ADSL kao ''gladna godina''...

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Video sam u arhivi sličnu temu (veoma spor ADSL). Postupio sam prema uputstvu ta preuzimanje Jave, ali mi je i dalje protok kilav do zla boga. Da li je to do moje mašine ili moram da se natežem s provajderom? Help!
Evo loga:


ComboFix 08-09-13.05 - Administrator 2008-09-14 18:30:27.13 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.408 [GMT 2:00]
Running from: C:\Documents and Settings\Administrator\Desktop\ComboFix.exe
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((( Files Created from 2008-08-14 to 2008-09-14 )))))))))))))))))))))))))))))))
.

2008-09-12 15:46 . 2008-09-12 15:46 5,760,054 --a------ C:\WINDOWS\BricoPack Wallpaper.bmp
2008-09-12 15:46 . 2008-09-12 15:46 52,720 --a------ C:\WINDOWS\BricoPackUninst.cmd
2008-09-12 15:45 . 2008-09-12 15:45 <DIR> d-------- C:\WINDOWS\BricoPacks
2008-09-12 15:45 . 2008-09-12 15:46 6,120 --a------ C:\WINDOWS\BricoPackFoldersDelete.cmd
2008-09-10 18:41 . 2008-09-10 18:41 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-09-10 18:41 . 2008-09-10 18:41 1,409 --a------ C:\WINDOWS\QTFont.for
2008-09-10 16:00 . 2008-09-10 16:02 <DIR> d-------- C:\Program Files\Wise Registry Cleaner 3
2008-09-06 16:24 . 2008-09-06 16:24 <DIR> d-------- C:\Program Files\Sun
2008-09-06 16:16 . 2008-09-06 16:16 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\Search Settings
2008-09-04 07:35 . 2008-09-04 07:35 <DIR> d-------- C:\Program Files\Search Settings
2008-09-04 07:35 . 2008-09-04 07:35 <DIR> d-------- C:\Program Files\Dealio
2008-09-04 07:35 . 2008-09-04 07:35 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\Dealio
2008-09-04 07:33 . 2008-09-04 07:33 92,742 --a------ C:\WINDOWS\Monica Bellucci Sexy Hot Screensaver Uninstaller.exe
2008-08-30 19:20 . 2008-08-30 19:20 <DIR> d-------- C:\WINDOWS\system32\Lang
2008-08-30 19:20 . 2008-08-30 19:20 940,794 --a------ C:\WINDOWS\system32\LoopyMusic.wav
2008-08-30 19:20 . 2008-08-30 19:20 146,650 --a------ C:\WINDOWS\system32\BuzzingBee.wav
2008-08-30 19:20 . 2008-08-30 19:20 60,416 --a------ C:\WINDOWS\ALCFDRTM.VER
2008-08-30 19:20 . 2008-08-30 19:20 60,416 --a------ C:\WINDOWS\ALCFDRTM.EXE
2008-08-23 22:36 . 2008-09-10 16:04 <DIR> d-------- C:\Program Files\Wise Disk Cleaner

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-09-14 16:33 --------- d-----w C:\Documents and Settings\Administrator\Application Data\Skype
2008-09-14 16:30 --------- d-----w C:\Documents and Settings\Administrator\Application Data\BitTorrent
2008-09-14 14:07 3,610 --sha-w C:\WINDOWS\system32\KGyGaAvL.sys
2008-09-14 14:00 --------- d-----w C:\Documents and Settings\Administrator\Application Data\skypePM
2008-09-14 12:39 --------- d-----w C:\Documents and Settings\Administrator\Application Data\LimeWire
2008-09-06 14:24 --------- d-----w C:\Program Files\Java
2008-09-06 06:59 88 --sh--r C:\Documents and Settings\All Users\Application Data\5D8A4B97B3.sys
2008-09-06 06:59 2,828 --sha-w C:\Documents and Settings\All Users\Application Data\KGyGaAvL.sys
2008-09-06 06:59 --------- d-----w C:\Documents and Settings\All Users\Application Data\Corel
2008-08-30 21:29 --------- d-----w C:\Documents and Settings\Administrator\Application Data\DNA
2008-08-30 11:50 --------- d-----w C:\Program Files\DNA
2008-08-25 17:07 --------- d-----w C:\Program Files\Opera
2008-08-23 20:38 --------- d-----w C:\Program Files\YouTube Downloader
2008-08-23 20:38 --------- d-----w C:\Program Files\7-Zip
2008-08-09 15:52 4,891,216 ----a-w C:\Program Files\Silverlight.2.0.exe
2008-07-31 17:31 --------- d-----w C:\Program Files\Common Files\Real
2008-07-23 07:35 2,798 ----a-w C:\WINDOWS\system32\tmp.reg
2008-07-22 19:35 --------- d-----w C:\Documents and Settings\Administrator\Application Data\Ambient Design
2008-07-22 19:32 --------- d-----w C:\Program Files\Ambient Design
2008-07-20 12:49 --------- d-----w C:\Program Files\Common Files\Skype
2008-07-17 18:19 --------- d-----w C:\Program Files\Mystery Case Files Ravenhearst
2008-07-17 18:19 --------- d-----w C:\Program Files\Mystery Case Files Prime Suspects
2008-07-17 18:19 --------- d-----w C:\Program Files\Mystery Case Files Huntsville
2008-07-17 17:49 223,128 ----a-w C:\WINDOWS\system32\drivers\dtscsi.sys
2008-07-17 17:49 --------- d-----w C:\Program Files\DAEMON Tools
2008-07-17 17:47 96,384 ----a-w C:\WINDOWS\system32\drivers\sptd8541.sys
2008-07-17 17:47 664,064 ----a-w C:\WINDOWS\system32\drivers\sptd.sys
2008-06-14 19:37 499,712 ----a-w C:\WINDOWS\system32\msvcp71.dll

