x-kom hosting

Proszę o sprawdzenie loga

alfik4ever
utworzono
utworzono

Problemy z wirusami ;/ hacktool.rootkit

ComboFix 08-12-02.02 - alfik 2008-12-04  0:34:20.1 - NTFSx86Microsoft Windows XP Professional  5.1.2600.3.1250.1.1045.18.250 [GMT 1:00]Uruchomiony z: c:\documents and settings\alfik\Pulpit\ComboFix.exe.(((((((((((((((((((((((((((((((((((((((   Usunięto   ))))))))))))))))))))))))))))))))))))))))))))))))).C:\autorun.infc:\documents and settings\alfik\Dane aplikacji\BITSc:\documents and settings\alfik\Dane aplikacji\BITS\BITS.inic:\documents and settings\alfik\Dane aplikacji\BITS\DHTTable.datc:\documents and settings\alfik\Dane aplikacji\BITS\ProxyList.iniC:\ncyrf.batc:\program files\FlashGet Networkc:\program files\FlashGet Network\FlashGet universal\btcore.dllc:\program files\FlashGet Network\FlashGet universal\btwrap.dllc:\program files\FlashGet Network\FlashGet universal\BugReport.dllc:\program files\FlashGet Network\FlashGet universal\BugReport.exec:\program files\FlashGet Network\FlashGet universal\ComDlls\Bhoall.htmc:\program files\FlashGet Network\FlashGet universal\ComDlls\bhoCATCH.dllc:\program files\FlashGet Network\FlashGet universal\ComDlls\Bhocfg.inic:\program files\FlashGet Network\FlashGet universal\ComDlls\Bholink.htmc:\program files\FlashGet Network\FlashGet universal\ComDlls\ComDlls.inic:\program files\FlashGet Network\FlashGet universal\ComDlls\flashget.xpic:\program files\FlashGet Network\FlashGet universal\ComDlls\FlashgetXpi.dllc:\program files\FlashGet Network\FlashGet universal\ComDlls\IFlashgetXpi.xptc:\program files\FlashGet Network\FlashGet universal\dbghelp.dllc:\program files\FlashGet Network\FlashGet universal\DBTrans.dllc:\program files\FlashGet Network\FlashGet universal\dbtrans_verbose.logc:\program files\FlashGet Network\FlashGet universal\DBTransC.exec:\program files\FlashGet Network\FlashGet universal\ed2kwrap.dllc:\program files\FlashGet Network\FlashGet universal\explorerbar.dllc:\program files\FlashGet Network\FlashGet universal\fgoption.inic:\program files\FlashGet Network\FlashGet universal\FGVer.dllc:\program files\FlashGet Network\FlashGet universal\flashget.exec:\program files\FlashGet Network\FlashGet universal\gt.exec:\program files\FlashGet Network\FlashGet universal\hashgen.dllc:\program files\FlashGet Network\FlashGet universal\Help\license.txtc:\program files\FlashGet Network\FlashGet universal\Help\Readme.txtc:\program files\FlashGet Network\FlashGet universal\Help\WHATSNEW.TXTc:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddBatchLinksDlg.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddBTTask.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\Added.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddEMTask.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddHpFpLink.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddLinksDlg.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddLinksDlgEx.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddLinksModern.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\BrowserPlugins.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\BTOption.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\CategoryView.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ComfirmWhenExitDialog.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\CommonDlg.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ConfirmInvalidLinks.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ContextMenu.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\DefaultDownloadsDialog.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\DeleteFilesDialog.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\DetailStatus.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\EMOption.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\EMServers.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ExplorerPane.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ExtensionRuleDlg.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FG2SearchTopPlugin.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FileListCtrl.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FileRemovedDialog.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FindTaskDialog.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FlashgetAbout.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FlashGetDlg.