Daniel W. utworzono 4 maja 2009 utworzono 4 maja 2009 ComboFix 09-05-03.5 - Damian 2009-05-04 16:47.1 - NTFSx86Microsoft Windows XP Professional 5.1.2600.2.1250.48.1045.18.1023.645 [GMT 2:00]Uruchomiony z: c:\documents and settings\Damian\Pulpit\ComboFix.exeAV: ESET Smart Security 3.0 *On-access scanning enabled* (Updated)FW: ESET Personal firewall *enabled* * Resident AV is activeUWAGA - TEN KOMPUTER NIE MA ZAINSTALOWANEJ KONSOLI ODZYSKIWANIA !!.((((((((((((((((((((((((((((((((((((((( Usunięto ))))))))))))))))))))))))))))))))))))))))))))))))).c:\program files\Mozilla Firefox\plugins\NPMyGlSh.dllc:\program files\myglobalsearchc:\program files\myglobalsearch\bar\1.bin\M9FFXTBR.JARc:\program files\myglobalsearch\bar\1.bin\M9FFXTBR.MANIFESTc:\program files\myglobalsearch\bar\1.bin\M9NTSTBR.JARc:\program files\myglobalsearch\bar\1.bin\M9NTSTBR.MANIFESTc:\program files\myglobalsearch\bar\1.bin\M9PLUGIN.DLLc:\program files\myglobalsearch\bar\1.bin\MGSBAR.DLLc:\program files\myglobalsearch\bar\1.bin\NPMYGLSH.DLLc:\program files\myglobalsearch\bar\Cache\[u]0[/u]0026B81c:\program files\myglobalsearch\bar\Cache\[u]0[/u]0026EAEc:\program files\myglobalsearch\bar\Cache\[u]0[/u]0027054.binc:\program files\myglobalsearch\bar\Cache\[u]0[/u]0027286.binc:\program files\myglobalsearch\bar\Cache\[u]0[/u]002745B.binc:\program files\myglobalsearch\bar\Cache\files.inic:\program files\myglobalsearch\bar\History\searchc:\program files\myglobalsearch\bar\Settings\prevcfg.htmc:\windows\system32\mpg4c32.dll.((((((((((((((((((((((((( Pliki utworzone od 2009-04-04 do 2009-05-04 ))))))))))))))))))))))))))))))).2009-05-04 07:52 . 2009-05-04 08:15 -------- d-----w c:\program files\BearShare2009-05-02 10:04 . 2009-05-02 10:04 -------- d-----w c:\documents and settings\Damian\Ustawienia lokalne\Dane aplikacji\ESET2009-05-02 08:54 . 2008-01-07 12:29 352 ---ha-w c:\windows\nod32fixtemdono.reg2009-05-02 08:52 . 2009-05-02 08:52 -------- d-----w c:\program files\ESET2009-05-01 08:19 . 2009-05-01 08:19 -------- d-----w c:\documents and settings\Damian\Dane aplikacji\ESET2009-04-13 16:25 . 2009-04-13 16:25 -------- d-----w c:\documents and settings\Damian\Ustawienia lokalne\Dane aplikacji\Real2009-04-13 16:25 . 2009-04-13 16:25 -------- d-----w c:\program files\Real Alternative2009-04-13 16:18 . 2009-04-13 16:18 -------- d-----w c:\documents and settings\Damian\Dane aplikacji\Media Player Classic2009-04-13 16:17 . 2008-09-16 19:23 168448 ----a-w c:\windows\system32\unrar.dll2009-04-13 16:17 . 2004-01-25 16:18 217088 ----a-w c:\windows\system32\yv12vfw.dll2009-04-13 16:17 . 2008-11-06 16:37 3596288 ----a-w c:\windows\system32\qt-dx331.dll2009-04-13 16:17 . 2008-12-11 00:33 86016 ----a-w c:\windows\system32\dpl100.dll2009-04-13 16:17 . 2009-03-02 18:10 67584 ----a-w c:\windows\system32\ff_vfw.dll2009-04-13 16:17 . 2009-01-07 18:14 60273 ----a-w c:\windows\system32\pthreadGC2.dll2009-04-13 16:00 . 2009-04-13 16:00 -------- d-----w c:\documents and settings\All Users\Dane aplikacji\AVS4YOU2009-04-13 16:00 . 2009-04-13 16:00 -------- d-----w c:\program files\AVS4YOU2009-04-13 16:00 . 2009-04-13 16:00 -------- d-----w c:\program files\Common Files\AVSMedia2009-04-13 16:00 . 2008-11-06 16:33 684032 ----a-w c:\windows\system32\divx.dll2009-04-13 16:00 . 2008-12-07 18:08 130048 ----a-w c:\windows\system32\xvidvfw.dll2009-04-13 16:00 . 2008-12-07 18:08 795648 ----a-w c:\windows\system32\xvidcore.dll2009-04-13 16:00 . 2007-09-27 12:22 261632 ----a-w c:\windows\system32\mcdvd_32.dll2009-04-13 16:00 . 2003-05-21 10:50 24576 ----a-w c:\windows\system32\msxml3a.dll2009-04-13 16:00 . 2003-05-21 21:50 1700352 ----a-w c:\windows\system32\GdiPlus.dll2009-04-13 16:00 . 2002-01-05 13:48 974848 ----a-w c:\windows\system32\mfc70.dll2009-04-12 14:57 . 2004-08-03 20:58 5504 ----a-w c:\windows\system32\drivers\MSTEE.sys2009-04-12 14:57 . 2004-08-03 21:10 10880 ----a-w c:\windows\system32\drivers\NdisIP.sys2009-04-12 14:57 . 2004-08-03 21:10 15360 ----a-w c:\windows\system32\drivers\StreamIP.sys2009-04-12 14:57 . 2004-08-03 21:10 11136 ----a-w c:\windows\system32\drivers\SLIP.sys2009-04-12 14:57 . 2004-08-03 21:10 19328 ----a-w c:\windows\system32\drivers\WSTCODEC.SYS2009-04-12 14:57 . 2004-08-03 21:10 85376 ----a-w c:\windows\system32\drivers\NABTSFEC.sys2009-04-12 14:57 . 2004-08-03 21:10 17024 ----a-w c:\windows\system32\drivers\CCDECODE.sys2009-04-12 14:57 . 1999-10-10 17:00 41984 ------w c:\windows\Ctregrun.exe2009-04-12 14:56 . 2006-11-09 17:01 126976 ----a-r c:\windows\system32\V0260Vfw.dll2009-04-12 14:56 . 2006-03-27 17:00 32874 ----a-r c:\windows\V0260Cfg.exe2009-04-12 14:56 . 2006-06-16 03:30 90112 ----a-r c:\windows\CtDrvIns.exe2009-04-12 14:56 . 2005-11-30 17:00 20564 ----a-r c:\windows\system32\V0260Srv.exe2009-04-12 14:56 . 2006-04-04 17:00 36864 ----a-r c:\windows\system32\V0260Pin.dll2009-04-12 14:56 . 2006-03-30 17:00 28672 ----a-r c:\windows\system32\V0260Hwx.dll2009-04-12 14:56 . 2005-07-06 17:07 36864 ----a-r c:\windows\system32\CtCamMgr.dll2009-04-12 14:56 . 2006-11-03 10:16 24872 ----a-r c:\windows\system32\drivers\V0260Cmd.sys2009-04-12 14:56 . 2006-11-03 22:45 178913 ----a-r c:\windows\system32\drivers\V0260Vid.sys2009-04-12 14:56 . 2004-08-03 22:44 54784 ----a-w c:\windows\system32\vfwwdm32.dll2009-04-12 14:55 . 1998-10-29 14:45 306688 ----a-w c:\windows\IsUninst.exe2009-04-12 14:55 . 2009-04-13 12:50 -------- d-----w c:\program files\Creative2009-04-09 20:53 . 2009-04-09 20:53 -------- d-----w c:\documents and settings\Damian\Dane aplikacji\teamspeak22009-04-09 19:23 . 2009-04-09 19:23 -------- d-----w c:\documents and settings\Damian\Ustawienia lokalne\Dane aplikacji\Sony Ericsson2009-04-09 18:19 . 2009-04-09 18:19 -------- d-----w c:\documents and settings\Damian\Dane aplikacji\Teleca2009-04-09 18:18 . 2009-04-09 18:18 -------- d-----w c:\documents and settings\Damian\Dane aplikacji\Sony Ericsson2009-04-09 18:17 . 2009-04-09 18:18 -------- dc----w c:\windows\system32\DRVSTORE2009-04-09 18:17 . 2009-04-09 18:17 -------- d-----w c:\documents and settings\All Users\Dane aplikacji\Sony Ericsson2009-04-09 18:17 . 2009-04-09 18:17 -------- d-----w c:\program files\Common Files\Sony Ericsson Shared2009-04-09 18:17 . 2009-04-09 18:17 -------- d-----w c:\program files\Common Files\Teleca Shared2009-04-09 18:17 . 2009-04-09 18:17 -------- d-----w c:\program files\Sony Ericsson2009-04-09 18:17 . 2009-04-09 18:17 -------- d-----w c:\documents and settings\All Users\Dane aplikacji\Teleca2009-04-09 18:17 . 2009-04-09 18:17 -------- d-----w c:\windows\Downloaded Installations2009-04-09 14:41 . 2009-04-09 14:41 -------- d-----w c:\windows\Sun2009-04-09 13:30 . 2009-04-09 13:30 23600 ----a-w c:\windows\system32\drivers\TVICHW32.SYS2009-04-09 13:30 . 2009-04-09 13:30 -------- d-----w c:\documents and settings\Damian\Ustawienia lokalne\Dane aplikacji\eSupport.com2009-04-09 13:24 . 2009-04-09 13:25 -------- d-----w c:\documents and settings\Damian\Dane aplikacji\Czat2009-04-09 09:54 . 2009-04-09 09:54 410984 ----a-w c:\windows\system32\deploytk.dll.(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))).2009-05-04 14:47 . 2003-03-12 23:19 6 ---ha-w c:\windows\Tasks\SA.DAT2009-05-04 12:00 . 2009-03-08 05:53 66872 ----a-w c:\windows\system32\PnkBstrA.exe2009-05-04 08:15 . 2003-03-12 23:05 -------- d-----w c:\program files\neostrada tp2009-04-27 09:50 . 2001-10-26 16:15 74230 ----a-w c:\windows\system32\perfc015.dat2009-04-27 09:50 . 2001-10-26 16:15 448004 ----a-w c:\windows\system32\perfh015.dat2009-04-13 16:02 . 2003-03-13 01:07 13496 ----a-w c:\documents and settings\Damian\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT2009-04-12 14:57 . 2003-03-12 23:06 -------- d--h--w c:\program files\InstallShield Installation Information2009-04-09 09:54 . 2003-03-12 23:06 -------- d-----w c:\program files\Java2009-03-28 19:36 . 2009-03-28 19:36 -------- d-----w c:\program files\Common Files\Adobe AIR2009-03-28 19:36 . 2009-03-28 19:35 -------- d-----w c:\program files\Common Files\Adobe2009-03-27 17:04 . 2009-03-27 17:04 25280 ----a-w c:\windows\system32\drivers\hamachi.sys2009-03-14 14:29 . 2009-03-08 05:53 138512 ----a-w c:\windows\system32\drivers\PnkBstrK.sys2009-03-14 14:28 . 2009-03-08 05:53 201440 ----a-w c:\windows\system32\PnkBstrB.exe2009-03-13 09:18 . 2009-03-13 09:18 -------- d-----w c:\program files\Common Files\LightScribe2009-03-13 09:18 . 2009-03-13 09:11 -------- d-----w c:\program files\Common Files\Ahead2009-03-13 09:11 . 2009-03-13 09:11 -------- d-----w c:\program files\Nero2009-03-08 15:48 . 2009-03-08 15:48 -------- d-----r c:\program files\Skype2009-03-08 15:48 . 2009-03-08 15:48 -------- d-----w c:\program files\Common Files\Skype2009-03-07 21:42 . 2009-03-07 21:42 56 ---ha-w c:\windows\system32\ezsidmv.dat2009-03-07 21:10 . 2009-03-07 21:10 -------- d-----w c:\program files\C-Media 3D Audio2009-03-07 20:40 . 2009-03-07 20:01 -------- d-----w c:\program files\ATI Technologies2009-03-07 20:01 . 2003-03-12 23:06 -------- d-----w c:\program files\Common Files\InstallShield.------- Sigcheck -------[-] 2001-10-26 17:30 12800 B3C95BFEEF6781A82A1C429F466A3A11 c:\windows\$NtServicePackUninstall$\svchost.exe[-] 2004-08-03 23:44 14336 BA98327E90022DBD6EE76490E0622E2E c:\windows\ServicePackFiles\i386\svchost.exe[-] 2004-08-03 23:44 14336 BA98327E90022DBD6EE76490E0622E2E c:\windows\system32\svchost.exe[-] 2002-09-20 16:04 561664 3A4892A57CFE05D61E4BBC3EC3E24A63 c:\windows\$NtServicePackUninstall$\user32.dll[-] 2004-08-03 23:44 578560 0C81764F50F32D376E6E4B9E9F4B01A0 c:\windows\ServicePackFiles\i386\user32.dll[-] 2004-08-03 23:44 578560 0C81764F50F32D376E6E4B9E9F4B01A0 c:\windows\system32\user32.dll[-] 2001-10-26 17:29 75264 9B7D1C56CC12D806314B853BF52ECB4C c:\windows\$NtServicePackUninstall$\ws2_32.dll[-] 2004-08-03 23:44 82944 AB82237486B727DD7DAB36A76F38A3A2 c:\windows\ServicePackFiles\i386\ws2_32.dll[-] 2004-08-03 23:44 82944 AB82237486B727DD7DAB36A76F38A3A2 c:\windows\system32\ws2_32.dll[-] 2002-09-20 16:05 601600 4965C02574610E9B2D1E18D63D11A772 c:\windows\$NtServicePackUninstall$\wininet.dll[-] 2004-08-03 23:44 658944 D37DAFB534AC8343D59A1B501ABE852C c:\windows\ServicePackFiles\i386\wininet.dll[-] 2004-08-03 23:44 658944 D37DAFB534AC8343D59A1B501ABE852C c:\windows\system32\wininet.dll[-] 2002-08-28 23:58 332928 244A2F9816BC9B593957281EF577D976 c:\windows\$NtServicePackUninstall$\tcpip.sys[-] 2004-08-03 22:14 359040 9F4B36614A0FC234525BA224957DE55C c:\windows\ServicePackFiles\i386\tcpip.sys[-] 2004-08-03 22:14 359040 9F4B36614A0FC234525BA224957DE55C c:\windows\system32\drivers\tcpip.sys[-] 2002-09-20 16:05 519168 8B6E6BB5D451F8BBC0621203B687D993 c:\windows\$NtServicePackUninstall$\winlogon.exe[-] 2004-08-03 23:44 504832 0344407089B08548D4FEBA62BB0F32D0 c:\windows\ServicePackFiles\i386\winlogon.exe[-] 2004-08-03 23:44 504832 0344407089B08548D4FEBA62BB0F32D0 c:\windows\system32\winlogon.exe[-] 2002-08-29 00:09 167552 3B350E5A2A5E951453F3993275A4523A c:\windows\$NtServicePackUninstall$\ndis.sys[-] 2004-08-03 22:14 182912 558635D3AF1C7546D26067D5D9B6959E c:\windows\ServicePackFiles\i386\ndis.sys[-] 2004-08-03 22:14 182912 558635D3AF1C7546D26067D5D9B6959E c:\windows\system32\drivers\ndis.sys[-] 2004-08-03 22:00 29056 4448006B6BC60E6C027932CFC38D6855 c:\windows\ServicePackFiles\i386\ip6fw.sys[-] 2004-08-03 22:00 29056 4448006B6BC60E6C027932CFC38D6855 c:\windows\system32\drivers\ip6fw.sys[-] 2002-09-20 16:18 1949184 79D262478C985E736DEB38CE2224FC75 c:\windows\$NtServicePackUninstall$\ntkrnlpa.exe[-] 2004-08-03 23:38 2058112 44D1BC1B05E0C7C82E81687B79C653C7 c:\windows\ServicePackFiles\i386\ntkrnlpa.exe[-] 2004-08-03 23:38 2058112 44D1BC1B05E0C7C82E81687B79C653C7 c:\windows\system32\ntkrnlpa.exe[-] 2002-09-20 15:12 2043520 AE94AE0DA6ED874CE08912FC63F8C6C2 c:\windows\$NtServicePackUninstall$\ntoskrnl.exe[-] 2004-08-03 23:39 2182272 DCF53422B7EDDED3B7431FBAE4A7EE3F c:\windows\ServicePackFiles\i386\ntoskrnl.exe[-] 2004-08-03 23:39 2182272 DCF53422B7EDDED3B7431FBAE4A7EE3F c:\windows\system32\ntoskrnl.exe[-] 2004-08-03 23:44 1033728 379098A96E6C165B659DE7E4328010EA c:\windows\explorer.exe[-] 2002-09-20 16:05 1005568 F4AF85D918E83D71341FCE2AA5318181 c:\windows\$NtServicePackUninstall$\explorer.exe[-] 2004-08-03 23:44 1033728 379098A96E6C165B659DE7E4328010EA c:\windows\ServicePackFiles\i386\explorer.exe[-] 2001-10-26 17:30 101888 BF4CBEFDCE42A699389791647CB95CA2 c:\windows\$NtServicePackUninstall$\services.exe[-] 2004-08-03 23:44 108544 3DA8D964D2CC12EF8E8C342471A37917 c:\windows\ServicePackFiles\i386\services.exe[-] 2004-08-03 23:44 108544 3DA8D964D2CC12EF8E8C342471A37917 c:\windows\system32\services.exe[-] 2002-09-20 16:05 11776 FA2C871F57352339F0A1802BB9AEA6E7 c:\windows\$NtServicePackUninstall$\lsass.exe[-] 2004-08-03 23:44 13312 F485FEFC8CC4FD29243D800BE5D275D1 c:\windows\ServicePackFiles\i386\lsass.exe[-] 2004-08-03 23:44 13312 F485FEFC8CC4FD29243D800BE5D275D1 c:\windows\system32\lsass.exe[-] 2002-09-20 16:05 13312 0C4C012B0A8960F48A666C240A7BAA3D c:\windows\$NtServicePackUninstall$\ctfmon.exe[-] 2004-08-03 23:44 15360 CBFA30492D70CE3938D8A7783D0C0436 c:\windows\ServicePackFiles\i386\ctfmon.exe[-] 2004-08-03 23:44 15360 CBFA30492D70CE3938D8A7783D0C0436 c:\windows\system32\ctfmon.exe[-] 2001-10-26 17:30 51200 414AF353E9EEED8637D90370FD0C3B68 c:\windows\$NtServicePackUninstall$\spoolsv.exe[-] 2004-08-03 23:44 57856 BEBE8A85954FF460374FD5A0CD21E19B c:\windows\ServicePackFiles\i386\spoolsv.exe[-] 2004-08-03 23:44 57856 BEBE8A85954FF460374FD5A0CD21E19B c:\windows\system32\spoolsv.exe[-] 2002-09-20 16:05 142336 2BDCBF19C5222FDA21B049D1FBAC7B36 c:\windows\$NtServicePackUninstall$\wuauclt.exe[-] 2004-08-03 23:44 112128 EBF4AC22004504C422FC8B5EE5B6FFD1 c:\windows\ServicePackFiles\i386\wuauclt.exe[-] 2004-08-03 23:44 112128 EBF4AC22004504C422FC8B5EE5B6FFD1 c:\windows\system32\wuauclt.exe[-] 2002-09-20 16:05 22528 323D3FFCBF99C59B2D20B4C5A7ECE347 c:\windows\$NtServicePackUninstall$\userinit.exe[-] 2004-08-03 23:44 25088 BD768099B4C44AA631728CB74EB54396 c:\windows\ServicePackFiles\i386\userinit.exe[-] 2004-08-03 23:44 25088 BD768099B4C44AA631728CB74EB54396 c:\windows\system32\userinit.exe[-] 2002-09-20 16:04 201216 C4EE140F5EDCF2FC20099B56DDBE5445 c:\windows\$NtServicePackUninstall$\termsrv.dll[-] 2004-08-03 23:44 296448 2C28157229925280916B3041CCC5FE4B c:\windows\ServicePackFiles\i386\termsrv.dll[-] 2004-08-03 23:44 296448 2C28157229925280916B3041CCC5FE4B c:\windows\system32\termsrv.dll[-] 2002-09-20 16:04 958976 8D452C28D7CAD9B5BBDB3C41730305E9 c:\windows\$NtServicePackUninstall$\kernel32.dll[-] 2004-08-03 23:44 1012224 578BB2F44597CB53451DED99013573F3 c:\windows\ServicePackFiles\i386\kernel32.dll[-] 2004-08-03 23:44 1012224 578BB2F44597CB53451DED99013573F3 c:\windows\system32\kernel32.dll[-] 2001-10-26 17:29 14848 CF06FF4307712677DD2EA86921CCD52F c:\windows\$NtServicePackUninstall$\powrprof.dll[-] 2004-08-03 23:44 17408 B20BB2A65349EF132FA7F2EB51A29E5C c:\windows\ServicePackFiles\i386\powrprof.dll[-] 2004-08-03 23:44 17408 B20BB2A65349EF132FA7F2EB51A29E5C c:\windows\system32\powrprof.dll[-] 2002-09-20 16:03 103936 B85F29A061F7D554C8F8092ADE4EC107 c:\windows\$NtServicePackUninstall$\imm32.dll[-] 2004-08-03 23:44 110080 BDB679C04273B19BF46BD0D591FDEEC3 c:\windows\ServicePackFiles\i386\imm32.dll[-] 2004-08-03 23:44 110080 BDB679C04273B19BF46BD0D591FDEEC3 c:\windows\system32\imm32.dll[-] 2002-09-20 16:04 1145856 E77F6154BF8E41D74B80603701C3B9AA c:\windows\$NtServicePackUninstall$\sfcfiles.dll[-] 2004-08-03 23:44 1548288 F044A12CFFB8E58BC044A2605283A636 c:\windows\ServicePackFiles\i386\sfcfiles.dll[-] 2004-08-03 23:44 1548288 F044A12CFFB8E58BC044A2605283A636 c:\windows\system32\sfcfiles.dll.((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))..*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane REGEDIT4[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"Nowe Gadu-Gadu"="d:\program files\Nowe Gadu-Gadu\gg.exe" [2009-04-20 9818728]"Skype"="c:\program files\Skype\Phone\Skype.exe" [2009-01-29 23975720]"Creative WebCam Tray"="c:\program files\Creative\Shared Files\CamTray.exe" [2005-10-27 299008][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"WOOWATCH"="c:\progra~1\NEOSTR~1\Watch.exe" [2004-08-23 20480]"WOOTASKBARICON"="c:\progra~1\NEOSTR~1\GestMaj.exe" [2004-10-14 32768]"ATICCC"="c:\program files\ATI Technologies\ATI.ACE\cli.exe" [2006-01-02 45056]"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-04-09 148888]"Sony Ericsson PC Suite"="c:\program files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2006-11-23 487424]"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2007-12-21 1443072][HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2004-08-03 15360][HKLM\~\startupfolder\C:^Documents and Settings^Damian^Menu Start^Programy^Autostart^hamachi.lnk]path=c:\documents and settings\Damian\Menu Start\Programy\Autostart\hamachi.lnkbackup=c:\windows\pss\hamachi.lnkStartup[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]"PnkBstrB"=2 (0x2)"PnkBstrA"=2 (0x2)"ekrn"=2 (0x2)"EhttpSrv"=3 (0x3)"NMIndexingService"=3 (0x3)[HKEY_LOCAL_MACHINE\software\microsoft\security center]"AntiVirusDisableNotify"=dword:00000001"UpdatesDisableNotify"=dword:00000001[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]"EnableFirewall"= 0 (0x0)[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]"%windir%\\system32\\sessmgr.exe"="d:\\Gry\\Age Of Empires 2 & The Conquerors Expansion - Full Game - [HUSSEY]\\age2_x1.exe"="d:\\Program Files\\Hamachi\\hamachi.exe"="c:\\WINDOWS\\system32\\dplaysvr.exe"="d:\\Gry\\Wolf\\ET.exe"="d:\\Program Files\\uTorrent\\uTorrent.exe"="c:\\Program Files\\Skype\\Phone\\Skype.exe"=[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009R2 IKANLOADER2;General Purpose USB Driver (e4ldr.sys);c:\windows\system32\Drivers\e4ldr.sys [2006-09-15 64000]S2 ekrn;Eset Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2007-12-21 468224]S3 e4usbaw;USB ADSL2 WAN Adapter;c:\windows\system32\DRIVERS\e4usbaw.sys [2006-09-19 116992]S3 V0260VID;Live! Cam Vista IM;c:\windows\system32\DRIVERS\V0260Vid.sys [2006-11-03 178913].- - - - USUNIĘTO PUSTE WPISY - - - -HKLM-Run-BearShare - c:\program files\BearShare\BearShare.exe.------- Skan uzupełniający -------.uStart Page = hxxp://www.neostrada.plTCP: {5FEEFE3E-27EE-4FEA-A6AB-C68C68AA4BF0} = 194.204.159.1 217.98.63.164FF - ProfilePath - c:\documents and settings\Damian\Dane aplikacji\Mozilla\Firefox\Profiles\[u]0[/u]87exvqr.default\FF - component: c:\program files\Mozilla Firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\components\NPComponent.dllFF - plugin: c:\documents and settings\Damian\Dane aplikacji\Mozilla\Firefox\Profiles\[u]0[/u]87exvqr.default\extensions\{eaf8a4ef-d221-45ca-9deb-d0934b45fa34}\plugins\npOggX.dllFF - plugin: c:\program files\Mozilla Firefox\plugins\npOggX.dll.**************************************************************************catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.netRootkit scan 2009-05-04 16:49Windows 5.1.2600 Dodatek Service Pack 2 NTFSskanowanie ukrytych procesów ... skanowanie ukrytych wpisów autostartu ... skanowanie ukrytych plików ... skanowanie pomyślnie ukończoneukryte pliki: 0**************************************************************************.--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------- - - - - - - > 'winlogon.exe'(876)c:\windows\system32\Ati2evxx.dll.Czas ukończenia: 2009-05-04 16:50ComboFix-quarantined-files.txt 2009-05-04 14:50Przed: 2 055 532 544 bajtów wolnychPo: 2 180 927 488 bajtów wolnych263
Gość komentarz 4 maja 2009 komentarz 4 maja 2009 Czysto. Posprzątaj po ComboFixie i różnych narzędziach >>> OTCleanIt. .
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.