wklejto.pl

Dodane przez: ~Janek (2009-02-10 16:16) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
ComboFix 09-02-08.02 - dom 2009-02-10 15:57:57.1 - NTFSx86 MINIMAL
Microsoft Windows XP Home Edition  5.1.2600.3.1250.1.1045.18.2047.1778 [GMT 1:00]
Uruchomiony z: c:\documents and settings\dom\Pulpit\ComboFix.exe
AV: Panda Internet Security 2008 *On-access scanning enabled* (Updated)
FW: Panda Internet Security 2008 *enabled*
 
UWAGA - TEN KOMPUTER NIE MA ZAINSTALOWANEJ KONSOLI ODZYSKIWANIA !!
.
 
(((((((((((((((((((((((((((((((((((((((   Usunito   )))))))))))))))))))))))))))))))))))))))))))))))))
.
 
c:\documents and settings\All Users\Dane aplikacji\Microsoft\Network\Downloader\qmgr0.dat
c:\documents and settings\All Users\Dane aplikacji\Microsoft\Network\Downloader\qmgr1.dat
c:\windows\system32\GfMTvyay.ini
c:\windows\system32\GfMTvyay.ini2
c:\windows\system32\opnmJBtT.dll
c:\windows\system32\yayvTMfG.dll
 
----- BITS: Moliwe zainfekowane strony -----
 
hxxp://codecs.sytes.net
.
(((((((((((((((((((((((((   Pliki utworzone od 2009-01-10 do 2009-02-10  )))))))))))))))))))))))))))))))
.
 
2009-02-09 20:46 . 2009-02-09 20:46     <DIR>   d--------       c:\program files\Trend Micro
2009-02-09 00:19 . 2009-02-09 00:19     <DIR>   d--------       C:\VundoFix Backups
2009-02-06 14:08 . 2008-10-10 04:52     4,379,984       --a------       c:\windows\system32\D3DX9_40.dll
2009-02-06 14:08 . 2008-10-10 04:52     2,036,576       --a------       c:\windows\system32\D3DCompiler_40.dll
2009-02-06 14:08 . 2008-10-27 10:04     514,384 --a------       c:\windows\system32\XAudio2_3.dll
2009-02-06 14:08 . 2008-10-10 04:52     452,440 --a------       c:\windows\system32\d3dx10_40.dll
2009-02-06 14:08 . 2008-10-27 10:04     235,856 --a------       c:\windows\system32\xactengine3_3.dll
2009-02-06 14:08 . 2008-10-27 10:04     70,992  --a------       c:\windows\system32\XAPOFX1_2.dll
2009-02-06 14:08 . 2008-10-27 10:04     23,376  --a------       c:\windows\system32\X3DAudio1_5.dll
2009-02-06 14:04 . 2009-02-06 14:08     <DIR>   d--------       c:\documents and settings\All Users\Dane aplikacji\XBlades
2009-02-06 14:03 . 2009-02-06 14:03     19,968  --a------       C:\mekhejdf.exe
2009-02-06 14:03 . 2009-02-06 14:03     2       --a------       C:\-1464127641
2009-02-06 14:02 . 2009-02-06 14:03     8,192   --a------       C:\pukrqu.exe
2009-02-04 12:49 . 2009-02-04 13:04     191     --a------       c:\windows\YODESK.INI
2009-02-01 10:48 . 2009-02-01 10:48     268     --a------       c:\windows\game.ini
2009-01-29 12:38 . 2009-01-29 12:38     <DIR>   d--------       c:\documents and settings\dom\dwhelper
2009-01-13 21:46 . 2009-01-13 21:46     <DIR>   d--------       c:\program files\VDOWNLOADER
 
