wklejto.pl

Dodane przez: ~Lukass (2009-02-05 13:53) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
ComboFix 09-02-04.04 - Dom 2009-02-05 14:03:16.2 - NTFSx86
Microsoft Windows XP Professional  5.1.2600.3.1250.1.1045.18.2047.1463 [GMT 1:00]
Uruchomiony z: c:\\documents and settings\\Dom\\Pulpit\\ComboFix.exe
AV: ESET NOD32 Antivirus 3.0 *On-access scanning enabled* (Updated)
 * Utworzono nowy punkt przywracania
.
 
(((((((((((((((((((((((((((((((((((((((   Usunięto   )))))))))))))))))))))))))))))))))))))))))))))))))
.
 
c:\\documents and settings\\All Users\\Dane aplikacji\\Microsoft\\Network\\Downloader\\qmgr0.dat
c:\\documents and settings\\All Users\\Dane aplikacji\\Microsoft\\Network\\Downloader\\qmgr1.dat
 
----- BITS: Możliwe zainfekowane strony -----
 
hxxp://eh914.homeip.net
.
(((((((((((((((((((((((((   Pliki utworzone od 2009-01-05 do 2009-02-05  )))))))))))))))))))))))))))))))
.
 
2009-02-05 13:55 . 2009-02-05 13:55     <DIR>   d--------       c:\\windows\\LastGood
2009-02-05 13:53 . 2009-02-05 13:53     <DIR>   d--------       c:\\program files\\Uniblue
2009-02-05 13:53 . 2009-02-05 13:53     <DIR>   d--------       c:\\documents and settings\\Dom\\Dane aplikacji\\Uniblue
2009-02-05 13:53 . 2009-02-05 13:55     <DIR>   d--------       c:\\documents and settings\\All Users\\Dane aplikacji\\DriverScanner
2009-02-05 13:51 . 2009-02-05 13:53     <DIR>   d--h-c---       c:\\documents and settings\\All Users\\Dane aplikacji\\{D5ABFFAD-D592-4F98-B02B-587125B4801F}
2009-02-05 12:59 . 2009-02-05 13:05     <DIR>   d--------       c:\\program files\\SkanerOnline
2009-02-05 12:48 . 2009-02-05 12:54     <DIR>   d-a------       c:\\documents and settings\\All Users\\Dane aplikacji\\TEMP
2009-02-05 12:47 . 2009-02-05 12:49     <DIR>   d--------       c:\\program files\\Trojan Remover
2009-02-05 12:47 . 2009-02-05 12:47     <DIR>   d--------       c:\\documents and settings\\Dom\\Dane aplikacji\\Simply Super Software
2009-02-05 12:47 . 2009-02-05 12:47     <DIR>   d--------       c:\\documents and settings\\All Users\\Dane aplikacji\\Simply Super Software
2009-02-05 12:47 . 2006-05-25 14:52     162,304 --a------       c:\\windows\\system32\\ztvunrar36.dll
2009-02-05 12:47 . 2003-02-02 19:06     153,088 --a------       c:\\windows\\system32\\UNRAR3.dll
2009-02-05 12:47 . 2005-08-26 00:50     77,312  --a------       c:\\windows\\system32\\ztvunace26.dll
2009-02-05 12:47 . 2002-03-06 00:00     75,264  --a------       c:\\windows\\system32\\unacev2.dll
2009-02-05 12:47 . 2006-06-19 12:01     69,632  --a------       c:\\windows\\system32\\ztvcabinet.dll
2009-02-05 12:32 . 2009-02-05 12:32     34      --a------       c:\\windows\\system32\\oeminfo.ini
2009-02-05 12:18 . 2009-02-05 12:18     <DIR>   d--------       c:\\program files\\XPC Tools
2009-02-04 15:31 . 2009-02-04 15:31     <DIR>   d--------       c:\\program files\\Alcohol Soft
2009-02-03 17:38 . 2009-02-03 17:38     <DIR>   d--------       c:\\documents and settings\\All Users\\Dane aplikacji\\Nokia
2009-02-03 17:38 . 2008-02-01 15:17     138,112 --a------       c:\\windows\\system32\\drivers\\nmwcdnsu.sys
2009-02-03 17:38 . 2008-02-01 15:17     8,320   --a------       c:\\windows\\system32\\drivers\\nmwcdnsuc.sys
2009-02-03 17:36 . 2009-02-03 17:36     <DIR>   d--------       c:\\program files\\MSXML 6.0
2009-02-03 17:31 . 2008-04-13 19:45     26,112  --a------       c:\\windows\\system32\\drivers\\usbser.sys
2009-02-03 17:31 . 2008-04-13 19:45     26,112  --a------       c:\\windows\\system32\\DllCache\\usbser.sys