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Jao bre Sirius, kao da si danas dosao na forum.

Prvo postavi HJT log.

A i ovaj ComboFix log nisi dao ceo. Fali registar i driver deo.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Ma, bio sam dekoncentrisan. Nervirao me ovaj sporać. I ova porukica ide brzinom puža. Evo prvo loga HJT

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:39:01, on 9/14/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\ATKKBService.exe
C:\Program Files\BitTorrent\bittorrent.exe
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Mustek 1200 UB Plus\Driver\WATCH.exe
C:\Program Files\LimeWire\LimeWire.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\WINDOWS\system32\UAService7.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
R3 - URLSearchHook: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: DealioBHO Class - {6A87B991-A31F-4130-AE72-6D0C294BF082} - C:\Program Files\Dealio\kb127\Dealio.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll
O2 - BHO: QUICKfind BHO Object - {C08DF07A-3E49-4E25-9AB0-D3882835F153} - C:\PROGRA~1\IDM\QUICKF~1\PlugIns\IEHelp.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Crawler Toolbar - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O3 - Toolbar: Dealio - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - C:\Program Files\Dealio\kb127\Dealio.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [au] C:\Program Files\Dealio\DealioAU.exe
O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Search Settings\SearchSettings.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe"
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Global Startup: BlueSoleil.lnk = C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe
O4 - Global Startup: Watch.lnk = C:\Program Files\Mustek 1200 UB Plus\Driver\WATCH.exe
O8 - Extra context menu item: Compare Prices with &Dealio - C:\Documents and Settings\Administrator\Application Data\Dealio\kb127\res\DealioSearch.html
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb127\Dealio.dll
O9 - Extra 'Tools' menuitem: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb127\Dealio.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe

--
End of file - 9689 bytes



Evo i loga Combofiksa:


ComboFix 08-09-13.05 - Administrator 2008-09-14 19:26:13.14 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.492 [GMT 2:00]
Running from: C:\Documents and Settings\Administrator\Desktop\ComboFix.exe

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((( Files Created from 2008-08-14 to 2008-09-14 )))))))))))))))))))))))))))))))
.

2008-09-12 15:46 . 2008-09-12 15:46 5,760,054 --a------ C:\WINDOWS\BricoPack Wallpaper.bmp
2008-09-12 15:46 . 2008-09-12 15:46 52,720 --a------ C:\WINDOWS\BricoPackUninst.cmd
2008-09-12 15:45 . 2008-09-12 15:45 <DIR> d-------- C:\WINDOWS\BricoPacks
2008-09-12 15:45 . 2008-09-12 15:46 6,120 --a------ C:\WINDOWS\BricoPackFoldersDelete.cmd
2008-09-10 18:41 . 2008-09-10 18:41 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-09-10 18:41 . 2008-09-10 18:41 1,409 --a------ C:\WINDOWS\QTFont.for
2008-09-10 16:00 . 2008-09-10 16:02 <DIR> d-------- C:\Program Files\Wise Registry Cleaner 3
2008-09-06 16:24 . 2008-09-06 16:24 <DIR> d-------- C:\Program Files\Sun
2008-09-06 16:16 . 2008-09-06 16:16 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\Search Settings
2008-09-04 07:35 . 2008-09-04 07:35 <DIR> d-------- C:\Program Files\Search Settings
2008-09-04 07:35 . 2008-09-04 07:35 <DIR> d-------- C:\Program Files\Dealio
2008-09-04 07:35 . 2008-09-04 07:35 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\Dealio
2008-09-04 07:33 . 2008-09-04 07:33 92,742 --a------ C:\WINDOWS\Monica Bellucci Sexy Hot Screensaver Uninstaller.exe
2008-08-30 19:20 . 2008-08-30 19:20 <DIR> d-------- C:\WINDOWS\system32\Lang
2008-08-30 19:20 . 2008-08-30 19:20 940,794 --a------ C:\WINDOWS\system32\LoopyMusic.wav
2008-08-30 19:20 . 2008-08-30 19:20 146,650 --a------ C:\WINDOWS\system32\BuzzingBee.wav
2008-08-30 19:20 . 2008-08-30 19:20 60,416 --a------ C:\WINDOWS\ALCFDRTM.VER
2008-08-30 19:20 . 2008-08-30 19:20 60,416 --a------ C:\WINDOWS\ALCFDRTM.EXE
2008-08-23 22:36 . 2008-09-10 16:04 <DIR> d-------- C:\Program Files\Wise Disk Cleaner