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-02-10 15:03        13,880  ----a-w c:\windows\system32\drivers\COMFiltr.sys
2009-02-10 15:03        1,204   ----a-w c:\windows\system32\drivers\APPFLTR.CFG.bck
2009-02-10 15:03        1,204   ----a-w c:\windows\system32\drivers\APPFLTR.CFG
2009-02-10 15:02        385,364 ----a-w c:\windows\system32\drivers\APPFCONT.DAT.bck
2009-02-10 15:02        385,364 ----a-w c:\windows\system32\drivers\APPFCONT.DAT
2009-02-10 15:01        ---------       d-----w c:\program files\cFosSpeed
2009-02-10 14:47        ---------       d-----w c:\documents and settings\All Users\Dane aplikacji\Spybot - Search & Destroy
2009-02-10 14:46        ---------       d-----w c:\documents and settings\dom\Dane aplikacji\uTorrent
2009-02-10 12:43        ---------       d-----w c:\documents and settings\dom\Dane aplikacji\AIMP
2009-02-05 12:16        ---------       d-----w c:\documents and settings\dom\Dane aplikacji\Nokia Multimedia Player
2009-02-03 15:30        ---------       d-----w c:\program files\NAPI-PROJEKT
2009-02-01 09:35        ---------       d-----w c:\documents and settings\All Users\Dane aplikacji\2DBoy
2009-01-31 12:23        ---------       d-----w c:\program files\SubEdit-Player
2009-01-26 14:21        ---------       d-----w c:\program files\Wanadoo
2008-12-31 12:23        80,980  ----a-w c:\windows\Uninstall Jade Empire.exe
2008-12-24 19:42        ---------       d-----w c:\documents and settings\dom\Dane aplikacji\COWON
2008-12-24 19:06        ---------       d-----w c:\program files\JetAudio
2008-12-24 19:06        ---------       d-----w c:\program files\Common Files\COWON
2008-12-24 19:05        ---------       d--h--w c:\program files\InstallShield Installation Information
2008-12-11 10:57        333,952 ----a-w c:\windows\system32\drivers\srv.sys
2008-05-03 16:38        32,768  --sha-w c:\windows\system32\config\systemprofile\Ustawienia lokalne\Historia\History.IE5\MSHist012008050320080504\index.dat
.
 
------- Sigcheck -------
 
2006-04-20 13:18  360576  b2220c618b42a2212a59d91ebd6fc4b4      c:\windows\$hf_mig$\KB917953\SP2QFE\tcpip.sys
2007-10-30 17:53  360832  64798ecfa43d78c7178375fcdd16d8c8      c:\windows\$hf_mig$\KB941644\SP2QFE\tcpip.sys
2008-06-20 12:59  361600  ad978a1b783b5719720cff204b666c8e      c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys
2007-10-30 18:20  360064  90caff4b094573449a0872a0f919b178      c:\windows\$NtServicePackUninstall$\tcpip.sys
2006-10-14 11:32  359808  5f7560272b39a61f39933a717ee10aaf      c:\windows\$NtUninstallKB941644$\tcpip.sys
2008-04-13 23:50  361344  93ea8d04ec73a85db02eb8805988f733      c:\windows\$NtUninstallKB951748$\tcpip.sys
2008-11-12 10:00  361344  22a389083780c053b52519af28201a96      c:\windows\ServicePackFiles\i386\tcpip.sys
2008-11-12 10:00  361600  cd00787894008369f56153b91fc28847      c:\windows\system32\dllcache\tcpip.sys
2008-11-12 10:00  361600  cd00787894008369f56153b91fc28847      c:\windows\system32\drivers\tcpip.sys
 
2008-02-28 15:52  23552  1ea6f0ab57ce0e11a8721073491f575f       c:\windows\$NtServicePackUninstall$\ctfmon.exe
2008-08-09 21:49  24064  c3a2915c71ae6f225eb906c25ccd29b5       c:\windows\ServicePackFiles\i386\ctfmon.exe
2008-08-09 21:49  24064  c3a2915c71ae6f225eb906c25ccd29b5       c:\windows\system32\ctfmon.exe
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domylne, prawidowe wpisy nie s pokazane  
REGEDIT4
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"FreeRAM XP"="c:\program files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe" [2006-03-22 1591808]
"LClock"="c:\program files\LClock\lclock.exe" [2004-09-19 65536]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2008-07-24 490952]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"APVXDWIN"="c:\program files\Panda Software\Panda Platinum 2006 Internet Security\APVXDWIN.EXE" [2007-11-23 406832]
"SCANINICIO"="c:\program files\Panda Software\Panda Platinum 2006 Internet Security\Inicio.exe" [2007-07-11 27952]
"cFosSpeed"="c:\program files\cFosSpeed\cFosSpeed.exe" [2007-08-10 846800]
"PCSuiteTrayApplication"="c:\program files\Nokia\Nokia PC Suite 6\LaunchApplication.exe" [2007-03-23 227328]
 