2009-02-03 17:31 . 2009-02-03 17:31     0       --ah-----       c:\\windows\\system32\\drivers\\Msft_Kernel_ccdcmb_01007.Wdf
2009-02-03 17:30 . 2008-03-21 13:57     14,640  ---------       c:\\windows\\system32\\spmsgXP_2k3.dll
2009-02-03 17:30 . 2009-02-03 17:30     0       --ah-----       c:\\windows\\system32\\drivers\\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2009-02-03 17:29 . 2009-02-03 17:32     <DIR>   d--------       c:\\documents and settings\\Dom\\Dane aplikacji\\PC Suite
2009-02-03 17:29 . 2009-02-03 17:36     <DIR>   d--------       c:\\documents and settings\\Dom\\Dane aplikacji\\Nokia
2009-02-03 17:29 . 2009-02-03 17:31     <DIR>   d--------       c:\\documents and settings\\All Users\\Dane aplikacji\\PC Suite
2009-02-03 17:28 . 2009-02-03 17:28     <DIR>   d--------       c:\\program files\\PC Connectivity Solution
2009-02-03 17:28 . 2009-02-03 17:38     <DIR>   d--------       c:\\program files\\Nokia
2009-02-03 17:28 . 2009-02-03 17:28     <DIR>   d--------       c:\\program files\\Common Files\\PCSuite
2009-02-03 17:28 . 2009-02-03 17:37     <DIR>   d--------       c:\\program files\\Common Files\\Nokia
2009-02-03 17:28 . 2008-09-15 07:29     1,112,288       --a------       c:\\windows\\system32\\wdfcoinstaller01007.dll
2009-02-03 17:28 . 2008-09-15 07:56     659,968 --a------       c:\\windows\\system32\\nmwcdcocls.dll
2009-02-03 17:28 . 2008-02-01 15:17     90,624  --a------       c:\\windows\\system32\\nmwcdcls.dll
2009-02-03 17:28 . 2008-09-15 07:56     22,016  --a------       c:\\windows\\system32\\drivers\\ccdcmbo.sys
2009-02-03 17:28 . 2008-08-26 09:26     18,816  --a------       c:\\windows\\system32\\drivers\\pccsmcfd.sys
2009-02-03 17:28 . 2008-09-15 07:56     17,664  --a------       c:\\windows\\system32\\drivers\\ccdcmb.sys
2009-02-03 17:28 . 2008-09-15 07:56     8,064   --a------       c:\\windows\\system32\\drivers\\usbser_lowerfltj.sys
2009-02-03 17:28 . 2008-09-15 07:56     8,064   --a------       c:\\windows\\system32\\drivers\\usbser_lowerflt.sys
2009-02-03 17:27 . 2009-02-03 17:36     <DIR>   d--------       c:\\documents and settings\\All Users\\Dane aplikacji\\Installations
2009-02-03 17:13 . 2009-02-03 17:13     <DIR>   d--------       c:\\program files\\IObit
2009-02-03 17:13 . 2009-02-03 17:13     <DIR>   d--------       c:\\documents and settings\\Dom\\Dane aplikacji\\IObit
2009-01-30 16:48 . 2009-01-30 16:48     <DIR>   d--------       c:\\program files\\Microsoft.NET
2009-01-30 16:48 . 2009-01-30 16:48     <DIR>   d--------       c:\\program files\\Microsoft Office2003
2009-01-30 16:48 . 2003-06-19 01:31     17,920  --a------       c:\\windows\\system32\\mdimon.dll
2009-01-30 16:48 . 2009-01-30 16:48     421     --a------       c:\\windows\\ODBC.INI
2009-01-28 17:43 . 2009-01-28 17:46     <DIR>   d--------       c:\\program files\\PowerPoint XP-2003 - praktyczny kurs obsługi
2009-01-28 14:27 . 2006-11-07 14:58     356,352 --a------       c:\\windows\\system32\\nvunrm.exe
2009-01-28 14:27 . 2006-10-05 16:35     356,352 ---------       c:\\windows\\system32\\nvuide.exe
2009-01-28 14:27 . 2006-10-19 09:36     3,903   --a------       c:\\windows\\system32\\nvnrm.nvu
2009-01-28 14:27 . 2006-10-24 13:13     1,732   --a------       c:\\windows\\system32\\drivers\\nvphy.bin
2009-01-28 14:27 . 2006-09-11 15:14     1,570   ---------       c:\\windows\\system32\\nvide.nvu
2009-01-28 14:20 . 2009-01-28 14:20     <DIR>   d--------       c:\\windows\\OPTIONS
2009-01-28 13:59 . 2009-01-28 13:59     <DIR>   d--------       c:\\windows\\system32\\AGEIA
