig.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.search.param.Google.1.custom",  "chrome://branding/content/searchconfig.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("signon.prefillForms",                 true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.safebrowsing.enabled", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.safebrowsing.remoteLookups", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.safebrowsing.provider.0.updateURL", "http://sb.google.com/safebrowsing/update?client={moz:client}&appver={moz:version}&");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.safebrowsing.provider.0.lookupURL", "http://sb.google.com/safebrowsing/lookup?sourceid=firefox-antiphish&features=TrustRank&client={moz:client}&appver={moz:version}&");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.safebrowsing.provider.0.reportURL", "http://sb.google.com/safebrowsing/report?");
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-04 18:37:56
Windows 6.0.6001 Service Pack 1 NTFS

skanowanie ukrytych procesów ...

skanowanie ukrytych wpisów autostartu ...

skanowanie ukrytych plików ...

skanowanie pomyślnie ukończone
ukryte pliki: 0

**************************************************************************
.
--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------

- - - - - - - > 'Explorer.exe'(2568)
f:\programy\Gadu-Gadu\Gadu-Gadu\7.0\ggwhook.dll
c:\program files\Portrait Displays\Pivot Software\winphook.dll
c:\windows\system32\BsLangInDepRes.dll
c:\windows\system32\Bs2Res.dll
.
Czas ukończenia: 2009-01-04 18:39:31
ComboFix-quarantined-files.txt  2009-01-04 17:39:29

Przed: 6 057 951 232 bajtów wolnych
Po: 7,436,877,824 bajtów wolnych

291   --- E O F ---   2008-09-18 19:08:23
UBOT 3D
Awatar użytkownika
filip.ludwik
~user
 
Posty: 2129
Dołączenie: 12 Sty 2006, 19:10
Miejscowość: W-ce
Pochwały: 80


Góra

[log] internet wolno chodzi

Postprzez wojtas 04 Sty 2009, 20:42

wklej do notatnika
Windows Registry Editor Version 5.00

[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{0ee20459-8cb6-11dd-ae8d-ecf4e67e9d46}]

[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{13a8197f-e055-11dc-a98f-000000000000}]

w notatniku u góry>>>plik zapisz jako>>>Zmien rozszerzenie z TXT na Wszystkie pliki *.* >>> Zapisz pod nazwą FIX.REG

Klikasz dwa razy na powstały plik fix i dodajesz go do rejestru....


Przeskanuj obszar mojego komputera http://www.kaspersky.pl/virusscanner.html (uruchom przez IE) Daj raport z niego na forum.

i tym:

FixIEDef.

Autor postu otrzymał pochwałę
Image
Awatar użytkownika
wojtas
*mod
 
Posty: 18165
Dołączenie: 13 Sty 2006, 16:00
Miejscowość: Krzeszyce
Pochwały: 1656


Góra

[log] internet wolno chodzi

Postprzez filip.ludwik 05 Sty 2009, 08:29

wojtas napisał(a):dodajesz go do rejestru


Dodane

FixIDEef
Kod: Zaznacz wszystko
********************************************************************************
*                                                                              *
*                                 FixIEDef Log                                 *
*                              Version 1.5.3.6065                              *
*                                                                              *
********************************************************************************

Created at 07:27:21 on Monday, January 05, 2009

Time Zone         : (GMT+01:00) Sarajewo, Skopie, Warszawa, Zagrzeb

Logged On User    : Filip Ludwikowski

Operating System  : Microsoft® Windows Vista™ Ultimate  Service Pack 1
OS Version        : 6.0.6001
System Langauge   : Polish
Keyboard Layout   : Polish
Processor         : X86 Intel(R) Core(TM)2 Quad CPU    Q6600  @ 2.40GHz

System Drive      : C:\
Windows Directory : C:\Windows
System Directory  : C:\Windows\system32

Total Physical Memory : 3405440 KB
Free Physical Memory  : 2214336 KB
Total Virtual Memory  : 2097024 KB
Free Virtual Memory   : 1991736 KB

Boot State        : Normal boot

--------------------------------------------------------------------------------

!!! Files that have been deleted !!!