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-08-09 24064]
"Nokia.PCSync"="c:\program files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-03-27 1744896]
 
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avldr]
2007-02-15 18:02 50736 c:\windows\system32\avldr.dll
 
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"msacm.l3fhg"= mp3fhg.acm
"msacm.divxa32"= divxa32.acm
"VIDC.X264"= x264vfw.dll
"VIDC.HFYU"= huffyuv.dll
"vidc.i263"= i263_32.drv
 
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
c:\windows\system32\dumprep 0 -k [X]
 
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"Schedule"=2 (0x2)
"RDSessMgr"=3 (0x3)
"Irmon"=2 (0x2)
 
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
 
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\FlashGet\\flashget.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
 
R1 APPFLT;App Filter Plugin;c:\windows\system32\drivers\APPFLT.SYS [2006-10-13 71608]
R1 DSAFLT;DSA Filter Plugin;c:\windows\system32\drivers\dsaflt.sys [2006-10-13 51256]
R1 FNETMON;NetMon Filter Plugin;c:\windows\system32\drivers\fnetmon.sys [2006-10-13 21816]
R1 IDSFLT;Ids Filter Plugin;c:\windows\system32\drivers\idsflt.sys [2006-10-13 191672]
R1 NETFLTDI;Panda Net Driver [TDI Layer];c:\windows\system32\drivers\netfltdi.sys [2006-10-13 15:39:57 132664]
R1 ShldDrv;Panda File Shield Driver;c:\windows\system32\drivers\ShlDrv51.sys [2008-07-29 38968]
R1 SMSFLT;SMS Filter Plugin;c:\windows\system32\drivers\smsflt.sys [2006-10-13 37304]
R1 WNMFLT;Wifi Monitor Filter Plugin;c:\windows\system32\drivers\wnmflt.sys [2006-10-13 30648]
R2 cpoint;Panda CPoint Driver;c:\windows\system32\drivers\cpoint.sys [2006-10-13 24760]
R2 PavProc;Panda Process Protection Driver;c:\windows\system32\drivers\PavProc.sys [2006-10-13 178872]
R3 AvFlt;Antivirus Filter Driver;c:\windows\system32\drivers\av5flt.sys --> c:\windows\system32\drivers\av5flt.sys [?]
R3 ComFiltr;Panda Anti-Dialer;c:\windows\system32\drivers\COMFiltr.sys [2008-07-29 13880]
R3 genmcmnUSB;USB Scroll Mouse Driver;c:\windows\system32\drivers\gflmouhid.sys [2006-10-13 6656]
R3 NETIMFLT01050097;PANDA NDIS IM Filter Miniport v1.5.0.97;c:\windows\system32\drivers\netimflt.sys [2008-07-29 143160]
R3 PavSRK.sys;PavSRK.sys;\??\c:\windows\system32\PavSRK.sys --> c:\windows\system32\PavSRK.sys [?]
R3 PavTPK.sys;PavTPK.sys;\??\c:\windows\system32\PavTPK.sys --> c:\windows\system32\PavTPK.sys [?]
S3 MEMSWEEP2;MEMSWEEP2;\??\c:\windows\system32\2D7.tmp --> c:\windows\system32\2D7.tmp [?]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [2008-07-14 138112]
S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [2008-07-14 8320]
S3 XDva007;XDva007;\??\c:\windows\system32\XDva007.sys --> c:\windows\system32\XDva007.sys [?]
 
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{1173e3e5-57c2-11dd-ae09-0016e6517a27}]
\Shell\AutoRun\command - H:\Autorun.exe /run
\Shell\Shell00\Command - H:\Autorun.exe /run
\Shell\Shell01\Command - H:\Autorun.exe /action
\Shell\Shell02\Command - H:\Autorun.exe /uninstall
 
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{124d4182-445a-11dd-addd-806d6172696f}]
\Shell\AutoRun\command - E:\setup.exe
 
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{406aec56-f03b-11dd-aef5-0016e6517a27}]
\Shell\AutoRun\command - H:\laucher.exe
 
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{68f9d434-7161-11db-8fa5-4d6564696130}]
\Shell\AutoRun\command - F:\Launcher.exe
 