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-09-14 17:26 --------- d-----w C:\Documents and Settings\Administrator\Application Data\BitTorrent
2008-09-14 17:15 --------- d-----w C:\Documents and Settings\Administrator\Application Data\Skype
2008-09-14 17:14 --------- d-----w C:\Documents and Settings\Administrator\Application Data\skypePM
2008-09-14 17:13 --------- d-----w C:\Documents and Settings\Administrator\Application Data\LimeWire
2008-09-14 14:07 3,610 --sha-w C:\WINDOWS\system32\KGyGaAvL.sys
2008-09-06 14:24 --------- d-----w C:\Program Files\Java
2008-09-06 06:59 88 --sh--r C:\Documents and Settings\All Users\Application Data\5D8A4B97B3.sys
2008-09-06 06:59 2,828 --sha-w C:\Documents and Settings\All Users\Application Data\KGyGaAvL.sys
2008-09-06 06:59 --------- d-----w C:\Documents and Settings\All Users\Application Data\Corel
2008-08-30 21:29 --------- d-----w C:\Documents and Settings\Administrator\Application Data\DNA
2008-08-30 11:50 --------- d-----w C:\Program Files\DNA
2008-08-25 17:07 --------- d-----w C:\Program Files\Opera
2008-08-23 20:38 --------- d-----w C:\Program Files\YouTube Downloader
2008-08-23 20:38 --------- d-----w C:\Program Files\7-Zip
2008-08-09 15:52 4,891,216 ----a-w C:\Program Files\Silverlight.2.0.exe
2008-07-31 17:31 --------- d-----w C:\Program Files\Common Files\Real
2008-07-23 07:35 2,798 ----a-w C:\WINDOWS\system32\tmp.reg
2008-07-22 19:35 --------- d-----w C:\Documents and Settings\Administrator\Application Data\Ambient Design
2008-07-22 19:32 --------- d-----w C:\Program Files\Ambient Design
2008-07-20 12:49 --------- d-----w C:\Program Files\Common Files\Skype
2008-07-17 18:19 --------- d-----w C:\Program Files\Mystery Case Files Ravenhearst
2008-07-17 18:19 --------- d-----w C:\Program Files\Mystery Case Files Prime Suspects
2008-07-17 18:19 --------- d-----w C:\Program Files\Mystery Case Files Huntsville
2008-07-17 17:49 223,128 ----a-w C:\WINDOWS\system32\drivers\dtscsi.sys
2008-07-17 17:49 --------- d-----w C:\Program Files\DAEMON Tools
2008-07-17 17:47 96,384 ----a-w C:\WINDOWS\system32\drivers\sptd8541.sys
2008-07-17 17:47 664,064 ----a-w C:\WINDOWS\system32\drivers\sptd.sys
2008-06-14 19:37 499,712 ----a-w C:\WINDOWS\system32\msvcp71.dll
2008-01-11 21:13 32 ----a-w C:\Documents and Settings\All Users\Application Data\ezsid.dat
2008-01-27 09:47 56 --sh--r C:\WINDOWS\system32\B3974B8A5D.sys
.

------- Sigcheck -------

2002-12-31 14:00 695296 33577e5dacb7a44f2636d05a42b32f87 C:\WINDOWS\system32\wininet.dll

2002-12-31 14:00 360448 0601f83f6784c220ee302f03f702316e C:\WINDOWS\system32\drivers\tcpip.sys