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FSUStatusBar.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\GarageLoginDialog.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\GarageView.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\HotResource.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\HpFpOption.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\Info.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\LogsOutput.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\MACReader.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\MainMenu.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\MainToolbar.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\MonitorOption.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\NormalOption.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\NotifyOption.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\Option.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\P4PPluginMain.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ProxySetting.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\SearchBar.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\Security.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\SecurityOption.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\SecurityScan.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\SecurityToolbar.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\Shutdown.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\StatusBar.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\TaskDefOption.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\TaskListView.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\TaskNotify.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\UserListCtrl.inic:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\XpEnhance.inic:\program files\FlashGet Network\FlashGet universal\libupnp.dllc:\program files\FlashGet Network\FlashGet universal\LiveUpdateUI.dllc:\program files\FlashGet Network\FlashGet universal\modules\ComHelper\ComHelper.dllc:\program files\FlashGet Network\FlashGet universal\modules\ComHelper\Info.inic:\program files\FlashGet Network\FlashGet universal\modules\Downstat\Downstat.dllc:\program files\FlashGet Network\FlashGet universal\modules\Downstat\Info.inic:\program files\FlashGet Network\FlashGet universal\modules\P4pclient\Info.inic:\program files\FlashGet Network\FlashGet universal\modules\P4pclient\P4pclient.dllc:\program files\FlashGet Network\FlashGet universal\modules\P4pclient\Thumbs.dbc:\program files\FlashGet Network\FlashGet universal\modules\SearchTop\Info.inic:\program files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource.inic:\program files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\iexplorer.bmpc:\program files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\resource.bmpc:\program files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\resource.xmlc:\program files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\search.bmpc:\program files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\subscribe.bmpc:\program files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\Thumbs.dbc:\program files\FlashGet Network\FlashGet universal\modules\SearchTop\SearchTop.dllc:\program files\FlashGet Network\FlashGet universal\modules\Security\FunctionalRepair.bmpc:\program files\FlashGet Network\FlashGet universal\modules\Security\Info.inic:\program files\FlashGet Network\FlashGet universal\modules\Security\Scanning.bmpc:\program files\FlashGet Network\FlashGet universal\modules\Security\Security.bmpc:\program files\FlashGet Network\FlashGet universal\modules\Security\SECURITY.dllc:\program files\FlashGet Network\FlashGet universal\modules\Security\Security.xmlc:\program files\FlashGet Network\FlashGet universal\modules\Security\SystemFix.bmpc:\program files\FlashGet Network\FlashGet universal\modules\SnapShot\Info.inic:\program files\FlashGet Network\FlashGet universal\modules\SnapShot\SamplerCli.dllc:\program files\FlashGet Network\FlashGet universal\modules\SnapShot\SnapShot.dllc:\program files\FlashGet Network\FlashGet universal\modules\tasknotifier\Info.inic:\program files\FlashGet Network\FlashGet universal\modules\tasknotifier\tasknotifier.dllc:\program files\FlashGet Network\FlashGet universal\P2PCfg.inic:\program files\FlashGet Network\FlashGet universal\P2PCore.dllc:\program files\FlashGet Network\FlashGet universal\p2pprot.dllc:\program files\FlashGet Network\FlashGet universal\p2snetio.dllc:\program files\FlashGet Network\FlashGet universal\p2spmgr.dllc:\program files\FlashGet Network\FlashGet universal\p2spmgr.inic:\program files\FlashGet Network\FlashGet universal\p2sprot.dllc:\program files\FlashGet Network\FlashGet universal\p2spwrap.dllc:\program files\FlashGet Network\FlashGet universal\p4spmgr.inic:\program files\FlashGet Network\FlashGet universal\Profiles\config.datc:\program files\FlashGet Network\FlashGet universal\Profiles\tasks.datc:\program files\FlashGet Network\FlashGet universal\Skins\close_default.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\close_press.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\close_select.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\max_default.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\max_press.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\max_select.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\min_default.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\min_press.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\min_select.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\notify.wavc:\program files\FlashGet Network\FlashGet universal\Skins\notify_board.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\notify_icon.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\Back.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\Backward.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\BrowserBarCT.xmlc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\FlashgetResource.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\Forward.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\Home.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarDisableCT\Backward.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarDisableCT\BrowserBarDisableCT.xmlc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarDisableCT\Forward.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarDisableCT\Home.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarDisableCT\Resource.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Available.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\CategoryTreeCT.xmlc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Downloaded.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Downloading.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Favorite.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Flashget.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Release.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Rubbish.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Search.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\ExpBar\Expbar.xmlc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\ExpBar\garage.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\ExpBar\resource.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\ExpBar\transfer.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\BT.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\EM.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\GlobalOptionCT.xmlc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\HpFp.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\Monitor.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\Normal.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\Notify.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\Proxy.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\TaskDef.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\Info.inic:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\About.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\DeleteTask.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\folder.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\MainMenuCT.xmlc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\MoveDownTask.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\MoveUpTask.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\NewTask.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\open.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\Option.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\PauseTask.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\Resource.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\StartTask.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\TaskProperties.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\About.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\DeleteTask.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\Folder.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\MainToolbarCT.xmlc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\NewTask.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\Open.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\Option.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\PauseTask.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\Resource.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\StartTask.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\TaskProperties.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\About.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\DeleteTask.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\Folder.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\MainToolbarDisableCT.xmlc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\NewTask.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\Open.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\Option.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\PauseTask.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\Resource.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\StartTask.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\TaskProperties.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\Monitor\InfoBkg.Bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\Monitor\MonitorBkg.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\OutpuLogCT\Down.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\OutpuLogCT\Error.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\OutpuLogCT\Normal.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\OutpuLogCT\OutpuLogCT.xmlc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\OutpuLogCT\Up.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\All.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Book.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Bt.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Game.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Movie.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Music.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Phone.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Picture.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\SobarIconCT.xmlc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Software.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Error.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\hashing.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\OK.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Pause.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Pin.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Schedule.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Start.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\TaskListCT.xmlc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Upload.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Wait.bmpc:\program files\FlashGet Network\FlashGet universal\Skins\Thumbs.dbc:\program files\FlashGet Network\FlashGet universal\storage.dllc:\program files\FlashGet Network\FlashGet universal\SysOpt.exec:\program files\FlashGet Network\FlashGet universal\transaction.logc:\program files\FlashGet Network\FlashGet universal\uninst.exec:\program files\FlashGet Network\FlashGet universal\zlib.dllC:\rcukd.cmdc:\windows\adaway.licc:\windows\system32\gasretyw0.dllc:\windows\system32\gasretyw1.dllc:\windows\system32\kamsoft.exeD:\Autorun.infD:\ncyrf.batD:\rcukd.cmd.(((((((((((((((((((((((((   Pliki utworzone od 2008-11-03 do 2008-12-03  ))))))))))))))))))))))))))))))).2008-12-04 00:33 . 2008-12-04 00:43	<DIR>	d--------	C:\ComboFix2008-12-04 00:33 . 2008-12-04 00:43	<DIR>	d--------	C:\ComboFix2008-12-04 00:28 . 2004-08-03 23:00	262,400	--a------	C:\cmldr2008-12-04 00:28 . 2008-12-04 00:08	211	--a------	C:\Boot.bak2008-12-04 00:27 . 2008-12-04 00:28	<DIR>	d--------	C:\cmdcons2008-12-04 00:27 . 2008-12-04 00:28	<DIR>	d--------	C:\cmdcons2008-12-04 00:23 . 2008-12-04 00:37	<DIR>	d-a------	C:\Qoobox2008-12-04 00:23 . 2008-12-04 00:37	<DIR>	d-a------	C:\Qoobox2008-12-04 00:20 . 2008-12-04 00:20	<DIR>	d--------	c:\documents and settings\alfik\DoctorWeb2008-12-04 00:06 . 2008-12-04 00:41	<DIR>	d--h-----	c:\documents and settings\Administrator\Ustawienia lokalne2008-12-04 00:06 . 2008-11-24 22:10	<DIR>	d--------	c:\documents and settings\Administrator\Ulubione2008-12-04 00:06 . 2008-11-24 21:23	<DIR>	d--h-----	c:\documents and settings\Administrator\Szablony2008-12-04 00:06 . 2008-11-24 22:10	<DIR>	d--------	c:\documents and settings\Administrator\Pulpit2008-12-04 00:06 . 2008-11-24 22:10	<DIR>	d--------	c:\documents and settings\Administrator\Moje dokumenty2008-12-04 00:06 . 2008-11-24 22:10	<DIR>	dr-------	c:\documents and settings\Administrator\Menu Start2008-12-04 00:06 . 2008-11-24 22:10	<DIR>	dr-h-----	c:\documents and settings\Administrator\Dane aplikacji2008-12-03 23:17 . 2008-12-03 23:18	<DIR>	d--------	c:\program files\Adware Away2008-12-03 19:46 . 2008-12-03 22:37	<DIR>	d--------	c:\program files\SkanerOnline2008-12-03 18:33 . 2008-12-03 22:28	<DIR>	d--hs----	C:\Config.Msi2008-12-03 18:33 . 2008-12-03 22:28	<DIR>	d--hs----	C:\Config.Msi2008-12-03 17:38 . 2008-12-03 17:35	35,888	-ra------	c:\windows\system32\drivers\SymIM.sys2008-12-03 17:35 . 2008-12-03 17:35	<DIR>	d--------	c:\windows\system32\drivers\NIS2008-12-03 17:35 . 2008-12-03 17:35	<DIR>	d--------	c:\program files\Symantec2008-12-03 17:35 . 2008-12-03 17:54	<DIR>	d--------	c:\program files\Common Files\Symantec Shared2008-12-03 17:35 . 2008-12-03 17:35	124,464	--a------	c:\windows\system32\drivers\SYMEVENT.SYS2008-12-03 17:35 . 2008-12-03 17:35	60,808	--a------	c:\windows\system32\S32EVNT1.DLL2008-12-03 17:35 . 2008-12-03 17:35	10,635	--a------	c:\windows\system32\drivers\SYMEVENT.CAT2008-12-03 17:35 . 2008-12-03 17:35	806	--a------	c:\windows\system32\drivers\SYMEVENT.INF2008-12-03 17:34 . 2008-12-03 17:35	<DIR>	d--------	c:\program files\Windows Sidebar2008-12-03 17:34 . 2008-12-03 17:34	<DIR>	d--------	c:\program files\NortonInstaller2008-12-03 17:34 . 2008-12-03 17:35	<DIR>	d--------	c:\program files\Norton Internet Security2008-11-30 20:21 . 2008-11-30 20:21	<DIR>	d--------	c:\documents and settings\alfik\Dane aplikacji\Media Player Classic2008-11-28 15:36 . 2008-11-28 15:36	<DIR>	d--------	c:\program files\PowerQuest2008-11-27 12:00 . 2008-11-27 12:00	107,888	--a------	c:\windows\system32\CmdLineExt.dll2008-11-27 11:31 . 2008-11-27 11:31	<DIR>	d--------	c:\program files\GameSpy2008-11-27 11:31 . 2008-11-27 11:56	<DIR>	d--------	c:\documents and settings\alfik\Dane aplikacji\InstallShield Installation Information2008-11-27 11:29 . 2008-11-27 11:30	<DIR>	d--------	c:\windows\system32\URTTemp2008-11-27 11:25 . 2008-11-27 11:25	<DIR>	d--------	c:\documents and settings\alfik\Dane aplikacji\InstallShield2008-11-26 21:30 . 2008-11-26 21:35	<DIR>	d--------	c:\program files\HDD Regenerator2008-11-26 21:29 . 2008-11-26 21:29	<DIR>	d--------	c:\windows\Downloaded Installations2008-11-26 21:15 . 2008-11-26 21:15	<DIR>	d--------	C:\Downloads2008-11-26 21:15 . 2008-11-26 21:15	<DIR>	d--------	C:\Downloads2008-11-26 21:15 . 2008-11-26 21:15	<DIR>	d--------	C:\Downloads2008-11-26 20:51 . 2008-11-26 20:51	<DIR>	d--h-----	c:\windows\PIF2008-11-26 12:32 . 2008-06-14 18:36	273,024	---------	c:\windows\system32\drivers\bthport.sys2008-11-26 12:32 . 2008-06-14 18:36	273,024	-----c---	c:\windows\system32\dllcache\bthport.sys2008-11-26 12:30 . 2008-08-14 14:26	2,190,464	-----c---	c:\windows\system32\dllcache\ntoskrnl.exe2008-11-26 12:30 . 2008-08-14 14:26	2,146,816	-----c---	c:\windows\system32\dllcache\ntkrnlmp.exe2008-11-26 12:30 . 2008-08-14 14:26	2,067,328	-----c---	c:\windows\system32\dllcache\ntkrnlpa.exe2008-11-26 12:30 . 2008-08-14 14:26	2,025,472	-----c---	c:\windows\system32\dllcache\ntkrpamp.exe2008-11-26 12:30 . 2008-10-24 12:21	455,296	-----c---	c:\windows\system32\dllcache\mrxsmb.sys2008-11-26 09:42 . 2008-12-03 18:45	<DIR>	d--h-----	c:\windows\$hf_mig$2008-11-26 09:42 . 2005-02-25 04:36	22,752	--a------	c:\windows\system32\spupdsvc.exe2008-11-25 11:42 . 2008-12-03 21:05	69	--a------	c:\windows\NeroDigital.ini2008-11-25 11:03 . 2008-11-25 11:03	<DIR>	d--------	c:\program files\Bonjour2008-11-25 10:52 . 2008-11-25 10:52	<DIR>	d--------	c:\program files\Common Files\Macrovision Shared2008-11-25 10:45 . 2008-11-25 10:45	<DIR>	d--------	c:\documents and settings\alfik\Dane aplikacji\Ahead2008-11-25 10:43 . 2008-11-25 10:43	<DIR>	d--------	c:\program files\Nero2008-11-25 10:43 . 2008-11-25 10:47	<DIR>	d--------	c:\program files\Common Files\Ahead2008-11-25 10:35 . 2008-11-25 10:35	<DIR>	d--------	c:\documents and settings\alfik\Dane aplikacji\Gadu-Gadu2008-11-25 09:28 . 2003-06-25 16:05	266,360	--a------	c:\windows\system32\TweakUI.exe2008-11-25 09:28 . 2002-06-21 15:09	160,217	--a------	c:\windows\system32\PowerToysLicense.rtf.((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   )))))))))))))))))))))))))))))))))))))))))))))))))))).2008-12-03 23:32	---------	d-----w	c:\program files\DC++2008-12-03 16:34	---------	d-----w	c:\documents and settings\All Users\Dane aplikacji\Norton2008-11-28 19:27	---------	d-----w	c:\documents and settings\All Users\Dane aplikacji\Symantec2008-11-28 08:47	---------	d-----w	c:\documents and settings\All Users\Dane aplikacji\NortonInstaller2008-11-26 20:21	---------	d-----w	c:\program files\BitComet2008-11-25 10:05	---------	d-----w	c:\program files\Common Files\Adobe2008-11-25 09:44	---------	d-----w	c:\program files\Gadu-Gadu2008-11-25 08:18	---------	d-----w	c:\program files\NAPI-PROJEKT2008-11-24 21:46	---------	d-----w	c:\documents and settings\All Users\Dane aplikacji\Microsoft Help2008-11-24 21:42	---------	d-----w	c:\program files\Microsoft Works2008-11-24 21:41	---------	d-----w	c:\program files\MSBuild2008-11-24 21:31	---------	d-----w	c:\documents and settings\alfik\Dane aplikacji\Winamp2008-11-24 21:30	---------	d-----w	c:\program files\Winamp2008-11-24 21:27	---------	d-----w	c:\program files\SubEdit-Player2008-11-24 21:27	---------	d-----w	c:\program files\RegCleaner2008-11-24 21:24	---------	d-----w	c:\program files\K-Lite Codec Pack2008-11-24 21:21	---------	d-----w	c:\program files\Everest ultimate2008-11-24 21:19	---------	d-----w	c:\program files\Google2008-11-24 21:17	---------	d-----w	c:\program files\DAEMON Tools2008-11-24 21:16	685,816	----a-w	c:\windows\system32\drivers\sptd.sys2008-11-24 20:50	---------	d-----w	c:\program files\Realtek AC972008-11-24 20:49	---------	d--h--w	c:\program files\InstallShield Installation Information2008-11-24 20:49	---------	d-----w	c:\program files\directX2008-11-24 20:46	---------	d-----w	c:\program files\Common Files\InstallShield2008-11-24 20:44	---------	d-----w	c:\program files\VIA2008-11-24 20:31	---------	d-----w	c:\program files\microsoft frontpage2008-11-24 20:28	---------	d-----w	c:\program files\Usługi online2008-11-10 21:17	2,296,339	----a-w	c:\windows\system32\x264vfw.dll2008-11-02 14:02	7,680	----a-w	c:\windows\system32\ff_vfw.dll2008-10-28 22:35	684,032	----a-w	c:\windows\system32\divx.dll2008-10-24 11:21	455,296	----a-w	c:\windows\system32\drivers\mrxsmb.sys2008-10-16 13:13	202,776	----a-w	c:\windows\system32\wuweb.dll2008-10-16 13:13	1,809,944	----a-w	c:\windows\system32\wuaueng.dll2008-10-16 13:12	561,688	----a-w	c:\windows\system32\wuapi.dll2008-10-16 13:12	323,608	----a-w	c:\windows\system32\wucltui.dll2008-10-16 13:09	92,696	----a-w	c:\windows\system32\cdm.dll2008-10-16 13:09	51,224	----a-w	c:\windows\system32\wuauclt.exe2008-10-16 13:09	43,544	----a-w	c:\windows\system32\wups2.dll2008-10-16 13:08	34,328	----a-w	c:\windows\system32\wups.dll2008-09-25 08:03	81,920	----a-w	c:\windows\system32\dpl100.dll2008-09-19 21:57	3,596,288	----a-w	c:\windows\system32\qt-dx331.dll2008-09-17 13:16	549,159	--sha-r	c:\program files\Norton2009Reset.exe2008-09-15 15:27	1,846,656	----a-w	c:\windows\system32\win32k.sys2008-09-10 01:15	1,307,648	----a-w	c:\windows\system32\msxml6.dll2008-09-04 17:17	1,106,944	----a-w	c:\windows\system32\msxml3.dll.(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))..*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazaneREGEDIT4[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]"Gadu-Gadu"="c:\program files\Gadu-Gadu\StrongGG.exe" [2008-05-16 21504][HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]c:\documents and settings\alfik\Menu Start\Programy\Autostart\Skr˘t do DCPlusPlus.lnk - c:\program files\DC++\DCPlusPlus.exe [2008-06-22 5571584]Skr˘t do radiosfera-mix.lnk - c:\documents and settings\alfik\Pulpit\radiosfera-mix.m3u [2008-11-26 191][HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]"msacm.l3fhg"= mp3fhg.acm"msacm.divxa32"= divxa32.acm"VIDC.X264"= x264vfw.dll"VIDC.HFYU"= huffyuv.dll"vidc.i263"= i263_32.drv[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]--a------ 2008-06-12 02:38 34672 c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Comrade.exe]--a------ 2007-05-27 03:19 36864 c:\program files\GameSpy\Comrade\Comrade.exe[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]--a------ 2007-12-06 13:06 167368 c:\program files\DAEMON Tools\daemon.exe[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]--a------ 2006-10-27 00:47 31016 c:\program files\Microsoft Office\Office12\GrooveMonitor.exe[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]--a------ 2001-07-09 10:50 155648 c:\windows\system32\NeroCheck.exe[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]--a------ 2008-08-04 00:02 36352 c:\program files\Winamp\winampa.exe[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]"TermService"=3 (0x3)"Spooler"=2 (0x2)"RDSessMgr"=3 (0x3)"helpsvc"=2 (0x2)[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]"EnableFirewall"= 0 (0x0)[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\system32\\sessmgr.exe"="c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"="c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"="c:\\Program Files\\DC++\\DCPlusPlus.exe"="c:\\Program Files\\Bonjour\\mDNSResponder.exe"="c:\\Program Files\\BitComet\\BitComet.exe"="d:\\Gry\\Civilization\\Civilization4.exe"="d:\\Gry\\Civilization\\Warlords\\Civ4Warlords.exe"="d:\\Gry\\Civilization\\Beyond the Sword\\Civ4BeyondSword.exe"="d:\\Gry\\Civilization\\Colonization\\Colonization.exe"=[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]"25600:TCP"= 25600:TCP:BitComet 25600 TCP"25600:UDP"= 25600:UDP:BitComet 25600 UDPR0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NIS\1001000.021\SYMEFA.SYS [2008-12-03 309296]R1 BHDrvx86;Symantec Heuristics Driver;\??\c:\windows\system32\drivers\NIS\1001000.021\BHDrvx86.sys [2008-12-03 255536]R1 ccHP;Symantec Hash Provider;\??\c:\windows\system32\drivers\NIS\1001000.021\ccHPx86.sys [2008-12-03 362544]R1 IDSxpx86;IDSxpx86;\??\c:\documents and settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20080826.006\IDSxpx86.sys [2008-12-03 274808]R2 Norton Internet Security;Norton Internet Security;"c:\program files\Norton Internet Security\Engine\16.1.0.33\ccSvcHst.exe" /s "Norton Internet Security" /m "c:\program files\Norton Internet Security\Engine\16.1.0.33\diMaster.dll" /prefetch:1 []R3 EraserUtilRebootDrv;EraserUtilRebootDrv;\??\c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2008-12-03 99376]S2 .norton2009Reset;Norton2009 Reset;c:\program files\Norton2009Reset.exe [2008-09-17 549159][HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ef0d90f0-bc01-11dd-99b6-000acd008475}]\Shell\Auto\command - F:\fun.xls.exe\Shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL fun.xls.exe*Newly Created Service* - PROCEXP90.- - - - USUNIĘTO PUSTE WPISY - - - -HKCU-Run-wsctf.exe - wsctf.exe.------- Skan uzupełniający -------.FireFox -: Profile - c:\documents and settings\alfik\Dane aplikacji\Mozilla\Firefox\Profiles\nae0zhpa.default\FireFox -: prefs.js - SEARCH.DEFAULTURL - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=FireFox -: prefs.js - STARTUP.HOMEPAGE - www.google.pl/igFF -: plugin - c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dllFF -: plugin - c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll.**************************************************************************catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.netRootkit scan 2008-12-04 00:42:17Windows 5.1.2600 Dodatek Service Pack 3 NTFSskanowanie ukrytych procesów ...skanowanie ukrytych wpisów autostartu ...skanowanie ukrytych plików ...skanowanie pomyślnie ukończoneukryte pliki: 0**************************************************************************[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\Norton Internet Security]"ImagePath"="\"c:\program files\Norton Internet Security\Engine\16.1.0.33\ccSvcHst.exe\" /s \"Norton Internet Security\" /m \"c:\program files\Norton Internet Security\Engine\16.1.0.33\diMaster.dll\" /prefetch:1".Czas ukończenia: 2008-12-04  0:46:43ComboFix-quarantined-files.txt  2008-12-03 23:45:22Przed: 18,325,512,192 bajtów wolnychPo: 18,726,117,376 bajtów wolnych466	--- E O F ---	2008-12-03 17:46:11
Logfile of Trend Micro HijackThis v2.0.2Scan saved at 07:17:06, on 2008-12-04Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\Program Files\Norton Internet Security\Engine\16.1.0.33\ccSvcHst.exeC:\WINDOWS\system32\nvsvc32.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\RUNDLL32.EXEC:\WINDOWS\SOUNDMAN.EXEC:\WINDOWS\system32\ctfmon.exeC:\Program Files\Gadu-Gadu\gg.exeC:\Program Files\Norton Internet Security\Engine\16.1.0.33\ccSvcHst.exeC:\WINDOWS\system32\wbem\wmiapsrv.exeC:\WINDOWS\system32\wuauclt.exeC:\Program Files\Trend Micro\HijackThis\HijackThis.exeR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.daemon-search.com/starR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.localR0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = ŁączaO2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dllO2 - BHO: flashget2 urlcatch - {1F364306-AA45-47B5-9F9D-39A8B94E7EF1} - C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\bhoCATCH.dll (file missing)O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dllO2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\16.1.0.33\coIEPlg.dllO2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\16.1.0.33\IPSBHO.DLLO2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLLO3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\16.1.0.33\coIEPlg.dllO4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartupO4 - HKLM\..\Run: [nwiz] nwiz.exe /installO4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInitO4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXEO4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exeO4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\StrongGG.exe" /trayO4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')O8 - Extra context menu item: &Download All by FlashGet - C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\Bhoall.htmO8 - Extra context menu item: &Download by FlashGet - C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\Bholink.htmO8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000O8 - Extra context menu item: Pobierz wszystkie VIdeo za pomocą BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htmO8 - Extra context menu item: Pobierz wszystko za pomocą BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htmO8 - Extra context menu item: Pobierz za pomocą BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htmO9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dllO9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dllO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLLO9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll/206 (file missing)O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} (MksSkanerOnline Class) - http://www.mks.com.pl/skaner/SkanerOnline.cabO17 - HKLM\System\CCS\Services\Tcpip\..\{2BC9223A-AA6E-4763-86CF-1A51BC201DD0}: NameServer = 213.184.16.1,213.184.16.2O17 - HKLM\System\CS1\Services\Tcpip\..\{2BC9223A-AA6E-4763-86CF-1A51BC201DD0}: NameServer = 213.184.16.1,213.184.16.2O17 - HKLM\System\CS2\Services\Tcpip\..\{2BC9223A-AA6E-4763-86CF-1A51BC201DD0}: NameServer = 213.184.16.1,213.184.16.2O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLLO23 - Service: Norton2009 Reset (.norton2009Reset) - Unknown owner - C:\Program Files\Norton2009Reset.exeO23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exeO23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exeO23 - Service: Norton Internet Security - Symantec Corporation - C:\Program Files\Norton Internet Security\Engine\16.1.0.33\ccSvcHst.exeO23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe--End of file - 6244 bytes

Gość
komentarz
komentarz

1)

O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll/206 (file missing)

>>Hijack>>scan(Do a system scan only)>>zaznacz>>Fix checked.

Do Notatnika wklej:

Windows Registry Editor Version 5.00[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ef0d90f0-bc01-11dd-99b6-000acd008475}]

Z menu Notatnika >>> Plik >>> Zapisz jako >>> Ustaw rozszerzenie na: "Wszystkie pliki" >>> Zapisz jako FIX.REG>>>

plik uruchom (dwuklik i OK- zgódź się na dodanie do Rejestru).

Zrestartuj komputer.

Usuń ręcznie folder C:\Qoobox,

Przeczyść komputer Ccleanerem

Z folderu "System Volume Information" usuniesz kopie "wirusów" poprzez chwilowe wyłączenie "Przywracania Systemu":

>Panel Sterowania>System>Przywracanie Systemu>>zaznacz w okienku przy "Wyłącz przywracanie na wszystkich dyskach">Zastosuj>OK.

Potem możesz powrócić do poprzedniego ustawienia (czyli usunąć zaznaczenie z okienka).

Użyj tego programu ---> Dr.WEB CureIt!.

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.