C:\Windows\system32\tbs.dll

--------------------------------------------------------------------------------

!!! Directories that have been removed !!!

No malicious directories to be removed

--------------------------------------------------------------------------------

!!! Registry entries that have been removed !!!

No malicious Registry entries found

================================================================================

All Done :)

ShadowPuterDude

Safe Surfing!!!



Raport z Kaspera::

http://wyslijto.pl/plik/xunb76dbfy

Ale w sumie nic ciekawego nie wykrył
UBOT 3D
Awatar użytkownika
filip.ludwik
~user
 
Posty: 2129
Dołączenie: 12 Sty 2006, 19:10
Miejscowość: W-ce
Pochwały: 80


Góra

[log] internet wolno chodzi

Postprzez Okocza 05 Sty 2009, 10:07

filip.ludwik, okej jest.
eMachines E730G - Core i5-430M, 2GiB RAM, ATI Mobility Radeon HD5470, WD 320GiB; Cort Z-44,DR 0.09-0.42, Peavey Backstage
Mac OS X 10.7.4 Lion // Windows 7 Professional x64 // NIE POMAGAM NA PW/GG/E-MAIL
Image
"Moje Ego i Anima spotykają się i wymieniają przepisami na ciasteczka" - Maynard James Keenan
Awatar użytkownika
Okocza
~user
 
Posty: 8001
Dołączenie: 19 Mar 2006, 11:53
Pochwały: 406

Góra

[log] internet wolno chodzi

Postprzez filip.ludwik 05 Sty 2009, 16:44

W takim razie jaka może być przyczyna tych dolegliwości?
Szpece od Neostrady znowu coś porobiły?!
UBOT 3D
Awatar użytkownika
filip.ludwik
~user
 
Posty: 2129
Dołączenie: 12 Sty 2006, 19:10
Miejscowość: W-ce
Pochwały: 80


Góra

[log] internet wolno chodzi

Postprzez Magik 05 Sty 2009, 17:04

a pokombinuj sobie z dnsami

dla przykladu

194.204.152.34 fatalne

znaczne lepsze 194.204.159.1

ustaw jakies alternatwny adres DNS nie tepsiarski
Image Image
Awatar użytkownika
Magik
~user
 
Posty: 7956
Dołączenie: 08 Maj 2004, 09:17
Miejscowość: Głogów
Pochwały: 886

Góra

[log] internet wolno chodzi

Postprzez filip.ludwik 05 Sty 2009, 17:23

Miałem takie:

208.67.222.222
i
208.67.220.220


Zmieniłem główny na ten co podałeś, zobaczymy co to będzie :)
UBOT 3D
Awatar użytkownika
filip.ludwik
~user
 
Posty: 2129
Dołączenie: 12 Sty 2006, 19:10
Miejscowość: W-ce
Pochwały: 80


Góra

[log] internet wolno chodzi

Postprzez Okocza 05 Sty 2009, 21:12

Pobierz program Bandwidth Meter i sprawdź czy to na prawdę coś zamula łącze czy to syf w komputerze. Daj z niego screen. Napisz co to za internet.
eMachines E730G - Core i5-430M, 2GiB RAM, ATI Mobility Radeon HD5470, WD 320GiB; Cort Z-44,DR 0.09-0.42, Peavey Backstage
Mac OS X 10.7.4 Lion // Windows 7 Professional x64 // NIE POMAGAM NA PW/GG/E-MAIL
Image
"Moje Ego i Anima spotykają się i wymieniają przepisami na ciasteczka" - Maynard James Keenan
Awatar użytkownika
Okocza
~user
 
Posty: 8001
Dołączenie: 19 Mar 2006, 11:53
Pochwały: 406

Góra
Wyślij odpowiedź

Powróć do Bezpieczeństwo

Kto jest na forum

Użytkownicy przeglądający to forum: Brak zarejestrowanych użytkowników oraz 16 gości

Powered by phpBB © Group
Forum Programosy.pl