wklejto.pl

Dodane przez: ~Anonim (2009-06-17 11:44) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
ComboFix 09-06-16.05 - slaszek 2009-06-17 11:38.8 - NTFSx86
Microsoft Windows XP Professional  5.1.2600.3.1250.48.1033.18.2046.1550 [GMT 2:00]
Uruchomiony z: d:\\combofix\\ComboFix.exe
AV: avast! antivirus 4.8.1335 [VPS 090616-0] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
 
(((((((((((((((((((((((((((((((((((((((   Usunięto   )))))))))))))))))))))))))))))))))))))))))))))))))
.
 
d:\\documents and settings\\slaszek\\Application Data\\wiaserva.log
d:\\documents and settings\\slaszek\\Start Menu\\Programs\\Startup\\rncsys32.exe
 
.
(((((((((((((((((((((((((((((((((((((((   Sterowniki/Usługi   )))))))))))))))))))))))))))))))))))))))))))))))))
.
 
-------\\Service_glaide32
 
 
(((((((((((((((((((((((((   Pliki utworzone od 2009-05-17 do 2009-06-17  )))))))))))))))))))))))))))))))
.
 
2009-06-16 11:56 . 2009-06-16 20:12     --------        d-----w-        d:\\documents and settings\\slaszek\\Application Data\\Moje pliki Bitwy o Śródziemie™ II
2009-06-16 09:38 . 2009-06-16 09:38     --------        d-----w-        d:\\documents and settings\\All Users\\Application Data\\InstallShield
2009-06-16 09:35 . 2009-06-16 09:35     --------        d-----w-        d:\\program files\\Ubisoft
2009-06-12 09:36 . 2009-06-12 09:45     --------        d-----w-        d:\\documents and settings\\slaszek\\Local Settings\\Application Data\\Librus Świadectwa
2009-06-12 09:36 . 2009-06-12 09:36     --------        d-----w-        d:\\program files\\Librus
2009-06-09 19:01 . 2009-06-09 19:01     --------        d-----w-        d:\\documents and settings\\slaszek\\Application Data\\HateML
2009-06-09 17:45 . 2009-06-09 17:45     --------        d-----w-        d:\\windows\\system32\\config\\systemprofile\\Local Settings\\Application Data\\ATI
2009-06-09 17:45 . 2009-06-09 17:45     --------        d-----w-        d:\\windows\\system32\\config\\systemprofile\\Application Data\\ATI
2009-06-09 16:15 . 2009-06-09 16:15     --------        d-sh--w-        d:\\windows\\ftpcache
2009-06-09 16:14 . 1999-12-17 08:13     86016   ----a-w-        d:\\windows\\unvise32.exe
2009-06-08 18:36 . 2009-06-08 18:38     14363536        ----a-w-        d:\\program files\\DrCureIt.exe
2009-06-07 17:47 . 2009-06-07 17:47     --------        d-----w-        d:\\documents and settings\\slaszek\\Application Data\\Malwarebytes
2009-06-07 17:47 . 2009-05-26 11:20     40160   ----a-w-        d:\\windows\\system32\\drivers\\mbamswissarmy.sys
2009-06-07 17:47 . 2009-06-07 17:47     --------        d-----w-        d:\\documents and settings\\All Users\\Application Data\\Malwarebytes
2009-06-07 17:47 . 2009-05-26 11:19     19096   ----a-w-        d:\\windows\\system32\\drivers\\mbam.sys
2009-06-06 14:39 . 2009-06-06 14:40     --------        d-----w-        D:\\wybory2009,bal
2009-06-06 11:02 . 2009-06-06 11:02     --------        d-----w-        d:\\documents and settings\\Administrator\\Local Settings\\Application Data\\Opera
2009-06-06 11:01 . 2009-06-06 11:01     --------        d-----w-        d:\\windows\\system32\\GroupPolicy
2009-06-06 10:54 . 2009-06-06 10:54     --------        d-----w-        d:\\program files\\Common Files\\Wise Installation Wizard
2009-06-06 10:41 . 2009-06-17 09:43     --------        d-----w-        d:\\documents and settings\\All Users\\Application Data\\Spybot - Search & Destroy
2009-06-05 12:04 . 2009-06-05 12:05     --------        d-----w-        d:\\windows\\system32\\config\\systemprofile\\Local Settings\\Application Data\\Google
2009-06-05 11:40 . 2009-06-14 18:09     --------        d-----w-        d:\\documents and settings\\slaszek\\DoctorWeb
2009-06-04 21:53 . 2009-06-04 21:53     --------        d-----w-        d:\\documents and settings\\All Users\\Application Data\\HP Product Assistant
2009-05-28 13:15 . 2009-05-28 13:15     --------        d-----w-        d:\\documents and settings\\slaszek\\Application Data\\WindowsApplication1
2009-05-26 14:44 . 2009-05-29 11:06     --------        d-----w-        d:\\documents and settings\\slaszek\\Local Settings\\Application Data\\Deployment
2009-05-22 10:50 . 2009-05-22 10:50     --------        d-----w-        d:\\documents and settings\\slaszek\\.gstreamer-0.10
2009-05-18 15:41 . 2005-01-03 15:43     4682    ----a-w-        d:\\windows\\system32\\npptNT2.sys
2009-05-18 15:39 . 2009-05-18 15:39     --------        d-----w-        d:\\program files\\Common Files\\INCA Shared
 
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-06-17 09:43 . 2009-05-15 18:49     --------        d-----w-        d:\\documents and settings\\slaszek\\Application Data\\skypePM
2009-06-17 09:43 . 2009-05-15 18:47     --------        d-----w-        d:\\documents and settings\\slaszek\\Application Data\\Skype
2009-06-16 19:39 . 2009-03-21 00:09     1       ----a-w-        d:\\documents and settings\\slaszek\\Application Data\\OpenOffice.ux.pl\\3\\user\\uno_packages\\cache\\stamp.sys
2009-06-16 15:35 . 2009-03-26 16:29     --------        d-----w-        d:\\documents and settings\\slaszek\\Application Data\\Image Zone Express
2009-06-16 11:45 . 2009-03-19 16:29     --------        d-----w-        d:\\program files\\Electronic Arts
2009-06-16 09:36 . 2009-03-18 23:43     --------        d--h--w-        d:\\program files\\InstallShield Installation Information
2009-06-16 09:36 . 2009-03-18 23:43     --------        d-----w-        d:\\program files\\Common Files\\InstallShield
2009-06-15 17:27 . 2009-04-17 11:44     --------        d-----w-        d:\\documents and settings\\slaszek\\Application Data\\foobar2000
2009-06-04 21:54 . 2009-03-22 14:33     --------        d-----w-        d:\\program files\\HP
2009-06-04 21:48 . 2005-01-24 09:30     139264  ----a-w-        d:\\windows\\system32\\hpzjrd01.dll
2009-05-22 10:55 . 2009-05-14 14:54     --------        d-----w-        d:\\documents and settings\\All Users\\Application Data\\OpenFM
2009-05-21 11:57 . 2009-04-28 16:45     --------        d-----w-        d:\\program files\\Google
2009-05-16 19:44 . 2009-05-08 12:55     --------        d-----w-        d:\\documents and settings\\slaszek\\Application Data\\GanymedeNet
2009-05-16 15:27 . 2009-03-27 15:31     --------        d-----w-        d:\\documents and settings\\slaszek\\Application Data\\Nowe Gadu-Gadu
2009-05-15 20:08 . 2009-03-19 01:07     19400   ----a-w-        d:\\documents and settings\\slaszek\\Local Settings\\Application Data\\GDIPFONTCACHEV1.DAT
2009-05-15 18:49 . 2009-05-15 18:49     56      ---ha-w-        d:\\windows\\system32\\ezsidmv.dat
2009-05-15 18:47 . 2009-05-15 18:47     --------        d-----w-        d:\\program files\\Common Files\\Skype
2009-05-15 18:47 . 2009-05-15 18:47     --------        d-----r-        d:\\program files\\Skype
2009-05-15 18:47 . 2009-05-15 18:47     --------        d-----w-        d:\\documents and settings\\All Users\\Application Data\\Skype
2009-05-14 14:54 . 2009-05-14 14:54     --------        d-----w-        d:\\documents and settings\\slaszek\\Application Data\\OpenFM
2009-05-04 18:14 . 2009-05-04 18:14     --------        d-----w-        d:\\program files\\Logomocja Demo
2009-04-20 16:22 . 2009-03-27 15:30     --------        d-----w-        d:\\program files\\Nowe Gadu-Gadu
2009-04-08 13:05 . 2009-04-08 13:05     234418  ----a-w-        d:\\windows\\EasyGifAnimator_Toolbar_Uninstaller_953.exe
2009-04-08 13:04 . 2009-04-08 13:04     234418  ----a-w-        d:\\windows\\EasyGifAnimator_Toolbar_Uninstaller_4140.exe
2009-04-07 17:50 . 2009-04-07 17:50     234418  ----a-w-        d:\\windows\\EasyGifAnimator_Toolbar_Uninstaller_4531.exe
2009-04-06 18:44 . 2009-04-06 18:44     130     ----a-w-        d:\\documents and settings\\slaszek\\Local Settings\\Application Data\\fusioncache.dat
2009-04-06 16:38 . 2009-04-06 16:38     234418  ----a-w-        d:\\windows\\EasyGifAnimator_Toolbar_Uninstaller_8906.exe
2009-03-31 14:49 . 2009-03-31 14:49     271360  ----a-w-        d:\\windows\\system32\\drivers\\atksgt.sys
2009-03-31 14:49 . 2009-03-31 14:49     18048   ----a-w-        d:\\windows\\system32\\drivers\\lirsgt.sys
2009-03-22 14:40 . 2009-03-22 14:30     113573  ----a-w-        d:\\windows\\hpoins07.dat
2009-03-22 08:05 . 2009-03-22 08:05     0       ----a-w-        d:\\windows\\nsreg.dat
2009-03-21 16:29 . 2009-03-19 16:28     4358    ----a-w-        d:\\windows\\system32\\ealregsnapshot1.reg
2009-03-20 20:14 . 2009-03-18 23:26     166939  ----a-w-        d:\\windows\\pchealth\\helpctr\\OfflineCache\\index.dat
2009-03-20 19:53 . 2009-03-20 19:53     410984  ----a-w-        d:\\windows\\system32\\deploytk.dll
2009-03-20 19:52 . 2009-03-20 19:52     152576  ----a-w-        d:\\documents and settings\\slaszek\\Application Data\\Sun\\Java\\jre1.6.0_12\\lzma.dll
2009-03-19 19:56 . 2009-03-19 19:56     107888  ----a-w-        d:\\windows\\system32\\CmdLineExt.dll
2009-03-19 12:15 . 2009-03-19 12:15     40320   ----a-w-        d:\\windows\\system32\\drivers\\steth.sys
2009-03-19 12:15 . 2009-03-19 12:15     30464   ----a-w-        d:\\windows\\system32\\drivers\\st330.sys
2009-03-19 12:15 . 2009-03-19 12:15     16128   ----a-w-        d:\\windows\\system32\\drivers\\lpwdm.sys
2009-03-19 12:15 . 2009-03-19 12:15     12672   ----a-w-        d:\\windows\\system32\\drivers\\stbus.sys
.
 
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4
 
[HKEY_CURRENT_USER\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run]
\"swg\"=\"d:\\program files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe\" [2009-05-03 68856]
\"SpybotSD TeaTimer\"=\"e:\\spybot - search & destroy\\TeaTimer.exe\" [2009-01-26 2144088]
\"Sony Ericsson PC Suite\"=\"d:\\program files\\Sony Ericsson\\Sony Ericsson PC Suite\\SEPCSuite.exe\" [2008-07-02 393216]
\"Skype\"=\"d:\\program files\\Skype\\Phone\\Skype.exe\" [2009-04-21 24264488]
\"MSMSGS\"=\"d:\\program files\\Messenger\\msmsgs.exe\" [2008-04-14 1695232]
\"ccleaner\"=\"d:\\program files\\CCleaner\\CCleaner.exe\" [2009-02-19 1471728]
 
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run]
\"avast!\"=\"d:\\progra~1\\ALWILS~1\\Avast4\\ashDisp.exe\" [2009-02-05 81000]
\"TkBellExe\"=\"d:\\program files\\Common Files\\Real\\Update_OB\\realsched.exe\" [2009-03-18 180269]
\"SunJavaUpdateSched\"=\"d:\\program files\\Java\\jre6\\bin\\jusched.exe\" [2009-03-20 148888]
\"StartCCC\"=\"d:\\program files\\ATI Technologies\\ATI.ACE\\Core-Static\\CLIStart.exe\" [2008-08-01 61440]
\"SpeedTouch USB Diagnostics\"=\"d:\\program files\\Thomson\\SpeedTouch USB\\Dragdiag.exe\" [2004-03-23 888832]
\"NeroFilterCheck\"=\"d:\\windows\\system32\\NeroCheck.exe\" [2001-07-09 155648]
\"MultiScreen\"=\"d:\\program files\\MultiScreen\\MultiScreen.exe\" [2008-02-22 114688]
\"HP Software Update\"=\"d:\\program files\\HP\\HP Software Update\\HPWuSchd2.exe\" [2007-05-08 54840]
\"ehTray\"=\"d:\\windows\\ehome\\ehtray.exe\" [2005-08-05 64512]
\"ASUSGamerOSD\"=\"d:\\program files\\ASUS\\GamerOSD\\GamerOSD.exe\" [2008-08-29 380928]
 
[HKEY_USERS\\.DEFAULT\\Software\\Microsoft\\Windows\\CurrentVersion\\Run]
\"CTFMON.EXE\"=\"d:\\windows\\system32\\CTFMON.EXE\" [2008-04-14 15360]
 
d:\\documents and settings\\slaszek\\Start Menu\\Programs\\Startup\\
Registration Heroes of Might & Magic 5.LNK - d:\\program files\\Ubisoft\\Heroes of Might and Magic V\\registration\\RegistrationReminder.exe [2009-6-16 868352]
 
[HKLM\\~\\services\\sharedaccess\\parameters\\firewallpolicy\\standardprofile\\AuthorizedApplications\\List]
\"%windir%\\\\system32\\\\sessmgr.exe\"=
\"%windir%\\\\Network Diagnostic\\\\xpnetdiag.exe\"=
\"d:\\\\Gry\\\\FIFA 09\\\\EADM\\\\Core.exe\"=
\"d:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpqtra08.exe\"=
\"d:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpqste08.exe\"=
\"d:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpofxm08.exe\"=
\"d:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hposfx08.exe\"=
\"d:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hposid01.exe\"=
\"d:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpqscnvw.exe\"=
\"d:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpqkygrp.exe\"=
\"d:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpqCopy.exe\"=
\"d:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpfccopy.exe\"=
\"d:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpzwiz01.exe\"=
\"d:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\Unload\\\\HpqPhUnl.exe\"=
\"d:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\Unload\\\\HpqDIA.exe\"=
\"d:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpoews01.exe\"=
\"d:\\\\Gry\\\\FIFA 09\\\\FIFA09.exe\"=
\"d:\\\\WINDOWS\\\\system32\\\\dpvsetup.exe\"=
\"d:\\\\Program Files\\\\Nowe Gadu-Gadu\\\\gg.exe\"=
\"d:\\\\Program Files\\\\Messenger\\\\msmsgs.exe\"=
\"d:\\\\Gry\\\\Conquest.exe\"=
\"d:\\\\Gry\\\\Moje\\\\HTML\\\\HateML\\\\DbgListener\\\\DbgListener.exe\"=
\"d:\\\\Program Files\\\\Electronic Arts\\\\Bitwa o Śródziemie II\\\\game.dat\"=
\"d:\\\\Program Files\\\\Electronic Arts\\\\Bitwa o Śródziemie II\\\\patchget.dat\"=
\"d:\\\\Program Files\\\\Skype\\\\Phone\\\\Skype.exe\"=
 
[HKLM\\~\\services\\sharedaccess\\parameters\\firewallpolicy\\standardprofile\\GloballyOpenPorts\\List]
\"53:UDP\"= 53:UDP:Promo
 
R1 aswSP;avast! Self Protection;d:\\windows\\system32\\drivers\\aswSP.sys [2009-03-19 114768]
R2 aswFsBlk;aswFsBlk;d:\\windows\\system32\\drivers\\aswFsBlk.sys [2009-03-19 20560]
R3 AtiHdmiService;ATI Function Driver for HDMI Service;d:\\windows\\system32\\drivers\\AtiHdmi.sys [2009-03-19 89600]
S2 gupdate1c9d58d925649f9;Usługa Google Update (gupdate1c9d58d925649f9);d:\\program files\\Google\\Update\\GoogleUpdate.exe [2009-05-15 133104]
S3 hitmanpro2;Hitman Pro 2 Driver;\\??\\g:\\theme\\Hitman Pro\\hitmanpro2.sys --> g:\\theme\\Hitman Pro\\hitmanpro2.sys [?]
S3 npggsvc;nProtect GameGuard Service;d:\\windows\\system32\\GameMon.des -service --> d:\\windows\\system32\\GameMon.des -service [?]
S3 s3017bus;Sony Ericsson Device 3017 driver (WDM);d:\\windows\\system32\\drivers\\s3017bus.sys [2009-04-17 83880]
S3 s3017mdfl;Sony Ericsson Device 3017 USB WMC Modem Filter;d:\\windows\\system32\\drivers\\s3017mdfl.sys [2009-04-17 15016]
S3 s3017mdm;Sony Ericsson Device 3017 USB WMC Modem Driver;d:\\windows\\system32\\drivers\\s3017mdm.sys [2009-04-17 110632]
S3 s3017mgmt;Sony Ericsson Device 3017 USB WMC Device Management Drivers (WDM);d:\\windows\\system32\\drivers\\s3017mgmt.sys [2009-04-17 104616]
S3 s3017nd5;Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (NDIS);d:\\windows\\system32\\drivers\\s3017nd5.sys [2009-04-17 25512]
S3 s3017obex;Sony Ericsson Device 3017 USB WMC OBEX Interface;d:\\windows\\system32\\drivers\\s3017obex.sys [2009-04-17 100648]
S3 s3017unic;Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (WDM);d:\\windows\\system32\\drivers\\s3017unic.sys [2009-04-17 110120]
S3 ST330;ST330;d:\\windows\\system32\\drivers\\st330.sys [2009-03-19 30464]
S3 STBUS;STBUS;d:\\windows\\system32\\drivers\\stbus.sys [2009-03-19 12672]
S3 STETH;SpeedTouch Ethernet Adapter NT Driver;d:\\windows\\system32\\drivers\\steth.sys [2009-03-19 40320]
.
Zawartość folderu \'Zaplanowane zadania\'
 
2009-06-17 d:\\windows\\Tasks\\GoogleUpdateTaskMachine.job
- d:\\program files\\Google\\Update\\GoogleUpdate.exe [2009-05-15 18:47]
.
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://bez-minimum.info/scripts/runner.php?SP=a84b9bcfmireck2
TCP: {E1A1AEE5-99ED-4217-BE2C-C1853DD312EC} = 213.241.79.37 83.238.255.76
FF - ProfilePath - 
.
 
**************************************************************************
 
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-06-17 11:42
Windows 5.1.2600 Service Pack 3 NTFS
 
skanowanie ukrytych procesów ...  
 
skanowanie ukrytych wpisów autostartu ... 
 
skanowanie ukrytych plików ...  
 
skanowanie pomyślnie ukończone
ukryte pliki: 0
 
**************************************************************************
 
[HKEY_LOCAL_MACHINE\\System\\ControlSet001\\Services\\npggsvc]
\"ImagePath\"=\"d:\\windows\\system32\\GameMon.des -service\"
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
 
[HKEY_USERS\\S-1-5-21-854245398-412668190-839522115-1004\\Software\\SecuROM\\License information*]
\"datasecu\"=hex:c3,7d,c6,70,0e,af,9b,75,9b,67,8c,bc,8d,fe,ab,40,ce,a3,c6,03,6b,
   f8,7f,11,d1,75,bf,de,7e,a9,d3,24,78,12,db,1b,ab,4b,7e,4d,fe,88,8a,a1,bc,48,\\
\"rkeysecu\"=hex:1f,c8,8d,f0,e4,26,b6,f3,a4,c7,66,5e,27,2b,b7,3c
.
--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------
 
- - - - - - - > \'winlogon.exe\'(752)
d:\\windows\\system32\\Ati2evxx.dll
 
- - - - - - - > \'explorer.exe\'(548)
d:\\program files\\MultiScreen\\ServiceHook.dll
.
------------------------ Pozostałe uruchomione procesy ------------------------
.
d:\\windows\\system32\\ati2evxx.exe
d:\\program files\\Alwil Software\\Avast4\\aswUpdSv.exe
d:\\program files\\Alwil Software\\Avast4\\ashServ.exe
d:\\windows\\system32\\ati2evxx.exe
d:\\windows\\ATKKBService.exe
d:\\windows\\ehome\\ehrecvr.exe
d:\\windows\\ehome\\ehSched.exe
d:\\program files\\Java\\jre6\\bin\\jqs.exe
d:\\windows\\system32\\HPZipm12.exe
d:\\windows\\system32\\wdfmgr.exe
d:\\windows\\ehome\\mcrdsvc.exe
d:\\program files\\Alwil Software\\Avast4\\ashMaiSv.exe
d:\\program files\\Alwil Software\\Avast4\\ashWebSv.exe
d:\\windows\\system32\\dllhost.exe
d:\\program files\\ATI Technologies\\ATI.ACE\\Core-Static\\MOM.exe
d:\\windows\\ehome\\ehmsas.exe
d:\\windows\\system32\\rundll32.exe
d:\\program files\\Skype\\Plugin Manager\\skypePM.exe
d:\\program files\\ATI Technologies\\ATI.ACE\\Core-Static\\CCC.exe
.
**************************************************************************
.
Czas ukończenia: 2009-06-17 11:45 - komputer został uruchomiony ponownie
ComboFix-quarantined-files.txt  2009-06-17 09:45
ComboFix2.txt  2009-06-14 20:28
 
Przed: 58 211 647 488 bytes free
Po: 58 209 513 472 bajtów wolnych
 
224     --- E O F ---   2009-04-17 11:10
 
Wygenerowano w 0.112s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!