crazymadzius utworzono 19 maja 2009 utworzono 19 maja 2009 Proszę o sprawdzenie loga. Problem - ikony, które same się zmieniają. Logfile of Trend Micro HijackThis v2.0.2Scan saved at 16:20:02, on 2009-05-19Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16827)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Alwil Software\Avast4\aswUpdSv.exeC:\Program Files\Alwil Software\Avast4\ashServ.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\SOUNDMAN.EXEC:\WINDOWS\system32\VTTimer.exeC:\Program Files\Apoint2K\Apoint.exeC:\Program Files\Common Files\Real\Update_OB\realsched.exeC:\WINDOWS\system32\rundll32.exeC:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeC:\Program Files\QuickTime\QTTask.exeC:\Program Files\iTunes\iTunesHelper.exeC:\Program Files\Apoint2K\Apntex.exeC:\Program Files\Java\jre6\bin\jusched.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Java\jre6\bin\jqs.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Canon\CAL\CALMAIN.exeC:\Program Files\Alwil Software\Avast4\ashMaiSv.exeC:\Program Files\Alwil Software\Avast4\ashWebSv.exeC:\Program Files\iPod\bin\iPodService.exeC:\WINDOWS\system32\wbem\wmiapsrv.exeC:\WINDOWS\system32\wuauclt.exeC:\Program Files\Trend Micro\HijackThis\HijackThis.exeR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blankR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 121.22.29.183:80R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.localR0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = ŁączaO2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dllO2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dllO2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dllO2 - BHO: Pomocnik rejestracji usługi Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllO2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dllO2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dllO2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dllO3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dllO4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXEO4 - HKLM\..\Run: [VTTimer] VTTimer.exeO4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exeO4 - HKLM\..\Run: [synchronization Manager] %SystemRoot%\system32\mobsync.exe /logonO4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osbootO4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgentO4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeO4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottimeO4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exeO4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exeO4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA')O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA')O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exeO4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exeO4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exeO4 - Global Startup: Adobe Reader Speed Launch.lnk.disabledO4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXEO8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dllO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLLO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = compfort.plO17 - HKLM\Software\..\Telephony: DomainName = compfort.plO17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = compfort.plO23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exeO23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exeO23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exeO23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exeO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exeO23 - Service: Usługa iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exeO23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exeO23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe--End of file - 7508 bytes // Logi wstawiamy w tagi // Poprawiam. // djdresik
crazymadzius komentarz 19 maja 2009 Autor komentarz 19 maja 2009 ComboFix 08-07-18.5 - Administrator 2009-05-19 17:01:53.3 - NTFSx86Running from: C:\Documents and Settings\Administrator\Pulpit\logi, wwdc itp\ComboFix.exe[b]WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !![/b].- REDUCED FUNCTIONALITY MODE -.((((((((((((((((((((((((( Files Created from 2009-04-19 to 2009-05-19 ))))))))))))))))))))))))))))))).2009-05-19 16:10 . 2003-06-25 16:05 266,360 --a------ C:\WINDOWS\system32\TweakUI.exe2009-05-19 16:10 . 2002-06-21 15:09 160,217 --a------ C:\WINDOWS\system32\PowerToysLicense.rtf2009-05-19 15:11 . 2009-05-19 15:11 76 ---hs---- C:\Documents and Settings\Desktop.ini2009-05-19 14:56 . 2009-05-19 14:56 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\ZoomBrowser2009-05-19 14:55 . 2009-05-19 14:57 <DIR> d-------- C:\Program Files\Canon2009-05-19 14:52 . 2009-05-19 14:52 <DIR> d-------- C:\Program Files\Common Files\Canon2009-05-15 17:03 . 2009-05-15 17:03 <DIR> d-------- C:\Program Files\Audacity2009-05-09 19:41 . 2009-05-14 14:57 <DIR> d-------- C:\Program Files\Pomocnik aukcji.(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))).2009-05-19 14:00 --------- d-----w C:\Program Files\Wizaz2009-05-19 13:58 --------- d-----w C:\Program Files\Paint.NET2009-05-19 13:53 --------- d-----w C:\Program Files\mp3cd2009-05-19 13:53 --------- d-----w C:\Program Files\iPlus2009-05-19 13:53 --------- d-----w C:\Documents and Settings\grzesw\Dane aplikacji\iPlus2009-05-19 13:52 --------- d-----w C:\Program Files\Winamp2009-05-19 13:52 --------- d-----w C:\Program Files\eMule2009-05-10 19:12 --------- d-----w C:\Documents and Settings\Administrator\Dane aplikacji\Skype2009-05-10 19:11 --------- d-----w C:\Documents and Settings\Administrator\Dane aplikacji\skypePM2009-05-10 10:48 --------- d-----w C:\Program Files\Java2009-04-25 17:25 --------- d-----w C:\Program Files\Nowe Gadu-Gadu2009-04-18 21:10 --------- d-----w C:\Program Files\MoorHunt2009-04-18 19:04 --------- d-----w C:\Program Files\Flock2009-04-18 19:04 --------- d-----w C:\Documents and Settings\Administrator\Dane aplikacji\Flock2009-04-16 21:41 --------- d-----w C:\Documents and Settings\Administrator\Dane aplikacji\Media Player Classic2009-04-11 11:13 --------- d-----w C:\Program Files\K-Lite Codec Pack2009-04-11 10:57 --------- d-----w C:\Documents and Settings\Administrator\Dane aplikacji\BESTplayer2009-03-24 22:44 --------- d-----w C:\Documents and Settings\Administrator\Dane aplikacji\Nowe Gadu-Gadu2009-03-21 14:21 1,014,784 ----a-w C:\WINDOWS\system32\dllcache\kernel32.dll2009-03-20 22:13 --------- d-----w C:\Program Files\Common Files\Adobe2009-03-09 03:19 410,984 ----a-w C:\WINDOWS\system32\deploytk.dll2009-03-06 14:47 285,184 ----a-w C:\WINDOWS\system32\pdh.dll2009-03-06 14:47 285,184 ----a-w C:\WINDOWS\system32\dllcache\pdh.dll2009-03-05 09:45 15,688 ----a-w C:\WINDOWS\system32\lsdelete.exe2009-03-03 00:10 826,368 ----a-w C:\WINDOWS\system32\wininet.dll2009-03-03 00:10 826,368 ----a-w C:\WINDOWS\system32\dllcache\wininet.dll2009-02-28 04:54 636,072 ----a-w C:\WINDOWS\system32\dllcache\iexplore.exe2009-02-20 10:20 70,656 ----a-w C:\WINDOWS\system32\dllcache\ie4uinit.exe2009-02-20 10:20 13,824 ------w C:\WINDOWS\system32\dllcache\ieudinit.exe2009-02-20 05:14 161,792 ----a-w C:\WINDOWS\system32\dllcache\ieakui.dll2008-11-07 20:51 32,768 --sha-w C:\WINDOWS\system32\config\systemprofile\Ustawienia lokalne\Historia\History.IE5\MSHist012008110720081108\index.dat.((((((((((((((((((((((((((((( snapshot_2009-05-19_15.48.11.46 ))))))))))))))))))))))))))))))))))))))))).+ 2009-05-19 14:24:17 16,384 ----atw C:\WINDOWS\Temp\Perflib_Perfdata_17c.dat.((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))..*Note* empty entries & legit default entries are not shown REGEDIT4[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 14:00 15360][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"Apoint"="C:\Program Files\Apoint2K\Apoint.exe" [2003-12-05 08:22 159744]"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2007-04-18 23:26 185896]"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2009-02-05 23:08 81000]"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2008-11-04 11:30 413696]"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2008-11-20 14:20 290088]"Ad-Watch"="C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe" [2009-03-05 11:41 515416]"SunJavaUpdateSched"="C:\Program Files\Java\jre6\bin\jusched.exe" [2009-03-09 05:19 148888]"SoundMan"="SOUNDMAN.EXE" [2005-05-17 11:48 77824 C:\WINDOWS\SOUNDMAN.EXE]"VTTimer"="VTTimer.exe" [2005-03-08 03:33 53248 C:\WINDOWS\system32\VTTimer.exe]"BluetoothAuthenticationAgent"="bthprops.cpl" [2004-08-04 14:00 110592 C:\WINDOWS\system32\bthprops.cpl][HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 14:00 15360]C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2009-03-21 00:14:28 113664]Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-09-23 23:05:26 29696]Adobe Reader Speed Launch.lnk.disabled [2005-08-23 02:01:25 1763]Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE [2000-01-21 08:15:54 65588][HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]"HonorAutoRunSetting"= 1 (0x1)[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]"VIDC.I420"= i263_32.drv[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]Notification Packages REG_MULTI_SZ scecli[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]@="Service"[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe""iPlusManager"="C:\Program Files\iPlus\iPlusChecker.exe""PCSuiteTrayApplication"=C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -startup"SMSERIAL"=sm56hlpr.exe"DataLayer"=C:\Program Files\Common Files\PCSuite\DataLayer\DataLayer.exe"BluetoothAuthenticationAgent"=rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" -atboottime"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]"DisableMonitoring"=dword:00000001[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]"EnableFirewall"= 0 (0x0)[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]"%windir%\\system32\\sessmgr.exe"="C:\\Program Files\\Real\\RealPlayer\\realplay.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe"="C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Bonjour\\mDNSResponder.exe"="C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe"=[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]"3389:TCP"= 3389:TCP:*:Disabled:@xpsp2res.dll,-22009R0 Lbd;Lbd;C:\WINDOWS\system32\DRIVERS\Lbd.sys [2009-03-05 11:44]R1 aswSP;avast! Self Protection;C:\WINDOWS\system32\drivers\aswSP.sys [2009-02-05 23:07]R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-02-05 23:07]R2 JavaQuickStarterService;Java Quick Starter;C:\Program Files\Java\jre6\bin\jqs.exe [2009-03-09 05:19]R3 EKBfltr;ENE Keyboard Controller;C:\WINDOWS\system32\DRIVERS\EKBfltr.sys [2005-01-14 17:22]S3 Cap7134;Cap7134 Capture;C:\WINDOWS\system32\DRIVERS\Cap7134.sys []S3 NPF;NetGroup Packet Filter Driver;C:\WINDOWS\system32\drivers\npf.sys [2005-08-02 23:10]S3 odysseyIM4;Odyssey Network Agent Miniport;C:\WINDOWS\system32\DRIVERS\odysseyIM4.sys [2005-06-10 05:55]S3 PhTVTune;Cap7134 TVTuner;C:\WINDOWS\system32\DRIVERS\PhTVTune.sys []S4 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2009-03-05 11:41]S4 OPHB DCS Loader;OPHB DCS Loader;C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\OPHBLDCS.EXE [2004-11-08 13:50][HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{421c9b68-b0b8-11dd-bbd5-0014a50e3597}]\Shell\Auto\command - E:\fun.xls.exe\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL fun.xls.exe[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5b3ab3e4-6b12-11db-baa6-0014a50e3597}]\Shell\AutoRun\command - E:\svdioajm.cmd\Shell\explore\Command - E:\svdioajm.cmd\Shell\open\Command - E:\svdioajm.cmd[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{6f92b964-2945-11de-bcb0-0014a50e3597}]\Shell\AutoRun\command - EXPLORER.EXE\Shell\explore\Command - EXPLORER.EXE\Shell\open\Command - EXPLORER.EXE[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b8f6fb06-21de-11de-bc9e-0014a50e3597}]\Shell\AutoRun\command - E:\svdioajm.cmd\Shell\explore\Command - E:\svdioajm.cmd\Shell\open\Command - E:\svdioajm.cmd[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e18bd16a-04d1-11de-bc58-0014a50e3597}]\Shell\AutoRun\command - svdioajm.cmd\Shell\explore\Command - svdioajm.cmd\Shell\open\Command - svdioajm.cmd.Contents of the 'Scheduled Tasks' folder"2009-03-05 09:59:53 C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job"- C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe"2008-11-10 12:40:03 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"- C:\Program Files\Apple Software Update\SoftwareUpdate.exe"2006-04-04 12:41:02 C:\WINDOWS\Tasks\Symantec NetDetect.job"- C:\Program Files\Symantec\LiveUpdate\NDETECT.EXE.**************************************************************************catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.netRootkit scan 2009-05-19 17:03:13Windows 5.1.2600 Dodatek Service Pack 2 NTFSscanning hidden processes ... scanning hidden autostart entries ...scanning hidden files ... scan completed successfullyhidden files: 0**************************************************************************.Completion time: 2009-05-19 17:06:50ComboFix-quarantined-files.txt 2009-05-19 15:06:36ComboFix2.txt 2009-05-19 13:48:53ComboFix3.txt 2009-03-06 10:52:35Pre-Run: 20,452,700,160 bajtów wolnychPost-Run: 20,446,498,816 bajtów wolnych170 --- E O F --- 2009-05-13 21:31:36
Gość komentarz 19 maja 2009 komentarz 19 maja 2009 Usuń tego ComboFixa i ściągnij nowego ---> ComboFixa. .
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.