2009-01-28 13:59 . 2009-01-28 13:59     <DIR>   d--------       c:\\program files\\AGEIA Technologies
2009-01-28 13:58 . 2009-01-28 13:58     <DIR>   d--------       c:\\windows\\nview
2009-01-28 13:58 . 2009-01-28 13:58     <DIR>   d--------       C:\\NVIDIA
2009-01-28 13:58 . 2009-01-07 11:28     453,152 --a------       c:\\windows\\system32\\NVUNINST.EXE
2009-01-28 13:58 . 2009-01-15 08:19     453,152 --a------       c:\\windows\\system32\\nvudisp.exe
2009-01-28 13:58 . 2009-02-05 11:17     206,530 --a------       c:\\windows\\system32\\nvapps.xml
2009-01-28 13:58 . 2009-01-15 08:19     18,725  --a------       c:\\windows\\system32\\nvdisp.nvu
2009-01-28 13:38 . 2009-01-28 13:38     <DIR>   d--------       c:\\program files\\SystemRequirementsLab
2009-01-28 13:37 . 2009-01-28 13:37     <DIR>   d--------       c:\\documents and settings\\Dom\\SystemRequirementsLab
2009-01-28 11:36 . 2009-01-28 11:36     <DIR>   d--------       c:\\windows\\Nero Lite 9.2.6
2009-01-25 18:01 . 2009-01-25 18:01     664     --a------       c:\\windows\\system32\\d3d9caps.dat
2009-01-23 20:34 . 2009-02-03 17:31     <DIR>   d--------       c:\\windows\\system32\\drivers\\umdf
2009-01-23 20:33 . 2009-01-23 20:33     <DIR>   d--------       c:\\windows\\system32\\xlive
2009-01-23 20:33 . 2009-01-23 22:09     <DIR>   d--------       c:\\program files\\Microsoft Games for Windows - LIVE
2009-01-22 16:54 . 2009-01-22 16:54     <DIR>   dr-h-----       c:\\documents and settings\\Dom\\Dane aplikacji\\SecuROM
2009-01-22 09:19 . 2009-01-22 09:19     22,328  --a------       c:\\documents and settings\\Dom\\Dane aplikacji\\PnkBstrK.sys
2009-01-22 09:13 . 2009-01-22 09:13     <DIR>   d--------       c:\\program files\\Ubisoft
2009-01-21 17:11 . 2009-01-21 17:11     473,600 --a------       c:\\windows\\system32\\SkanerOnline.dll
2009-01-20 17:21 . 2009-02-03 20:17     54,156  --ah-----       c:\\windows\\QTFont.qfn
2009-01-20 17:21 . 2009-01-20 17:21     1,409   --a------       c:\\windows\\QTFont.for
2009-01-16 16:14 . 2009-01-16 16:14     <DIR>   d--------       c:\\documents and settings\\Dom\\Shaders
2009-01-16 16:04 . 2009-01-23 19:51     <DIR>   d--------       c:\\program files\\Rockstar Games
2009-01-14 18:20 . 2009-01-14 18:20     <DIR>   d--h-----       c:\\windows\\system32\\GroupPolicy
2009-01-14 16:31 . 2009-01-14 16:31     <DIR>   d--------       c:\\program files\\EA Games
2009-01-14 16:25 . 2009-01-14 16:29     <DIR>   d--------       c:\\program files\\Raxco
2009-01-14 16:15 . 2009-01-14 16:16     <DIR>   d--------       c:\\program files\\Winamp
2009-01-14 16:15 . 2009-01-14 16:16     <DIR>   d--------       c:\\documents and settings\\Dom\\Dane aplikacji\\Winamp
2009-01-14 12:15 . 2009-01-14 12:15     <DIR>   d--------       c:\\program files\\ToniArts
2009-01-14 12:09 . 2009-01-14 12:09     <DIR>   d--------       c:\\windows\\Sun
2009-01-14 11:57 . 2009-01-14 11:57     <DIR>   d--------       c:\\program files\\Trend Micro
2009-01-14 11:34 . 2009-02-05 14:04     <DIR>   d--h-----       c:\\documents and settings\\Administrator\\Ustawienia lokalne
2009-01-14 11:34 . 2009-01-10 10:08     <DIR>   d--------       c:\\documents and settings\\Administrator\\Ulubione
2009-01-14 11:34 . 2009-01-10 09:15     <DIR>   d--h-----       c:\\documents and settings\\Administrator\\Szablony
2009-01-14 11:34 . 2009-01-10 10:08     <DIR>   d--------       c:\\documents and settings\\Administrator\\Pulpit
2009-01-14 11:34 . 2009-01-10 10:08     <DIR>   d--------       c:\\documents and settings\\Administrator\\Moje dokumenty
2009-01-14 11:34 . 2009-01-10 10:08     <DIR>   dr-------       c:\\documents and settings\\Administrator\\Menu Start
2009-01-14 11:34 . 2009-01-10 10:08     <DIR>   dr-h-----       c:\\documents and settings\\Administrator\\Dane aplikacji
2009-01-14 11:34 . 2009-01-14 11:50     <DIR>   d--------       c:\\documents and settings\\Administrator
2009-01-14 11:17 . 2009-01-20 12:50     <DIR>   d--------       c:\\program files\\SUPERAntiSpyware
2009-01-14 11:17 . 2009-01-14 11:17     <DIR>   d--------       c:\\documents and settings\\Dom\\Dane aplikacji\\SUPERAntiSpyware.com
2009-01-14 11:17 . 2009-01-14 11:17     <DIR>   d--------       c:\\documents and settings\\All Users\\Dane aplikacji\\SUPERAntiSpyware.com
2009-01-14 11:02 . 2009-01-14 11:02     <DIR>   d--------       c:\\program files\\Malwarebytes\' Anti-Malware
2009-01-14 11:02 . 2009-01-14 11:02     <DIR>   d--------       c:\\documents and settings\\Dom\\Dane aplikacji\\Malwarebytes
2009-01-14 11:02 . 2009-01-14 11:02     <DIR>   d--------       c:\\documents and settings\\All Users\\Dane aplikacji\\Malwarebytes
2009-01-14 11:02 . 2009-01-04 18:38     38,496  --a------       c:\\windows\\system32\\drivers\\mbamswissarmy.sys
2009-01-14 11:02 . 2009-01-04 18:38     15,504  --a------       c:\\windows\\system32\\drivers\\mbam.sys
2009-01-13 22:39 . 2009-01-13 22:39     <DIR>   d--------       c:\\documents and settings\\Dom\\Dane aplikacji\\Leadertech
2009-01-13 22:38 . 2009-01-23 20:34     <DIR>   d--------       c:\\windows\\system32\\LogFiles
2009-01-13 17:14 . 2009-01-13 17:14     <DIR>   d--------       c:\\program files\\KC Softwares
2009-01-13 15:13 . 2009-01-13 15:13     <DIR>   d--------       c:\\windows\\Logs
2009-01-13 15:13 . 2006-12-08 12:02     251,672 --a------       c:\\windows\\system32\\xactengine2_5.dll
2009-01-13 15:13 . 2006-09-28 16:05     237,848 --a------       c:\\windows\\system32\\xactengine2_4.dll
2009-01-13 15:13 . 2006-07-28 09:30     236,824 --a------       c:\\windows\\system32\\xactengine2_3.dll
2009-01-13 15:13 . 2006-07-28 09:30     62,744  --a------       c:\\windows\\system32\\xinput1_2.dll
2009-01-13 15:13 . 2007-03-05 12:42     15,128  --a------       c:\\windows\\system32\\x3daudio1_1.dll
2009-01-13 15:01 . 2003-03-19 03:14     499,712 --a------       c:\\windows\\system32\\MSVCP71.DLL
2009-01-12 16:41 . 2009-02-04 15:37     <DIR>   d--------       c:\\documents and settings\\Dom\\Dane aplikacji\\Ashampoo
2009-01-12 16:40 . 2009-01-13 15:07     <DIR>   d--------       c:\\documents and settings\\All Users\\Dane aplikacji\\ashampoo
2009-01-11 16:26 . 2009-01-11 16:26     <DIR>   d--h-----       c:\\windows\\PIF
2009-01-11 13:01 . 2009-01-11 13:01     <DIR>   d--------       c:\\program files\\Euro Truck Simulator
2009-01-10 21:42 . 2009-01-10 21:42     <DIR>   d--------       c:\\documents and settings\\Dom\\Dane aplikacji\\Gadu-Gadu
2009-01-10 20:01 . 2009-01-10 20:01     <DIR>   d--------       c:\\program files\\Gadu-Gadu
2009-01-10 20:01 . 2009-01-30 10:05     <DIR>   d--------       c:\\documents and settings\\Dom\\Gadu-Gadu
2009-01-10 17:44 . 2009-01-10 17:45     <DIR>   d--------       c:\\windows\\system32\\XPSViewer
2009-01-10 17:44 . 2009-01-10 17:44     <DIR>   d--------       c:\\program files\\Reference Assemblies
2009-01-10 17:44 . 2006-06-29 13:07     14,048  ---------       c:\\windows\\system32\\spmsg2.dll
2009-01-10 17:33 . 2009-01-13 18:36     <DIR>   d--------       c:\\program files\\ygoow
2009-01-10 16:02 . 2009-01-10 16:02     <DIR>   d--------       c:\\windows\\system32\\xircom
 