2002-12-31 14:00 974336 7fb96a922d5d8bbbcdb16906af6741d6 C:\WINDOWS\explorer.exe

2002-12-31 14:00 113944 b1da585c97285564c11ea299de2936ec C:\WINDOWS\system32\wuauclt.exe
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2002-12-31 15360]
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2008-05-30 21718312]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-05-06 68856]
"BitTorrent"="C:\Program Files\BitTorrent\bittorrent.exe" [2007-11-28 588080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 155648]
"ISUSPM Startup"="C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" [2005-08-11 249856]
"ISUSScheduler"="C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" [2005-08-11 81920]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2007-10-10 36352]
"avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-07-18 266497]
"ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-05-24 344064]
"Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe" [2007-03-09 63712]
"Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2007-06-13 528384]
"DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [2005-11-09 128920]
"au"="C:\Program Files\Dealio\DealioAU.exe" [2008-05-26 595296]
"SearchSettings"="C:\Program Files\Search Settings\SearchSettings.exe" [2008-06-12 991584]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 144784]
"SoundMan"="SOUNDMAN.EXE" [2005-10-24 C:\WINDOWS\SOUNDMAN.EXE]

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\
Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-03-16 113664]
LimeWire On Startup.lnk - C:\Program Files\LimeWire\LimeWire.exe [2008-06-18 147456]
RocketDock.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe [2007-03-19 630784]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
BlueSoleil.lnk - C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe [2005-09-20 1200128]
Watch.lnk - C:\Program Files\Mustek 1200 UB Plus\Driver\WATCH.exe [2008-01-12 364544]

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"C:\\Program Files\\MSN Messenger\\livecall.exe"=
"C:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"C:\\Program Files\\DNA\\btdna.exe"=
"C:\\Program Files\\BitTorrent\\bittorrent.exe"=
"C:\\Program Files\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe"=
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"C:\\Program Files\\LimeWire\\LimeWire.exe"=
"C:\\Program Files\\Skype\\Phone\\Skype.exe"=

R0 nvcchflt;NVIDIA Disk Cache Filter Driver;C:\WINDOWS\system32\DRIVERS\nvcchflt.sys [2005-02-11 16640]
R2 PSI_SVC_2;Protexis Licensing V2;c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2007-07-24 185632]
S3 s816bus;Sony Ericsson Device 816 driver (WDM);C:\WINDOWS\system32\DRIVERS\s816bus.sys [2007-06-19 81832]
S3 s816mdfl;Sony Ericsson Device 816 USB WMC Modem Filter;C:\WINDOWS\system32\DRIVERS\s816mdfl.sys [2007-06-19 13864]
S3 s816mdm;Sony Ericsson Device 816 USB WMC Modem Driver;C:\WINDOWS\system32\DRIVERS\s816mdm.sys [2007-06-19 107304]
S3 s816mgmt;Sony Ericsson Device 816 USB WMC Device Management Drivers (WDM);C:\WINDOWS\system32\DRIVERS\s816mgmt.sys [2007-06-19 99112]
S3 s816nd5;Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (NDIS);C:\WINDOWS\system32\DRIVERS\s816nd5.sys [2007-06-19 21928]
S3 s816obex;Sony Ericsson Device 816 USB WMC OBEX Interface;C:\WINDOWS\system32\DRIVERS\s816obex.sys [2007-06-19 97320]
S3 s816unic;Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (WDM);C:\WINDOWS\system32\DRIVERS\s816unic.sys [2007-06-19 97704]
.
.
------- Supplementary Scan -------
.
FireFox -: Profile - C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\ozm113cq.default\
FireFox -: prefs.js - STARTUP.HOMEPAGE - www.google.com
FF -: plugin - C:\Program Files\Adobe\Acrobat 7.0\Reader\browser\nppdf32.dll
FF -: plugin - C:\Program Files\DNA\plugins\npbtdna.dll
FF -: plugin - C:\Program Files\Yahoo!\Common\npyaxmpb.dll
.

**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-14 19:27:51
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...


**************************************************************************
.
Completion time: 2008-09-14 19:30:28
ComboFix-quarantined-files.txt 2008-09-14 17:29:25
ComboFix2.txt 2008-09-14 16:36:11
ComboFix3.txt 2008-08-23 19:36:39
ComboFix4.txt 2008-07-20 07:10:12
ComboFix5.txt 2008-09-14 17:26:02

Pre-Run: 16,131,403,776 bytes free
Post-Run: 16,120,258,560 bytes free

147

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Log je cist, nema znakova malwera. Mada ima adwarea, koji je verovatno dosao uz neki program koji si instalirao. Ali nema niceg sto bi ometalo net konekciju.

Uradi jos ovo:

Klikni START a zatim RUN
U liniju za unos teksta ukucaj Combofix /u i klikni OK





Sačekaj da se proces deinstalacije završi
Gornja procedura će:
Obrisati sledeće:
ComboFix i njegove file-ove i foldere
VundoFix Backups folder, ako postoji
C:\Deckard folder, ako postoji
C:\OtMoveIt folder, ako postoji
Resetovati podešavanja sata na kompjuteru
Sakriti ekstenzije file-ova, ako je potrebno
Sakriti sistemske/skrivene file-ove/foldere, ako je potrebno
Resetovati System Restore


Pozzz