Regulamin forum
1. Każdy temat powinien odzwierciedlać treść wątku.2. W przypadku wklejania logów; należy je wykonać od razu przynajmniej z dwóch narzędzi: FRST oraz z GMER
3. Wszelkie logi proszę publikować na przeznaczonych do tego stronach a w poście wklejać tylko link.
4. Nie wskazane jest skracanie logów, należy wkleić cały - od początku, do końca.
5. Nie wskazane jest podczepianie się do tematów innych użytkowników - proszę założyć nowy temat w dziale Bezpieczeństwo, ułatwi to pomoc sprawdzającemu.
6. Osoby nie posiadające odpowiedniej wiedzy, nie powinny sprawdzać logów, ponieważ grozi to poważnym uszkodzeniem systemu lub aplikacji zainstalowanych na komputerze.
7. Należy dokładnie opisać problem, występujące objawy oraz wszelkie podjęte działania.
8. Każdy skrypt jest unikatowy, napisany dla każdego przypadku z osobna, więc nie może być stosowany przez innych.
9. W przypadku zamieszczenia zrzutu ekranu (screenshot'a) proszę korzystać z zewnętrznego serwisu oferującego hosting zdjęć.
19 Kwi 2008, 13:27
- Kod:
ComboFix 08-04-18.3 - Maaciek 2008-04-19 13:24:12.4 - [color=red][b]FAT32[/b][/color]x86
Microsoft Windows XP Professional 5.1.2600.2.1250.1.1045.18.1661 [GMT 2:00]
Running from: C:\Documents and Settings\Maaciek\Pulpit\Combo-Fix.exe
Command switches used :: C:\Documents and Settings\Maaciek\Pulpit\CFScript.txt
* Created a new restore point
[color=red][b]WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !![/b][/color]
FILE ::
C:\WINDOWS\SBA8959D4.tmp
C:\WINDOWS\system32\MFC71.dll
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\FOUND.000
C:\FOUND.000\FILE0000.CHK
C:\FOUND.000\FILE0001.CHK
C:\FOUND.000\FILE0002.CHK
C:\FOUND.000\FILE0003.CHK
C:\FOUND.000\FILE0004.CHK
C:\FOUND.000\FILE0005.CHK
C:\FOUND.000\FILE0006.CHK
C:\FOUND.001
C:\FOUND.001\FILE0000.CHK
C:\FOUND.001\FILE0001.CHK
C:\FOUND.001\FILE0002.CHK
C:\FOUND.001\FILE0003.CHK
C:\FOUND.001\FILE0004.CHK
C:\FOUND.001\FILE0005.CHK
C:\FOUND.001\FILE0006.CHK
C:\FOUND.001\FILE0007.CHK
C:\FOUND.001\FILE0008.CHK
C:\FOUND.001\FILE0009.CHK
C:\FOUND.001\FILE0010.CHK
C:\FOUND.001\FILE0011.CHK
C:\FOUND.001\FILE0012.CHK
C:\FOUND.001\FILE0013.CHK
C:\FOUND.001\FILE0014.CHK
C:\FOUND.001\FILE0015.CHK
C:\FOUND.001\FILE0016.CHK
C:\FOUND.001\FILE0017.CHK
C:\FOUND.001\FILE0018.CHK
C:\FOUND.001\FILE0019.CHK
C:\FOUND.001\FILE0020.CHK
C:\FOUND.001\FILE0021.CHK
C:\FOUND.001\FILE0022.CHK
C:\FOUND.001\FILE0023.CHK
C:\FOUND.001\FILE0024.CHK
C:\FOUND.001\FILE0025.CHK
C:\FOUND.001\FILE0026.CHK
C:\FOUND.001\FILE0027.CHK
C:\FOUND.001\FILE0028.CHK
C:\FOUND.001\FILE0029.CHK
C:\FOUND.001\FILE0030.CHK
C:\FOUND.001\FILE0031.CHK
C:\FOUND.001\FILE0032.CHK
C:\FOUND.001\FILE0033.CHK
C:\FOUND.001\FILE0034.CHK
C:\FOUND.001\FILE0035.CHK
C:\FOUND.001\FILE0036.CHK
C:\FOUND.001\FILE0037.CHK
C:\FOUND.001\FILE0038.CHK
C:\FOUND.002
C:\FOUND.002\FILE0000.CHK
C:\FOUND.003
C:\FOUND.003\FILE0000.CHK
C:\FOUND.003\FILE0001.CHK
C:\FOUND.003\FILE0002.CHK
C:\FOUND.003\FILE0003.CHK
C:\FOUND.003\FILE0004.CHK
C:\FOUND.003\FILE0005.CHK
C:\FOUND.003\FILE0006.CHK
C:\FOUND.003\FILE0007.CHK
C:\FOUND.003\FILE0008.CHK
C:\FOUND.003\FILE0009.CHK
C:\FOUND.003\FILE0010.CHK
C:\FOUND.003\FILE0011.CHK
C:\FOUND.003\FILE0012.CHK
C:\FOUND.003\FILE0013.CHK
C:\FOUND.003\FILE0014.CHK
C:\FOUND.003\FILE0015.CHK
C:\FOUND.003\FILE0016.CHK
C:\FOUND.003\FILE0017.CHK
C:\FOUND.003\FILE0018.CHK
C:\FOUND.003\FILE0019.CHK
C:\FOUND.003\FILE0020.CHK
C:\FOUND.003\FILE0021.CHK
C:\FOUND.003\FILE0022.CHK
C:\FOUND.003\FILE0023.CHK
C:\FOUND.003\FILE0024.CHK
C:\FOUND.003\FILE0025.CHK
C:\FOUND.003\FILE0026.CHK
C:\FOUND.003\FILE0027.CHK
C:\FOUND.003\FILE0028.CHK
C:\FOUND.003\FILE0029.CHK
C:\FOUND.003\FILE0030.CHK
C:\FOUND.003\FILE0031.CHK
C:\FOUND.003\FILE0032.CHK
C:\FOUND.003\FILE0033.CHK
C:\FOUND.003\FILE0034.CHK
C:\FOUND.003\FILE0035.CHK
C:\FOUND.003\FILE0036.CHK
C:\FOUND.003\FILE0037.CHK
C:\FOUND.003\FILE0038.CHK
C:\FOUND.003\FILE0039.CHK
C:\FOUND.003\FILE0040.CHK
C:\FOUND.003\FILE0041.CHK
C:\FOUND.003\FILE0042.CHK
C:\FOUND.003\FILE0043.CHK
C:\FOUND.003\FILE0044.CHK
C:\FOUND.003\FILE0045.CHK
C:\FOUND.003\FILE0046.CHK
C:\FOUND.003\FILE0047.CHK
C:\FOUND.003\FILE0048.CHK
C:\FOUND.003\FILE0049.CHK
C:\FOUND.003\FILE0050.CHK
C:\FOUND.003\FILE0051.CHK
C:\FOUND.003\FILE0052.CHK
C:\FOUND.003\FILE0053.CHK
C:\FOUND.003\FILE0054.CHK
C:\FOUND.003\FILE0055.CHK
C:\FOUND.003\FILE0056.CHK
C:\FOUND.003\FILE0057.CHK
C:\FOUND.003\FILE0058.CHK
C:\FOUND.003\FILE0059.CHK
C:\FOUND.003\FILE0060.CHK
C:\FOUND.003\FILE0061.CHK
C:\FOUND.003\FILE0062.CHK
C:\FOUND.003\FILE0063.CHK
C:\FOUND.003\FILE0064.CHK
C:\FOUND.003\FILE0065.CHK
C:\FOUND.003\FILE0066.CHK
C:\FOUND.003\FILE0067.CHK
C:\FOUND.003\FILE0068.CHK
C:\FOUND.003\FILE0069.CHK
C:\FOUND.003\FILE0070.CHK
C:\FOUND.003\FILE0071.CHK
C:\FOUND.003\FILE0072.CHK
C:\FOUND.003\FILE0073.CHK
C:\FOUND.003\FILE0074.CHK
C:\FOUND.003\FILE0075.CHK
C:\FOUND.003\FILE0076.CHK
C:\FOUND.003\FILE0077.CHK
C:\FOUND.003\FILE0078.CHK
C:\FOUND.003\FILE0079.CHK
C:\FOUND.003\FILE0080.CHK
C:\FOUND.003\FILE0081.CHK
C:\FOUND.003\FILE0082.CHK
C:\FOUND.003\FILE0083.CHK
C:\FOUND.003\FILE0084.CHK
C:\FOUND.003\FILE0085.CHK
C:\FOUND.003\FILE0086.CHK
C:\FOUND.003\FILE0087.CHK
C:\FOUND.003\FILE0088.CHK
C:\FOUND.003\FILE0089.CHK
C:\FOUND.003\FILE0090.CHK
C:\FOUND.003\FILE0091.CHK
C:\FOUND.003\FILE0092.CHK
C:\FOUND.003\FILE0093.CHK
C:\FOUND.003\FILE0094.CHK
C:\FOUND.003\FILE0095.CHK
C:\FOUND.003\FILE0096.CHK
C:\FOUND.003\FILE0097.CHK
C:\FOUND.003\FILE0098.CHK
C:\FOUND.003\FILE0099.CHK
C:\FOUND.003\FILE0100.CHK
C:\FOUND.003\FILE0101.CHK
C:\FOUND.003\FILE0102.CHK
C:\FOUND.003\FILE0103.CHK
C:\FOUND.003\FILE0104.CHK
C:\FOUND.003\FILE0105.CHK
C:\FOUND.003\FILE0106.CHK
C:\FOUND.003\FILE0107.CHK
C:\FOUND.003\FILE0108.CHK
C:\FOUND.003\FILE0109.CHK
C:\FOUND.003\FILE0110.CHK
C:\FOUND.003\FILE0111.CHK
C:\FOUND.003\FILE0112.CHK
C:\FOUND.003\FILE0113.CHK
C:\FOUND.003\FILE0114.CHK
C:\FOUND.003\FILE0115.CHK
C:\FOUND.003\FILE0116.CHK
C:\FOUND.003\FILE0117.CHK
C:\FOUND.003\FILE0118.CHK
C:\FOUND.003\FILE0119.CHK
C:\FOUND.003\FILE0120.CHK
C:\FOUND.003\FILE0121.CHK
C:\FOUND.003\FILE0122.CHK
C:\FOUND.003\FILE0123.CHK
C:\FOUND.003\FILE0124.CHK
C:\FOUND.003\FILE0125.CHK
C:\FOUND.003\FILE0126.CHK
C:\FOUND.003\FILE0127.CHK
C:\FOUND.003\FILE0128.CHK
C:\FOUND.003\FILE0129.CHK
C:\FOUND.003\FILE0130.CHK
C:\FOUND.003\FILE0131.CHK
C:\FOUND.003\FILE0132.CHK
C:\FOUND.003\FILE0133.CHK
C:\FOUND.004
C:\FOUND.004\FILE0000.CHK
C:\FOUND.005
C:\FOUND.005\FILE0000.CHK
C:\FOUND.005\FILE0001.CHK
C:\FOUND.005\FILE0002.CHK
C:\FOUND.005\FILE0003.CHK
C:\FOUND.005\FILE0004.CHK
C:\FOUND.005\FILE0005.CHK
C:\FOUND.005\FILE0006.CHK
C:\FOUND.005\FILE0007.CHK
C:\FOUND.005\FILE0008.CHK
C:\FOUND.005\FILE0009.CHK
C:\FOUND.005\FILE0010.CHK
C:\FOUND.005\FILE0011.CHK
C:\FOUND.005\FILE0012.CHK
C:\FOUND.005\FILE0013.CHK
C:\FOUND.005\FILE0014.CHK
C:\FOUND.005\FILE0015.CHK
C:\FOUND.005\FILE0016.CHK
C:\FOUND.005\FILE0017.CHK
C:\FOUND.005\FILE0018.CHK
C:\FOUND.005\FILE0019.CHK
C:\FOUND.005\FILE0020.CHK
C:\FOUND.005\FILE0021.CHK
C:\FOUND.005\FILE0022.CHK
C:\FOUND.005\FILE0023.CHK
C:\FOUND.005\FILE0024.CHK
C:\FOUND.005\FILE0025.CHK
C:\FOUND.005\FILE0026.CHK
C:\FOUND.005\FILE0027.CHK
C:\FOUND.005\FILE0028.CHK
C:\FOUND.005\FILE0029.CHK
C:\FOUND.005\FILE0030.CHK
C:\FOUND.005\FILE0031.CHK
C:\FOUND.005\FILE0032.CHK
C:\FOUND.005\FILE0033.CHK
C:\FOUND.005\FILE0034.CHK
C:\FOUND.005\FILE0035.CHK
C:\FOUND.005\FILE0036.CHK
C:\FOUND.005\FILE0037.CHK
C:\FOUND.005\FILE0038.CHK
C:\FOUND.005\FILE0039.CHK
C:\FOUND.005\FILE0040.CHK
C:\FOUND.005\FILE0041.CHK
C:\FOUND.005\FILE0042.CHK
C:\FOUND.005\FILE0043.CHK
C:\FOUND.005\FILE0044.CHK
C:\FOUND.005\FILE0045.CHK
C:\FOUND.005\FILE0046.CHK
C:\FOUND.005\FILE0047.CHK
C:\FOUND.005\FILE0048.CHK
C:\FOUND.005\FILE0049.CHK
C:\FOUND.005\FILE0050.CHK
C:\FOUND.005\FILE0051.CHK
C:\FOUND.005\FILE0052.CHK
C:\FOUND.005\FILE0053.CHK
C:\FOUND.005\FILE0054.CHK
C:\FOUND.005\FILE0055.CHK
C:\FOUND.005\FILE0056.CHK
C:\FOUND.005\FILE0057.CHK
C:\FOUND.005\FILE0058.CHK
C:\FOUND.005\FILE0059.CHK
C:\FOUND.005\FILE0060.CHK
C:\FOUND.005\FILE0061.CHK
C:\FOUND.005\FILE0062.CHK
C:\FOUND.005\FILE0063.CHK
C:\FOUND.005\FILE0064.CHK
C:\FOUND.005\FILE0065.CHK
C:\FOUND.005\FILE0066.CHK
C:\FOUND.005\FILE0067.CHK
C:\FOUND.005\FILE0068.CHK
C:\FOUND.005\FILE0069.CHK
C:\FOUND.005\FILE0070.CHK
C:\FOUND.005\FILE0071.CHK
C:\FOUND.005\FILE0072.CHK
C:\FOUND.005\FILE0073.CHK
C:\FOUND.005\FILE0074.CHK
C:\FOUND.005\FILE0075.CHK
C:\FOUND.005\FILE0076.CHK
C:\FOUND.005\FILE0077.CHK
C:\FOUND.005\FILE0078.CHK
C:\FOUND.005\FILE0079.CHK
C:\FOUND.005\FILE0080.CHK
C:\FOUND.005\FILE0081.CHK
C:\FOUND.005\FILE0082.CHK
C:\FOUND.005\FILE0083.CHK
C:\FOUND.005\FILE0084.CHK
C:\FOUND.005\FILE0085.CHK
C:\FOUND.005\FILE0086.CHK
C:\FOUND.005\FILE0087.CHK
C:\FOUND.005\FILE0088.CHK
C:\FOUND.005\FILE0089.CHK
C:\FOUND.005\FILE0090.CHK
C:\FOUND.005\FILE0091.CHK
C:\FOUND.005\FILE0092.CHK
C:\FOUND.005\FILE0093.CHK
C:\FOUND.005\FILE0094.CHK
C:\FOUND.005\FILE0095.CHK
C:\FOUND.005\FILE0096.CHK
C:\FOUND.005\FILE0097.CHK
C:\FOUND.005\FILE0098.CHK
C:\FOUND.005\FILE0099.CHK
C:\FOUND.005\FILE0100.CHK
C:\FOUND.005\FILE0101.CHK
C:\FOUND.005\FILE0102.CHK
C:\FOUND.005\FILE0103.CHK
C:\FOUND.005\FILE0104.CHK
C:\FOUND.005\FILE0105.CHK
C:\FOUND.005\FILE0106.CHK
C:\FOUND.005\FILE0107.CHK
C:\FOUND.005\FILE0108.CHK
C:\FOUND.005\FILE0109.CHK
C:\FOUND.005\FILE0110.CHK
C:\FOUND.005\FILE0111.CHK
C:\FOUND.005\FILE0112.CHK
C:\FOUND.005\FILE0113.CHK
C:\FOUND.005\FILE0114.CHK
C:\FOUND.005\FILE0115.CHK
C:\FOUND.005\FILE0116.CHK
C:\FOUND.005\FILE0117.CHK
C:\FOUND.005\FILE0118.CHK
C:\FOUND.005\FILE0119.CHK
C:\FOUND.005\FILE0120.CHK
C:\FOUND.005\FILE0121.CHK
C:\FOUND.005\FILE0122.CHK
C:\FOUND.005\FILE0123.CHK
C:\FOUND.005\FILE0124.CHK
C:\FOUND.005\FILE0125.CHK
C:\FOUND.005\FILE0126.CHK
C:\FOUND.005\FILE0127.CHK
C:\FOUND.005\FILE0128.CHK
C:\FOUND.005\FILE0129.CHK
C:\FOUND.005\FILE0130.CHK
C:\FOUND.005\FILE0131.CHK
C:\FOUND.005\FILE0132.CHK
C:\FOUND.005\FILE0133.CHK
C:\FOUND.005\FILE0134.CHK
C:\FOUND.005\FILE0135.CHK
C:\FOUND.005\FILE0136.CHK
C:\FOUND.005\FILE0137.CHK
C:\FOUND.005\FILE0138.CHK
C:\FOUND.005\FILE0139.CHK
C:\FOUND.005\FILE0140.CHK
C:\FOUND.005\FILE0141.CHK
C:\FOUND.005\FILE0142.CHK
C:\FOUND.005\FILE0143.CHK
C:\Temp\{9F5FBC24-EFE2-4f90-B498-EC0FB7D47D15}
C:\WINDOWS\SBA8959D4.tmp
C:\WINDOWS\system32\MFC71.dll
.
((((((((((((((((((((((((( Files Created from 2008-03-19 to 2008-04-19 )))))))))))))))))))))))))))))))
.
2008-04-19 12:06 . 2008-04-19 12:06 <DIR> d-------- C:\ComboFix
2008-04-19 10:23 . 2008-04-19 10:23 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Lavasoft
2008-04-19 10:22 . 2008-04-19 10:22 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-04-19 09:25 . 2008-04-19 12:08 1,024 --ah----- C:\WINDOWS\system32\config\systemprofile\NtUser.dat.LOG
2008-04-17 07:09 . 2008-04-17 07:09 <DIR> d---s---- C:\Documents and Settings\Maaciek\UserData
2008-04-16 14:50 . 2008-04-16 14:50 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files
2008-04-16 07:57 . 2008-04-16 07:57 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe
2008-04-15 18:15 . 2008-04-15 18:15 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab
2008-04-15 17:22 . 2008-04-15 17:22 <DIR> d--h----- C:\WINDOWS\PIF
2008-04-15 14:05 . 2008-04-15 14:05 <DIR> d-------- C:\Program Files\Trend Micro
2008-04-13 10:04 . 2008-04-13 10:04 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\Ubisoft
2008-04-13 10:04 . 2008-04-13 10:04 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft
2008-04-12 21:05 . 2008-04-12 21:05 <DIR> d-------- C:\Program Files\Common Files\EZB Systems
2008-04-11 18:02 . 2008-04-11 18:02 <DIR> d-------- C:\Program Files\Common Files\Symantec Shared
2008-04-11 16:33 . 2008-04-11 16:33 49 --a------ C:\WINDOWS\NeroDigital.ini
2008-04-11 16:19 . 2008-04-11 16:19 41 ---hs---- C:\Documents and Settings\All Users\Dane aplikacji\.zreglib
2008-04-11 14:13 . 2008-04-19 12:17 107,832 --a------ C:\WINDOWS\system32\PnkBstrB.exe
2008-04-11 14:13 . 2008-04-11 16:44 66,872 --a------ C:\WINDOWS\system32\PnkBstrA.exe
2008-04-11 14:13 . 2008-04-19 12:17 22,328 --a------ C:\WINDOWS\system32\drivers\PnkBstrK.sys
2008-04-10 15:38 . 2008-03-19 18:26 499,712 --a------ C:\WINDOWS\system32\msvcp71.dll
2008-04-10 15:38 . 2008-03-19 18:29 348,160 --a------ C:\WINDOWS\system32\msvcr71.dll
2008-04-10 15:37 . 2008-04-10 15:37 <DIR> d-------- C:\WINDOWS\system32\Adobe
2008-04-05 09:23 . 2008-04-11 16:44 674,600 --a------ C:\WINDOWS\system32\pbsvc.exe
2008-04-03 17:49 . 2008-04-03 17:49 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\DAEMON Tools
2008-04-03 17:49 . 2008-04-03 17:49 717,296 --a------ C:\WINDOWS\system32\drivers\sptd.sys
2008-04-02 21:55 . 2008-04-02 21:55 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\Ulead Systems
2008-04-02 21:54 . 2008-04-02 21:54 <DIR> d-------- C:\WINDOWS\system32\windows media
2008-04-02 21:54 . 2008-04-02 21:54 <DIR> d--h----- C:\WINDOWS\msdownld.tmp
2008-04-02 21:53 . 2008-04-02 21:53 <DIR> d-------- C:\Program Files\Windows Media Components
2008-04-01 20:09 . 2008-04-01 20:09 <DIR> d-------- C:\Program Files\Ulead Systems
2008-04-01 20:09 . 2008-04-01 20:09 <DIR> d-------- C:\Program Files\Common Files\Ulead Systems
2008-04-01 20:09 . 2008-04-01 20:09 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Ulead Systems
2008-04-01 20:09 . 2001-12-19 15:47 49,152 --------- C:\WINDOWS\system32\TempDel.EXE
2008-04-01 20:09 . 2005-01-06 16:55 9,446 --a------ C:\WINDOWS\system32\drivers\WFIOCTL.sys
2008-04-01 20:09 . 2002-06-03 23:01 8,734 --a------ C:\WINDOWS\system32\WFSch.ICO
2008-04-01 20:05 . 2008-04-01 20:05 <DIR> d-------- C:\WINDOWS\system32\DX9
2008-04-01 20:04 . 2008-04-01 20:04 <DIR> d-------- C:\WINDOWS\system32\WinFox
2008-04-01 20:04 . 2008-04-01 20:04 <DIR> d-------- C:\WINDOWS\system32\WinFast
2008-04-01 20:04 . 2003-09-05 09:57 9,469 --a------ C:\WINDOWS\system32\drivers\WINFOXIO.sys
2008-04-01 12:12 . 2008-04-01 12:12 <DIR> d-------- C:\Program Files\uTorrent