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-01-28 13:26        15,600  ----a-w c:\\windows\\gdrv.sys
2009-01-28 13:20        ---------       d--h--w c:\\program files\\InstallShield Installation Information
2009-01-28 13:20        ---------       d-----w c:\\program files\\Realtek
2009-01-28 12:59        ---------       d-----w c:\\program files\\Common Files\\Wise Installation Wizard
2009-01-10 12:46        ---------       d-----w c:\\program files\\Common Files\\InstallShield
2009-01-10 08:50        315,392 ----a-w c:\\windows\\HideWin.exe
2009-01-10 08:47        ---------       d-----w c:\\program files\\DIFX
2009-01-10 08:25        ---------       d-----w c:\\documents and settings\\Dom\\Dane aplikacji\\InstallShield
2009-01-10 08:17        ---------       d-----w c:\\program files\\Usługi online
2008-12-13 06:39        3,593,216       ------w c:\\windows\\system32\\DllCache\\mshtml.dll
2008-12-10 08:45        70,936  ----a-w c:\\windows\\system32\\PhysXLoader.dll
2008-12-04 08:28        24,344  ----a-w c:\\windows\\system32\\PhysXDevice.dll
2008-11-26 07:55        288,024 ----a-w c:\\windows\\system32\\PhysXCplUI.exe
2008-11-25 07:38        288,024 ----a-w c:\\windows\\system32\\PhysXCompatCplUI.exe
.
 
