Kod: 26065 WKLEJTO.PL Darmowa wklejka, na zawsze!

1. 2. 3. 4. 5. 6. 7. 8. 9. 10. 11. 12. 13. 14. 15. 16. 17. 18. 19. 20. 21. 22. 23. 24. 25. 26. 27. 28. 29. 30. 31. 32. 33. 34. 35. 36. 37. 38. 39. 40. 41. 42. 43. 44. 45. 46. 47. 48. 49. 50. 51. 52. 53. 54. 55. 56. 57. 58. 59. 60. 61. 62. 63. 64. 65. 66. 67. 68. 69. 70. 71. 72. 73. 74. 75. 76. 77. 78. 79. 80. 81. 82. 83. 84. 85. 86. 87. 88. 89. 90. 91. 92. 93. 94. 95. 96. 97. 98. 99. 100. 101. 102. 103. 104. 105. 106. 107. 108. 109. 110. 111. 112. 113. 114. 115. 116. 117. 118. 119. 120. 121. 122. 123. 124. 125. 126. 127. 128. 129. 130. 131. 132. 133. 134. 135. 136. 137. 138. 139. 140. 141. 142. 143. 144. 145. 146. 147. 148. 149. 150. 151. 152. 153. 154. 155. 156. 157. 158. 159. 160. 161. 162. 163. 164. 165. 166. 167. 168. 169. 170. 171. 172. 173. 174. 175. 176. 177. 178. 179. 180. 181. 182. 183. 184. 185. 186. 187. 188. 189. 190. 191. 192. 193. 194. 195. 196. 197. 198. 199. 200. 201. 202. 203. 204. 205. 206. 207. 208. 209. 210. 211. 212. 213. 214. 215. 216. 217. 218. 219. 220. 221. 222. 223. 224. 225. 226. 227. 228. 229. 230. 231. 232. 233. 234. 235. 236. 237. 238. 239. 240. 241. 242. 243. 244. 245. 246. 247. 248. 249. 250. 251. 252. 253. 254. 255. 256. 257. 258. 259. 260. 261. 262. 263. 264. 265. 266. 267. 268. 269. 270. 271. 272. 273. 274. 275. 276. 277. 278. 279. 280. 281. 282. 283. 284. 285. 286. 287. 288. 289. 290. 291. 292. 293. 294. 295. 296. 297. 298. 299. 300. 301. 302. 303. 304. 305. 306. 307. 308. 309. 310. 311. 312. 313. 314. 315. 316. 317. 318. 319. 320. 321. 322. 323. 324. 325. 326. 327. 328. 329. 330. 331. 332. 333. 334. 335. 336. 337. 338. 339. 340. 341. 342. 343. 344. 345. 346. 347. 348. 349. 350. 351. 352. 353. 354. 355. 356. 357. 358. 359. 360. 361. 362. 363. 364. 365. 366. 367. 368. 369. 370. 371. 372. 373. 374. 375. 376. 377. 378. 379. 380. 381. 382. 383. 384. 385. 386. 387. 388. 389. 390. 391. 392.

ComboFix 09-02-11.02 - Daniel 2009-02-12 10:01:07.7 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.3.1250.1.1045.18.1015.675 [GMT 1:00] Uruchomiony z: c:\\documents and settings\\Daniel\\Pulpit\\ComboFix.exe Użyto następujących komend :: c:\\documents and settings\\Daniel\\Pulpit\\CFScript.txt * Utworzono nowy punkt przywracania UWAGA - TEN KOMPUTER NIE MA ZAINSTALOWANEJ KONSOLI ODZYSKIWANIA !! FILE :: C:\\2aaxaiy.exe c:\\documents and settings\\All Users\\.clamwin\\quarantine\\infected.e.cmd.vir c:\\documents and settings\\All Users\\.clamwin\\quarantine\\infected.gfqgq.cmd.vir c:\\documents and settings\\All Users\\.clamwin\\quarantine\\infected.gy.exe c:\\documents and settings\\All Users\\.clamwin\\quarantine\\infected.gy.exe.000 c:\\documents and settings\\All Users\\.clamwin\\quarantine\\infected.kamsoft.exe.vir c:\\windows\\AhnRpta.exe . ((((((((((((((((((((((((((((((((((((((( Usunięto ))))))))))))))))))))))))))))))))))))))))))))))))) . C:\\2aaxaiy.exe c:\\windows\\AhnRpta.exe D:\\2aaxaiy.exe . ((((((((((((((((((((((((( Pliki utworzone od 2009-01-12 do 2009-02-12 ))))))))))))))))))))))))))))))) . 2009-02-12 00:21 . 2009-02-12 00:21 1,374 --a------ c:\\windows\\imsins.BAK 2009-02-10 10:54 . 2009-02-10 10:55 979,760 --a------ C:\\cc_20090210_105414.reg 2009-02-10 10:50 . 2009-02-10 10:50 <DIR> d-------- c:\\program files\\CCleaner 2009-02-09 18:09 . 2009-02-09 18:09 <DIR> d-------- c:\\documents and settings\\Wiktor\\Dane aplikacji\\Gadu-Gadu 2009-02-06 19:15 . 2001-10-26 17:29 87,040 --a------ c:\\windows\\system32\\wiafbdrv.dll 2009-02-06 19:11 . 2002-11-01 01:12 49,152 --a------ c:\\windows\\AutoSet.dll 2009-02-06 19:11 . 2002-08-08 02:09 45,056 --a------ c:\\windows\\system32\\micdrv.dll 2009-02-06 19:11 . 2003-02-27 05:55 17,376 --a------ c:\\windows\\system32\\drivers\\GT680x.SYS 2009-02-06 19:11 . 2009-02-06 19:11 267 --a------ c:\\windows\\SCNDRVU.INI 2009-02-06 19:10 . 2009-02-06 19:47 <DIR> d-------- c:\\program files\\ScannerU 2009-01-27 15:02 . 2009-01-27 15:02 301,204 --ah----- c:\\windows\\system32\\mlfcache.dat 2009-01-17 17:07 . 2009-01-17 17:07 <DIR> d-------- c:\\documents and settings\\All Users\\Dane aplikacji\\Keronsoft 2009-01-14 17:43 . 2009-01-14 17:43 <DIR> d-------- c:\\documents and settings\\tomek\\Dane aplikacji\\.clamwin 2009-01-13 23:10 . 2009-01-13 23:10 <DIR> d-------- c:\\documents and settings\\gościu\\Dane aplikacji\\Windows Search . (((((((((((((((((((((((((((((((((((((((( Sekcja Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-02-11 21:38 --------- d-----w c:\\documents and settings\\gościu\\Dane aplikacji\\OpenOffice.ux.pl2 2009-02-11 21:36 --------- d-----w c:\\documents and settings\\Wiktor\\Dane aplikacji\\OpenOffice.ux.pl2 2009-02-11 11:06 --------- d-----w c:\\documents and settings\\Daniel\\Dane aplikacji\\OpenOffice.ux.pl2 2009-02-10 17:20 --------- d-----w c:\\documents and settings\\tomek\\Dane aplikacji\\OpenOffice.ux.pl2 2009-02-05 14:17 --------- d-----w c:\\program files\\Common Files\\Seagate 2009-01-09 19:47 --------- d-----w c:\\documents and settings\\Wiktor\\Dane aplikacji\\ipla 2009-01-01 15:01 --------- d-----w c:\\program files\\Nokia 2009-01-01 15:01 --------- d-----w c:\\program files\\Common Files\\Nokia 2009-01-01 15:00 --------- d-----w c:\\documents and settings\\All Users\\Dane aplikacji\\NokiaMusic 2009-01-01 14:24 --------- d-----w c:\\documents and settings\\Daniel\\Dane aplikacji\\Nokia 2009-01-01 13:47 --------- d-----w c:\\documents and settings\\Daniel\\Dane aplikacji\\PC Suite 2009-01-01 13:46 0 ---ha-w c:\\windows\\system32\\drivers\\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf 2009-01-01 13:46 0 ---ha-w c:\\windows\\system32\\drivers\\Msft_Kernel_ccdcmb_01005.Wdf 2009-01-01 13:32 --------- d-----w c:\\documents and settings\\All Users\\Dane aplikacji\\Installations 2009-01-01 13:31 --------- d-----w c:\\program files\\Common Files\\PCSuite 2009-01-01 13:30 --------- d-----w c:\\program files\\PC Connectivity Solution 2008-12-22 13:47 --------- d-----w c:\\documents and settings\\Daniel\\Dane aplikacji\\ipla 2008-12-22 13:47 --------- d-----w c:\\documents and settings\\All Users\\Dane aplikacji\\ipla 2008-12-20 23:03 826,368 ----a-w c:\\windows\\system32\\wininet.dll 2008-12-19 16:12 --------- d-----w c:\\program files\\Opera 2008-12-16 13:55 --------- d-----w c:\\documents and settings\\Daniel\\Dane aplikacji\\Corel 2008-12-12 03:51 --------- d-----w c:\\documents and settings\\gościu\\Dane aplikacji\\Windows Desktop Search 2008-12-03 09:25 410,984 ----a-w c:\\windows\\system32\\deploytk.dll 2008-04-08 16:51 454,656 ----a-w c:\\program files\\putty.exe 2008-12-19 15:50 67,688 ----a-w c:\\program files\\mozilla firefox\\components\\jar50.dll 2008-12-19 15:50 54,368 ----a-w c:\\program files\\mozilla firefox\\components\\jsd3250.dll 2008-12-19 15:50 34,944 ----a-w c:\\program files\\mozilla firefox\\components\\myspell.dll 2008-12-19 15:50 46,712 ----a-w c:\\program files\\mozilla firefox\\components\\spellchk.dll 2008-12-19 15:50 172,136 ----a-w c:\\program files\\mozilla firefox\\components\\xpinstal.dll 2008-08-28 10:19 16,384 --sha-w c:\\windows\\system32\\config\\systemprofile\\Cookies\\index.dat 2008-08-28 10:19 32,768 --sha-w c:\\windows\\system32\\config\\systemprofile\\Ustawienia lokalne\\Historia\\History.IE5\\index.dat 2008-08-28 10:19 32,768 --sha-w c:\\windows\\system32\\config\\systemprofile\\Ustawienia lokalne\\Historia\\History.IE5\\MSHist012008082820080829\\index.dat 2008-08-28 10:19 32,768 --sha-w c:\\windows\\system32\\config\\systemprofile\\Ustawienia lokalne\\Temporary Internet Files\\Content.IE5\\index.dat . ((((((((((((((((((((((((((((( SnapShot@2009-02-10_17.57.37.26 ))))))))))))))))))))))))))))))))))))))))) . + 2008-10-16 20:33:23 124,928 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\advpack.dll + 2008-10-16 20:33:23 347,136 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\dxtmsft.dll + 2008-10-16 20:33:24 214,528 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\dxtrans.dll + 2008-10-16 20:33:24 133,120 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\extmgr.dll + 2008-10-16 20:33:24 63,488 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\icardie.dll + 2008-10-16 13:15:01 70,656 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\ie4uinit.exe + 2008-10-16 20:33:24 153,088 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\ieakeng.dll + 2008-10-16 20:33:24 230,400 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\ieaksie.dll + 2008-10-15 07:04:53 161,792 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\ieakui.dll + 2008-10-16 20:33:24 383,488 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\ieapfltr.dll + 2008-10-16 20:33:25 384,512 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\iedkcs32.dll + 2008-10-16 20:33:27 6,066,176 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\ieframe.dll + 2008-10-16 20:33:27 44,544 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\iernonce.dll + 2008-10-16 20:33:28 267,776 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\iertutil.dll + 2008-10-16 13:11:09 13,824 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\ieudinit.exe + 2008-10-15 07:06:26 633,632 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\iexplore.exe + 2008-10-16 20:33:29 27,648 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\jsproxy.dll + 2008-10-16 20:33:29 459,264 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\msfeeds.dll + 2008-10-16 20:33:29 52,224 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\msfeedsbs.dll + 2008-12-13 06:39:17 3,593,216 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\mshtml.dll + 2008-10-16 20:33:33 477,696 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\mshtmled.dll + 2008-10-16 20:33:33 193,024 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\msrating.dll + 2008-10-16 20:33:33 671,232 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\mstime.dll + 2008-10-16 20:33:33 102,912 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\occache.dll + 2008-10-16 20:33:33 44,544 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\pngfilt.dll + 2007-03-06 03:28:40 216,288 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\spuninst\\spuninst.exe + 2007-03-06 03:29:50 386,784 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\spuninst\\updspapi.dll + 2008-10-16 20:33:33 105,984 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\url.dll + 2008-10-16 20:33:34 1,160,192 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\urlmon.dll + 2008-10-16 20:33:34 233,472 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\webcheck.dll + 2008-10-16 20:33:34 826,368 -c----w c:\\windows\\ie7updates\\KB961260-IE7\\wininet.dll - 2008-10-16 20:33:23 124,928 ----a-w c:\\windows\\system32\\advpack.dll + 2008-12-20 23:03:39 124,928 ----a-w c:\\windows\\system32\\advpack.dll - 2008-10-16 20:33:23 124,928 -c--a-w c:\\windows\\system32\\dllcache\\advpack.dll + 2008-12-20 23:03:39 124,928 -c--a-w c:\\windows\\system32\\dllcache\\advpack.dll - 2008-10-16 20:33:23 347,136 -c--a-w c:\\windows\\system32\\dllcache\\dxtmsft.dll + 2008-12-20 23:03:39 347,136 -c--a-w c:\\windows\\system32\\dllcache\\dxtmsft.dll - 2008-10-16 20:33:24 214,528 -c--a-w c:\\windows\\system32\\dllcache\\dxtrans.dll + 2008-12-20 23:03:39 214,528 -c--a-w c:\\windows\\system32\\dllcache\\dxtrans.dll - 2008-10-16 20:33:24 133,120 -c--a-w c:\\windows\\system32\\dllcache\\extmgr.dll + 2008-12-20 23:03:39 133,120 -c--a-w c:\\windows\\system32\\dllcache\\extmgr.dll - 2008-10-16 20:33:24 63,488 -c----w c:\\windows\\system32\\dllcache\\icardie.dll + 2008-12-20 23:03:40 63,488 -c----w c:\\windows\\system32\\dllcache\\icardie.dll - 2008-10-16 13:15:01 70,656 -c--a-w c:\\windows\\system32\\dllcache\\ie4uinit.exe + 2008-12-19 09:13:43 70,656 -c--a-w c:\\windows\\system32\\dllcache\\ie4uinit.exe - 2008-10-16 20:33:24 153,088 -c--a-w c:\\windows\\system32\\dllcache\\ieakeng.dll + 2008-12-20 23:03:40 153,088 -c--a-w c:\\windows\\system32\\dllcache\\ieakeng.dll - 2008-10-16 20:33:24 230,400 -c--a-w c:\\windows\\system32\\dllcache\\ieaksie.dll + 2008-12-20 23:03:40 230,400 -c--a-w c:\\windows\\system32\\dllcache\\ieaksie.dll - 2008-10-15 07:04:53 161,792 -c--a-w c:\\windows\\system32\\dllcache\\ieakui.dll + 2008-12-19 05:23:56 161,792 -c--a-w c:\\windows\\system32\\dllcache\\ieakui.dll - 2008-10-16 20:33:24 383,488 -c----w c:\\windows\\system32\\dllcache\\ieapfltr.dll + 2008-12-20 23:03:41 383,488 -c----w c:\\windows\\system32\\dllcache\\ieapfltr.dll - 2008-10-16 20:33:25 384,512 -c--a-w c:\\windows\\system32\\dllcache\\iedkcs32.dll + 2008-12-20 23:03:41 384,512 -c--a-w c:\\windows\\system32\\dllcache\\iedkcs32.dll - 2008-10-16 20:33:27 6,066,176 -c----w c:\\windows\\system32\\dllcache\\ieframe.dll + 2008-12-20 23:03:44 6,066,688 -c----w c:\\windows\\system32\\dllcache\\ieframe.dll - 2008-10-16 20:33:27 44,544 -c--a-w c:\\windows\\system32\\dllcache\\iernonce.dll + 2008-12-20 23:03:45 44,544 -c--a-w c:\\windows\\system32\\dllcache\\iernonce.dll - 2008-10-16 20:33:28 267,776 -c----w c:\\windows\\system32\\dllcache\\iertutil.dll + 2008-12-20 23:03:45 267,776 -c----w c:\\windows\\system32\\dllcache\\iertutil.dll - 2008-10-16 13:11:09 13,824 -c----w c:\\windows\\system32\\dllcache\\ieudinit.exe + 2008-12-19 09:10:15 13,824 -c----w c:\\windows\\system32\\dllcache\\ieudinit.exe - 2008-10-15 07:06:26 633,632 -c--a-w c:\\windows\\system32\\dllcache\\iexplore.exe + 2008-12-19 05:25:25 634,024 -c--a-w c:\\windows\\system32\\dllcache\\iexplore.exe - 2008-10-16 20:33:29 27,648 -c--a-w c:\\windows\\system32\\dllcache\\jsproxy.dll + 2008-12-20 23:03:47 27,648 -c--a-w c:\\windows\\system32\\dllcache\\jsproxy.dll - 2008-10-16 20:33:29 459,264 -c----w c:\\windows\\system32\\dllcache\\msfeeds.dll + 2008-12-20 23:03:47 459,264 -c----w c:\\windows\\system32\\dllcache\\msfeeds.dll - 2008-10-16 20:33:29 52,224 -c----w c:\\windows\\system32\\dllcache\\msfeedsbs.dll + 2008-12-20 23:03:47 52,224 -c----w c:\\windows\\system32\\dllcache\\msfeedsbs.dll - 2008-12-13 06:39:17 3,593,216 -c--a-w c:\\windows\\system32\\dllcache\\mshtml.dll + 2009-01-16 20:30:38 3,594,752 -c--a-w c:\\windows\\system32\\dllcache\\mshtml.dll - 2008-10-16 20:33:33 477,696 -c--a-w c:\\windows\\system32\\dllcache\\mshtmled.dll + 2008-12-20 23:03:51 477,696 -c--a-w c:\\windows\\system32\\dllcache\\mshtmled.dll - 2008-10-16 20:33:33 193,024 -c--a-w c:\\windows\\system32\\dllcache\\msrating.dll + 2008-12-20 23:03:51 193,024 -c--a-w c:\\windows\\system32\\dllcache\\msrating.dll - 2008-10-16 20:33:33 671,232 -c--a-w c:\\windows\\system32\\dllcache\\mstime.dll + 2008-12-20 23:03:51 671,232 -c--a-w c:\\windows\\system32\\dllcache\\mstime.dll - 2008-10-16 20:33:33 102,912 -c--a-w c:\\windows\\system32\\dllcache\\occache.dll + 2008-12-20 23:03:51 102,912 -c--a-w c:\\windows\\system32\\dllcache\\occache.dll - 2008-10-16 20:33:33 44,544 -c--a-w c:\\windows\\system32\\dllcache\\pngfilt.dll + 2008-12-20 23:03:51 44,544 -c--a-w c:\\windows\\system32\\dllcache\\pngfilt.dll - 2008-10-16 20:33:33 105,984 -c--a-w c:\\windows\\system32\\dllcache\\url.dll + 2008-12-20 23:03:51 105,984 -c--a-w c:\\windows\\system32\\dllcache\\url.dll - 2008-10-16 20:33:34 1,160,192 -c--a-w c:\\windows\\system32\\dllcache\\urlmon.dll + 2008-12-20 23:03:52 1,160,192 -c--a-w c:\\windows\\system32\\dllcache\\urlmon.dll - 2008-10-16 20:33:34 233,472 -c--a-w c:\\windows\\system32\\dllcache\\webcheck.dll + 2008-12-20 23:03:52 233,472 -c--a-w c:\\windows\\system32\\dllcache\\webcheck.dll - 2008-10-16 20:33:34 826,368 -c--a-w c:\\windows\\system32\\dllcache\\wininet.dll + 2008-12-20 23:03:53 826,368 -c--a-w c:\\windows\\system32\\dllcache\\wininet.dll - 2008-10-16 20:33:23 347,136 ----a-w c:\\windows\\system32\\dxtmsft.dll + 2008-12-20 23:03:39 347,136 ----a-w c:\\windows\\system32\\dxtmsft.dll - 2008-10-16 20:33:24 214,528 ----a-w c:\\windows\\system32\\dxtrans.dll + 2008-12-20 23:03:39 214,528 ----a-w c:\\windows\\system32\\dxtrans.dll - 2008-10-16 20:33:24 133,120 ----a-w c:\\windows\\system32\\extmgr.dll + 2008-12-20 23:03:39 133,120 ----a-w c:\\windows\\system32\\extmgr.dll - 2008-10-16 20:33:24 63,488 ----a-w c:\\windows\\system32\\icardie.dll + 2008-12-20 23:03:40 63,488 ----a-w c:\\windows\\system32\\icardie.dll - 2008-10-16 13:15:01 70,656 ----a-w c:\\windows\\system32\\ie4uinit.exe + 2008-12-19 09:13:43 70,656 ----a-w c:\\windows\\system32\\ie4uinit.exe - 2008-10-16 20:33:24 153,088 ----a-w c:\\windows\\system32\\ieakeng.dll + 2008-12-20 23:03:40 153,088 ----a-w c:\\windows\\system32\\ieakeng.dll - 2008-10-16 20:33:24 230,400 ----a-w c:\\windows\\system32\\ieaksie.dll + 2008-12-20 23:03:40 230,400 ----a-w c:\\windows\\system32\\ieaksie.dll - 2008-10-15 07:04:53 161,792 ----a-w c:\\windows\\system32\\ieakui.dll + 2008-12-19 05:23:56 161,792 ----a-w c:\\windows\\system32\\ieakui.dll - 2008-10-16 20:33:24 383,488 ----a-w c:\\windows\\system32\\ieapfltr.dll + 2008-12-20 23:03:41 383,488 ----a-w c:\\windows\\system32\\ieapfltr.dll - 2008-10-16 20:33:25 384,512 ----a-w c:\\windows\\system32\\iedkcs32.dll + 2008-12-20 23:03:41 384,512 ----a-w c:\\windows\\system32\\iedkcs32.dll - 2008-10-16 20:33:27 6,066,176 ----a-w c:\\windows\\system32\\ieframe.dll + 2008-12-20 23:03:44 6,066,688 ----a-w c:\\windows\\system32\\ieframe.dll - 2008-10-16 20:33:27 44,544 ----a-w c:\\windows\\system32\\iernonce.dll + 2008-12-20 23:03:45 44,544 ----a-w c:\\windows\\system32\\iernonce.dll - 2008-10-16 20:33:28 267,776 ----a-w c:\\windows\\system32\\iertutil.dll + 2008-12-20 23:03:45 267,776 ----a-w c:\\windows\\system32\\iertutil.dll - 2008-10-16 13:11:09 13,824 ----a-w c:\\windows\\system32\\ieudinit.exe + 2008-12-19 09:10:15 13,824 ----a-w c:\\windows\\system32\\ieudinit.exe - 2008-10-16 20:33:29 27,648 ----a-w c:\\windows\\system32\\jsproxy.dll + 2008-12-20 23:03:47 27,648 ----a-w c:\\windows\\system32\\jsproxy.dll - 2009-01-10 01:35:28 20,853,704 ----a-w c:\\windows\\system32\\MRT.exe + 2009-02-03 23:21:12 21,244,864 ----a-w c:\\windows\\system32\\MRT.exe - 2008-10-16 20:33:29 459,264 ----a-w c:\\windows\\system32\\msfeeds.dll + 2008-12-20 23:03:47 459,264 ----a-w c:\\windows\\system32\\msfeeds.dll - 2008-10-16 20:33:29 52,224 ----a-w c:\\windows\\system32\\msfeedsbs.dll + 2008-12-20 23:03:47 52,224 ----a-w c:\\windows\\system32\\msfeedsbs.dll - 2008-12-13 06:39:17 3,593,216 ----a-w c:\\windows\\system32\\mshtml.dll + 2009-01-16 20:30:38 3,594,752 ----a-w c:\\windows\\system32\\mshtml.dll - 2008-10-16 20:33:33 477,696 ----a-w c:\\windows\\system32\\mshtmled.dll + 2008-12-20 23:03:51 477,696 ----a-w c:\\windows\\system32\\mshtmled.dll - 2008-10-16 20:33:33 193,024 ----a-w c:\\windows\\system32\\msrating.dll + 2008-12-20 23:03:51 193,024 ----a-w c:\\windows\\system32\\msrating.dll - 2008-10-16 20:33:33 671,232 ----a-w c:\\windows\\system32\\mstime.dll + 2008-12-20 23:03:51 671,232 ----a-w c:\\windows\\system32\\mstime.dll - 2008-10-16 20:33:33 102,912 ----a-w c:\\windows\\system32\\occache.dll + 2008-12-20 23:03:51 102,912 ----a-w c:\\windows\\system32\\occache.dll - 2008-10-16 20:33:33 44,544 ----a-w c:\\windows\\system32\\pngfilt.dll + 2008-12-20 23:03:51 44,544 ----a-w c:\\windows\\system32\\pngfilt.dll - 2007-11-30 12:40:46 19,320 ------w c:\\windows\\system32\\spmsg.dll + 2008-07-09 07:57:12 19,320 ------w c:\\windows\\system32\\spmsg.dll - 2008-10-16 20:33:33 105,984 ----a-w c:\\windows\\system32\\url.dll + 2008-12-20 23:03:51 105,984 ----a-w c:\\windows\\system32\\url.dll - 2008-10-16 20:33:34 1,160,192 ----a-w c:\\windows\\system32\\urlmon.dll + 2008-12-20 23:03:52 1,160,192 ----a-w c:\\windows\\system32\\urlmon.dll - 2008-10-16 20:33:34 233,472 ----a-w c:\\windows\\system32\\webcheck.dll + 2008-12-20 23:03:52 233,472 ----a-w c:\\windows\\system32\\webcheck.dll + 2009-02-12 08:53:03 16,384 ----atw c:\\windows\\Temp\\Perflib_Perfdata_1d8.dat . -- Migawka wyzerowana -- . ((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane REGEDIT4 [HKEY_LOCAL_MACHINE\\software\\microsoft\\windows\\currentversion\\explorer\\shelliconoverlayidentifiers\\1TortoiseNormal] @=\"{C5994560-53D9-4125-87C9-F193FC689CB2}\" [HKEY_CLASSES_ROOT\\CLSID\\{C5994560-53D9-4125-87C9-F193FC689CB2}] 2008-01-16 16:52 80384 --a------ c:\\program files\\Common Files\\TortoiseOverlays\\TortoiseOverlays.dll [HKEY_LOCAL_MACHINE\\software\\microsoft\\windows\\currentversion\\explorer\\shelliconoverlayidentifiers\\2TortoiseModified] @=\"{C5994561-53D9-4125-87C9-F193FC689CB2}\" [HKEY_CLASSES_ROOT\\CLSID\\{C5994561-53D9-4125-87C9-F193FC689CB2}] 2008-01-16 16:52 80384 --a------ c:\\program files\\Common Files\\TortoiseOverlays\\TortoiseOverlays.dll [HKEY_LOCAL_MACHINE\\software\\microsoft\\windows\\currentversion\\explorer\\shelliconoverlayidentifiers\\3TortoiseConflict] @=\"{C5994562-53D9-4125-87C9-F193FC689CB2}\" [HKEY_CLASSES_ROOT\\CLSID\\{C5994562-53D9-4125-87C9-F193FC689CB2}] 2008-01-16 16:52 80384 --a------ c:\\program files\\Common Files\\TortoiseOverlays\\TortoiseOverlays.dll [HKEY_LOCAL_MACHINE\\software\\microsoft\\windows\\currentversion\\explorer\\shelliconoverlayidentifiers\\4TortoiseLocked] @=\"{C5994563-53D9-4125-87C9-F193FC689CB2}\" [HKEY_CLASSES_ROOT\\CLSID\\{C5994563-53D9-4125-87C9-F193FC689CB2}] 2008-01-16 16:52 80384 --a------ c:\\program files\\Common Files\\TortoiseOverlays\\TortoiseOverlays.dll [HKEY_LOCAL_MACHINE\\software\\microsoft\\windows\\currentversion\\explorer\\shelliconoverlayidentifiers\\5TortoiseReadOnly] @=\"{C5994564-53D9-4125-87C9-F193FC689CB2}\" [HKEY_CLASSES_ROOT\\CLSID\\{C5994564-53D9-4125-87C9-F193FC689CB2}] 2008-01-16 16:52 80384 --a------ c:\\program files\\Common Files\\TortoiseOverlays\\TortoiseOverlays.dll [HKEY_LOCAL_MACHINE\\software\\microsoft\\windows\\currentversion\\explorer\\shelliconoverlayidentifiers\\6TortoiseDeleted] @=\"{C5994565-53D9-4125-87C9-F193FC689CB2}\" [HKEY_CLASSES_ROOT\\CLSID\\{C5994565-53D9-4125-87C9-F193FC689CB2}] 2008-01-16 16:52 80384 --a------ c:\\program files\\Common Files\\TortoiseOverlays\\TortoiseOverlays.dll [HKEY_LOCAL_MACHINE\\software\\microsoft\\windows\\currentversion\\explorer\\shelliconoverlayidentifiers\\7TortoiseAdded] @=\"{C5994566-53D9-4125-87C9-F193FC689CB2}\" [HKEY_CLASSES_ROOT\\CLSID\\{C5994566-53D9-4125-87C9-F193FC689CB2}] 2008-01-16 16:52 80384 --a------ c:\\program files\\Common Files\\TortoiseOverlays\\TortoiseOverlays.dll [HKEY_LOCAL_MACHINE\\software\\microsoft\\windows\\currentversion\\explorer\\shelliconoverlayidentifiers\\8TortoiseIgnored] @=\"{C5994567-53D9-4125-87C9-F193FC689CB2}\" [HKEY_CLASSES_ROOT\\CLSID\\{C5994567-53D9-4125-87C9-F193FC689CB2}] 2008-01-16 16:52 80384 --a------ c:\\program files\\Common Files\\TortoiseOverlays\\TortoiseOverlays.dll [HKEY_LOCAL_MACHINE\\software\\microsoft\\windows\\currentversion\\explorer\\shelliconoverlayidentifiers\\9TortoiseUnversioned] @=\"{C5994568-53D9-4125-87C9-F193FC689CB2}\" [HKEY_CLASSES_ROOT\\CLSID\\{C5994568-53D9-4125-87C9-F193FC689CB2}] 2008-01-16 16:52 80384 --a------ c:\\program files\\Common Files\\TortoiseOverlays\\TortoiseOverlays.dll [HKEY_CURRENT_USER\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run] \"CTFMON.EXE\"=\"c:\\windows\\system32\\ctfmon.exe\" [2008-04-14 15360] [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run] \"IgfxTray\"=\"c:\\windows\\system32\\igfxtray.exe\" [2005-06-21 155648] \"HotKeysCmds\"=\"c:\\windows\\system32\\hkcmd.exe\" [2005-06-21 126976] \"Smapp\"=\"c:\\program files\\Analog Devices\\SoundMAX\\SMTray.exe\" [2003-05-05 143360] \"DrvLsnr\"=\"c:\\program files\\Analog Devices\\SoundMAX\\DrvLsnr.exe\" [2003-05-08 69632] \"UnlockerAssistant\"=\"c:\\program files\\Unlocker\\UnlockerAssistant.exe\" [2006-09-07 15872] \"SunJavaUpdateSched\"=\"c:\\program files\\Java\\jre6\\bin\\jusched.exe\" [2008-12-03 136600] \"LXSUPMON\"=\"c:\\windows\\system32\\LXSUPMON.EXE\" [2002-01-28 885760] \"Acronis Scheduler2 Service\"=\"c:\\program files\\Common Files\\Seagate\\Schedule2\\schedhlp.exe\" [2007-09-04 148760] \"ClamWin\"=\"c:\\program files\\ClamWin\\bin\\ClamTray.exe\" [2008-11-04 86016] \"Adobe Reader Speed Launcher\"=\"c:\\program files\\Adobe\\Reader 8.0\\Reader\\Reader_sl.exe\" [2008-01-11 39792] [HKEY_USERS\\.DEFAULT\\Software\\Microsoft\\Windows\\CurrentVersion\\Run] \"CTFMON.EXE\"=\"c:\\windows\\system32\\CTFMON.EXE\" [2008-04-14 15360] c:\\documents and settings\\gociu\\Menu Start\\Programy\\Autostart\\ OpenOffice.ux.pl 2.4.0.lnk - c:\\program files\\OpenOffice.ux.pl 2.4.0\\program\\quickstart.exe [2008-04-02 19456] c:\\documents and settings\\tomek\\Menu Start\\Programy\\Autostart\\ OpenOffice.ux.pl 2.4.0.lnk - c:\\program files\\OpenOffice.ux.pl 2.4.0\\program\\quickstart.exe [2008-04-02 19456] c:\\documents and settings\\Daniel\\Menu Start\\Programy\\Autostart\\ Adobe Gamma.lnk - c:\\program files\\Common Files\\Adobe\\Calibration\\Adobe Gamma Loader.exe [2005-03-16 113664] [hkey_local_machine\\software\\microsoft\\windows\\currentversion\\explorer\\ShellExecuteHooks] \"{56F9679E-7826-4C84-81F3-532071A8BCC5}\"= \"c:\\program files\\Windows Desktop Search\\MSNLNamespaceMgr.dll\" [2008-05-26 304128] [HKEY_LOCAL_MACHINE\\software\\microsoft\\windows nt\\currentversion\\drivers32] \"vidc.ffds\"= c:\\progra~1\\COMBIN~1\\Filters\\FFDShow\\ff_vfw.dll [HKLM\\~\\startupfolder\\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Windows Search.lnk] path=c:\\documents and settings\\All Users\\Menu Start\\Programy\\Autostart\\Windows Search.lnk backup=c:\\windows\\pss\\Windows Search.lnkCommon Startup [HKEY_LOCAL_MACHINE\\software\\microsoft\\security center] \"AntiVirusOverride\"=dword:00000001 [HKLM\\~\\services\\sharedaccess\\parameters\\firewallpolicy\\standardprofile\\AuthorizedApplications\\List] \"%windir%\\\\system32\\\\sessmgr.exe\"= \"%windir%\\\\Network Diagnostic\\\\xpnetdiag.exe\"= \"c:\\\\Program Files\\\\Gadu-Gadu\\\\gg.exe\"= \"c:\\\\Program Files\\\\EditPlus 2\\\\editplus.exe\"= \"c:\\\\WINDOWS\\\\system32\\\\ftp.exe\"= \"c:\\\\WINDOWS\\\\system32\\\\LEXPPS.EXE\"= \"c:\\\\Program Files\\\\Media Player Classic\\\\mplayerc.exe\"= \"c:\\\\Program Files\\\\Mozilla Firefox\\\\firefox.exe\"= \"c:\\\\Program Files\\\\Skype\\\\Phone\\\\Skype.exe\"= \"c:\\\\Program Files\\\\Bonjour\\\\mDNSResponder.exe\"= \"c:\\\\Program Files\\\\WinSCP\\\\WinSCP.exe\"= R3 vmscekb1;Virtual Media Center Keyboard;c:\\windows\\system32\\drivers\\vmscekb1.sys [2006-06-01 36224] R3 vmscekb2;Virtual Media Center Remote Control;c:\\windows\\system32\\drivers\\vmscekb2.sys [2006-06-01 36224] R3 vmscekb3;Virtual Media Center Control;c:\\windows\\system32\\drivers\\vmscekb3.sys [2006-06-01 36224] S3 GT680xNT;715 USB Scanner Driver;c:\\windows\\system32\\drivers\\GT680x.SYS [2009-02-06 17376] S3 NPF;NetGroup Packet Filter Driver;c:\\windows\\system32\\drivers\\npf.sys [2007-01-25 42000] S3 rtkbflt1;rtkbflt1;c:\\windows\\system32\\drivers\\rtkbflt1.sys [2006-03-17 25472] S3 rtkbflt2;rtkbflt2;c:\\windows\\system32\\drivers\\rtkbflt2.sys [2006-03-17 25472] . Zawartość folderu \'Zaplanowane zadania\' 2009-02-09 c:\\windows\\Tasks\\AppleSoftwareUpdate.job - c:\\program files\\Apple Software Update\\SoftwareUpdate.exe [2008-04-11 16:57] . . ------- Skan uzupełniający ------- . uStart Page = about:blank uInternet Settings,ProxyOverride = *.local IE: Display Toolbar and Menubar - c:\\program files\\IEInspector\\IEWebDeveloperV2\\cmd_display.html TCP: {A4EA3BC6-5145-400E-A529-830A7E3D0773} = 10.42.42.1 FF - ProfilePath - c:\\documents and settings\\Daniel\\Dane aplikacji\\Mozilla\\Firefox\\Profiles\\sd0hez84.default\\ FF - prefs.js: browser.startup.homepage - blank FF - component: c:\\documents and settings\\Daniel\\Dane aplikacji\\Mozilla\\Firefox\\Profiles\\sd0hez84.default\\extensions\\{6AC85730-7D0F-4de0-B3FA-21142DD85326}\\platform\\WINNT\\components\\ColorZilla.dll FF - component: c:\\program files\\Mozilla Firefox\\components\\xpinstal.dll . ************************************************************************** catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-02-12 10:03:45 Windows 5.1.2600 Dodatek Service Pack 3 NTFS skanowanie ukrytych procesów ... skanowanie ukrytych wpisów autostartu ... skanowanie ukrytych plików ... skanowanie pomyślnie ukończone ukryte pliki: 0 ************************************************************************** . Czas ukończenia: 2009-02-12 10:06:59 ComboFix-quarantined-files.txt 2009-02-12 09:05:51 ComboFix2.txt 2009-02-10 16:58:28 ComboFix3.txt 2009-02-10 09:42:29 Przed: 2 340 941 824 bajtów wolnych Po: 2,324,836,352 bajtów wolnych 351 --- E O F --- 2009-02-11 23:23:29

Nowy Komentarz:

Komentarze: