Odp: Jakiego programu antywirusowego używacie?
-
Świeżak
- Siła reputacji
- 8
Odp: Jakiego programu antywirusowego używacie?
wygenerowalem takiego loga co dalej?
ComboFix 09-04-01.01 - kifozi 2009-04-03 21:26:55.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1250.1.1045.18.3070.2436 [GMT 2:00]
Uruchomiony z: c:\documents and settings\kifozi\Pulpit\ComboFix.exe
AV: avast! antivirus 4.8.1335 [VPS 090403-0] *On-access scanning enabled* (Updated)
AV: ESET Smart Security 3.0 *On-access scanning disabled* (Updated)
FW: Zapora osobista *disabled*
* Utworzono nowy punkt przywracania
.
((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\autorun.inf
c:\program files\Acer\Acer Bio Protection\PwdFilter.dll
c:\program files\Mozilla Firefox\plugins\NPMyGlSh.dll
c:\program files\myglobalsearch
c:\program files\myglobalsearch\bar\1.bin\M9FFXTBR.JAR
c:\program files\myglobalsearch\bar\1.bin\M9FFXTBR.MANIFEST
c:\program files\myglobalsearch\bar\1.bin\M9NTSTBR.JAR
c:\program files\myglobalsearch\bar\1.bin\M9NTSTBR.MANIFEST
c:\program files\myglobalsearch\bar\1.bin\M9PLUGIN.DLL
c:\program files\myglobalsearch\bar\1.bin\MGSBAR.DLL
c:\program files\myglobalsearch\bar\1.bin\NPMYGLSH.DLL
c:\program files\myglobalsearch\bar\Cache\005BFDFC
c:\program files\myglobalsearch\bar\Cache\005C43DF
c:\program files\myglobalsearch\bar\Cache\005C46DD.bin
c:\program files\myglobalsearch\bar\Cache\005C4B03.bin
c:\program files\myglobalsearch\bar\Cache\005C9589.bin
c:\program files\myglobalsearch\bar\Cache\files.ini
c:\program files\myglobalsearch\bar\History\search
c:\program files\myglobalsearch\bar\Settings\prevcfg.htm
c:\windows\system32\biologon.dll
c:\windows\system32\pthreadGC2.dll
D:\Autorun.inf
.
((((((((((((((((((((((((( Pliki utworzone od 2009-03-03 do 2009-04-03 )))))))))))))))))))))))))))))))
.
2009-04-03 21:29 . 2009-04-03 21:29 <DIR> d-------- c:\windows\system32\xircom
2009-04-03 21:29 . 2009-04-03 21:29 <DIR> d-------- c:\program files\microsoft frontpage
2009-04-02 12:08 . 2009-04-03 21:30 <DIR> d-a------ c:\documents and settings\All Users\Dane aplikacji\TEMP
2009-04-02 12:08 . 2008-10-06 16:03 155,752 --a------ c:\windows\system32\drivers\pctgntdi.sys
2009-04-02 12:08 . 2008-10-08 11:43 125,296 --a------ c:\windows\system32\drivers\PCTCore.sys
2009-04-02 12:08 . 2008-10-08 11:43 96,752 --a------ c:\windows\system32\drivers\PCTAppEvent.sys
2009-04-02 12:07 . 2009-04-03 01:07 <DIR> d-------- c:\program files\Spyware Doctor
2009-04-02 12:07 . 2009-04-02 12:08 <DIR> d-------- c:\program files\Common Files\PC Tools
2009-04-02 12:07 . 2009-04-02 12:07 <DIR> d-------- c:\documents and settings\kifozi\Dane aplikacji\PC Tools
2009-04-02 12:07 . 2009-04-02 12:07 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\PC Tools
2009-04-02 12:07 . 2008-10-13 12:27 81,288 --a------ c:\windows\system32\drivers\iksyssec.sys
2009-04-02 12:07 . 2008-10-13 12:27 66,952 --a------ c:\windows\system32\drivers\iksysflt.sys
2009-04-02 12:07 . 2008-10-13 12:27 60,552 --a------ c:\windows\system32\drivers\pctplsg.sys
2009-04-02 12:07 . 2008-06-06 12:15 51,520 --a------ c:\windows\system32\drivers\TfFsMon.sys
2009-04-02 12:07 . 2008-10-13 12:27 40,840 --a------ c:\windows\system32\drivers\ikfilesec.sys
2009-04-02 12:07 . 2008-06-06 12:15 38,208 --a------ c:\windows\system32\drivers\TfSysMon.sys
2009-04-02 12:07 . 2008-06-06 12:15 33,088 --a------ c:\windows\system32\drivers\TfNetMon.sys
2009-04-02 12:07 . 2008-10-13 12:27 29,576 --a------ c:\windows\system32\drivers\kcom.sys
2009-04-02 12:07 . 2008-06-06 12:15 12,608 --a------ c:\windows\system32\drivers\TfKbMon.sys
2009-04-01 11:17 . 2009-04-03 00:11 <DIR> d-------- c:\program files\BearShare
2009-04-01 10:42 . 2009-04-01 10:42 <DIR> d-------- c:\program files\iTunes
2009-04-01 10:42 . 2009-04-01 10:42 <DIR> d-------- c:\program files\iPod
2009-04-01 10:42 . 2009-04-01 10:42 <DIR> d-------- c:\program files\Bonjour
2009-04-01 10:42 . 2009-04-01 10:42 <DIR> d-------- c:\documents and settings\kifozi\Dane aplikacji\Apple Computer
2009-04-01 10:42 . 2009-04-01 10:42 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2009-04-01 10:42 . 2008-04-17 13:12 107,368 --a------ c:\windows\system32\GEARAspi.dll
2009-04-01 10:42 . 2008-04-17 13:12 15,464 --a------ c:\windows\system32\drivers\GEARAspiWDM.sys
2009-04-01 10:41 . 2009-04-01 18:54 <DIR> d-------- c:\program files\QuickTime
2009-04-01 10:41 . 2009-04-01 10:41 <DIR> d-------- c:\program files\Apple Software Update
2009-04-01 10:41 . 2009-04-01 10:42 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\Apple Computer
2009-04-01 10:40 . 2009-04-01 10:42 <DIR> d-------- c:\program files\Common Files\Apple
2009-04-01 10:40 . 2009-04-01 10:40 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\Apple
2009-03-28 23:24 . 2009-03-28 23:24 <DIR> d-------- c:\program files\Alwil Software
2009-03-28 23:24 . 2003-03-18 22:20 1,060,864 --a------ c:\windows\system32\MFC71.dll
2009-03-28 22:57 . 2009-03-28 23:04 <DIR> d-------- c:\windows\JMCR_DIR
2009-03-28 22:57 . 2008-03-13 17:23 80,912 --a------ c:\windows\system32\drivers\jmcr.sys
2009-03-28 22:57 . 2007-10-26 10:26 15,086 --a------ c:\windows\system32\jmcr_xd.ico
2009-03-28 22:57 . 2007-10-26 09:55 15,086 --a------ c:\windows\system32\jmcr_ms.ico
2009-03-28 22:57 . 2007-10-26 08:58 15,086 --a------ c:\windows\system32\jmcr_mmc.ico
2009-03-28 22:57 . 2009-03-28 23:04 251 --a------ c:\windows\xUninstall.bat
2009-03-28 22:26 . 2005-05-20 20:34 2,719,744 -ra------ c:\windows\system32\cnxci.dll
2009-03-28 22:26 . 2005-05-20 20:27 618,112 -ra------ c:\windows\system32\drivers\CnxEtU.sys
2009-03-28 22:26 . 2005-05-20 20:27 131,072 -ra------ c:\windows\system32\drivers\CnxEtP.sys
2009-03-28 22:26 . 2005-05-20 20:28 52,736 -ra------ c:\windows\system32\drivers\CnxTgNW.sys
2009-03-28 22:26 . 2004-07-27 18:18 36,864 --a------ c:\windows\StmClean.exe
2009-03-28 22:25 . 2009-03-28 22:25 <DIR> d-------- c:\program files\ZTE ZXDSL 852
2009-03-28 22:25 . 2006-09-25 08:26 425,984 -ra------ c:\windows\system32\stmcfg32.dll
2009-03-28 22:25 . 2006-09-25 08:28 151,552 -ra------ c:\windows\system32\stmctrl.dll
2009-03-28 22:25 . 2009-03-28 22:31 14,144 --a------ c:\windows\stsetup.htm
2009-03-28 21:21 . 2009-03-28 21:21 <DIR> d-------- c:\program files\ZTE Corporation
2009-03-28 21:15 . 2009-03-28 21:15 <DIR> d--hs---- c:\windows\ftpcache
2009-03-28 21:15 . 2009-03-28 21:21 <DIR> d-------- c:\program files\Neostrada TP
2009-03-28 13:24 . 2009-03-28 13:24 754 --a------ c:\windows\WORDPAD.INI
2009-03-28 13:10 . 2009-03-28 13:10 <DIR> d-------- C:\ATI
2009-03-28 01:32 . 2009-03-28 01:34 <DIR> d-------- c:\windows\system32\XPSViewer
2009-03-28 01:32 . 2009-03-28 01:32 <DIR> d-------- c:\program files\Reference Assemblies
2009-03-28 01:32 . 2009-03-28 01:32 <DIR> d-------- c:\program files\MSBuild
2009-03-28 01:32 . 2006-06-29 14:07 14,048 --------- c:\windows\system32\spmsg2.dll
2009-03-28 01:19 . 2009-03-28 12:02 <DIR> d-------- c:\program files\Prec
2009-03-27 23:58 . 2009-03-27 23:58 <DIR> d-------- c:\windows\system32\config\systemprofile\Dane aplikacji\Validity
2009-03-27 23:58 . 2009-03-27 23:58 <DIR> d-------- c:\documents and settings\NetworkService\Dane aplikacji\Validity
2009-03-27 20:17 . 2008-03-11 10:14 204,800 --a------ c:\windows\system32\SysHook.dll
2009-03-27 20:09 . 2008-02-25 17:28 238,080 --a------ c:\windows\system32\ITEIO_64.dll
2009-03-27 20:09 . 2008-02-25 17:29 14,544 --a------ c:\windows\system32\drivers\TVicPort.sys
2009-03-27 20:09 . 2008-02-25 17:29 6,080 --a------ c:\windows\system32\drivers\zntport.sys
2009-03-27 20:08 . 2008-03-07 16:04 487,424 --a------ c:\windows\system32\INT15.dll
2009-03-27 20:08 . 2008-03-05 19:38 17,952 --a------ c:\windows\system32\drivers\int15_64.sys
2009-03-27 20:03 . 2009-03-27 20:03 <DIR> d-------- c:\documents and settings\kifozi\Dane aplikacji\Validity
2009-03-27 19:51 . 2009-03-27 19:51 <DIR> d-------- c:\program files\Validity Sensors, Inc
2009-03-27 19:51 . 2009-03-27 19:51 <DIR> d-------- c:\documents and settings\LocalService\Dane aplikacji\Validity
2009-03-27 19:51 . 2008-02-15 10:09 40,752 --a------ c:\windows\system32\drivers\vfs101x.sys
2009-03-27 19:48 . 2009-03-27 19:48 1,548,099 --a------ c:\windows\system32\VMC3KAPI.dll
2009-03-27 19:48 . 2009-03-27 19:48 114,688 --a------ c:\windows\system32\VCryptAPI.dll
2009-03-27 19:48 . 2009-03-27 19:48 23,040 --a------ c:\windows\system32\ShlCmd.exe
2009-03-27 19:47 . 2009-03-28 23:12 <DIR> d-------- c:\program files\Acer
2009-03-27 19:47 . 2009-03-27 19:47 331,776 --a------ c:\windows\system32\DrvCrypt.dll
2009-03-27 19:47 . 2009-03-27 19:47 192,512 --a------ c:\windows\system32\BioOne.dll
2009-03-27 19:47 . 2009-03-27 19:47 189,952 --a------ c:\windows\system32\PBAGUI.dll
2009-03-27 19:47 . 2009-03-27 19:47 43,184 --a------ c:\windows\system32\drivers\AlfaFF.sys
2009-03-27 19:47 . 2009-03-27 19:47 16,384 --a------ c:\windows\system32\AlfaFF.dll
2009-03-27 13:30 . 2009-03-27 13:30 <DIR> d-------- c:\documents and settings\kifozi\Dane aplikacji\ESET
2009-03-27 13:27 . 2009-03-28 23:14 <DIR> d-------- c:\program files\ESET
2009-03-27 13:27 . 2009-03-27 13:27 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\ESET
2009-03-27 02:46 . 2009-04-01 19:47 <DIR> d-------- c:\program files\Odkurzacz
2009-03-26 23:51 . 2009-03-28 22:19 183,112 --a------ c:\windows\system32\PnkBstrB.exe
2009-03-26 23:51 . 2009-03-28 22:19 138,184 --a------ c:\windows\system32\drivers\PnkBstrK.sys
2009-03-26 23:51 . 2009-03-28 22:19 66,872 --a------ c:\windows\system32\PnkBstrA.exe
2009-03-26 23:48 . 2009-03-26 23:48 <DIR> d-------- c:\documents and settings\kifozi\Dane aplikacji\Leadertech
2009-03-26 23:47 . 2009-03-26 23:47 <DIR> d-------- c:\windows\system32\LogFiles
2009-03-26 23:39 . 2009-03-26 23:39 <DIR> d-------- c:\program files\EA Games
2009-03-25 15:28 . 2009-03-25 15:28 83 --a------ c:\windows\LManager.UNI
2009-03-25 15:20 . 2009-03-28 23:12 <DIR> d-------- c:\documents and settings\kifozi\Dane aplikacji\Acer
2009-03-25 15:20 . 2009-03-25 15:20 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\Acer
2009-03-25 15:20 . 2009-03-25 15:20 <DIR> d-------- C:\Acer
2009-03-25 15:20 . 2005-07-19 15:15 11,978 --a------ c:\windows\system32\drivers\OsaFsLoc.sys
2009-03-25 15:20 . 2005-06-30 17:58 7,296 --a------ c:\windows\system32\drivers\osaio.sys
2009-03-25 15:20 . 2004-06-07 19:32 5,035 --a------ c:\windows\system32\drivers\NdisFilt.sys
2009-03-25 15:20 . 2005-01-14 16:57 4,010 --a------ c:\windows\system32\drivers\osanbm.sys
2009-03-24 23:28 . 2009-03-25 19:20 <DIR> d-------- c:\program files\Launch Manager
2009-03-24 23:28 . 2007-12-03 16:11 207,368 --a------ c:\windows\UNINST32.EXE
2009-03-24 23:28 . 2007-03-12 17:16 56,080 --a------ c:\windows\system32\QtBtLib.dll
2009-03-24 23:28 . 2004-12-08 15:10 16,896 --a------ c:\windows\system32\drivers\DKbFltr.SYS
2009-03-24 23:28 . 2004-12-09 11:04 5,120 --a------ c:\windows\system32\FILTRCOI.DLL
2009-03-24 23:28 . 2009-03-24 23:28 83 --a------ c:\windows\QtZgAcer.UNI
2009-03-24 19:48 . 2009-03-24 19:48 <DIR> d-------- c:\program files\Damian Pasternak
2009-03-24 13:58 . 2009-03-24 13:58 <DIR> d-------- c:\program files\uTorrent
2009-03-24 13:58 . 2009-04-01 18:54 <DIR> d-------- c:\documents and settings\kifozi\Dane aplikacji\uTorrent
2009-03-24 13:22 . 2009-03-24 13:22 <DIR> d-------- c:\program files\Real
2009-03-24 13:22 . 2009-03-24 13:22 <DIR> d-------- c:\program files\Common Files\xing shared
2009-03-24 13:22 . 2009-03-24 13:22 <DIR> d-------- c:\program files\Common Files\Real
2009-03-24 13:21 . 2009-03-24 13:22 <DIR> d-------- c:\program files\Google
2009-03-24 13:18 . 2009-03-24 13:18 <DIR> d-------- c:\program files\NAPI-PROJEKT
2009-03-24 13:18 . 2009-03-31 00:51 <DIR> d-------- c:\program files\ALLPlayer
2009-03-24 13:17 . 2009-03-24 13:17 <DIR> d-------- c:\program files\ffdshow
2009-03-24 13:17 . 2009-03-24 13:22 499,712 --a------ c:\windows\system32\msvcp71.dll
2009-03-24 13:17 . 2009-03-24 13:22 348,160 --a------ c:\windows\system32\msvcr71.dll
2009-03-24 13:17 . 2008-01-27 15:19 7,680 --a------ c:\windows\system32\ff_vfw.dll
2009-03-24 13:17 . 2008-01-01 01:00 547 --a------ c:\windows\system32\ff_vfw.dll.manifest
2009-03-24 04:02 . 2008-08-14 15:26 2,190,464 --------- c:\windows\system32\dllcache\ntoskrnl.exe
2009-03-24 04:02 . 2008-08-14 15:26 2,146,816 --------- c:\windows\system32\dllcache\ntkrnlmp.exe
2009-03-24 04:02 . 2008-08-14 15:26 2,067,328 --------- c:\windows\system32\dllcache\ntkrnlpa.exe
2009-03-24 04:02 . 2008-08-14 15:26 2,025,472 --------- c:\windows\system32\dllcache\ntkrpamp.exe
2009-03-24 04:02 . 2008-05-27 19:26 765,952 --------- c:\windows\system32\dllcache\vgx.dll
2009-03-24 04:02 . 2008-10-24 13:21 455,296 --------- c:\windows\system32\dllcache\mrxsmb.sys
2009-03-24 04:02 . 2008-12-11 12:57 333,952 --------- c:\windows\system32\dllcache\srv.sys
.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M )))))))))))))))))))))))))))))))))))))))))))))))))) ))
.
2009-03-28 21:12 --------- d--h--w c:\program files\InstallShield Installation Information
2009-03-25 13:19 --------- d-----w c:\program files\Common Files\InstallShield
2009-03-23 18:14 717,296 ----a-w c:\windows\system32\drivers\sptd.sys
2009-03-23 18:14 --------- d-----w c:\documents and settings\kifozi\Dane aplikacji\DAEMON Tools Lite
2009-03-23 18:11 --------- d-----w c:\program files\Realtek
2009-03-23 18:10 315,392 ----a-w c:\windows\HideWin.exe
2009-03-23 18:02 --------- d-----w c:\program files\Usługi online
2009-03-23 17:59 --------- d-----w c:\program files\Windows Media Connect 2
2009-02-06 13:24 33,096 ----a-w c:\windows\system32\drivers\epfwndis.sys
2009-02-06 13:23 106,208 ----a-w c:\windows\system32\drivers\ehdrv.sys
.
((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"Nowe Gadu-Gadu"="c:\program files\Nowe Gadu-Gadu\gg.exe" [2009-02-27 9339496]
"ALLUpdate"="c:\program files\ALLPlayer\ALLUpdate.exe" [2008-11-24 869888]
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2008-04-14 1695232]
"Odkurzacz-MCD"="c:\program files\Odkurzacz\odk_mcd.exe" [2008-08-16 264704]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"AzMixerSel"="c:\program files\Realtek\Audio\InstallShield\AzMixerSel.exe" [2006-07-17 53248]
"IntelZeroConfig"="c:\program files\Intel\WiFi\bin\ZCfgSvc.exe" [2008-10-02 1368064]
"IntelWireless"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2008-10-02 1191936]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-01-30 13594624]
"NvMediaCenter"="c:\windows\system32\NvMcTray. dll" [2009-01-30 86016]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-04-25 1044480]
"WinampAgent"="c:\program files\Winamp\winampa.exe" [2004-12-20 33792]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-03-24 198160]
"ADMTray.exe"="c:\acer\Empowering Technology\admtray.exe" [2005-07-29 3487232]
"ZPdtWzdVitaKey MC3000"="c:\program files\Acer\Acer Bio Protection\PdtWzd.exe" [2009-03-27 3642368]
"ePower_DMC"="c:\program files\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2008-03-11 397312]
"CnxDslTaskBar"="c:\program files\ZTE Corporation\ZXDSL852\CnxDslTb.exe" [2005-07-21 278528]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp. exe" [2009-02-05 81000]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2008-11-04 413696]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2008-11-20 290088]
"ISTray"="c:\program files\Spyware Doctor\pctsTray.exe" [2008-10-13 1172360]
"RTHDCPL"="RTHDCPL.EXE" [2008-05-07 c:\windows\RTHDCPL.exe]
"SoundMan"="SOUNDMAN.EXE" [2006-07-21 c:\windows\SoundMan.exe]
"AlcWzrd"="ALCWZRD.EXE" [2006-05-04 c:\windows\alcwzrd.exe]
"nwiz"="nwiz.exe" [2009-01-30 c:\windows\system32\nwiz.exe]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\Cur rentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\Cur rentVersion\RunOnce]
"nltide_2"="shell32" [X]
"nltide_3"="advpack.dll" [2008-12-21 c:\windows\system32\advpack.dll]
c:\documents and settings\All Users\Menu Start\Programy\Autostart\
Acer VCM.lnk - c:\program files\Acer\Acer VCM\AcerVCM.exe [2009-03-28 1216512]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\AWinNotifyVitaKe y MC3000]
2009-03-27 19:48 3024384 c:\program files\Acer\Acer Bio Protection\WinNotify.dll
[HKLM\~\services\sharedaccess\parameters\firewallpo licy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Nowe Gadu-Gadu\\gg.exe"=
"c:\\Program Files\\Counter Strike 1.6 V36.1\\hl.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
R0 AlfaFF;AlfaFF File System mini-filter;c:\windows\system32\drivers\AlfaFF.sys [2009-03-27 43184]
R0 PCTCore
CTools KDS;c:\windows\system32\drivers\PCTCore.sys [2009-04-02 125296]
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2009-03-28 114768]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2009-02-06 106208]
R1 OsaFsLoc;OsaFsLoc;c:\windows\system32\drivers\OsaF sLoc.sys [2009-03-25 11978]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswF sBlk.sys [2009-03-28 20560]
R2 ETService;Empowering Technology Service;c:\program files\Acer\Empowering Technology\Service\ETService.exe [2009-03-27 24576]
R2 osaio;osaio;c:\windows\system32\drivers\osaio.sys [2009-03-25 7296]
R2 osanbm;osanbm;c:\windows\system32\drivers\osanbm.s ys [2009-03-25 4010]
R2 RS_Service;Raw Socket Service;c:\program files\Acer\Acer VCM\RS_Service.exe [2009-03-28 233472]
R2 sdAuxServiceC Tools Auxiliary Service;c:\program files\Spyware Doctor\pctsAuxs.exe [2009-04-02 346704]
R2 vfsFPService;Validity Fingerprint Service;c:\windows\system32\vfsFPService.exe [2008-02-15 595248]
R3 CnxEtP;ZTE ZXDSL852 Adapter Filter Driver;c:\windows\system32\drivers\CnxEtP.sys [2009-03-28 131072]
R3 CnxEtU;ZTE ZXDSL852 Interface Device Driver;c:\windows\system32\drivers\CnxEtU.sys [2009-03-28 618112]
R3 CnxTgNW;ZTE ZXDSL852 WAN PPPoA Adapter Driver;c:\windows\system32\drivers\CnxTgNW.sys [2009-03-28 52736]
R3 L1e;Miniport Driver for Atheros AR8121/AR8113 PCI-E Ethernet Controller;c:\windows\system32\drivers\l1e51x86.sy s [2009-03-23 36864]
R3 NdisFilt;OSA NdisFilter Protocol;c:\windows\system32\drivers\NdisFilt.sys [2009-03-25 5035]
R3 vfs101x;vfs101x;c:\windows\system32\drivers\vfs101 x.sys [2009-03-27 40752]
S2 ekrn;ESET Service;"c:\program files\ESET\ESET Smart Security\ekrn.exe" --> c:\program files\ESET\ESET Smart Security\ekrn.exe [?]
S2 gupdate1c9ac72bf7a17ce;Usługa Google Update (gupdate1c9ac72bf7a17ce);c:\program files\Google\Update\GoogleUpdate.exe [2009-03-24 133104]
S3 JMCR;JMCR;c:\windows\system32\drivers\jmcr.sys [2009-03-28 80912]
--- Inne Usługi/Sterowniki w Pamięci ---
*Deregistered* - mchInjDrv
[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{396f79c0-193d-11de-9faf-001f3b7136fd}]
\Shell\AutoRun\command - F:\d1vmq.exe
\Shell\open\Command - F:\d1vmq.exe
[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{c302ba94-1bda-11de-9fbc-00d0d084da2f}]
\Shell\AutoRun\command - G:\d1vmq.exe
\Shell\open\Command - G:\d1vmq.exe
.
Zawartość folderu 'Zaplanowane zadania'
2009-04-01 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 12:34]
2009-04-03 c:\windows\Tasks\GoogleUpdateTaskMachine.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-03-24 13:21]
.
- - - - USUNIĘTO PUSTE WPISY - - - -
HKCU-Run-Prec - (no file)
HKLM-Run-BearShare - c:\program files\BearShare\BearShare.exe
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://search.bearshare.com/pl/
FF - ProfilePath - c:\documents and settings\kifozi\Dane aplikacji\Mozilla\Firefox\Profiles\08mka9uv.default\
FF - component: c:\program files\Real\RealPlayer\browserrecord\components\npr pbrowserrecordplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.141.5\npGoogleOneClick7.dl l
.
************************************************** ************************
catchme 0.3.1375 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-04-03 21:30:40
Windows 5.1.2600 Dodatek Service Pack 3 NTFS
skanowanie ukrytych procesów ...
skanowanie ukrytych wpisów autostartu ...
skanowanie ukrytych plików ...
skanowanie pomyślnie ukończone
ukryte pliki: 0
************************************************** ************************
.
--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------
- - - - - - - > 'winlogon.exe'(996)
c:\program files\Acer\Acer Bio Protection\WinNotify.dll
c:\program files\Acer\Acer Bio Protection\CustomRes.dll
c:\windows\system32\BioOne.dll
c:\windows\system32\vfsEMPIRE_Sensor.dll
c:\windows\system32\netprovcredman.dll
.
------------------------ Pozostałe uruchomione procesy ------------------------
.
c:\program files\Intel\WiFi\bin\S24EvMon.exe
c:\program files\Alwil Software\Avast4\aswUpdSv.exe
c:\program files\Alwil Software\Avast4\ashServ.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\acer\Empowering Technology\admServ.exe
c:\windows\system32\rundll32.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Intel\WiFi\bin\EvtEng.exe
c:\windows\system32\nvsvc32.exe
c:\windows\system32\PnkBstrA.exe
c:\program files\Common Files\Intel\WirelessCommon\RegSrvc.exe
c:\docume~1\kifozi\USTAWI~1\temp\RtkBtMnt.exe
c:\program files\Spyware Doctor\pctsSvc.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\Alwil Software\Avast4\ashMaiSv.exe
c:\program files\Alwil Software\Avast4\ashWebSv.exe
c:\program files\iPod\bin\iPodService.exe
c:\windows\system32\wbem\unsecapp.exe
.
************************************************** ************************
.
Czas ukończenia: 2009-04-03 21:32:15 - komputer został uruchomiony ponownie [kifozi]
ComboFix-quarantined-files.txt 2009-04-03 19:32:12
Przed: 136 730 406 912 bajtów wolnych
Po: 136,667,160,576 bajtów wolnych
WindowsXP-KB310994-SP2-Pro-BootDisk-PLK.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOW S
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Micro soft Windows XP Professional" /noexecute=optin /fastdetect
323 --- E O F --- 2009-03-25 02:03:36
-
-
site:precyl.pl VintageFlash, vabank ii czyli riposta rapidshare, loaded the taking, crack skidrow wiedzmin, teledyski mp4 na telefon os, techniki sprzedażowe gwiazd hollywood, amateur allure kaycee "http://rapidshare.com", program ktory omija limity, sagemcom dysk do kompa, rodowicz chomikuj, Tagi dla tego wątku 
Uprawnienia umieszczania postów
- Nie możesz zakładać nowych tematów
- Nie możesz pisać wiadomości
- Nie możesz dodawać załączników
- Nie możesz edytować swoich postów
-
Zasady na forum
LinkBack URL
About LinkBacks
Znajdziesz nas na: