CyBeK utworzono 8 października 2008 utworzono 8 października 2008 ComboFix 08-10-07.03 - x 2008-10-08 15:15:47.1 - NTFSx86Microsoft Windows XP Home Edition 5.1.2600.2.1250.1.1045.18.1601 [GMT 2:00]Uruchomiony z: C:\Documents and Settings\x\Pulpit\ComboFix.exe * Utworzono nowy punkt przywracania[b]UWAGA - TEN KOMPUTER NIE MA ZAINSTALOWANEJ KONSOLI ODZYSKIWANIA !![/b].((((((((((((((((((((((((( Pliki utworzone od 2008-09-08 do 2008-10-08 ))))))))))))))))))))))))))))))).2008-10-08 14:16 . 2007-07-26 16:15 53,248 --a------ C:\WINDOWS\system32\CSVer.dll2008-10-08 14:15 . 2008-10-08 14:15 <DIR> d-------- C:\Intel2008-10-08 01:42 . 2008-10-08 01:42 <DIR> d-------- C:\Program Files\Lavalys2008-10-08 00:15 . 2008-10-08 00:15 <DIR> d-------- C:\WINDOWS\nview2008-10-08 00:15 . 2008-05-16 14:01 446,464 --a------ C:\WINDOWS\system32\nvudisp.exe2008-10-08 00:15 . 2008-10-08 14:18 186,097 --a------ C:\WINDOWS\system32\nvapps.xml2008-10-08 00:15 . 2008-05-16 14:01 18,070 --a------ C:\WINDOWS\system32\nvdisp.nvu2008-10-08 00:14 . 2008-05-16 11:48 446,464 --a------ C:\WINDOWS\system32\NVUNINST.EXE2008-10-07 23:28 . 2008-10-07 23:28 <DIR> d-------- C:\Program Files\jv16 PowerTools 20082008-10-07 23:28 . 2008-10-07 23:28 23 --a------ C:\WINDOWS\system32\efbbcffdef5_z.ocx2008-10-07 22:13 . 2008-10-07 22:48 25,992 --a------ C:\WINDOWS\system32\pgdfgsvc.exe2008-10-07 22:04 . 2008-10-07 22:05 <DIR> d-------- C:\Program Files\CCleaner2008-10-07 19:26 . 2008-10-07 19:26 <DIR> d-------- C:\Program Files\Common Files\BioWare2008-09-25 19:06 . 2007-01-10 10:14 450,560 --a------ C:\WINDOWS\system32\drivers\WlanBZXP.sys2008-09-21 15:59 . 2008-09-21 15:59 <DIR> d-------- C:\Program Files\Konami2008-09-20 16:04 . 2008-09-20 16:04 <DIR> d-------- C:\Program Files\Cyanide2008-09-19 18:00 . 2008-09-19 18:00 <DIR> d-------- C:\Program Files\Battlefront2008-09-19 17:43 . 2008-09-20 18:00 <DIR> d-------- C:\Program Files\Combat Mission Shock Force2008-09-09 18:19 . 2008-09-09 18:19 <DIR> d-------- C:\Documents and Settings\x\Dane aplikacji\SPORE2008-09-09 18:16 . 2008-09-09 18:16 <DIR> d-------- C:\ProgramData2008-09-09 18:16 . 2008-09-09 18:16 2,562 --a------ C:\WINDOWS\system32\ealregsnapshot1.reg.(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))).2008-10-08 10:25 --------- d-----w C:\Program Files\Yahoo!2008-10-08 10:24 --------- d-----w C:\Program Files\VirtualDJ2008-10-08 10:23 --------- d-----w C:\Program Files\Drumsite2008-10-06 20:52 --------- d--h--w C:\Program Files\InstallShield Installation Information2008-10-06 20:52 --------- d-----w C:\Program Files\Wiedźmin2008-10-06 20:46 --------- d-----w C:\Program Files\EA GAMES2008-10-06 20:23 --------- d-----w C:\Program Files\Paradox Interactive2008-10-06 20:17 --------- d-----w C:\Program Files\Ubisoft2008-10-06 20:01 --------- d-----w C:\Program Files\1C2008-10-05 12:48 --------- d-----w C:\Program Files\Firaxis Games2008-10-05 12:47 --------- d-----w C:\Documents and Settings\x\Dane aplikacji\My Games2008-09-21 11:37 --------- d-----w C:\Program Files\Riven2008-09-18 12:45 --------- d-----w C:\Program Files\MegaSpoof2008-09-09 16:19 107,888 ----a-w C:\WINDOWS\system32\CmdLineExt.dll2008-09-09 16:16 --------- d-----w C:\Program Files\Electronic Arts2008-08-19 21:47 --------- d-----w C:\Program Files\Fs2Utils2008-08-18 18:01 --------- d-----w C:\Program Files\fishsim22008-08-17 21:41 --------- d-----w C:\Program Files\vixy.net2008-07-18 20:10 94,920 ----a-w C:\WINDOWS\system32\cdm.dll2008-07-18 20:10 53,448 ----a-w C:\WINDOWS\system32\wuauclt.exe2008-07-18 20:10 45,768 ----a-w C:\WINDOWS\system32\wups2.dll2008-07-18 20:10 36,552 ----a-w C:\WINDOWS\system32\wups.dll2008-07-18 20:09 563,912 ----a-w C:\WINDOWS\system32\wuapi.dll2008-07-18 20:09 325,832 ----a-w C:\WINDOWS\system32\wucltui.dll2008-07-18 20:09 205,000 ----a-w C:\WINDOWS\system32\wuweb.dll2008-07-18 20:09 1,811,656 ----a-w C:\WINDOWS\system32\wuaueng.dll.((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))..*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane REGEDIT4[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 1694208][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2007-03-22 180269]"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2008-05-16 13529088]"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2008-05-16 86016]"nwiz"="nwiz.exe" [2008-05-16 C:\WINDOWS\system32\nwiz.exe][HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]"vidc.I420"= i263_32.drv"vidc.3ivx"= 3ivxVfWCodec.dll"vidc.3iv2"= 3ivxVfWCodec.dll"msacm.divxa32"= divxa32.acm"VIDC.HFYU"= huffyuv.dll"VIDC.i263"= i263_32.drv"msacm.imc"= imc32.acm"VIDC.VP31"= vp31vfw.dll[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Microsoft Office.lnk]backup=C:\WINDOWS\pss\Microsoft Office.lnkCommon Startup[HKLM\~\startupfolder\C:^Documents and Settings^x^Menu Start^Programy^Autostart^Adobe Gamma.lnk]backup=C:\WINDOWS\pss\Adobe Gamma.lnkStartup[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]--a------ 2006-09-14 22:09 157592 C:\Program Files\DAEMON Tools\daemon.exe[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core]--a------ 2008-07-21 14:07 2752512 C:\Program Files\Electronic Arts\EADM\Core.exe[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]--a------ 2007-02-23 00:45 25469480 C:\Program Files\Skype\Phone\Skype.exe[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]"%windir%\\system32\\sessmgr.exe"="C:\\Program Files\\Gadu-Gadu\\gg.exe"="C:\\WINDOWS\\system32\\dplaysvr.exe"="C:\\Program Files\\Opera\\Opera.exe"="C:\\WINDOWS\\system32\\dpvsetup.exe"="C:\\Program Files\\Atari\\Test Drive Unlimited\\TestDriveUnlimited.exe"="C:\\Program Files\\Winamp Remote\\bin\\Orb.exe"="C:\\Program Files\\Winamp Remote\\bin\\OrbTray.exe"="C:\\Program Files\\Winamp Remote\\bin\\OrbStreamerClient.exe"="C:\\Program Files\\Aspyr\\Guitar Hero III\\GH3.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Deer Hunter 5\\Home\\Deer Hunter 5.exe"="C:\\Program Files\\Electronic Arts\\EADM\\Core.exe"="C:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Civilization4.exe"="C:\\games\\Mass Effect\\Binaries\\MassEffect.exe"="C:\\games\\Mass Effect\\MassEffectLauncher.exe"=R0 sfdrv01a;StarForce Protection Environment Driver (version 1.x.a);C:\WINDOWS\system32\drivers\sfdrv01a.sys [2006-07-05 63352]R3 SG762_XP;SAGEM 802.11g XG762 1211B Driver;C:\WINDOWS\system32\DRIVERS\WlanBZXP.sys [2007-01-10 450560]S2 CachemanXPService;CachemanXP;C:\PROGRA~1\CACHEM~1\CachemanXP.exe [2008-03-03 242688]S3 ASPI;Advanced SCSI Programming Interface Driver;C:\WINDOWS\System32\DRIVERS\ASPI32.sys [2002-07-17 16512].Zawartość folderu 'Zaplanowane zadania'2008-10-03 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2007-01-10 15:42].**************************************************************************catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.netRootkit scan 2008-10-08 15:18:21Windows 5.1.2600 Dodatek Service Pack 2 NTFSskanowanie ukrytych procesów ... skanowanie ukrytych wpisów autostartu ...skanowanie ukrytych plików ... skanowanie pomyślnie ukończoneukryte pliki: 0**************************************************************************.Czas ukończenia: 2008-10-08 15:19:21ComboFix-quarantined-files.txt 2008-10-08 13:19:19ComboFix2.txt 2008-10-07 21:40:37ComboFix3.txt 2008-03-17 19:58:17ComboFix4.txt 2008-03-17 19:26:21Przed: 304 134 234 112 bajtów wolnychPo: 304,123,363,328 bajtów wolnych134 --- E O F --- 2008-09-11 16:51:18
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.