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4
 
[HKEY_CURRENT_USER\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run]
\"ctfmon.exe\"=\"c:\\windows\\system32\\ctfmon.exe\" [2008-04-14 15360]
 
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run]
\"egui\"=\"c:\\program files\\ESET\\ESET NOD32 Antivirus\\egui.exe\" [2008-08-18 1447168]
\"WinPatrol\"=\"c:\\program files\\BillP Studios\\WinPatrol\\winpatrol.exe\" [2008-09-18 333120]
 
[HKEY_USERS\\.DEFAULT\\Software\\Microsoft\\Windows\\CurrentVersion\\Run]
\"CTFMON.EXE\"=\"c:\\windows\\system32\\CTFMON.EXE\" [2008-04-14 15360]
 
c:\\documents and settings\\Dom\\Menu Start\\Programy\\Autostart\\
DriverScanner Updater.exe [2008-10-12 30508]
 
[HKEY_LOCAL_MACHINE\\software\\microsoft\\windows\\currentversion\\policies\\explorer]
\"NoResolveTrack\"= 1 (0x1)
\"NoFileAssociate\"= 0 (0x0)
 
[HKEY_LOCAL_MACHINE\\software\\microsoft\\windows nt\\currentversion\\drivers32]
\"msacm.iac2\"= c:\\progra~1\\ACEMEG~1\\SystemS\\Intel\\iac25_32.ax
\"msacm.sl_anet\"= c:\\progra~1\\ACEMEG~1\\SystemS\\sl_anet.acm
\"vidc.yv12\"= c:\\progra~1\\ACEMEG~1\\SystemS\\ATI\\atiyuv12.DLL
\"vidc.divx\"= c:\\progra~1\\ACEMEG~1\\SystemS\\DivX\\DivX520.dll
\"vidc.iyuv\"= c:\\progra~1\\ACEMEG~1\\SystemS\\Intel\\iyuv_32.dll
\"vidc.yvu9\"= c:\\progra~1\\ACEMEG~1\\SystemS\\Intel\\Iyvu9_32.dll
\"vidc.uyvy\"= c:\\progra~1\\ACEMEG~1\\SystemS\\MICROS~1\\msyuv.dll
\"vidc.yuy2\"= c:\\progra~1\\ACEMEG~1\\SystemS\\MICROS~1\\msyuv.dll
\"vidc.yvyu\"= c:\\progra~1\\ACEMEG~1\\SystemS\\MICROS~1\\msyuv.dll
\"msacm.msaudio1\"= c:\\progra~1\\ACEMEG~1\\SystemS\\MICROS~1\\msaud32.acm
 
[HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\SafeBoot\\Minimal\\Wdf01000.sys]
@=\"Driver\"
 
[HKEY_LOCAL_MACHINE\\software\\microsoft\\security center]
\"FirewallOverride\"=dword:00000001
 
[HKLM\\~\\services\\sharedaccess\\parameters\\firewallpolicy\\standardprofile]
\"EnableFirewall\"= 0 (0x0)
 
[HKLM\\~\\services\\sharedaccess\\parameters\\firewallpolicy\\standardprofile\\AuthorizedApplications\\List]
\"%windir%\\\\system32\\\\sessmgr.exe\"=
\"c:\\\\Program Files\\\\uTorrent\\\\uTorrent.exe\"=
\"c:\\\\Program Files\\\\Microsoft Office\\\\Office12\\\\OUTLOOK.EXE\"=
\"c:\\\\Program Files\\\\Microsoft Office\\\\Office12\\\\GROOVE.EXE\"=
\"c:\\\\Program Files\\\\Microsoft Office\\\\Office12\\\\ONENOTE.EXE\"=
\"%windir%\\\\Network Diagnostic\\\\xpnetdiag.exe\"=
\"c:\\\\Program Files\\\\Ubisoft\\\\Far Cry 2\\\\bin\\\\FarCry2.exe\"=
\"c:\\\\Program Files\\\\Ubisoft\\\\Far Cry 2\\\\bin\\\\FC2Launcher.exe\"=
\"c:\\\\Program Files\\\\Ubisoft\\\\Far Cry 2\\\\bin\\\\FC2Editor.exe\"=
\"d:\\\\Program Files\\\\Rockstar Games\\\\Rockstar Games Social Club\\\\RGSCLauncher.exe\"=
\"c:\\\\Program Files\\\\Rockstar Games\\\\Grand Theft Auto IV\\\\LaunchGTAIV.exe\"=
 
R1 epfwtdir;epfwtdir;c:\\windows\\system32\\drivers\\epfwtdir.sys [2008-08-18 34312]
R1 SASDIFSV;SASDIFSV;c:\\program files\\SUPERAntiSpyware\\sasdifsv.sys [2008-12-22 8944]
R1 SASKUTIL;SASKUTIL;c:\\program files\\SUPERAntiSpyware\\SASKUTIL.SYS [2008-12-22 55024]
R2 ekrn;Eset Service;c:\\program files\\ESET\\ESET NOD32 Antivirus\\ekrn.exe [2008-08-18 468224]
S2 NOD32FiXTemDono;Eset Nod32 Boot;c:\\windows\\system32\\regedt32.exe [2001-10-26 3584]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\\windows\\system32\\drivers\\nmwcdnsu.sys [2009-02-03 138112]
S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\\windows\\system32\\drivers\\nmwcdnsuc.sys [2009-02-03 8320]
S3 SASENUM;SASENUM;c:\\program files\\SUPERAntiSpyware\\SASENUM.SYS [2008-12-22 7408]
.
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://www.wp.pl/
IE: E&ksportuj do programu Microsoft Excel - c:\\progra~1\\Microsoft Office\\Office12\\EXCEL.EXE/3000
DPF: {68282C51-9459-467B-95BF-3C0E89627E55} - hxxp://www.mks.com.pl/skaner/SkanerOnline.cab
FF - ProfilePath - c:\\documents and settings\\Dom\\Dane aplikacji\\Mozilla\\Firefox\\Profiles\\sov1e7sv.default\\
FF - prefs.js: browser.startup.homepage - www.wp.pl
FF - component: c:\\program files\\Nokia\\Nokia PC Suite 7\\bkmrksync\\components\\BkMrkExt.dll
FF - plugin: c:\\program files\\ACE Mega CoDecS Pack\\SystemS\\RealMedia\\Browser\\plugins\\nppl3260.dll
FF - plugin: c:\\program files\\ACE Mega CoDecS Pack\\SystemS\\RealMedia\\Browser\\plugins\\nprpjplug.dll
FF - plugin: c:\\program files\\Mozilla Firefox\\plugins\\npFoxitReaderPlugin.dll
 
---- FIREFOX - SPOSÓB POSTĘPOWANIA ----
FF - user.js: network.prefetch-next - true
FF - user.js: nglayout.initialpaint.delay - 250
FF - user.js: layout.spellcheckDefault - 1
FF - user.js: browser.urlbar.autoFill - false
FF - user.js: browser.search.openintab - false
FF - user.js: browser.tabs.closeButtons - 1
FF - user.js: browser.tabs.opentabfor.middleclick - true
FF - user.js: browser.tabs.tabMinWidth - 100
FF - user.js: browser.urlbar.hideGoButton - false
.
 
**************************************************************************
 
catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-02-05 14:04:05
Windows 5.1.2600 Dodatek Service Pack 3 NTFS
 
skanowanie ukrytych procesów ...  
 
skanowanie ukrytych wpisów autostartu ... 
 
skanowanie ukrytych plików ...  
 
skanowanie pomyślnie ukończone
ukryte pliki: 0
 
**************************************************************************
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
 
[HKEY_USERS\\S-1-5-21-1935655697-602609370-839522115-1003\\Software\\SecuROM\\License information*]
\"datasecu\"=hex:1e,02,28,b3,a0,5b,dd,32,f9,69,1d,38,d2,f4,78,11,c2,16,fc,70,2d,
   3f,3e,fa,4e,3b,e7,e5,97,30,e4,cf,ac,bb,b1,79,56,62,05,89,10,16,15,bf,99,cd,\\
\"rkeysecu\"=hex:84,2e,d3,27,d2,8c,1b,6a,f8,8b,11,ee,76,35,e6,36
.
Czas ukończenia: 2009-02-05 14:04:41
ComboFix-quarantined-files.txt  2009-02-05 13:04:39
 
Przed: 57 949 384 704 bajtów wolnych
Po: 57,995,014,144 bajtów wolnych
 
257     --- E O F ---   2009-01-11 11:22:59
 
Wygenerowano w 0.130s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!