jaskowski utworzono 19 lipca 2009 utworzono 19 lipca 2009 Logfile of Trend Micro HijackThis v2.0.2Scan saved at 18:39:08, on 2009-07-19Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\nvsvc32.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Creative\Shared Files\CTAudSvc.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\RUNDLL32.EXEC:\Program Files\Google\Gmail Notifier\gnotify.exeC:\Program Files\Java\jre6\bin\jusched.exeC:\WINDOWS\system32\Rundll32.exeC:\Program Files\Konnekt\konnekt.exeC:\Program Files\Java\jre6\bin\jqs.exeC:\WINDOWS\system32\wscntfy.exeC:\WINDOWS\system32\wbem\wmiapsrv.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\DAEMON Tools Lite\daemon.exeC:\Program Files\foobar2000\foobar2000.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\PROGRA~1\MICROS~2\rapimgr.exeC:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe\?\C:\WINDOWS\system32\WBEM\WMIADAP.EXEC:\Program Files\Microsoft ActiveSync\wcescomm.exeC:\Program Files\Trend Micro\HijackThis\HijackThis.exeR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.entretieneteds.vze.comR0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = ŁączaR3 - URLSearchHook: DefaultSearchHook Class - {C94E154B-1459-4A47-966B-4B843BEFC7DB} - C:\Program Files\AskSearch\bin\DefaultSearch.dllO2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dllO2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dllO4 - HKLM\..\Run: [nwiz] nwiz.exe /installO4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInitO4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartupO4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Program Files\Google\Gmail Notifier\gnotify.exeO4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"O4 - HKLM\..\Run: [P17Helper] Rundll32 SPIRun.dll,RunDLLEntryO4 - HKCU\..\Run: [Konnekt] "C:\Program Files\Konnekt\konnekt.exe" /autostartO4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"O4 - HKCU\..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\daemon.exe -autorunO4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"O4 - HKCU\..\RunOnce: [WiseStubReboot] MSIEXEC /quiet SKIP_PPU_DRIVER_INSTALL=1 /I "C:\Program Files\Common Files\Wise Installation Wizard\WISB83FC356B7C0441F8A4DD71E088E7974_9_09_0428.MSI" TRANSFORMS="C:\Program Files\Common Files\Wise Installation Wizard\WISB83FC356B7C0441F8A4DD71E088E7974_9_09_0428.MST" WISE_SETUP_EXE_PATH="c:\nvidia\displaydriver\186.18\international\PhysX_9.09.0428_SystemSoftware.exe"O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel presentO9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dllO9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dllO9 - Extra 'Tools' menuitem: Utwórz Ulubione dla urządzenia przenośnego... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dllO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exeO23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exeO23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe--End of file - 4623 bytes
MarekM25 komentarz 19 lipca 2009 komentarz 19 lipca 2009 ehh znowu taki sam post: hjt to za mało daj loga z otl lub RSIT
jaskowski komentarz 19 lipca 2009 Autor komentarz 19 lipca 2009 rsita to nawet nie znam Logfile of random's system information tool 1.06 (written by random/random)Run by janek at 2009-07-19 18:48:01Microsoft Windows XP Professional Dodatek Service Pack 2System drive C: has 8 GB (17%) free of 50 GBTotal RAM: 2046 MB (74% free)Logfile of Trend Micro HijackThis v2.0.2Scan saved at 18:48:02, on 2009-07-19Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\nvsvc32.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Creative\Shared Files\CTAudSvc.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\RUNDLL32.EXEC:\Program Files\Google\Gmail Notifier\gnotify.exeC:\Program Files\Java\jre6\bin\jusched.exeC:\WINDOWS\system32\Rundll32.exeC:\Program Files\Konnekt\konnekt.exeC:\Program Files\Java\jre6\bin\jqs.exeC:\WINDOWS\system32\wscntfy.exeC:\WINDOWS\system32\wbem\wmiapsrv.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\DAEMON Tools Lite\daemon.exeC:\Program Files\foobar2000\foobar2000.exeC:\PROGRA~1\MICROS~2\rapimgr.exeC:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exeC:\Program Files\Microsoft ActiveSync\wcescomm.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\Documents and Settings\janek\Moje dokumenty\Pobieranie\RSIT.exeC:\Program Files\Trend Micro\HijackThis\janek.exeR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.entretieneteds.vze.comR0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = ŁączaR3 - URLSearchHook: DefaultSearchHook Class - {C94E154B-1459-4A47-966B-4B843BEFC7DB} - C:\Program Files\AskSearch\bin\DefaultSearch.dllO2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dllO2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dllO4 - HKLM\..\Run: [nwiz] nwiz.exe /installO4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInitO4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartupO4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Program Files\Google\Gmail Notifier\gnotify.exeO4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"O4 - HKLM\..\Run: [P17Helper] Rundll32 SPIRun.dll,RunDLLEntryO4 - HKCU\..\Run: [Konnekt] "C:\Program Files\Konnekt\konnekt.exe" /autostartO4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"O4 - HKCU\..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\daemon.exe -autorunO4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"O4 - HKCU\..\RunOnce: [WiseStubReboot] MSIEXEC /quiet SKIP_PPU_DRIVER_INSTALL=1 /I "C:\Program Files\Common Files\Wise Installation Wizard\WISB83FC356B7C0441F8A4DD71E088E7974_9_09_0428.MSI" TRANSFORMS="C:\Program Files\Common Files\Wise Installation Wizard\WISB83FC356B7C0441F8A4DD71E088E7974_9_09_0428.MST" WISE_SETUP_EXE_PATH="c:\nvidia\displaydriver\186.18\international\PhysX_9.09.0428_SystemSoftware.exe"O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel presentO9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dllO9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dllO9 - Extra 'Tools' menuitem: Utwórz Ulubione dla urządzenia przenośnego... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dllO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exeO23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exeO23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe--End of file - 4645 bytes======Registry dump======[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-18 41368][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-07-18 73728][HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]"nwiz"=nwiz.exe /install []"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-06-10 86016]"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-06-10 13758464]"{0228e555-4f9c-4e35-a3ec-b109a192b4c2}"=C:\Program Files\Google\Gmail Notifier\gnotify.exe [2005-07-15 479232]"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-07-18 148888]"P17Helper"=Rundll32 SPIRun.dll,RunDLLEntry [][HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]"Konnekt"=C:\Program Files\Konnekt\konnekt.exe [2005-05-24 503808]"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2009-07-18 288048]"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2009-04-23 691656]"H/PC Connection Agent"=C:\Program Files\Microsoft ActiveSync\wcescomm.exe [2006-11-13 1289000][HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]"WiseStubReboot"=MSIEXEC /quiet SKIP_PPU_DRIVER_INSTALL=1 /I C:\Program Files\Common Files\Wise Installation Wizard\WISB83FC356B7C0441F8A4DD71E088E7974_9_09_0428.MSI TRANSFORMS=C:\Program Files\Common Files\Wise Installation Wizard\WISB83FC356B7C0441F8A4DD71E088E7974_9_09_0428.MST WISE_SETUP_EXE_PATH=c:\nvidia\displaydriver\186.18\international\PhysX_9.09.0428_SystemSoftware.exe [][HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]"dontdisplaylastusername"=0"legalnoticecaption"="legalnoticetext"="shutdownwithoutlogon"=1"undockwithoutlogon"=1[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]"NoDriveTypeAutoRun"=145[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019""C:\Program Files\Konnekt\konnekt.exe"="C:\Program Files\Konnekt\konnekt.exe:*:Enabled:Konnekt - Core""C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent""C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager""C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager""C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019""C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager""C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager""C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a07a1f78-7455-11de-bcac-001fd0876c55}]shell\AutoRun\command - G:\AUTORUN.EXE======List of files/folders created in the last 1 months======2009-07-19 18:48:01 ----D---- C:\rsit2009-07-19 18:38:59 ----D---- C:\Program Files\Trend Micro2009-07-19 18:28:29 ----RSD---- C:\WINDOWS\assembly2009-07-19 18:28:04 ----D---- C:\WINDOWS\Microsoft.NET2009-07-19 18:13:58 ----HDC---- C:\WINDOWS\$NtUninstallKB909394$2009-07-19 18:13:57 ----D---- C:\WINDOWS\LastGood2009-07-19 18:13:48 ----D---- C:\Program Files\Microsoft ActiveSync2009-07-19 17:59:34 ----D---- C:\Program Files\Valve2009-07-19 16:40:06 ----D---- C:\Documents and Settings\janek\Dane aplikacji\Media Player Classic2009-07-19 13:54:53 ----A---- C:\WINDOWS\sierra.ini2009-07-19 13:53:35 ----D---- C:\Sierra2009-07-19 13:47:17 ----SD---- C:\Program Files\HLSW2009-07-19 13:47:17 ----D---- C:\Documents and Settings\janek\Dane aplikacji\HLSW2009-07-19 13:19:56 ----SHD---- C:\RECYCLER2009-07-19 13:18:47 ----D---- C:\totalcmd2009-07-19 13:18:47 ----A---- C:\WINDOWS\wincmd.ini2009-07-19 13:16:52 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite2009-07-19 13:16:45 ----D---- C:\Program Files\DAEMON Tools Toolbar2009-07-19 13:16:36 ----D---- C:\Program Files\DAEMON Tools Lite2009-07-19 12:17:21 ----D---- C:\Program Files\World of Warcraft2009-07-19 10:50:39 ----D---- C:\Documents and Settings\janek\Dane aplikacji\DAEMON Tools Lite2009-07-19 10:39:41 ----D---- C:\Program Files\NAPI-PROJEKT2009-07-19 10:37:35 ----D---- C:\Program Files\ESET2009-07-19 10:37:35 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\ESET2009-07-19 10:27:42 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Blizzard2009-07-19 10:26:41 ----D---- C:\Program Files\Common Files\Blizzard Entertainment2009-07-19 01:48:51 ----A---- C:\WINDOWS\system32\Ludap17.ini2009-07-19 01:48:51 ----A---- C:\WINDOWS\system32\ctzapxx.ini2009-07-19 01:48:35 ----A---- C:\WINDOWS\system32\sfms32.dll2009-07-19 01:48:35 ----A---- C:\WINDOWS\system32\sfman32.dll2009-07-19 01:48:35 ----A---- C:\WINDOWS\MIDIDEF.EXE2009-07-19 01:48:32 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Creative2009-07-19 01:48:31 ----A---- C:\WINDOWS\OALInst.exe2009-07-19 01:48:16 ----A---- C:\WINDOWS\system32\ksuser.dll2009-07-19 01:48:11 ----A---- C:\WINDOWS\system32\SPIRun.dll2009-07-19 01:48:11 ----A---- C:\WINDOWS\system32\P17res.dll2009-07-19 01:48:11 ----A---- C:\WINDOWS\system32\P17CPI.dll2009-07-19 01:48:11 ----A---- C:\WINDOWS\system32\OemSpi.dll2009-07-19 01:48:11 ----A---- C:\WINDOWS\system32\EAX.DLL2009-07-19 01:48:11 ----A---- C:\WINDOWS\system32\a3d.dll2009-07-19 01:48:11 ----A---- C:\WINDOWS\sfsyn.ini2009-07-19 01:48:11 ----A---- C:\WINDOWS\SF32.exe2009-07-19 01:48:11 ----A---- C:\WINDOWS\resdef.exe2009-07-19 01:48:11 ----A---- C:\WINDOWS\InRes.DLL2009-07-19 01:48:09 ----N---- C:\WINDOWS\system32\Sens_oal.dll2009-07-19 01:48:09 ----A---- C:\WINDOWS\system32\wrap_oal.dll2009-07-19 01:48:09 ----A---- C:\WINDOWS\system32\OpenAL32.dll2009-07-19 01:48:06 ----D---- C:\Program Files\Creative2009-07-19 01:47:52 ----D---- C:\Program Files\Common Files\InstallShield2009-07-19 01:41:57 ----D---- C:\WINDOWS\system32\ReinstallBackups2009-07-19 01:41:54 ----DC---- C:\WINDOWS\system32\DRVSTORE2009-07-19 01:41:54 ----D---- C:\Program Files\Intel2009-07-19 01:41:54 ----A---- C:\WINDOWS\system32\CSVer.dll2009-07-19 01:41:47 ----D---- C:\Intel2009-07-19 01:38:15 ----D---- C:\Documents and Settings\janek\Dane aplikacji\WinRAR2009-07-18 18:57:29 ----D---- C:\Documents and Settings\janek\Dane aplikacji\foobar20002009-07-18 18:57:26 ----D---- C:\Program Files\foobar20002009-07-18 18:57:04 ----A---- C:\WINDOWS\system32\javaws.exe2009-07-18 18:57:04 ----A---- C:\WINDOWS\system32\javaw.exe2009-07-18 18:57:04 ----A---- C:\WINDOWS\system32\java.exe2009-07-18 18:57:04 ----A---- C:\WINDOWS\system32\deploytk.dll2009-07-18 18:56:57 ----D---- C:\Program Files\Java2009-07-18 18:56:39 ----D---- C:\Documents and Settings\janek\Dane aplikacji\Sun2009-07-18 18:56:28 ----D---- C:\Program Files\AskSearch2009-07-18 18:56:26 ----D---- C:\Program Files\uTorrent2009-07-18 18:55:50 ----D---- C:\Documents and Settings\janek\Dane aplikacji\uTorrent2009-07-18 18:54:38 ----D---- C:\Program Files\Google2009-07-18 18:53:37 ----A---- C:\WINDOWS\system32\unrar.dll2009-07-18 18:53:37 ----A---- C:\WINDOWS\avisplitter.ini2009-07-18 18:53:36 ----A---- C:\WINDOWS\system32\yv12vfw.dll2009-07-18 18:53:36 ----A---- C:\WINDOWS\system32\xvidvfw.dll2009-07-18 18:53:36 ----A---- C:\WINDOWS\system32\xvidcore.dll2009-07-18 18:53:36 ----A---- C:\WINDOWS\system32\qt-dx331.dll2009-07-18 18:53:36 ----A---- C:\WINDOWS\system32\dpl100.dll2009-07-18 18:53:36 ----A---- C:\WINDOWS\system32\divx.dll2009-07-18 18:53:35 ----A---- C:\WINDOWS\system32\ff_vfw.dll.manifest2009-07-18 18:53:35 ----A---- C:\WINDOWS\system32\ff_vfw.dll2009-07-18 18:53:34 ----D---- C:\Program Files\K-Lite Codec Pack2009-07-18 18:53:34 ----A---- C:\WINDOWS\system32\msvcr71.dll2009-07-18 18:51:07 ----D---- C:\Program Files\WinRAR2009-07-18 18:50:27 ----D---- C:\Program Files\SubEdit-Player2009-07-18 18:46:46 ----D---- C:\Program Files\Burn4Free2009-07-18 18:32:41 ----A---- C:\WINDOWS\system32\h323log.txt2009-07-18 18:31:18 ----A---- C:\WINDOWS\system32\hidserv.dll2009-07-18 18:29:51 ----A---- C:\WINDOWS\system32\usbui.dll2009-07-18 18:29:07 ----A---- C:\WINDOWS\imsins.BAK2009-07-18 18:29:05 ----SHD---- C:\WINDOWS\Installer2009-07-18 18:29:05 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI2009-07-18 18:29:04 ----D---- C:\Program Files\Common Files\ODBC2009-07-18 18:29:04 ----A---- C:\WINDOWS\ODBCINST.INI2009-07-18 18:29:00 ----D---- C:\Program Files\Common Files\SpeechEngines2009-07-18 18:28:59 ----RD---- C:\Program Files2009-07-18 18:28:59 ----D---- C:\Program Files\Common Files\Microsoft Shared2009-07-18 18:28:59 ----D---- C:\Program Files\Common Files2009-07-18 18:28:55 ----RA---- C:\WINDOWS\system32\kbdazel.dll2009-07-18 18:28:54 ----RA---- C:\WINDOWS\system32\kbdtuq.dll2009-07-18 18:28:54 ----RA---- C:\WINDOWS\system32\kbdtuf.dll2009-07-18 18:28:51 ----RA---- C:\WINDOWS\system32\kbdycc.dll2009-07-18 18:28:51 ----RA---- C:\WINDOWS\system32\kbduzb.dll2009-07-18 18:28:51 ----RA---- C:\WINDOWS\system32\kbdur.dll2009-07-18 18:28:51 ----RA---- C:\WINDOWS\system32\kbdtat.dll2009-07-18 18:28:51 ----RA---- C:\WINDOWS\system32\kbdmon.dll2009-07-18 18:28:51 ----RA---- C:\WINDOWS\system32\kbdkyr.dll2009-07-18 18:28:51 ----RA---- C:\WINDOWS\system32\kbdkaz.dll2009-07-18 18:28:51 ----RA---- C:\WINDOWS\system32\kbdaze.dll2009-07-18 18:28:50 ----RA---- C:\WINDOWS\system32\kbdru1.dll2009-07-18 18:28:50 ----RA---- C:\WINDOWS\system32\kbdru.dll2009-07-18 18:28:50 ----RA---- C:\WINDOWS\system32\kbdbu.dll2009-07-18 18:28:50 ----RA---- C:\WINDOWS\system32\kbdblr.dll2009-07-18 18:28:47 ----RA---- C:\WINDOWS\system32\kbdhept.dll2009-07-18 18:28:47 ----RA---- C:\WINDOWS\system32\kbdhela3.dll2009-07-18 18:28:47 ----RA---- C:\WINDOWS\system32\kbdhela2.dll2009-07-18 18:28:47 ----RA---- C:\WINDOWS\system32\kbdhe319.dll2009-07-18 18:28:47 ----RA---- C:\WINDOWS\system32\kbdhe220.dll2009-07-18 18:28:47 ----RA---- C:\WINDOWS\system32\kbdhe.dll2009-07-18 18:28:47 ----RA---- C:\WINDOWS\system32\kbdgkl.dll2009-07-18 18:28:44 ----RA---- C:\WINDOWS\system32\kbdlv1.dll2009-07-18 18:28:44 ----RA---- C:\WINDOWS\system32\kbdlv.dll2009-07-18 18:28:44 ----RA---- C:\WINDOWS\system32\kbdlt1.dll2009-07-18 18:28:44 ----RA---- C:\WINDOWS\system32\kbdlt.dll2009-07-18 18:28:44 ----RA---- C:\WINDOWS\system32\kbdest.dll2009-07-18 18:28:39 ----A---- C:\WINDOWS\system32\kbdsl1.dll2009-07-18 18:28:39 ----A---- C:\WINDOWS\system32\kbdsl.dll2009-07-18 18:28:39 ----A---- C:\WINDOWS\system32\kbdro.dll2009-07-18 18:28:38 ----A---- C:\WINDOWS\system32\kbdycl.dll2009-07-18 18:28:38 ----A---- C:\WINDOWS\system32\kbdhu1.dll2009-07-18 18:28:38 ----A---- C:\WINDOWS\system32\kbdhu.dll2009-07-18 18:28:38 ----A---- C:\WINDOWS\system32\kbdcz2.dll2009-07-18 18:28:38 ----A---- C:\WINDOWS\system32\kbdcz1.dll2009-07-18 18:28:38 ----A---- C:\WINDOWS\system32\kbdcz.dll2009-07-18 18:28:38 ----A---- C:\WINDOWS\system32\kbdcr.dll2009-07-18 18:28:38 ----A---- C:\WINDOWS\system32\KBDAL.DLL2009-07-18 18:28:37 ----A---- C:\WINDOWS\system32\spxcoins.dll2009-07-18 18:28:37 ----A---- C:\WINDOWS\system32\irclass.dll2009-07-18 18:28:37 ----A---- C:\WINDOWS\system32\dgsetup.dll2009-07-18 18:28:37 ----A---- C:\WINDOWS\system32\dgrpsetu.dll2009-07-18 18:28:36 ----A---- C:\WINDOWS\system32\EqnClass.Dll2009-07-18 18:28:33 ----N---- C:\WINDOWS\system32\CONFIG.TMP2009-07-18 18:28:33 ----A---- C:\WINDOWS\TASKMAN.EXE2009-07-18 18:28:32 ----A---- C:\WINDOWS\system32\batt.dll2009-07-18 18:28:32 ----A---- C:\WINDOWS\NOTEPAD.EXE2009-07-18 18:28:31 ----A---- C:\WINDOWS\system32\storprop.dll2009-07-18 18:28:25 ----ASH---- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini2009-07-18 18:26:44 ----RA---- C:\WINDOWS\SET8.tmp2009-07-18 18:26:42 ----RA---- C:\WINDOWS\SET4.tmp2009-07-18 18:26:41 ----RA---- C:\WINDOWS\SET3.tmp2009-07-18 18:26:37 ----D---- C:\WINDOWS\system32\CatRoot22009-07-18 18:26:37 ----D---- C:\WINDOWS\system32\CatRoot2009-07-18 18:26:31 ----SD---- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft2009-07-18 18:26:09 ----A---- C:\WINDOWS\setuplog.txt2009-07-18 18:26:07 ----D---- C:\Documents and Settings2009-07-18 18:26:06 ----SHD---- C:\System Volume Information2009-07-18 18:25:09 ----SH---- C:\boot.ini2009-07-18 18:21:15 ----RSHDC---- C:\WINDOWS\system32\dllcache2009-07-18 18:21:15 ----RSD---- C:\WINDOWS\Fonts2009-07-18 18:21:15 ----RD---- C:\WINDOWS\Web2009-07-18 18:21:15 ----HD---- C:\WINDOWS\inf2009-07-18 18:21:15 ----D---- C:\WINDOWS\WinSxS2009-07-18 18:21:15 ----D---- C:\WINDOWS\twain_322009-07-18 18:21:15 ----D---- C:\WINDOWS\Temp2009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\wins2009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\wbem2009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\usmt2009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\spool2009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\ShellExt2009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\Setup2009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\ras2009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\oobe2009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\npp2009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\mui2009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\inetsrv2009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\IME2009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\icsxml2009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\ias2009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\export2009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\drivers2009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\dhcp2009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\config2009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\3com_dmi2009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\30762009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\20522009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\10542009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\10452009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\10422009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\10412009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\10372009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\10332009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\10312009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\10282009-07-18 18:21:15 ----D---- C:\WINDOWS\system32\10252009-07-18 18:21:15 ----D---- C:\WINDOWS\system322009-07-18 18:21:15 ----D---- C:\WINDOWS\system2009-07-18 18:21:15 ----D---- C:\WINDOWS\security2009-07-18 18:21:15 ----D---- C:\WINDOWS\Resources2009-07-18 18:21:15 ----D---- C:\WINDOWS\repair2009-07-18 18:21:15 ----D---- C:\WINDOWS\Provisioning2009-07-18 18:21:15 ----D---- C:\WINDOWS\PeerNet2009-07-18 18:21:15 ----D---- C:\WINDOWS\pchealth2009-07-18 18:21:15 ----D---- C:\WINDOWS\mui2009-07-18 18:21:15 ----D---- C:\WINDOWS\msapps2009-07-18 18:21:15 ----D---- C:\WINDOWS\msagent2009-07-18 18:21:15 ----D---- C:\WINDOWS\Media2009-07-18 18:21:15 ----D---- C:\WINDOWS\java2009-07-18 18:21:15 ----D---- C:\WINDOWS\ime2009-07-18 18:21:15 ----D---- C:\WINDOWS\Help2009-07-18 18:21:15 ----D---- C:\WINDOWS\ehome2009-07-18 18:21:15 ----D---- C:\WINDOWS\Driver Cache2009-07-18 18:21:15 ----D---- C:\WINDOWS\Debug2009-07-18 18:21:15 ----D---- C:\WINDOWS\Cursors2009-07-18 18:21:15 ----D---- C:\WINDOWS\Connection Wizard2009-07-18 18:21:15 ----D---- C:\WINDOWS\Config2009-07-18 18:21:15 ----D---- C:\WINDOWS\AppPatch2009-07-18 18:21:15 ----D---- C:\WINDOWS\addins2009-07-18 18:21:15 ----D---- C:\WINDOWS2009-07-18 17:10:06 ----D---- C:\Program Files\Common Files\Wise Installation Wizard2009-07-18 17:09:44 ----N---- C:\WINDOWS\system32\spmsg.dll2009-07-18 17:09:36 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$2009-07-18 17:09:14 ----A---- C:\WINDOWS\system32\nvudisp.exe2009-07-18 17:09:05 ----A---- C:\WINDOWS\system32\NVUNINST.EXE2009-07-18 17:08:57 ----D---- C:\NVIDIA2009-07-18 17:07:32 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\stamina2009-07-18 17:07:01 ----D---- C:\Program Files\Konnekt2009-07-18 17:05:13 ----D---- C:\Documents and Settings\janek\Dane aplikacji\Macromedia2009-07-18 17:05:13 ----D---- C:\Documents and Settings\janek\Dane aplikacji\Adobe2009-07-18 17:04:07 ----D---- C:\Documents and Settings\janek\Dane aplikacji\Mozilla2009-07-18 17:04:04 ----D---- C:\Program Files\Mozilla Firefox2009-07-18 17:03:11 ----A---- C:\WINDOWS\system32\RtNicProp32.dll2009-07-18 17:03:09 ----HD---- C:\Program Files\InstallShield Installation Information2009-07-18 17:03:09 ----D---- C:\Program Files\Realtek2009-07-18 16:42:11 ----D---- C:\Documents and Settings\janek\Dane aplikacji\Identities2009-07-18 16:42:10 ----HD---- C:\Program Files\Uninstall Information2009-07-18 16:41:55 ----ASH---- C:\Documents and Settings\janek\Dane aplikacji\desktop.ini2009-07-18 16:41:54 ----SD---- C:\Documents and Settings\janek\Dane aplikacji\Microsoft2009-07-18 16:40:12 ----D---- C:\WINDOWS\SoftwareDistribution2009-07-18 16:40:11 ----SD---- C:\WINDOWS\system32\Microsoft2009-07-18 16:40:11 ----D---- C:\WINDOWS\Prefetch2009-07-18 16:40:11 ----A---- C:\WINDOWS\SchedLgU.Txt2009-07-18 16:37:19 ----D---- C:\WINDOWS\system32\xircom2009-07-18 16:37:19 ----D---- C:\Program Files\xerox2009-07-18 16:37:19 ----D---- C:\Program Files\microsoft frontpage2009-07-18 16:37:01 ----A---- C:\WINDOWS\control.ini2009-07-18 16:37:01 ----A---- C:\AUTOEXEC.BAT2009-07-18 16:36:54 ----A---- C:\WINDOWS\OEWABLog.txt2009-07-18 16:36:50 ----A---- C:\WINDOWS\system32\mapi32.dll2009-07-18 16:36:17 ----SD---- C:\WINDOWS\Downloaded Program Files2009-07-18 16:36:17 ----RD---- C:\WINDOWS\Offline Web Pages2009-07-18 16:36:17 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest2009-07-18 16:36:13 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest2009-07-18 16:36:10 ----HD---- C:\Program Files\WindowsUpdate2009-07-18 16:36:07 ----D---- C:\Program Files\Usługi online2009-07-18 16:35:56 ----D---- C:\WINDOWS\system32\DirectX2009-07-18 16:35:40 ----A---- C:\WINDOWS\system32\atrace.dll2009-07-18 16:35:38 ----A---- C:\WINDOWS\system32\desktop.ini2009-07-18 16:35:38 ----A---- C:\WINDOWS\desktop.ini2009-07-18 16:35:31 ----A---- C:\WINDOWS\system32\nmevtmsg.dll2009-07-18 16:35:30 ----A---- C:\WINDOWS\system32\acctres.dll2009-07-18 16:35:29 ----D---- C:\Program Files\Common Files\Services2009-07-18 16:35:27 ----SD---- C:\WINDOWS\Tasks2009-07-18 16:35:27 ----A---- C:\WINDOWS\system32\icfgnt5.dll2009-07-18 16:35:26 ----D---- C:\Program Files\Common Files\MSSoap2009-07-18 16:35:23 ----D---- C:\WINDOWS\system32\Macromed2009-07-18 16:35:23 ----D---- C:\WINDOWS\srchasst2009-07-18 16:35:21 ----A---- C:\WINDOWS\system32\wuweb.dll2009-07-18 16:35:21 ----A---- C:\WINDOWS\system32\wucltui.dll2009-07-18 16:35:21 ----A---- C:\WINDOWS\system32\wuauserv.dll2009-07-18 16:35:21 ----A---- C:\WINDOWS\system32\wuaueng1.dll2009-07-18 16:35:20 ----A---- C:\WINDOWS\system32\wups.dll2009-07-18 16:35:20 ----A---- C:\WINDOWS\system32\wuaueng.dll2009-07-18 16:35:20 ----A---- C:\WINDOWS\system32\wuauclt1.exe2009-07-18 16:35:20 ----A---- C:\WINDOWS\system32\wuauclt.exe2009-07-18 16:35:20 ----A---- C:\WINDOWS\system32\wuapi.dll2009-07-18 16:35:20 ----A---- C:\WINDOWS\system32\qmgrprxy.dll2009-07-18 16:35:20 ----A---- C:\WINDOWS\system32\qmgr.dll2009-07-18 16:35:20 ----A---- C:\WINDOWS\system32\bitsprx3.dll2009-07-18 16:35:20 ----A---- C:\WINDOWS\system32\bitsprx2.dll2009-07-18 16:35:17 ----D---- C:\Program Files\Movie Maker2009-07-18 16:35:14 ----A---- C:\WINDOWS\system32\safrslv.dll2009-07-18 16:35:13 ----A---- C:\WINDOWS\system32\safrdm.dll2009-07-18 16:35:13 ----A---- C:\WINDOWS\system32\safrcdlg.dll2009-07-18 16:35:12 ----A---- C:\WINDOWS\system32\racpldlg.dll2009-07-18 16:35:06 ----A---- C:\WINDOWS\system32\fltMc.exe2009-07-18 16:35:06 ----A---- C:\WINDOWS\system32\fltlib.dll2009-07-18 16:35:05 ----D---- C:\WINDOWS\system32\Restore2009-07-18 16:35:05 ----A---- C:\WINDOWS\system32\srsvc.dll2009-07-18 16:35:05 ----A---- C:\WINDOWS\system32\srrstr.dll2009-07-18 16:35:05 ----A---- C:\WINDOWS\system32\srclient.dll2009-07-18 16:35:04 ----A---- C:\WINDOWS\system32\mnmdd.dll2009-07-18 16:35:04 ----A---- C:\WINDOWS\system32\isrdbg32.dll2009-07-18 16:35:04 ----A---- C:\WINDOWS\system32\ils.dll2009-07-18 16:35:03 ----A---- C:\WINDOWS\system32\nmmkcert.dll2009-07-18 16:35:03 ----A---- C:\WINDOWS\system32\msconf.dll2009-07-18 16:35:03 ----A---- C:\WINDOWS\system32\mnmsrvc.exe2009-07-18 16:34:59 ----D---- C:\Program Files\NetMeeting2009-07-18 16:34:59 ----A---- C:\WINDOWS\system32\msoert2.dll2009-07-18 16:34:58 ----A---- C:\WINDOWS\system32\msoeacct.dll2009-07-18 16:34:57 ----A---- C:\WINDOWS\system32\inetres.dll2009-07-18 16:34:56 ----A---- C:\WINDOWS\system32\inetcomm.dll2009-07-18 16:34:53 ----D---- C:\Program Files\Outlook Express2009-07-18 16:34:53 ----A---- C:\WINDOWS\system32\schedsvc.dll2009-07-18 16:34:53 ----A---- C:\WINDOWS\system32\mstinit.exe2009-07-18 16:34:53 ----A---- C:\WINDOWS\system32\mstask.dll2009-07-18 16:34:52 ----A---- C:\WINDOWS\system32\icwphbk.dll2009-07-18 16:34:52 ----A---- C:\WINDOWS\system32\icwdial.dll2009-07-18 16:34:51 ----A---- C:\WINDOWS\system32\isign32.dll2009-07-18 16:34:51 ----A---- C:\WINDOWS\system32\inetcfg.dll2009-07-18 16:34:42 ----D---- C:\Program Files\Common Files\System2009-07-18 16:34:40 ----D---- C:\Program Files\Internet Explorer2009-07-18 16:34:16 ----D---- C:\Program Files\ComPlus Applications2009-07-18 16:34:15 ----A---- C:\WINDOWS\vbaddin.ini2009-07-18 16:34:15 ----A---- C:\WINDOWS\vb.ini2009-07-18 16:34:11 ----D---- C:\WINDOWS\Registration2009-07-18 16:34:05 ----D---- C:\Program Files\Windows Media Player2009-07-18 16:34:01 ----D---- C:\Program Files\Messenger2009-07-18 16:33:57 ----D---- C:\Program Files\MSN Gaming Zone2009-07-18 16:33:57 ----A---- C:\WINDOWS\system32\write.exe2009-07-18 16:33:51 ----A---- C:\WINDOWS\system32\sndvol32.exe2009-07-18 16:33:51 ----A---- C:\WINDOWS\system32\hticons.dll2009-07-18 16:33:50 ----A---- C:\WINDOWS\system32\winchat.exe2009-07-18 16:33:50 ----A---- C:\WINDOWS\system32\avwav.dll2009-07-18 16:33:50 ----A---- C:\WINDOWS\system32\avtapi.dll2009-07-18 16:33:50 ----A---- C:\WINDOWS\system32\avmeter.dll2009-07-18 16:33:44 ----A---- C:\WINDOWS\system32\getuname.dll2009-07-18 16:33:44 ----A---- C:\WINDOWS\system32\charmap.exe2009-07-18 16:33:44 ----A---- C:\WINDOWS\system32\calc.exe2009-07-18 16:33:43 ----A---- C:\WINDOWS\system32\winmine.exe2009-07-18 16:33:43 ----A---- C:\WINDOWS\system32\sol.exe2009-07-18 16:33:43 ----A---- C:\WINDOWS\system32\mshearts.exe2009-07-18 16:33:43 ----A---- C:\WINDOWS\system32\freecell.exe2009-07-18 16:33:42 ----A---- C:\WINDOWS\system32\usrlogon.cmd2009-07-18 16:33:42 ----A---- C:\WINDOWS\system32\tsshutdn.exe2009-07-18 16:33:42 ----A---- C:\WINDOWS\system32\tslabels.ini2009-07-18 16:33:42 ----A---- C:\WINDOWS\system32\tskill.exe2009-07-18 16:33:42 ----A---- C:\WINDOWS\system32\tsdiscon.exe2009-07-18 16:33:42 ----A---- C:\WINDOWS\system32\tscon.exe2009-07-18 16:33:42 ----A---- C:\WINDOWS\system32\shadow.exe2009-07-18 16:33:42 ----A---- C:\WINDOWS\system32\rwinsta.exe2009-07-18 16:33:42 ----A---- C:\WINDOWS\system32\reset.exe2009-07-18 16:33:42 ----A---- C:\WINDOWS\system32\regini.exe2009-07-18 16:33:42 ----A---- C:\WINDOWS\system32\rdpcfgex.dll2009-07-18 16:33:42 ----A---- C:\WINDOWS\system32\qwinsta.exe2009-07-18 16:33:42 ----A---- C:\WINDOWS\system32\qappsrv.exe2009-07-18 16:33:42 ----A---- C:\WINDOWS\system32\msg.exe2009-07-18 16:33:41 ----A---- C:\WINDOWS\system32\msdtcprf.ini2009-07-18 16:33:41 ----A---- C:\WINDOWS\system32\logoff.exe2009-07-18 16:33:41 ----A---- C:\WINDOWS\system32\cdmodem.dll2009-07-18 16:33:40 ----A---- C:\WINDOWS\system32\stclient.dll2009-07-18 16:33:40 ----A---- C:\WINDOWS\system32\mtxlegih.dll2009-07-18 16:33:40 ----A---- C:\WINDOWS\system32\mtxex.dll2009-07-18 16:33:40 ----A---- C:\WINDOWS\system32\mtxdm.dll2009-07-18 16:33:40 ----A---- C:\WINDOWS\system32\dcomcnfg.exe2009-07-18 16:33:40 ----A---- C:\WINDOWS\system32\comsnap.dll2009-07-18 16:33:40 ----A---- C:\WINDOWS\system32\comrepl.dll2009-07-18 16:33:40 ----A---- C:\WINDOWS\system32\comaddin.dll2009-07-18 16:33:36 ----A---- C:\WINDOWS\system32\wmimgmt.msc2009-07-18 16:33:35 ----A---- C:\WINDOWS\system32\sndrec32.exe2009-07-18 16:33:35 ----A---- C:\WINDOWS\system32\accwiz.exe2009-07-18 16:33:34 ----D---- C:\Program Files\Windows NT2009-07-18 16:33:34 ----A---- C:\WINDOWS\system32\mspaint.exe2009-07-18 16:33:34 ----A---- C:\WINDOWS\system32\mplay32.exe2009-07-18 16:33:34 ----A---- C:\WINDOWS\system32\hypertrm.dll2009-07-18 16:33:34 ----A---- C:\WINDOWS\system32\clipbrd.exe2009-07-18 16:33:33 ----A---- C:\WINDOWS\system32\tscfgwmi.dll2009-07-18 16:33:33 ----A---- C:\WINDOWS\system32\spider.exe2009-07-18 16:33:33 ----A---- C:\WINDOWS\system32\remotepg.dll2009-07-18 16:33:33 ----A---- C:\WINDOWS\system32\rdsaddin.exe2009-07-18 16:33:33 ----A---- C:\WINDOWS\system32\mstscax.dll2009-07-18 16:33:33 ----A---- C:\WINDOWS\system32\mstsc.exe2009-07-18 16:33:32 ----A---- C:\WINDOWS\system32\tscupgrd.exe2009-07-18 16:33:32 ----A---- C:\WINDOWS\system32\termsrv.dll2009-07-18 16:33:32 ----A---- C:\WINDOWS\system32\sessmgr.exe2009-07-18 16:33:32 ----A---- C:\WINDOWS\system32\rdshost.exe2009-07-18 16:33:32 ----A---- C:\WINDOWS\system32\rdpwsx.dll2009-07-18 16:33:32 ----A---- C:\WINDOWS\system32\rdpsnd.dll2009-07-18 16:33:32 ----A---- C:\WINDOWS\system32\rdpclip.exe2009-07-18 16:33:32 ----A---- C:\WINDOWS\system32\rdchost.dll2009-07-18 16:33:32 ----A---- C:\WINDOWS\system32\qprocess.exe2009-07-18 16:33:32 ----A---- C:\WINDOWS\system32\icaapi.dll2009-07-18 16:33:31 ----D---- C:\WINDOWS\system32\MsDtc2009-07-18 16:33:31 ----A---- C:\WINDOWS\system32\xolehlp.dll2009-07-18 16:33:31 ----A---- C:\WINDOWS\system32\mtxoci.dll2009-07-18 16:33:31 ----A---- C:\WINDOWS\system32\msdtcuiu.dll2009-07-18 16:33:31 ----A---- C:\WINDOWS\system32\msdtctm.dll2009-07-18 16:33:31 ----A---- C:\WINDOWS\system32\msdtcprx.dll2009-07-18 16:33:31 ----A---- C:\WINDOWS\system32\msdtclog.dll2009-07-18 16:33:31 ----A---- C:\WINDOWS\system32\msdtc.exe2009-07-18 16:33:31 ----A---- C:\WINDOWS\system32\cfgbkend.dll2009-07-18 16:33:30 ----D---- C:\WINDOWS\system32\Com2009-07-18 16:33:30 ----A---- C:\WINDOWS\system32\colbact.dll2009-07-18 16:33:30 ----A---- C:\WINDOWS\system32\clbcatex.dll2009-07-18 16:33:30 ----A---- C:\WINDOWS\system32\catsrvut.dll2009-07-18 16:33:30 ----A---- C:\WINDOWS\system32\catsrvps.dll2009-07-18 16:33:30 ----A---- C:\WINDOWS\system32\catsrv.dll2009-07-18 16:33:29 ----A---- C:\WINDOWS\system32\comuid.dll2009-07-18 16:33:29 ----A---- C:\WINDOWS\system32\comsvcs.dll2009-07-18 16:33:29 ----A---- C:\WINDOWS\system32\clbcatq.dll2009-07-18 16:33:24 ----A---- C:\WINDOWS\system32\servdeps.dll2009-07-18 16:33:24 ----A---- C:\WINDOWS\system32\mmfutil.dll2009-07-18 16:33:24 ----A---- C:\WINDOWS\system32\licwmi.dll2009-07-18 16:33:24 ----A---- C:\WINDOWS\system32\cmprops.dll2009-07-01 00:08:24 ----A---- C:\WINDOWS\system32\b4fm.dll======List of files/folders modified in the last 1 months======2009-07-18 18:28:58 ----A---- C:\WINDOWS\system.ini2009-07-18 16:37:01 ----A---- C:\WINDOWS\win.ini======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======R1 easdrv;easdrv; C:\WINDOWS\system32\DRIVERS\easdrv.sys [2008-07-01 53256]R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2008-07-01 34312]R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-04 40320]R1 kbdhid;Sterownik klawiatury HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-04 14848]R2 eamon;EAMON; C:\WINDOWS\system32\DRIVERS\eamon.sys [2008-07-01 39944]R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\WINDOWS\system32\DRIVERS\ctsfm2k.sys [2005-12-08 142336]R3 CTUSFSYN;Creative SoundFont Synthesizer; C:\WINDOWS\system32\drivers\ctusfsyn.sys [2006-08-07 162176]R3 hidusb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-18 9600]R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160]R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-06-10 8087712]R3 ossrv;Creative OS Services Driver; C:\WINDOWS\system32\DRIVERS\ctoss2k.sys [2005-12-08 114688]R3 P17xfi;Sound Blaster X-Fi Xtreme Audio; C:\WINDOWS\system32\drivers\P17xfi.sys [2007-06-13 1174528]R3 p17xfilt;p17xfilt; C:\WINDOWS\system32\drivers\p17xfilt.sys [2007-08-20 1656960]R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2009-04-24 141568]R3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]R3 usbehci;Sterownik Miniport rozszerzonego kontrolera hosta USB 2.0 Microsoft; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]R3 usbhub;Koncentrator z obsługą USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]R3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]S3 a5pst1sc;a5pst1sc; C:\WINDOWS\system32\drivers\a5pst1sc.sys []S3 usb_rndisx;USB RNDIS Adapter; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2005-10-21 12800]S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-11-06 28672]S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======R2 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]R2 CTAudSvcService;Creative Audio Service; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [2008-01-30 393216]R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-07-18 152984]R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-06-10 168004]S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]-----------------EOF-----------------
Gość komentarz 19 lipca 2009 komentarz 19 lipca 2009 Jest czysto. 1. Posprzątaj po ComboFixie i różnych narzędziach >>> OTCleanIt. 2. Użyj programu Malwarebytes. Wciskamy Skanuj, wybieramy dyski do skanowania i Rozpoczynamy skanowanie, na końcu wciskamy Usuń zaznaczone jak będą i Ok. Wrzuć wygenerowany raport po usuwaniu MBAMem. .
jaskowski komentarz 22 lipca 2009 Autor komentarz 22 lipca 2009 milusio wyszlo. Malwarebytes' Anti-Malware 1.39Wersja bazy definicji: 2481Windows 5.1.2600 Dodatek Service Pack 22009-07-22 21:51:11mbam-log-2009-07-22 (21-51-11).txtTyp skanowania: Pełne skanowanie (C:\|D:\|E:\|)Przeskanowane obiekty: 118906Upłynęło: 12 minute(s), 51 second(s)Zainfekowane procesy w pamięci: 0Zainfekowane moduły pamięci: 0Zainfekowane klucze rejestru: 0Zainfekowane wartości rejestru: 0Zainfekowane pliki rejestru: 1Zainfekowane foldery: 0Zainfekowane pliki: 1Zainfekowane procesy w pamięci:(Nie wykryto groźnych plików)Zainfekowane moduły pamięci:(Nie wykryto groźnych plików)Zainfekowane klucze rejestru:(Nie wykryto groźnych plików)Zainfekowane wartości rejestru:(Nie wykryto groźnych plików)Zainfekowane pliki rejestru:HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft\Internet Explorer\Control Panel\Homepage (Hijack.Homepage) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.Zainfekowane foldery:(Nie wykryto groźnych plików)Zainfekowane pliki:e:\downloads\cyberlink.powerdvd.ultra.v9.0.1501.********* (Trojan.Downloader) -> Quarantined and deleted successfully. zupelnie zapomnialem o temacie
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.