2008-04-01 12:12 . 2008-04-01 12:12 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\uTorrent
2008-04-01 12:03 . 2008-04-11 16:45 22,328 --a------ C:\Documents and Settings\Maaciek\Dane aplikacji\PnkBstrK.sys
2008-04-01 12:02 . 2008-04-01 12:02 <DIR> d-------- C:\WINDOWS\system32\LogFiles
2008-04-01 12:02 . 2008-04-01 12:02 275 --a------ C:\WINDOWS\game.ini
2008-04-01 11:47 . 2008-04-01 11:47 <DIR> d--hs---- C:\WINDOWS\ftpcache
2008-04-01 08:03 . 2008-04-01 08:03 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\Winamp
2008-04-01 07:58 . 2008-04-01 07:58 1,229 --a------ C:\WINDOWS\mozver.dat
2008-04-01 07:56 . 2008-04-01 07:56 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\Talkback
2008-04-01 07:56 . 2008-04-01 07:56 0 --a------ C:\WINDOWS\nsreg.dat
2008-04-01 07:50 . 2008-04-01 07:50 <DIR> d-------- C:\Program Files\Lexmark 3300 Series
2008-04-01 07:48 . 2008-04-01 07:48 <DIR> d-------- C:\Program Files\Common Files\LightScribe
2008-04-01 07:48 . 2008-04-01 07:48 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\Ahead
2008-04-01 07:47 . 2008-04-01 07:47 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Ahead
2008-04-01 07:45 . 2008-04-01 07:45 <DIR> d-------- C:\Program Files\Common Files\Ahead
2008-04-01 07:45 . 2008-04-01 07:45 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Nero
2008-04-01 07:38 . 2007-03-23 13:19 9,715,200 -r------- C:\WINDOWS\RTLCPL.exe
2008-04-01 07:38 . 2007-07-18 13:26 4,547,584 -r------- C:\WINDOWS\system32\drivers\RtkHDAud.sys
2008-04-01 07:38 . 2007-06-15 10:45 1,826,816 -r------- C:\WINDOWS\SkyTel.exe
2008-04-01 07:38 . 2007-01-16 04:39 1,191,936 -r------- C:\WINDOWS\RtlUpd.exe
2008-04-01 07:38 . 2006-08-18 00:58 282,624 -r------- C:\WINDOWS\system32\RTSndMgr.cpl
2008-04-01 07:38 . 2006-07-21 10:14 86,016 -r------- C:\WINDOWS\SoundMan.exe
2008-04-01 07:38 . 2006-08-01 09:02 49,152 -r------- C:\WINDOWS\system32\ChCfg.exe
2008-04-01 07:37 . 2008-04-01 07:37 <DIR> d-------- C:\Program Files\Realtek
2008-04-01 07:37 . 2008-04-01 07:37 <DIR> d--h----- C:\Program Files\InstallShield Installation Information
2008-04-01 07:37 . 2007-07-05 10:08 16,380,416 -r------- C:\WINDOWS\RTHDCPL.exe
2008-04-01 07:37 . 2006-05-04 10:26 2,808,832 -r------- C:\WINDOWS\alcwzrd.exe
2008-04-01 07:37 . 2007-06-28 10:44 2,165,760 -r------- C:\WINDOWS\MicCal.exe
2008-04-01 07:37 . 2007-01-12 10:54 520,192 -r------- C:\WINDOWS\RtlExUpd.dll
2008-04-01 07:37 . 2005-09-21 04:25 299,008 -r------- C:\WINDOWS\system32\ALSndMgr.cpl
2008-04-01 07:37 . 2005-05-03 12:43 69,632 -r------- C:\WINDOWS\Alcmtr.exe
2008-04-01 07:37 . 2006-06-18 23:51 43,520 --a------ C:\WINDOWS\system32\drivers\AmdK8.sys
2008-04-01 07:36 . 2006-11-07 14:58 356,352 --a------ C:\WINDOWS\system32\nvunrm.exe
2008-04-01 07:36 . 2006-10-05 16:35 356,352 --------- C:\WINDOWS\system32\nvuide.exe
2008-04-01 07:36 . 2006-10-19 09:36 3,903 --a------ C:\WINDOWS\system32\nvnrm.nvu
2008-04-01 07:36 . 2006-10-24 13:13 1,732 --a------ C:\WINDOWS\system32\drivers\nvphy.bin
2008-04-01 07:36 . 2006-09-11 15:14 1,570 --------- C:\WINDOWS\system32\nvide.nvu
2008-04-01 07:35 . 2008-04-01 07:35 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\InstallShield
2008-04-01 07:33 . 2008-04-01 07:33 <DIR> d-------- C:\WINDOWS\nview
2008-04-01 07:33 . 2007-09-16 19:07 356,352 --a------ C:\WINDOWS\system32\nvudisp.exe
2008-04-01 07:33 . 2008-04-01 07:34 138,893 --a------ C:\WINDOWS\system32\nvapps.xml
2008-04-01 07:33 . 2007-09-16 19:07 17,525 --a------ C:\WINDOWS\system32\nvdisp.nvu
2008-03-31 22:08 . 2008-03-31 22:08 <DIR> d-------- C:\WINDOWS\system32\Lang
2008-03-31 22:08 . 2008-03-31 22:08 940,794 --a------ C:\WINDOWS\system32\LoopyMusic.wav
2008-03-31 22:08 . 2008-03-31 22:08 146,650 --a------ C:\WINDOWS\system32\BuzzingBee.wav
2008-03-31 22:06 . 2008-03-31 22:06 <DIR> d-------- C:\WINDOWS\system32\DRVSTORE
2008-03-31 22:06 . 2008-03-31 22:06 <DIR> d-------- C:\Program Files\DIFX
2008-03-31 22:06 . 2008-03-31 22:06 315,392 --a------ C:\WINDOWS\HideWin.exe
2008-03-31 22:06 . 2004-11-18 10:42 22,752 --a------ C:\WINDOWS\system32\spupdsvc.exe
2008-03-31 21:44 . 2008-04-15 16:23 15,600 --a------ C:\WINDOWS\gdrv.sys
2008-03-31 21:44 . 2008-03-31 21:44 1,024 --ah----- C:\Documents and Settings\Default User\NTUSER.DAT.LOG
2008-03-31 19:15 . 2008-03-31 19:15 <DIR> d--hs---- C:\Recycled
2008-03-31 19:13 . 2008-03-31 19:13 <DIR> d-------- C:\Documents and Settings\Maaciek\Gadu-Gadu
2008-03-31 19:13 . 2008-03-31 19:13 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\Gadu-Gadu
2008-03-31 19:09 . 2008-04-19 13:22 557 --a------ C:\WINDOWS\DFC.INI
2008-03-31 19:07 . 2008-03-31 19:07 <DIR> d-------- C:\Program Files\Common Files\InstallShield
2008-03-31 19:07 . 2007-09-16 19:07 6,853,088 --a------ C:\WINDOWS\system32\drivers\nv4_mini.sys
2008-03-31 19:07 . 2007-09-16 19:07 6,853,088 --a------ C:\WINDOWS\system32\dllcache\nv4_mini.sys
2008-03-31 19:07 . 2007-09-16 19:07 5,783,040 --a------ C:\WINDOWS\system32\nv4_disp.dll
2008-03-31 19:07 . 2007-09-16 19:07 5,783,040 --a------ C:\WINDOWS\system32\dllcache\nv4_disp.dll
2008-03-31 19:06 . 2008-03-31 19:06 <DIR> d-------- C:\Program Files\VDOTool
2008-03-31 19:02 . 2008-03-31 18:40 <DIR> d--h----- C:\Documents and Settings\Maaciek\Ustawienia lokalne
2008-03-31 19:02 . 2008-03-31 19:02 <DIR> dr------- C:\Documents and Settings\Maaciek\Ulubione
2008-03-31 19:02 . 2008-03-31 18:40 <DIR> d--h----- C:\Documents and Settings\Maaciek\Szablony
2008-03-31 19:02 . 2008-03-31 18:40 <DIR> d-------- C:\Documents and Settings\Maaciek\Pulpit
2008-03-31 19:02 . 2008-03-31 19:02 <DIR> dr------- C:\Documents and Settings\Maaciek\Moje dokumenty
2008-03-31 19:02 . 2008-03-31 18:40 <DIR> dr------- C:\Documents and Settings\Maaciek\Menu Start
2008-03-31 19:02 . 2008-03-31 18:40 <DIR> dr-h----- C:\Documents and Settings\Maaciek\Dane aplikacji
2008-03-31 19:02 . 2008-03-31 19:02 <DIR> d-------- C:\Documents and Settings\Maaciek
2008-03-31 19:02 . 2008-04-19 13:23 479,232 --ah----- C:\Documents and Settings\Maaciek\ntuser.dat.LOG
2008-03-31 19:01 . 2008-03-31 19:01 <DIR> d---s---- C:\WINDOWS\system32\Microsoft
2008-03-31 19:01 . 2008-03-31 19:01 <DIR> d--h----- C:\Documents and Settings\NetworkService\Ustawienia lokalne
2008-03-31 19:01 . 2008-03-31 19:01 <DIR> d-------- C:\Documents and Settings\NetworkService\Dane aplikacji
2008-03-31 19:01 . 2008-03-31 19:01 <DIR> d--hs---- C:\Documents and Settings\NetworkService
2008-03-31 19:01 . 2008-03-31 19:01 <DIR> d--h----- C:\Documents and Settings\LocalService\Ustawienia lokalne
2008-03-31 19:01 . 2008-03-31 19:01 <DIR> d-------- C:\Documents and Settings\LocalService\Dane aplikacji
2008-03-31 19:01 . 2008-03-31 19:01 <DIR> d--hs---- C:\Documents and Settings\LocalService
2008-03-31 19:01 . 2008-03-31 19:01 8,192 --a------ C:\WINDOWS\REGLOCS.OLD
2008-03-31 19:01 . 2008-04-19 12:08 1,024 --ah----- C:\Documents and Settings\NetworkService\ntuser.dat.LOG
2008-03-31 19:01 . 2008-04-19 12:08 1,024 --ah----- C:\Documents and Settings\LocalService\ntuser.dat.LOG
2008-03-31 19:00 . 2008-03-31 18:40 <DIR> dr-h----- C:\WINDOWS\system32\config\systemprofile\Ustawienia lokalne
2008-03-31 19:00 . 2008-03-31 18:40 <DIR> d-------- C:\WINDOWS\system32\config\systemprofile\Ulubione
2008-03-31 19:00 . 2008-03-31 18:40 <DIR> d--h----- C:\WINDOWS\system32\config\systemprofile\Szablony
2008-03-31 19:00 . 2008-03-31 18:40 <DIR> d-------- C:\WINDOWS\system32\config\systemprofile\Pulpit
2008-03-31 19:00 . 2008-03-31 18:40 <DIR> d-------- C:\WINDOWS\system32\config\systemprofile\Moje dokumenty
2008-03-31 19:00 . 2008-03-31 18:40 <DIR> dr------- C:\WINDOWS\system32\config\systemprofile\Menu Start
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-03-31 16:57 --------- d-----w C:\Program Files\microsoft frontpage
2008-03-31 16:55 --------- d-----w C:\Program Files\Usługi online
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 00:44 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-06-01 10:21 153136]
"Gadu-Gadu"="D:\Gadu-Gadu\gg.exe" [2008-03-20 12:04 2127296]
"LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe" [2007-07-18 17:55 451872]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-08-04 00:55 1667584]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Gainward"="C:\Program Files\VDOTool\TBPanel.exe" [2007-11-01 13:25 2165272]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-09-16 19:07 8491008]
"nwiz"="nwiz.exe" [2007-09-16 19:07 1626112 C:\WINDOWS\system32\nwiz.exe]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2007-09-16 19:07 81920]
"RTHDCPL"="RTHDCPL.EXE" [2007-07-05 10:08 16380416 C:\WINDOWS\RTHDCPL.exe]
"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-01 15:57 153136]
"WinFast Schedule"="D:\TV\WFWIZ.exe" [2005-03-02 13:21 278528]
"WinampAgent"="D:\Winamp\winampa.exe" [2008-03-27 08:35 36352]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 00:44 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\WINDOWS\\System32\\PnkBstrA.exe"=
"C:\\WINDOWS\\System32\\PnkBstrB.exe"=
"D:\\Maciek\\cs\\hl.exe"=
"D:\\Maciek\\COD 4\\iw3mp.exe"=
"C:\\Program Files\\uTorrent\\uTorrent.exe"=
R2 WF23880;WinFast TV2000/DV2000 WDM Video Capture.;C:\WINDOWS\system32\drivers\wf88vcap.sys [2004-10-18 11:25]
R2 WF88XBAR;WinFast TV2000/DV2000 WDM Crossbar.;C:\WINDOWS\system32\drivers\WF88XBAR.sys [2004-10-18 11:25]
R2 WFTUNE;WinFast TV2000/DV2000 WDM Tuner.;C:\WINDOWS\system32\drivers\WF88TUNE.sys [2004-10-18 11:25]
R3 WFIOCTL;WFIOCTL;D:\TV\WFIOCTL.SYS [2005-01-06 16:55]
S3 ddsxeiservice;ddsxeiservice2;D:\Maciek\cs\sXe Injected\ddsxei.sys [2008-04-04 12:03]
S3 gdrv;gdrv;C:\WINDOWS\gdrv.sys [2008-04-15 16:23]
*Newly Created Service* - PNKBSTRB
*Newly Created Service* - PNKBSTRK
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
"C:\Program Files\Common Files\LightScribe\LSRunOnce.exe"
.
**************************************************************************
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-19 13:24:54
Windows 5.1.2600 Dodatek Service Pack 2 FAT NTAPI
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2008-04-19 13:25:05
ComboFix-quarantined-files.txt 2008-04-19 11:25:06
ComboFix2.txt 2008-04-19 10:09:34
Pre-Run: 18,516,852,736 bajtów wolnych
Post-Run: 18,506,285,056 bajtów wolnych
542
Podczas usuwania wyskakiwały errory że jakiś plik plugtmp jest uszkodzony. Wyskoczyło to kilka razy
19 Kwi 2008, 13:42
Log wyglada na czysty
Przeskanuj komputer tym http://www.kaspersky.pl/virusscanner.html Daj raport z niego na forum
Przeskanuj komputer tym http://www.kaspersky.pl/virusscanner.html Daj raport z niego na forum
19 Kwi 2008, 14:34
Na noc go zostawie, bo u mnie to sie kilka h skanowalo. Z internet to widze że chello chyba ma problemy, bo innego rozwiązania nie widze
Co chwile też wyskakuje mi okienko z windowsa ( z paska sie pojawia) ze plik jest uszkodzony. W zależności co włączam. Denerwuje mnie to i nie wiem czemu tak jest
Co chwile też wyskakuje mi okienko z windowsa ( z paska sie pojawia) ze plik jest uszkodzony. W zależności co włączam. Denerwuje mnie to i nie wiem czemu tak jest
19 Kwi 2008, 19:35
Jagla napisał(a):Na noc go zostawie, bo u mnie to sie kilka h skanowalo. Z internet to widze że chello chyba ma problemy, bo innego rozwiązania nie widze
Co chwile też wyskakuje mi okienko z windowsa ( z paska sie pojawia) ze plik jest uszkodzony. W zależności co włączam. Denerwuje mnie to i nie wiem czemu tak jest
Nie wiesz co może powodować te pingi?? Bo tak jest przez cały dzień. Nie wiem co z tym jest....
19 Kwi 2008, 19:38
Jakie ci wyskakuje okienko podaj treść
Może dostawca ma problemy
Może dostawca ma problemy
19 Kwi 2008, 20:17
Mam internet z chello, więc jest małe prawdopodobieństwo że to dostawca lecz tak też może być.Nie stety nie mam możliwości sprawdzenia tego. A wirów z tego co mówisz nie mam, więc to chyba chello ma problemy. Albo to przez pogode (mało prawdopodobne) Bo pada cały czas
19 Kwi 2008, 20:23
Wszsyko jest możliwe a przez taką pogodę to nic dziwnego
19 Kwi 2008, 20:34
Dzięki za wszystko. Na noc włącze tego antyvira z netu i loga zażuce żebyś sie zbytnio jutro nie nudził. Czyli twoim zdaniem ad-aware wystarczy na kompie ??(chociażby do znalezienia vira??) Czy lepiej faktycznie na avasta go zmienić??
19 Kwi 2008, 20:39
Zawsze będzie płatny lepszy od darmowego a więc dobrze byłoby jakbys zmienił, adaware wystarczy
Ostatnio edytowany przez huber2t, 19 Kwi 2008, 21:31, edytowano w sumie 1 raz
19 Kwi 2008, 21:26
Sorry za lekki offtop ale ja jestem on a nie ona 
A tak nawiasem mówiąc to chyba najdłuższy topik jaki jest w tym dziale
A tak nawiasem mówiąc to chyba najdłuższy topik jaki jest w tym dziale
20 Kwi 2008, 10:35
Sorry za double post, ale tak to byś pewnie tu nie wszedł. Sprawa sie ma tak. Z tymi pingami to na początku jest wyśmienicie i tak po 2-4 minutach zaczyna rosnąc i juz sie nie da. Tylko z tym mam problem bo reszta jest ok. Co ja mam zrobić?
20 Kwi 2008, 11:00
Twój komputer jest czysty a więc przyczyna może jedynie leżec po stronie sprzętowej
20 Kwi 2008, 14:37
Będę już troche nudny ale cały czas mam wrażenie że mam zbędne procesy na kompie, a do tego doszły zdjęcia szczurów rozsiane na stronie głownej że nie moge praktycznie nic przeczytać. O to log z combofixa
a jeśli można wiedzieć to co to jest//
Sorka za wypisywanie tego według mnie bo pewnie wypisałem zupełne gł€poty, ale chciałbym wiedzieć co to jest, bo nie miałem z takim cczymś kontaktu, i wydaje mi sie to takie syfiaste troche. Jeszcze raz przepraszam za to ze nie daje wam spokoju
- Kod:
ComboFix 08-04-18.3 - Maaciek 2008-04-20 14:27:56.5 - [color=red][b]FAT32[/b][/color]x86
Microsoft Windows XP Professional 5.1.2600.2.1250.1.1045.18.1475 [GMT 2:00]
Running from: C:\Documents and Settings\Maaciek\Pulpit\ComboFix.exe
[color=red][b]WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !![/b][/color]
.
((((((((((((((((((((((((( Files Created from 2008-03-20 to 2008-04-20 )))))))))))))))))))))))))))))))
.
2008-04-20 09:30 . 2008-04-20 09:30 <DIR> d--hs---- C:\FOUND.001
2008-04-19 14:53 . 2008-04-19 14:53 <DIR> d--hs---- C:\FOUND.000
2008-04-19 13:24 . 2008-04-19 13:24 <DIR> d-------- C:\Combo-Fix
2008-04-19 10:23 . 2008-04-19 10:23 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Lavasoft
2008-04-19 10:22 . 2008-04-19 10:22 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-04-19 09:25 . 2008-04-19 12:08 1,024 --ah----- C:\WINDOWS\system32\config\systemprofile\NtUser.dat.LOG
2008-04-17 07:09 . 2008-04-17 07:09 <DIR> d---s---- C:\Documents and Settings\Maaciek\UserData
2008-04-16 14:50 . 2008-04-16 14:50 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files
2008-04-16 07:57 . 2008-04-16 07:57 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe
2008-04-15 18:15 . 2008-04-15 18:15 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab
2008-04-15 17:22 . 2008-04-15 17:22 <DIR> d--h----- C:\WINDOWS\PIF
2008-04-15 14:05 . 2008-04-15 14:05 <DIR> d-------- C:\Program Files\Trend Micro
2008-04-13 10:04 . 2008-04-13 10:04 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\Ubisoft
2008-04-13 10:04 . 2008-04-13 10:04 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft
2008-04-12 21:05 . 2008-04-12 21:05 <DIR> d-------- C:\Program Files\Common Files\EZB Systems
2008-04-11 18:02 . 2008-04-11 18:02 <DIR> d-------- C:\Program Files\Common Files\Symantec Shared
2008-04-11 16:33 . 2008-04-11 16:33 49 --a------ C:\WINDOWS\NeroDigital.ini
2008-04-11 16:19 . 2008-04-11 16:19 41 ---hs---- C:\Documents and Settings\All Users\Dane aplikacji\.zreglib
2008-04-11 14:13 . 2008-04-20 12:07 107,832 --a------ C:\WINDOWS\system32\PnkBstrB.exe
2008-04-11 14:13 . 2008-04-11 16:44 66,872 --a------ C:\WINDOWS\system32\PnkBstrA.exe
2008-04-11 14:13 . 2008-04-20 12:08 22,328 --a------ C:\WINDOWS\system32\drivers\PnkBstrK.sys
2008-04-10 15:38 . 2008-03-19 18:26 499,712 --a------ C:\WINDOWS\system32\msvcp71.dll
2008-04-10 15:38 . 2008-03-19 18:29 348,160 --a------ C:\WINDOWS\system32\msvcr71.dll
2008-04-10 15:37 . 2008-04-10 15:37 <DIR> d-------- C:\WINDOWS\system32\Adobe
2008-04-05 09:23 . 2008-04-11 16:44 674,600 --a------ C:\WINDOWS\system32\pbsvc.exe
2008-04-03 17:49 . 2008-04-03 17:49 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\DAEMON Tools
2008-04-03 17:49 . 2008-04-03 17:49 717,296 --a------ C:\WINDOWS\system32\drivers\sptd.sys
2008-04-02 21:55 . 2008-04-02 21:55 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\Ulead Systems
2008-04-02 21:54 . 2008-04-02 21:54 <DIR> d-------- C:\WINDOWS\system32\windows media
2008-04-02 21:54 . 2008-04-02 21:54 <DIR> d--h----- C:\WINDOWS\msdownld.tmp
2008-04-02 21:53 . 2008-04-02 21:53 <DIR> d-------- C:\Program Files\Windows Media Components
2008-04-01 20:09 . 2008-04-01 20:09 <DIR> d-------- C:\Program Files\Ulead Systems
2008-04-01 20:09 . 2008-04-01 20:09 <DIR> d-------- C:\Program Files\Common Files\Ulead Systems
2008-04-01 20:09 . 2008-04-01 20:09 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Ulead Systems
2008-04-01 20:09 . 2001-12-19 15:47 49,152 --------- C:\WINDOWS\system32\TempDel.EXE
2008-04-01 20:09 . 2005-01-06 16:55 9,446 --a------ C:\WINDOWS\system32\drivers\WFIOCTL.sys
2008-04-01 20:09 . 2002-06-03 23:01 8,734 --a------ C:\WINDOWS\system32\WFSch.ICO
2008-04-01 20:05 . 2008-04-01 20:05 <DIR> d-------- C:\WINDOWS\system32\DX9
2008-04-01 20:04 . 2008-04-01 20:04 <DIR> d-------- C:\WINDOWS\system32\WinFox
2008-04-01 20:04 . 2008-04-01 20:04 <DIR> d-------- C:\WINDOWS\system32\WinFast
2008-04-01 20:04 . 2003-09-05 09:57 9,469 --a------ C:\WINDOWS\system32\drivers\WINFOXIO.sys
2008-04-01 12:12 . 2008-04-01 12:12 <DIR> d-------- C:\Program Files\uTorrent
2008-04-01 12:12 . 2008-04-01 12:12 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\uTorrent
2008-04-01 12:03 . 2008-04-11 16:45 22,328 --a------ C:\Documents and Settings\Maaciek\Dane aplikacji\PnkBstrK.sys
2008-04-01 12:02 . 2008-04-01 12:02 <DIR> d-------- C:\WINDOWS\system32\LogFiles
2008-04-01 12:02 . 2008-04-01 12:02 275 --a------ C:\WINDOWS\game.ini
2008-04-01 11:47 . 2008-04-01 11:47 <DIR> d--hs---- C:\WINDOWS\ftpcache
2008-04-01 08:03 . 2008-04-01 08:03 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\Winamp
2008-04-01 07:58 . 2008-04-01 07:58 1,229 --a------ C:\WINDOWS\mozver.dat
2008-04-01 07:56 . 2008-04-01 07:56 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\Talkback
2008-04-01 07:56 . 2008-04-01 07:56 0 --a------ C:\WINDOWS\nsreg.dat
2008-04-01 07:50 . 2008-04-01 07:50 <DIR> d-------- C:\Program Files\Lexmark 3300 Series
2008-04-01 07:48 . 2008-04-01 07:48 <DIR> d-------- C:\Program Files\Common Files\LightScribe
2008-04-01 07:48 . 2008-04-01 07:48 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\Ahead
2008-04-01 07:47 . 2008-04-01 07:47 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Ahead
2008-04-01 07:45 . 2008-04-01 07:45 <DIR> d-------- C:\Program Files\Common Files\Ahead
2008-04-01 07:45 . 2008-04-01 07:45 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Nero
2008-04-01 07:38 . 2007-03-23 13:19 9,715,200 -r------- C:\WINDOWS\RTLCPL.exe
2008-04-01 07:38 . 2007-07-18 13:26 4,547,584 -r------- C:\WINDOWS\system32\drivers\RtkHDAud.sys
2008-04-01 07:38 . 2007-06-15 10:45 1,826,816 -r------- C:\WINDOWS\SkyTel.exe
2008-04-01 07:38 . 2007-01-16 04:39 1,191,936 -r------- C:\WINDOWS\RtlUpd.exe
2008-04-01 07:38 . 2006-08-18 00:58 282,624 -r------- C:\WINDOWS\system32\RTSndMgr.cpl
2008-04-01 07:38 . 2006-07-21 10:14 86,016 -r------- C:\WINDOWS\SoundMan.exe
2008-04-01 07:38 . 2006-08-01 09:02 49,152 -r------- C:\WINDOWS\system32\ChCfg.exe
2008-04-01 07:37 . 2008-04-01 07:37 <DIR> d-------- C:\Program Files\Realtek
2008-04-01 07:37 . 2008-04-01 07:37 <DIR> d--h----- C:\Program Files\InstallShield Installation Information
2008-04-01 07:37 . 2007-07-05 10:08 16,380,416 -r------- C:\WINDOWS\RTHDCPL.exe
2008-04-01 07:37 . 2006-05-04 10:26 2,808,832 -r------- C:\WINDOWS\alcwzrd.exe
2008-04-01 07:37 . 2007-06-28 10:44 2,165,760 -r------- C:\WINDOWS\MicCal.exe
2008-04-01 07:37 . 2007-01-12 10:54 520,192 -r------- C:\WINDOWS\RtlExUpd.dll
2008-04-01 07:37 . 2005-09-21 04:25 299,008 -r------- C:\WINDOWS\system32\ALSndMgr.cpl
2008-04-01 07:37 . 2005-05-03 12:43 69,632 -r------- C:\WINDOWS\Alcmtr.exe
2008-04-01 07:37 . 2006-06-18 23:51 43,520 --a------ C:\WINDOWS\system32\drivers\AmdK8.sys
2008-04-01 07:36 . 2006-11-07 14:58 356,352 --a------ C:\WINDOWS\system32\nvunrm.exe
2008-04-01 07:36 . 2006-10-05 16:35 356,352 --------- C:\WINDOWS\system32\nvuide.exe
2008-04-01 07:36 . 2006-10-19 09:36 3,903 --a------ C:\WINDOWS\system32\nvnrm.nvu
2008-04-01 07:36 . 2006-10-24 13:13 1,732 --a------ C:\WINDOWS\system32\drivers\nvphy.bin
2008-04-01 07:36 . 2006-09-11 15:14 1,570 --------- C:\WINDOWS\system32\nvide.nvu
2008-04-01 07:35 . 2008-04-01 07:35 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\InstallShield
2008-04-01 07:33 . 2008-04-01 07:33 <DIR> d-------- C:\WINDOWS\nview
2008-04-01 07:33 . 2007-09-16 19:07 356,352 --a------ C:\WINDOWS\system32\nvudisp.exe
2008-04-01 07:33 . 2008-04-01 07:34 138,893 --a------ C:\WINDOWS\system32\nvapps.xml
2008-04-01 07:33 . 2007-09-16 19:07 17,525 --a------ C:\WINDOWS\system32\nvdisp.nvu
2008-03-31 22:08 . 2008-03-31 22:08 <DIR> d-------- C:\WINDOWS\system32\Lang
2008-03-31 22:08 . 2008-03-31 22:08 940,794 --a------ C:\WINDOWS\system32\LoopyMusic.wav
2008-03-31 22:08 . 2008-03-31 22:08 146,650 --a------ C:\WINDOWS\system32\BuzzingBee.wav
2008-03-31 22:06 . 2008-03-31 22:06 <DIR> d-------- C:\WINDOWS\system32\DRVSTORE
2008-03-31 22:06 . 2008-03-31 22:06 <DIR> d-------- C:\Program Files\DIFX
2008-03-31 22:06 . 2008-03-31 22:06 315,392 --a------ C:\WINDOWS\HideWin.exe
2008-03-31 22:06 . 2004-11-18 10:42 22,752 --a------ C:\WINDOWS\system32\spupdsvc.exe
2008-03-31 21:44 . 2008-04-15 16:23 15,600 --a------ C:\WINDOWS\gdrv.sys
2008-03-31 21:44 . 2008-03-31 21:44 1,024 --ah----- C:\Documents and Settings\Default User\NTUSER.DAT.LOG
2008-03-31 19:15 . 2008-03-31 19:15 <DIR> d--hs---- C:\Recycled
2008-03-31 19:13 . 2008-03-31 19:13 <DIR> d-------- C:\Documents and Settings\Maaciek\Gadu-Gadu
2008-03-31 19:13 . 2008-03-31 19:13 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\Gadu-Gadu
2008-03-31 19:09 . 2008-04-20 14:26 558 --a------ C:\WINDOWS\DFC.INI
2008-03-31 19:07 . 2008-03-31 19:07 <DIR> d-------- C:\Program Files\Common Files\InstallShield
2008-03-31 19:07 . 2007-09-16 19:07 6,853,088 --a------ C:\WINDOWS\system32\drivers\nv4_mini.sys
2008-03-31 19:07 . 2007-09-16 19:07 6,853,088 --a------ C:\WINDOWS\system32\dllcache\nv4_mini.sys
2008-03-31 19:07 . 2007-09-16 19:07 5,783,040 --a------ C:\WINDOWS\system32\nv4_disp.dll
2008-03-31 19:07 . 2007-09-16 19:07 5,783,040 --a------ C:\WINDOWS\system32\dllcache\nv4_disp.dll
2008-03-31 19:06 . 2008-03-31 19:06 <DIR> d-------- C:\Program Files\VDOTool
2008-03-31 19:02 . 2008-03-31 18:40 <DIR> d--h----- C:\Documents and Settings\Maaciek\Ustawienia lokalne
2008-03-31 19:02 . 2008-03-31 19:02 <DIR> dr------- C:\Documents and Settings\Maaciek\Ulubione
2008-03-31 19:02 . 2008-03-31 18:40 <DIR> d--h----- C:\Documents and Settings\Maaciek\Szablony
2008-03-31 19:02 . 2008-03-31 18:40 <DIR> d-------- C:\Documents and Settings\Maaciek\Pulpit
2008-03-31 19:02 . 2008-03-31 19:02 <DIR> dr------- C:\Documents and Settings\Maaciek\Moje dokumenty
2008-03-31 19:02 . 2008-03-31 18:40 <DIR> dr------- C:\Documents and Settings\Maaciek\Menu Start
2008-03-31 19:02 . 2008-03-31 18:40 <DIR> dr-h----- C:\Documents and Settings\Maaciek\Dane aplikacji
2008-03-31 19:02 . 2008-03-31 19:02 <DIR> d-------- C:\Documents and Settings\Maaciek
2008-03-31 19:02 . 2008-04-20 14:27 479,232 --ah----- C:\Documents and Settings\Maaciek\ntuser.dat.LOG
2008-03-31 19:01 . 2008-03-31 19:01 <DIR> d---s---- C:\WINDOWS\system32\Microsoft
2008-03-31 19:01 . 2008-03-31 19:01 <DIR> d--h----- C:\Documents and Settings\NetworkService\Ustawienia lokalne
2008-03-31 19:01 . 2008-03-31 19:01 <DIR> d-------- C:\Documents and Settings\NetworkService\Dane aplikacji
2008-03-31 19:01 . 2008-03-31 19:01 <DIR> d--hs---- C:\Documents and Settings\NetworkService
2008-03-31 19:01 . 2008-03-31 19:01 <DIR> d--h----- C:\Documents and Settings\LocalService\Ustawienia lokalne
2008-03-31 19:01 . 2008-03-31 19:01 <DIR> d-------- C:\Documents and Settings\LocalService\Dane aplikacji
2008-03-31 19:01 . 2008-03-31 19:01 <DIR> d--hs---- C:\Documents and Settings\LocalService
2008-03-31 19:01 . 2008-03-31 19:01 8,192 --a------ C:\WINDOWS\REGLOCS.OLD
2008-03-31 19:01 . 2008-04-20 14:12 1,024 --ah----- C:\Documents and Settings\NetworkService\ntuser.dat.LOG
2008-03-31 19:01 . 2008-04-20 14:12 1,024 --ah----- C:\Documents and Settings\LocalService\ntuser.dat.LOG
2008-03-31 19:00 . 2008-03-31 18:40 <DIR> dr-h----- C:\WINDOWS\system32\config\systemprofile\Ustawienia lokalne
2008-03-31 19:00 . 2008-03-31 18:40 <DIR> d-------- C:\WINDOWS\system32\config\systemprofile\Ulubione
2008-03-31 19:00 . 2008-03-31 18:40 <DIR> d--h----- C:\WINDOWS\system32\config\systemprofile\Szablony
2008-03-31 19:00 . 2008-03-31 18:40 <DIR> d-------- C:\WINDOWS\system32\config\systemprofile\Pulpit
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-03-31 16:57 --------- d-----w C:\Program Files\microsoft frontpage
2008-03-31 16:55 --------- d-----w C:\Program Files\Usługi online
.
((((((((((((((((((((((((((((( snapshot@2008-04-19_12.09.26.12 )))))))))))))))))))))))))))))))))))))))))
.
- 2008-04-19 10:07:46 2,048 --s-a-w C:\WINDOWS\bootstat.dat
+ 2008-04-20 12:11:54 2,048 --s-a-w C:\WINDOWS\bootstat.dat
+ 2008-04-20 12:14:04 16,384 ----a-w C:\WINDOWS\TEMP\Perflib_Perfdata_55c.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 00:44 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-06-01 10:21 153136]
"Gadu-Gadu"="D:\Gadu-Gadu\gg.exe" [2008-03-20 12:04 2127296]
"LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe" [2007-07-18 17:55 451872]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-08-04 00:55 1667584]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Gainward"="C:\Program Files\VDOTool\TBPanel.exe" [2007-11-01 13:25 2165272]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2007-09-16 19:07 81920]
"RTHDCPL"="RTHDCPL.EXE" [2007-07-05 10:08 16380416 C:\WINDOWS\RTHDCPL.exe]
"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-01 15:57 153136]
"WinFast Schedule"="D:\TV\WFWIZ.exe" [2005-03-02 13:21 278528]
"WinampAgent"="D:\Winamp\winampa.exe" [2008-03-27 08:35 36352]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-09-16 19:07 8491008]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 00:44 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
--a------ 2007-09-16 19:07 8491008 C:\WINDOWS\system32\NvCpl.dll
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
--a------ 2007-09-16 19:07 1626112 C:\WINDOWS\system32\nwiz.exe
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\WINDOWS\\System32\\PnkBstrA.exe"=
"C:\\WINDOWS\\System32\\PnkBstrB.exe"=
"D:\\Maciek\\cs\\hl.exe"=
"D:\\Maciek\\COD 4\\iw3mp.exe"=
"C:\\Program Files\\uTorrent\\uTorrent.exe"=
R2 WF23880;WinFast TV2000/DV2000 WDM Video Capture.;C:\WINDOWS\system32\drivers\wf88vcap.sys [2004-10-18 11:25]
R2 WF88XBAR;WinFast TV2000/DV2000 WDM Crossbar.;C:\WINDOWS\system32\drivers\WF88XBAR.sys [2004-10-18 11:25]
R2 WFTUNE;WinFast TV2000/DV2000 WDM Tuner.;C:\WINDOWS\system32\drivers\WF88TUNE.sys [2004-10-18 11:25]
R3 WFIOCTL;WFIOCTL;D:\TV\WFIOCTL.SYS [2005-01-06 16:55]
S3 gdrv;gdrv;C:\WINDOWS\gdrv.sys [2008-04-15 16:23]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
"C:\Program Files\Common Files\LightScribe\LSRunOnce.exe"
.
**************************************************************************
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-20 14:28:29
Windows 5.1.2600 Dodatek Service Pack 2 FAT NTAPI
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2008-04-20 14:28:42
ComboFix-quarantined-files.txt 2008-04-20 12:28:42
ComboFix2.txt 2008-04-19 11:25:08
Pre-Run: 18,452,201,472 bajtów wolnych
Post-Run: 18,453,250,048 bajtów wolnych
205
a jeśli można wiedzieć to co to jest//
- Kod:
2008-04-20 09:30 . 2008-04-20 09:30 <DIR> d--hs---- C:\FOUND.001
2008-04-19 14:53 . 2008-04-19 14:53 <DIR> d--hs---- C:\FOUND.000
2008-04-19 10:22 . 2008-04-19 10:22 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-04-19 09:25 . 2008-04-19 12:08 1,024 --ah----- C:\WINDOWS\system32\config\systemprofile\NtUser.dat.LOG
2008-04-15 17:22 . 2008-04-15 17:22 <DIR> d--h----- C:\WINDOWS\PIF
2008-04-15 14:05 . 2008-04-15 14:05 <DIR> d-------- C:\Program Files\Trend Micro
2008-04-12 21:05 . 2008-04-12 21:05 <DIR> d-------- C:\Program Files\Common Files\EZB Systems
2008-04-11 18:02 . 2008-04-11 18:02 <DIR> d-------- C:\Program Files\Common Files\Symantec Shared
2008-04-11 16:33 . 2008-04-11 16:33 49 --a------ C:\WINDOWS\NeroDigital.ini
2008-04-11 16:19 . 2008-04-11 16:19 41 ---hs---- C:\Documents and Settings\All Users\Dane aplikacji\.zreglib
2008-04-10 15:38 . 2008-03-19 18:26 499,712 --a------ C:\WINDOWS\system32\msvcp71.dll
2008-04-10 15:38 . 2008-03-19 18:29 348,160 --a------ C:\WINDOWS\system32\msvcr71.dll
2008-04-03 17:49 . 2008-04-03 17:49 717,296 --a------ C:\WINDOWS\system32\drivers\sptd.sys
2008-04-01 20:09 . 2001-12-19 15:47 49,152 --------- C:\WINDOWS\system32\TempDel.EXE
2008-04-01 20:09 . 2005-01-06 16:55 9,446 --a------ C:\WINDOWS\system32\drivers\WFIOCTL.sys
2008-04-01 20:09 . 2002-06-03 23:01 8,734 --a------ C:\WINDOWS\system32\WFSch.ICO
2008-04-01 20:05 . 2008-04-01 20:05 <DIR> d-------- C:\WINDOWS\system32\DX9
2008-04-01 20:04 . 2008-04-01 20:04 <DIR> d-------- C:\WINDOWS\system32\WinFox
2008-04-01 20:04 . 2003-09-05 09:57 9,469 --a------ C:\WINDOWS\system32\drivers\WINFOXIO.sys
2008-04-01 12:02 . 2008-04-01 12:02 275 --a------ C:\WINDOWS\game.ini
2008-04-01 11:47 . 2008-04-01 11:47 <DIR> d--hs---- C:\WINDOWS\ftpcache
2008-04-01 07:56 . 2008-04-01 07:56 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\Talkback
2008-04-01 07:56 . 2008-04-01 07:56 0 --a------ C:\WINDOWS\nsreg.dat
2008-04-01 07:38 . 2007-03-23 13:19 9,715,200 -r------- C:\WINDOWS\RTLCPL.exe
2008-04-01 07:38 . 2007-07-18 13:26 4,547,584 -r------- C:\WINDOWS\system32\drivers\RtkHDAud.sys
2008-04-01 07:38 . 2007-06-15 10:45 1,826,816 -r------- C:\WINDOWS\SkyTel.exe
2008-04-01 07:38 . 2007-01-16 04:39 1,191,936 -r------- C:\WINDOWS\RtlUpd.exe
2008-04-01 07:38 . 2006-08-18 00:58 282,624 -r------- C:\WINDOWS\system32\RTSndMgr.cpl
2008-04-01 07:37 . 2006-05-04 10:26 2,808,832 -r------- C:\WINDOWS\alcwzrd.exe
2008-04-01 07:37 . 2007-06-28 10:44 2,165,760 -r------- C:\WINDOWS\MicCal.exe
2008-04-01 07:37 . 2007-01-12 10:54 520,192 -r------- C:\WINDOWS\RtlExUpd.dll
2008-04-01 07:37 . 2005-09-21 04:25 299,008 -r------- C:\WINDOWS\system32\ALSndMgr.cpl
2008-04-01 07:37 . 2005-05-03 12:43 69,632 -r------- C:\WINDOWS\Alcmtr.exe
2008-04-01 07:37 . 2006-06-18 23:51 43,520 --a------ C:\WINDOWS\system32\drivers\AmdK8.sys
2008-04-01 07:36 . 2006-11-07 14:58 356,352 --a------ C:\WINDOWS\system32\nvunrm.exe
2008-04-01 07:36 . 2006-10-05 16:35 356,352 --------- C:\WINDOWS\system32\nvuide.exe
2008-04-01 07:36 . 2006-10-19 09:36 3,903 --a------ C:\WINDOWS\system32\nvnrm.nvu
2008-04-01 07:36 . 2006-10-24 13:13 1,732 --a------ C:\WINDOWS\system32\drivers\nvphy.bin
2008-04-01 07:36 . 2006-09-11 15:14 1,570 --------- C:\WINDOWS\system32\nvide.nvu
2008-04-01 07:33 . 2008-04-01 07:33 <DIR> d-------- C:\WINDOWS\nview
2008-04-01 07:33 . 2007-09-16 19:07 356,352 --a------ C:\WINDOWS\system32\nvudisp.exe
2008-04-01 07:33 . 2008-04-01 07:34 138,893 --a------ C:\WINDOWS\system32\nvapps.xml
2008-04-01 07:33 . 2007-09-16 19:07 17,525 --a------ C:\WINDOWS\system32\nvdisp.nvu
2008-03-31 22:08 . 2008-03-31 22:08 <DIR> d-------- C:\WINDOWS\system32\Lang
2008-03-31 22:08 . 2008-03-31 22:08 940,794 --a------ C:\WINDOWS\system32\LoopyMusic.wav
2008-03-31 22:08 . 2008-03-31 22:08 146,650 --a------ C:\WINDOWS\system32\BuzzingBee.wav
2008-03-31 22:06 . 2008-03-31 22:06 <DIR> d-------- C:\WINDOWS\system32\DRVSTORE
2008-03-31 22:06 . 2008-03-31 22:06 <DIR> d-------- C:\Program Files\DIFX
2008-03-31 22:06 . 2008-03-31 22:06 315,392 --a------ C:\WINDOWS\HideWin.exe
2008-03-31 22:06 . 2004-11-18 10:42 22,752 --a------ C:\WINDOWS\system32\spupdsvc.exe
2008-03-31 21:44 . 2008-04-15 16:23 15,600 --a------ C:\WINDOWS\gdrv.sys
2008-03-31 19:01 . 2008-03-31 19:01 8,192 --a------ C:\WINDOWS\REGLOCS.OLD
2008-03-31 19:01 . 2008-04-20 14:12 1,024 --ah----- C:\Documents and Settings\NetworkService\ntuser.dat.LOG
2008-03-31 19:01 . 2008-04-20 14:12 1,024 --ah----- C:\Documents and Settings\LocalService\ntuser.dat.LOG
Sorka za wypisywanie tego według mnie bo pewnie wypisałem zupełne gł€poty, ale chciałbym wiedzieć co to jest, bo nie miałem z takim cczymś kontaktu, i wydaje mi sie to takie syfiaste troche. Jeszcze raz przepraszam za to ze nie daje wam spokoju
20 Kwi 2008, 17:03
Pobierz ComboFix, ale nie uruchamiaj
Wklej do notatnika:
Plik
zapisz jako CFScript.txt (najwygodniej będzie, jeśli zapiszesz w takiej lokalizacji, by ikonka CFScript.txt znalazła się obok ikonki ComboFix.exe)
Przeciągnij i upuść ikonkę CFScript.txt na ikonkę ComboFix.exe tak jak tu
Powinno się rozpocząć usuwanie i powstanie log, daj ten log na forum.
Wklej do notatnika:
- Kod:
File::
C:\WINDOWS\msdownld.tmp
Folder::
C:\FOUND.001
C:\FOUND.000
Plik
zapisz jako CFScript.txt (najwygodniej będzie, jeśli zapiszesz w takiej lokalizacji, by ikonka CFScript.txt znalazła się obok ikonki ComboFix.exe)Przeciągnij i upuść ikonkę CFScript.txt na ikonkę ComboFix.exe tak jak tu
Powinno się rozpocząć usuwanie i powstanie log, daj ten log na forum.
20 Kwi 2008, 17:16
- Kod:
ComboFix 08-04-18.3 - Maaciek 2008-04-20 17:12:27.6 - [color=red][b]FAT32[/b][/color]x86
Microsoft Windows XP Professional 5.1.2600.2.1250.1.1045.18.1656 [GMT 2:00]
Running from: C:\Documents and Settings\Maaciek\Pulpit\Combo-Fix.exe
Command switches used :: C:\Documents and Settings\Maaciek\Pulpit\CFScript.txt
* Created a new restore point
[color=red][b]WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !![/b][/color]
.
((((((((((((((((((((((((( Files Created from 2008-03-20 to 2008-04-20 )))))))))))))))))))))))))))))))
.
2008-04-20 17:09 . 2008-04-20 17:09 <DIR> d-------- C:\ComboFix
2008-04-20 09:30 . 2008-04-20 09:30 <DIR> d--hs---- C:\FOUND.001
2008-04-19 14:53 . 2008-04-19 14:53 <DIR> d--hs---- C:\FOUND.000
2008-04-19 10:23 . 2008-04-19 10:23 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Lavasoft
2008-04-19 10:22 . 2008-04-19 10:22 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-04-19 09:25 . 2008-04-20 17:12 1,024 --ah----- C:\WINDOWS\system32\config\systemprofile\NtUser.dat.LOG
2008-04-17 07:09 . 2008-04-17 07:09 <DIR> d---s---- C:\Documents and Settings\Maaciek\UserData
2008-04-16 14:50 . 2008-04-16 14:50 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files
2008-04-16 07:57 . 2008-04-16 07:57 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe
2008-04-15 18:15 . 2008-04-15 18:15 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab
2008-04-15 17:22 . 2008-04-15 17:22 <DIR> d--h----- C:\WINDOWS\PIF
2008-04-15 14:05 . 2008-04-15 14:05 <DIR> d-------- C:\Program Files\Trend Micro
2008-04-13 10:04 . 2008-04-13 10:04 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\Ubisoft
2008-04-13 10:04 . 2008-04-13 10:04 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft
2008-04-12 21:05 . 2008-04-12 21:05 <DIR> d-------- C:\Program Files\Common Files\EZB Systems
2008-04-11 18:02 . 2008-04-11 18:02 <DIR> d-------- C:\Program Files\Common Files\Symantec Shared
2008-04-11 16:33 . 2008-04-11 16:33 49 --a------ C:\WINDOWS\NeroDigital.ini
2008-04-11 16:19 . 2008-04-11 16:19 41 ---hs---- C:\Documents and Settings\All Users\Dane aplikacji\.zreglib
2008-04-11 14:13 . 2008-04-20 15:46 107,832 --a------ C:\WINDOWS\system32\PnkBstrB.exe
2008-04-11 14:13 . 2008-04-11 16:44 66,872 --a------ C:\WINDOWS\system32\PnkBstrA.exe
2008-04-11 14:13 . 2008-04-20 15:46 22,328 --a------ C:\WINDOWS\system32\drivers\PnkBstrK.sys
2008-04-10 15:38 . 2008-03-19 18:26 499,712 --a------ C:\WINDOWS\system32\msvcp71.dll
2008-04-10 15:38 . 2008-03-19 18:29 348,160 --a------ C:\WINDOWS\system32\msvcr71.dll
2008-04-10 15:37 . 2008-04-10 15:37 <DIR> d-------- C:\WINDOWS\system32\Adobe
2008-04-05 09:23 . 2008-04-11 16:44 674,600 --a------ C:\WINDOWS\system32\pbsvc.exe
2008-04-03 17:49 . 2008-04-03 17:49 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\DAEMON Tools
2008-04-03 17:49 . 2008-04-03 17:49 717,296 --a------ C:\WINDOWS\system32\drivers\sptd.sys
2008-04-02 21:55 . 2008-04-02 21:55 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\Ulead Systems
2008-04-02 21:54 . 2008-04-02 21:54 <DIR> d-------- C:\WINDOWS\system32\windows media
2008-04-02 21:54 . 2008-04-02 21:54 <DIR> d--h----- C:\WINDOWS\msdownld.tmp
2008-04-02 21:53 . 2008-04-02 21:53 <DIR> d-------- C:\Program Files\Windows Media Components
2008-04-01 20:09 . 2008-04-01 20:09 <DIR> d-------- C:\Program Files\Ulead Systems
2008-04-01 20:09 . 2008-04-01 20:09 <DIR> d-------- C:\Program Files\Common Files\Ulead Systems
2008-04-01 20:09 . 2008-04-01 20:09 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Ulead Systems
2008-04-01 20:09 . 2001-12-19 15:47 49,152 --------- C:\WINDOWS\system32\TempDel.EXE
2008-04-01 20:09 . 2005-01-06 16:55 9,446 --a------ C:\WINDOWS\system32\drivers\WFIOCTL.sys
2008-04-01 20:09 . 2002-06-03 23:01 8,734 --a------ C:\WINDOWS\system32\WFSch.ICO
2008-04-01 20:05 . 2008-04-01 20:05 <DIR> d-------- C:\WINDOWS\system32\DX9
2008-04-01 20:04 . 2008-04-01 20:04 <DIR> d-------- C:\WINDOWS\system32\WinFox
2008-04-01 20:04 . 2008-04-01 20:04 <DIR> d-------- C:\WINDOWS\system32\WinFast
2008-04-01 20:04 . 2003-09-05 09:57 9,469 --a------ C:\WINDOWS\system32\drivers\WINFOXIO.sys
2008-04-01 12:12 . 2008-04-01 12:12 <DIR> d-------- C:\Program Files\uTorrent
2008-04-01 12:12 . 2008-04-01 12:12 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\uTorrent
2008-04-01 12:03 . 2008-04-11 16:45 22,328 --a------ C:\Documents and Settings\Maaciek\Dane aplikacji\PnkBstrK.sys
2008-04-01 12:02 . 2008-04-01 12:02 <DIR> d-------- C:\WINDOWS\system32\LogFiles
2008-04-01 12:02 . 2008-04-01 12:02 275 --a------ C:\WINDOWS\game.ini
2008-04-01 11:47 . 2008-04-01 11:47 <DIR> d--hs---- C:\WINDOWS\ftpcache
2008-04-01 08:03 . 2008-04-01 08:03 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\Winamp
2008-04-01 07:58 . 2008-04-01 07:58 1,229 --a------ C:\WINDOWS\mozver.dat
2008-04-01 07:56 . 2008-04-01 07:56 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\Talkback
2008-04-01 07:56 . 2008-04-01 07:56 0 --a------ C:\WINDOWS\nsreg.dat
2008-04-01 07:50 . 2008-04-01 07:50 <DIR> d-------- C:\Program Files\Lexmark 3300 Series
2008-04-01 07:48 . 2008-04-01 07:48 <DIR> d-------- C:\Program Files\Common Files\LightScribe
2008-04-01 07:48 . 2008-04-01 07:48 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\Ahead
2008-04-01 07:47 . 2008-04-01 07:47 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Ahead
2008-04-01 07:45 . 2008-04-01 07:45 <DIR> d-------- C:\Program Files\Common Files\Ahead
2008-04-01 07:45 . 2008-04-01 07:45 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Nero
2008-04-01 07:38 . 2007-03-23 13:19 9,715,200 -r------- C:\WINDOWS\RTLCPL.exe
2008-04-01 07:38 . 2007-07-18 13:26 4,547,584 -r------- C:\WINDOWS\system32\drivers\RtkHDAud.sys
2008-04-01 07:38 . 2007-06-15 10:45 1,826,816 -r------- C:\WINDOWS\SkyTel.exe
2008-04-01 07:38 . 2007-01-16 04:39 1,191,936 -r------- C:\WINDOWS\RtlUpd.exe
2008-04-01 07:38 . 2006-08-18 00:58 282,624 -r------- C:\WINDOWS\system32\RTSndMgr.cpl
2008-04-01 07:38 . 2006-07-21 10:14 86,016 -r------- C:\WINDOWS\SoundMan.exe
2008-04-01 07:38 . 2006-08-01 09:02 49,152 -r------- C:\WINDOWS\system32\ChCfg.exe
2008-04-01 07:37 . 2008-04-01 07:37 <DIR> d-------- C:\Program Files\Realtek
2008-04-01 07:37 . 2008-04-01 07:37 <DIR> d--h----- C:\Program Files\InstallShield Installation Information
2008-04-01 07:37 . 2007-07-05 10:08 16,380,416 -r------- C:\WINDOWS\RTHDCPL.exe
2008-04-01 07:37 . 2006-05-04 10:26 2,808,832 -r------- C:\WINDOWS\alcwzrd.exe
2008-04-01 07:37 . 2007-06-28 10:44 2,165,760 -r------- C:\WINDOWS\MicCal.exe
2008-04-01 07:37 . 2007-01-12 10:54 520,192 -r------- C:\WINDOWS\RtlExUpd.dll
2008-04-01 07:37 . 2005-09-21 04:25 299,008 -r------- C:\WINDOWS\system32\ALSndMgr.cpl
2008-04-01 07:37 . 2005-05-03 12:43 69,632 -r------- C:\WINDOWS\Alcmtr.exe
2008-04-01 07:37 . 2006-06-18 23:51 43,520 --a------ C:\WINDOWS\system32\drivers\AmdK8.sys
2008-04-01 07:36 . 2006-11-07 14:58 356,352 --a------ C:\WINDOWS\system32\nvunrm.exe
2008-04-01 07:36 . 2006-10-05 16:35 356,352 --------- C:\WINDOWS\system32\nvuide.exe
2008-04-01 07:36 . 2006-10-19 09:36 3,903 --a------ C:\WINDOWS\system32\nvnrm.nvu
2008-04-01 07:36 . 2006-10-24 13:13 1,732 --a------ C:\WINDOWS\system32\drivers\nvphy.bin
2008-04-01 07:36 . 2006-09-11 15:14 1,570 --------- C:\WINDOWS\system32\nvide.nvu
2008-04-01 07:35 . 2008-04-01 07:35 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\InstallShield
2008-04-01 07:33 . 2008-04-01 07:33 <DIR> d-------- C:\WINDOWS\nview
2008-04-01 07:33 . 2007-09-16 19:07 356,352 --a------ C:\WINDOWS\system32\nvudisp.exe
2008-04-01 07:33 . 2008-04-01 07:34 138,893 --a------ C:\WINDOWS\system32\nvapps.xml
2008-04-01 07:33 . 2007-09-16 19:07 17,525 --a------ C:\WINDOWS\system32\nvdisp.nvu
2008-03-31 22:08 . 2008-03-31 22:08 <DIR> d-------- C:\WINDOWS\system32\Lang
2008-03-31 22:08 . 2008-03-31 22:08 940,794 --a------ C:\WINDOWS\system32\LoopyMusic.wav
2008-03-31 22:08 . 2008-03-31 22:08 146,650 --a------ C:\WINDOWS\system32\BuzzingBee.wav
2008-03-31 22:06 . 2008-03-31 22:06 <DIR> d-------- C:\WINDOWS\system32\DRVSTORE
2008-03-31 22:06 . 2008-03-31 22:06 <DIR> d-------- C:\Program Files\DIFX
2008-03-31 22:06 . 2008-03-31 22:06 315,392 --a------ C:\WINDOWS\HideWin.exe
2008-03-31 22:06 . 2004-11-18 10:42 22,752 --a------ C:\WINDOWS\system32\spupdsvc.exe
2008-03-31 21:44 . 2008-04-15 16:23 15,600 --a------ C:\WINDOWS\gdrv.sys
2008-03-31 21:44 . 2008-03-31 21:44 1,024 --ah----- C:\Documents and Settings\Default User\NTUSER.DAT.LOG
2008-03-31 19:15 . 2008-03-31 19:15 <DIR> d--hs---- C:\Recycled
2008-03-31 19:13 . 2008-03-31 19:13 <DIR> d-------- C:\Documents and Settings\Maaciek\Gadu-Gadu
2008-03-31 19:13 . 2008-03-31 19:13 <DIR> d-------- C:\Documents and Settings\Maaciek\Dane aplikacji\Gadu-Gadu
2008-03-31 19:09 . 2008-04-20 17:11 558 --a------ C:\WINDOWS\DFC.INI
2008-03-31 19:07 . 2008-03-31 19:07 <DIR> d-------- C:\Program Files\Common Files\InstallShield
2008-03-31 19:07 . 2007-09-16 19:07 6,853,088 --a------ C:\WINDOWS\system32\drivers\nv4_mini.sys
2008-03-31 19:07 . 2007-09-16 19:07 6,853,088 --a------ C:\WINDOWS\system32\dllcache\nv4_mini.sys
2008-03-31 19:07 . 2007-09-16 19:07 5,783,040 --a------ C:\WINDOWS\system32\nv4_disp.dll
2008-03-31 19:07 . 2007-09-16 19:07 5,783,040 --a------ C:\WINDOWS\system32\dllcache\nv4_disp.dll
2008-03-31 19:06 . 2008-03-31 19:06 <DIR> d-------- C:\Program Files\VDOTool
2008-03-31 19:02 . 2008-03-31 18:40 <DIR> d--h----- C:\Documents and Settings\Maaciek\Ustawienia lokalne
2008-03-31 19:02 . 2008-03-31 19:02 <DIR> dr------- C:\Documents and Settings\Maaciek\Ulubione
2008-03-31 19:02 . 2008-03-31 18:40 <DIR> d--h----- C:\Documents and Settings\Maaciek\Szablony
2008-03-31 19:02 . 2008-03-31 18:40 <DIR> d-------- C:\Documents and Settings\Maaciek\Pulpit
2008-03-31 19:02 . 2008-03-31 19:02 <DIR> dr------- C:\Documents and Settings\Maaciek\Moje dokumenty
2008-03-31 19:02 . 2008-03-31 18:40 <DIR> dr------- C:\Documents and Settings\Maaciek\Menu Start
2008-03-31 19:02 . 2008-03-31 18:40 <DIR> dr-h----- C:\Documents and Settings\Maaciek\Dane aplikacji
2008-03-31 19:02 . 2008-03-31 19:02 <DIR> d-------- C:\Documents and Settings\Maaciek
2008-03-31 19:02 . 2008-04-20 17:12 430,080 --ah----- C:\Documents and Settings\Maaciek\ntuser.dat.LOG
2008-03-31 19:01 . 2008-03-31 19:01 <DIR> d---s---- C:\WINDOWS\system32\Microsoft
2008-03-31 19:01 . 2008-03-31 19:01 <DIR> d--h----- C:\Documents and Settings\NetworkService\Ustawienia lokalne
2008-03-31 19:01 . 2008-03-31 19:01 <DIR> d-------- C:\Documents and Settings\NetworkService\Dane aplikacji
2008-03-31 19:01 . 2008-03-31 19:01 <DIR> d--hs---- C:\Documents and Settings\NetworkService
2008-03-31 19:01 . 2008-03-31 19:01 <DIR> d--h----- C:\Documents and Settings\LocalService\Ustawienia lokalne
2008-03-31 19:01 . 2008-03-31 19:01 <DIR> d-------- C:\Documents and Settings\LocalService\Dane aplikacji
2008-03-31 19:01 . 2008-03-31 19:01 <DIR> d--hs---- C:\Documents and Settings\LocalService
2008-03-31 19:01 . 2008-03-31 19:01 8,192 --a------ C:\WINDOWS\REGLOCS.OLD
2008-03-31 19:01 . 2008-04-20 17:11 1,024 --ah----- C:\Documents and Settings\NetworkService\ntuser.dat.LOG
2008-03-31 19:01 . 2008-04-20 17:11 1,024 --ah----- C:\Documents and Settings\LocalService\ntuser.dat.LOG
2008-03-31 19:00 . 2008-03-31 18:40 <DIR> dr-h----- C:\WINDOWS\system32\config\systemprofile\Ustawienia lokalne
2008-03-31 19:00 . 2008-03-31 18:40 <DIR> d-------- C:\WINDOWS\system32\config\systemprofile\Ulubione
2008-03-31 19:00 . 2008-03-31 18:40 <DIR> d--h----- C:\WINDOWS\system32\config\systemprofile\Szablony
2008-03-31 19:00 . 2008-03-31 18:40 <DIR> d-------- C:\WINDOWS\system32\config\systemprofile\Pulpit
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-03-31 16:57 --------- d-----w C:\Program Files\microsoft frontpage
2008-03-31 16:55 --------- d-----w C:\Program Files\Usługi online
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 00:44 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-06-01 10:21 153136]
"Gadu-Gadu"="D:\Gadu-Gadu\gg.exe" [2008-03-20 12:04 2127296]
"LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe" [2007-07-18 17:55 451872]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-08-04 00:55 1667584]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Gainward"="C:\Program Files\VDOTool\TBPanel.exe" [2007-11-01 13:25 2165272]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2007-09-16 19:07 81920]
"RTHDCPL"="RTHDCPL.EXE" [2007-07-05 10:08 16380416 C:\WINDOWS\RTHDCPL.exe]
"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-01 15:57 153136]
"WinFast Schedule"="D:\TV\WFWIZ.exe" [2005-03-02 13:21 278528]
"WinampAgent"="D:\Winamp\winampa.exe" [2008-03-27 08:35 36352]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-09-16 19:07 8491008]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 00:44 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
--a------ 2007-09-16 19:07 8491008 C:\WINDOWS\system32\NvCpl.dll
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
--a------ 2007-09-16 19:07 1626112 C:\WINDOWS\system32\nwiz.exe
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\WINDOWS\\System32\\PnkBstrA.exe"=
"C:\\WINDOWS\\System32\\PnkBstrB.exe"=
"D:\\Maciek\\cs\\hl.exe"=
"D:\\Maciek\\COD 4\\iw3mp.exe"=
"C:\\Program Files\\uTorrent\\uTorrent.exe"=
R2 WF23880;WinFast TV2000/DV2000 WDM Video Capture.;C:\WINDOWS\system32\drivers\wf88vcap.sys [2004-10-18 11:25]
R2 WF88XBAR;WinFast TV2000/DV2000 WDM Crossbar.;C:\WINDOWS\system32\drivers\WF88XBAR.sys [2004-10-18 11:25]
R2 WFTUNE;WinFast TV2000/DV2000 WDM Tuner.;C:\WINDOWS\system32\drivers\WF88TUNE.sys [2004-10-18 11:25]
R3 WFIOCTL;WFIOCTL;D:\TV\WFIOCTL.SYS [2005-01-06 16:55]
S3 gdrv;gdrv;C:\WINDOWS\gdrv.sys [2008-04-15 16:23]
*Newly Created Service* - CATCHME
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
"C:\Program Files\Common Files\LightScribe\LSRunOnce.exe"
.
**************************************************************************
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-20 17:12:58
Windows 5.1.2600 Dodatek Service Pack 2 FAT NTAPI
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2008-04-20 17:13:10
ComboFix-quarantined-files.txt 2008-04-20 15:13:10
Pre-Run: 19,905,576,960 bajtów wolnych
Post-Run: 21,353,758,720 bajtów wolnych
201
A to co ja wypisałem to co to jest??