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e7491b9e-c275-11dc-9279-4d6564696130}]
\Shell\AutoRun\command - fooool.exe
\Shell\explore\Command - fooool.exe
\Shell\open\Command - fooool.exe
.
Zawarto folderu 'Zaplanowane zadania'
 
2008-10-26 c:\windows\Tasks\Podstawowe porzdkowanie.job
- c:\program files\Panda Software\Panda Platinum 2006 Internet Security\PlaTasks.exe [2007-07-17 13:13]
 
2008-09-10 c:\windows\Tasks\Podstawowe porzdkowanie1.job
- c:\program files\Panda Software\Panda Platinum 2006 Internet Security\PlaTasks.exe [2007-07-17 13:13]
.
- - - - USUNITO PUSTE WPISY - - - -
 
BHO-{7D86E251-0BB2-491D-A9D7-B10CE8FB55DE} - c:\windows\system32\yayvTMfG.dll
Notify-iifCrrPi - iifCrrPi.dll
 
 
.
------- Skan uzupeniajcy -------
.
uStart Page = hxxp://gmail.com/
uInternet Connection Wizard,ShellNext = iexplore
IE: &Download All with FlashGet - c:\program files\FlashGet\jc_all.htm
IE: &Download with FlashGet - c:\program files\FlashGet\jc_link.htm
IE: Konwertuj do Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Konwertuj miejsce docelowe cza do Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Konwertuj miejsce docelowe cza do istniejcego pliku PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Konwertuj wybrane cza do Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Konwertuj zaznaczenie do Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Konwertuj zaznaczenie do istniejcego pliku PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
LSP: c:\program files\Panda Software\Panda Platinum 2006 Internet Security\pavlsp.dll
DPF: {AA07EBD2-EBDD-4BD6-9F8F-114BD513492C} - hxxp://disteng.nefficient.com/disteng/neffy/NeffyLauncher.cab
FF - ProfilePath - c:\documents and settings\dom\Dane aplikacji\Mozilla\Firefox\Profiles\70afhhw6.default\
FF - prefs.js: browser.startup.homepage - chrome://fastdial/content/fastdial.html
FF - prefs.js: network.proxy.type - 2
FF - component: c:\documents and settings\dom\Dane aplikacji\Mozilla\Firefox\Profiles\70afhhw6.default\extensions\piclens@cooliris.com\components\coolirisstub.dll
FF - component: c:\program files\DAEMON Tools Toolbar\FirefoxDTT\components\DTToolbarFF.dll
FF - plugin: c:\program files\Java\jre1.5.0_16\bin\NPJava11.dll
FF - plugin: c:\program files\Java\jre1.5.0_16\bin\NPJava12.dll
FF - plugin: c:\program files\Java\jre1.5.0_16\bin\NPJava13.dll
FF - plugin: c:\program files\Java\jre1.5.0_16\bin\NPJava14.dll
FF - plugin: c:\program files\Java\jre1.5.0_16\bin\NPJava32.dll
FF - plugin: c:\program files\Java\jre1.5.0_16\bin\NPJPI150_16.dll
FF - plugin: c:\program files\Java\jre1.5.0_16\bin\NPOJI610.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll
FF - plugin: d:\gry\Opera\program\plugins\npdsplay.dll
FF - plugin: d:\gry\Opera\program\plugins\nppl3260.dll
FF - plugin: d:\gry\Opera\program\plugins\nprpjplug.dll
FF - plugin: d:\gry\Opera\program\plugins\NPSWF32.dll
FF - plugin: d:\gry\Opera\program\plugins\npwmsdrm.dll
.
.
------- Skojarzenia plikw -------
.
JSEFile=c:\progra~1\PANDAS~1\PANDAP~1\pavscrip.exe "%1" %*
VBEFile=c:\progra~1\PANDAS~1\PANDAP~1\pavscrip.exe "%1" %*
VBSFile=c:\progra~1\PANDAS~1\PANDAP~1\pavscrip.exe "%1" %*
.
 
**************************************************************************
 
catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-02-10 16:02:21
Windows 5.1.2600 Dodatek Service Pack 3 NTFS
 
detected NTDLL code modification:
ZwEnumerateKey, ZwClose, ZwEnumerateValueKey, ZwQueryValueKey, ZwOpenFile
 
skanowanie ukrytych procesw ...  
 
skanowanie ukrytych wpisw autostartu ... 
 
skanowanie ukrytych plikw ...  
 
skanowanie pomylnie ukoczone
ukryte pliki: 0
 
**************************************************************************
 
[HKEY_LOCAL_MACHINE\System\ControlSet003\Services\MEMSWEEP2]
"ImagePath"="\??\c:\windows\system32\2D7.tmp"
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
 
[HKEY_USERS\S-1-5-21-602162358-706699826-839522115-1004\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:ef,e5,83,72,08,a7,29,52,83,e5,16,32,66,c5,d8,c9,26,c4,4f,31,98,01,c2,
   22,33,3a,b0,70,7f,0d,d5,be,34,12,c9,22,97,42,50,cd,d3,b1,d7,2a,98,fd,f8,91,\
"??"=hex:e6,13,90,03,18,fc,9c,c6,59,de,42,2c,5b,77,da,7d
 
[HKEY_USERS\S-1-5-21-602162358-706699826-839522115-1004\Software\SecuROM\License information*]
"datasecu"=hex:7e,7b,03,7c,02,a6,8c,ef,9e,72,ce,e6,0a,e6,30,d1,ec,31,5d,fa,c0,
   a1,5a,e9,c2,47,c2,c2,f2,dc,af,43,52,2e,e5,1f,1a,d4,29,1d,5e,a8,20,c0,47,0d,\
"rkeysecu"=hex:6b,44,f7,16,43,8f,df,45,48,0c,08,2e,9b,28,b6,5c
 
[HKEY_LOCAL_MACHINE\software\Xanthic\{EAC0842F-9764-03DD-A0B6-5FFFB48AD6EB}*_]
"fr"="078E5870475D48"
"lr"="078E7142455A5E"
.
--------------------- Pliki DLL adowane pod uruchomionymi procesami ---------------------
 
- - - - - - - > 'winlogon.exe'(1484)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\avldr.dll
.
------------------------ Pozostae uruchomione procesy ------------------------
.
c:\windows\system32\ati2evxx.exe
c:\program files\Panda Software\Panda Platinum 2006 Internet Security\PAVSRV51.EXE
c:\program files\Panda Software\Panda Platinum 2006 Internet Security\AVENGINE.EXE
c:\program files\Panda Software\Panda Platinum 2006 Internet Security\TPSrv.exe
c:\windows\system32\ati2evxx.exe
c:\program files\Lavasoft\Ad-Aware\aawservice.exe
c:\windows\system32\LEXBCES.EXE
c:\windows\system32\LEXPPS.EXE
c:\program files\cFosSpeed\spd.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Panda Software\Panda Platinum 2006 Internet Security\PsCtrlS.exe
c:\program files\Panda Software\Panda Platinum 2006 Internet Security\PAVFNSVR.EXE
c:\program files\Common Files\Panda Software\PavShld\PavPrSrv.exe
c:\program files\Panda Software\Panda Platinum 2006 Internet Security\AntiSpam\pskmssvc.exe
c:\program files\Panda Software\Panda Platinum 2006 Internet Security\FIREWALL\PSHost.exe
c:\program files\Panda Software\Panda Platinum 2006 Internet Security\PsImSvc.exe
c:\windows\system32\wdfmgr.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\program files\Panda Software\Panda Platinum 2006 Internet Security\SrvLoad.exe
c:\program files\Panda Software\Panda Platinum 2006 Internet Security\WebProxy.exe
c:\program files\Panda Software\Panda Platinum 2006 Internet Security\avciman.exe
c:\program files\Panda Software\Panda Platinum 2006 Internet Security\psimreal.exe
c:\program files\Panda Software\Panda Platinum 2006 Internet Security\PavBckPT.exe
c:\windows\system32\uwdf.exe
c:\program files\Panda Software\Panda Platinum 2006 Internet Security\Upgrader.exe
.
**************************************************************************
.
Czas ukoczenia: 2009-02-10 16:08:24 - komputer zosta uruchomiony ponownie [dom]
ComboFix-quarantined-files.txt  2009-02-10 15:08:17
 
Przed: 23,337,840,640 bajtw wolnych
Po: 23,253,417,984 bajtw wolnych
 
Current=3 Default=3 Failed=1 LastKnownGood=4 Sets=1,2,3,4
269     --- E O F ---   2009-01-14 08:46:18
 
Wygenerowano w 0.142s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!