PROBLEM Z XP
Witam, dzis zarejestrowałem się i otóż mam taki mały problem kompa mam chyba od czerwca 2008r.
Na początku było wszstko ok. np. gra Call of Duty 4 chodziła na full detalach bosko. Przeszedłem ja sobie raz i odstawiłem.
Po pewnym czasie zachciało mi sie w nią dalej zagrac i tu zaskoczenie jak to ując zacinała sie muliło ją. i jak jest z calym kompem nawet z winampem i Diablo II !!!!!!!!!!!!! które powinno smigac na moim sprzęcie:
Procesor: AMD Athlon(tm) 64 X2 Dual Core Processor 6000+
Pamięć: 2048 RAM
Karta graficzna: GeFofce 8600 GT (512 MB)
Kumpel mi podpowiadał ze to moze byc jakis wirus ale ja nie moge go ogarnąć, aha i mam NOD'a jako antywirusa
P.S po sformatowaniu gra chodziła tak samo przymulająco-zacinając, a wczoraj zainstalowałem PES'a 2009 to chodzi jak narazie dobrze a to stare jak swiat diablo sie tnie.
Prosze o Pomoc
Odpowiedzi: 15
hej i co wiesz juz cos??
sorry za zamotanie tam własnie było jeszcze nizej podane jak zrobic to w windowsie. a oto raport w trybie awaryjnym:
[b]SDFix: Version 1.238 [/b]
Run by Administrator on 2008-10-31 at 22:46
Microsoft Windows XP [Wersja 5.1.2600]
Running From: C:\SDFix
[b]Checking Services [/b]:
Restoring Default Security Values
Restoring Default Hosts File
Rebooting
[b]Checking Files [/b]:
No Trojan Files Found
Removing Temp Files
[b]ADS Check [/b]:
[b]Final Check [/b]:
catchme 0.3.1361.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-31 22:56:00
Windows 5.1.2600 Dodatek Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden services & system hive ...
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg]
"s1"=dword:2df9c43f
"s2"=dword:110480d0
"h0"=dword:00000001
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"p0"="C:\Program Files\Programy\DAEMON Tools Lite\"
"h0"=dword:00000000
"khjeh"=hex:61,db,56,4c,d7,69,95,d3,fa,ac,98,1c,61,9a,48,37,bf,24,fe,72,04,..
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,bf,95,67,a0,45,02,4d,c9,1b,42,8d,96,81,5f,23,a8,21,..
"khjeh"=hex:a5,c4,5a,b5,cf,81,bb,d7,9f,b8,2e,6f,43,eb,57,ca,3d,79,04,9f,c1,..
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:57,5b,c1,35,aa,cc,0b,26,5a,4c,17,d4,5b,00,3e,e9,6d,e1,05,ac,e5,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"p0"="C:\Program Files\Programy\DAEMON Tools Lite\"
"h0"=dword:00000000
"khjeh"=hex:61,db,56,4c,d7,69,95,d3,fa,ac,98,1c,61,9a,48,37,bf,24,fe,72,04,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,bf,95,67,a0,45,02,4d,c9,1b,42,8d,96,81,5f,23,a8,21,..
"khjeh"=hex:a5,c4,5a,b5,cf,81,bb,d7,9f,b8,2e,6f,43,eb,57,ca,3d,79,04,9f,c1,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:ab,6b,23,04,b5,3d,ff,5b,35,68,69,da,da,ff,60,f7,aa,b1,16,79,f2,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"p0"="C:\Program Files\Programy\DAEMON Tools Lite\"
"h0"=dword:00000000
"khjeh"=hex:61,db,56,4c,d7,69,95,d3,fa,ac,98,1c,61,9a,48,37,bf,24,fe,72,04,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,bf,95,67,a0,45,02,4d,c9,1b,42,8d,96,81,5f,23,a8,21,..
"khjeh"=hex:a5,c4,5a,b5,cf,81,bb,d7,9f,b8,2e,6f,43,eb,57,ca,3d,79,04,9f,c1,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:57,5b,c1,35,aa,cc,0b,26,5a,4c,17,d4,5b,00,3e,e9,6d,e1,05,ac,e5,..
scanning hidden registry entries ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0
[b]Remaining Services [/b]:
Authorized Application Key Export:
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Winamp Remote\\bin\\Orb.exe"="C:\\Program Files\\Winamp Remote\\bin\\Orb.exe:*:Enabled:Orb"
"C:\\Program Files\\Winamp Remote\\bin\\OrbTray.exe"="C:\\Program Files\\Winamp Remote\\bin\\OrbTray.exe:*:Enabled:OrbTray"
"C:\\Program Files\\Winamp Remote\\bin\\OrbStreamerClient.exe"="C:\\Program Files\\Winamp Remote\\bin\\OrbStreamerClient.exe:*:Enabled:Orb Stream Client"
"E:\\BitLord\\BitLord.exe"="E:\\BitLord\\BitLord.exe:*:Enabled:BitLord"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Ares\\Ares.exe"="C:\\Program Files\\Ares\\Ares.exe:*:Disabled:Ares p2p for windows"
"C:\\Program Files\\Programy\\Gadu-Gadu\\gg.exe"="C:\\Program Files\\Programy\\Gadu-Gadu\\gg.exe:*:Enabled:Gadu-Gadu - program g˘wny"
"E:\\BitLord\\Downloads\\Pro.Evolution.Soccer.2009.Full-Rip.Skullptura\\Pro.Evolution.Soccer.2009.Full-Rip.Skullptura\\PES 2009\\pes2009.exe"="E:\\BitLord\\Downloads\\Pro.Evolution.Soccer.2009.Full-Rip.Skullptura\\Pro.Evolution.Soccer.2009.Full-Rip.Skullptura\\PES 2009\\pes2009.exe:*:Enabled:Pro Evolution Soccer 2009"
"C:\\Documents and Settings\\All Users\\Dane aplikacji\\Kaspersky Lab Setup Files\\Kaspersky Anti-Virus 2009\\Polish\\setup.exe"="C:\\Documents and Settings\\All Users\\Dane aplikacji\\Kaspersky Lab Setup Files\\Kaspersky Anti-Virus 2009\\Polish\\setup.exe:*:Enabled:Kaspersky Anti-Virus 2009 Setup"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"F:\\Gry\\FC@\\Far Cry 2\\bin\\FarCry2.exe"="F:\\Gry\\FC@\\Far Cry 2\\bin\\FarCry2.exe:*:Enabled:Far Cry 2"
"F:\\Gry\\FC@\\Far Cry 2\\bin\\FC2Launcher.exe"="F:\\Gry\\FC@\\Far Cry 2\\bin\\FC2Launcher.exe:*:Enabled:Far Cry 2 Updater"
"F:\\Gry\\FC@\\Far Cry 2\\bin\\FC2Editor.exe"="F:\\Gry\\FC@\\Far Cry 2\\bin\\FC2Editor.exe:*:Enabled:Editor"
"C:\\WINDOWS\\system32\\PnkBstrA.exe"="C:\\WINDOWS\\system32\\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\\WINDOWS\\system32\\PnkBstrB.exe"="C:\\WINDOWS\\system32\\PnkBstrB.exe:*:Enabled:PnkBstrB"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[b]Remaining Files [/b]:
[b]Files with Hidden Attributes [/b]:
Sun 20 Jul 2008 4,348 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"
Wed 29 Oct 2008 881 ...HR --- "C:\Documents and Settings\Mati\Dane aplikacji\SecuROM\UserData\securom_v7_01.bak"
Sun 20 Jul 2008 4,348 ...H. --- "C:\Documents and Settings\Mati\Moje dokumenty\Moja muzyka\Kopia zapasowa licencji\drmv1key.bak"
Mon 15 Sep 2008 20 A..H. --- "C:\Documents and Settings\Mati\Moje dokumenty\Moja muzyka\Kopia zapasowa licencji\drmv1lic.bak"
Thu 10 Jul 2008 312 A.SH. --- "C:\Documents and Settings\Mati\Moje dokumenty\Moja muzyka\Kopia zapasowa licencji\drmv2key.bak"
[b]Finished![/b]
Podałem Ci instrukcję uzycia SDFixa - zerknij jeszcze raz - to to co masz w trybie awaryjnym wykonać.
oto drugi log tylko ze w tym programie jest duzo mozliwosci , ja wybrałem full scan
Sophos Anti-Virus
Version 4.35.0 [Win32/Intel]
Virus data version 4.35E, November 2008
Includes detection for 536541 viruses, trojans and worms
Copyright (c) 1989-2008 Sophos Plc, www.sophos.com
System time 11:33:32, System date 31 October 2008
Command line qualifiers are: -f -nb -dn --stop-scan -idedir=C:\SDFix\IDE -p=C:\SDFix\SophosReport.txt
IDE directory is: C:\SDFix\IDE
Using IDE file fakea-hd.ide
Using IDE file offmsg-a.ide
Using IDE file poiso-ad.ide
Using IDE file linea-fl.ide
Using IDE file ircb-acr.ide
Using IDE file autor-jd.ide
Using IDE file dloa-bsq.ide
Using IDE file agen-hqg.ide
Using IDE file delf-fbc.ide
Using IDE file meredr-a.ide
Using IDE file dloa-bss.ide
Using IDE file buzus-o.ide
Using IDE file fakea-dh.ide
Using IDE file delban-a.ide
Using IDE file backsp-a.ide
Using IDE file bank-end.ide
Using IDE file agen-hqm.ide
Using IDE file autor-je.ide
Using IDE file linea-fs.ide
Using IDE file dload-di.ide
Using IDE file rootk-dr.ide
Using IDE file autor-jf.ide
Using IDE file agen-hqq.ide
Using IDE file tibs-uw.ide
Using IDE file dwnl-hht.ide
Using IDE file agen-hqs.ide
Using IDE file bank-ene.ide
Using IDE file rexplo-d.ide
Using IDE file pws-atp.ide
Using IDE file gaman-ch.ide
Using IDE file ytkit-a.ide
Using IDE file agen-hqw.ide
Using IDE file linea-fy.ide
Using IDE file linea-gc.ide
Using IDE file pws-atr.ide
Using IDE file autor-ji.ide
Using IDE file gaman-ci.ide
Using IDE file autor-jk.ide
Using IDE file dload-dk.ide
Using IDE file fakea-dm.ide
Using IDE file agen-hrd.ide
Using IDE file dropr-ac.ide
Using IDE file pws-att.ide
Using IDE file autoit-t.ide
Using IDE file autor-jl.ide
Using IDE file agen-hrf.ide
Using IDE file autor-jm.ide
Using IDE file autoit-v.ide
Using IDE file killa-ey.ide
Using IDE file psyme-jy.ide
Using IDE file pws-atu.ide
Using IDE file agen-hrh.ide
Using IDE file bho-hc.ide
Using IDE file agen-hri.ide
Using IDE file hostin-a.ide
Using IDE file ircb-acn.ide
Using IDE file linea-gk.ide
Using IDE file agen-hrl.ide
Using IDE file agen-hrm.ide
Using IDE file psyme-jw.ide
Using IDE file autor-jo.ide
Using IDE file banhos-y.ide
Using IDE file agen-hro.ide
Using IDE file dloa-btl.ide
Using IDE file agen-hrp.ide
Using IDE file autor-jp.ide
Using IDE file he4hoo-g.ide
Using IDE file agen-hrs.ide
Using IDE file fakev-fy.ide
Using IDE file buzus-p.ide
Using IDE file fakea-ho.ide
Using IDE file agen-hrw.ide
Using IDE file agen-hrx.ide
Using IDE file agen-hry.ide
Using IDE file backd-ab.ide
Using IDE file bank-eni.ide
Using IDE file wlhack-g.ide
Using IDE file injec-cx.ide
Using IDE file fakea-hq.ide
Using IDE file autor-ju.ide
Using IDE file autor-jv.ide
Using IDE file zlob-aol.ide
Using IDE file agen-hsk.ide
Using IDE file autor-jw.ide
Using IDE file ntroo-dy.ide
Using IDE file autor-jy.ide
Using IDE file agen-hsm.ide
Using IDE file bront-dw.ide
Using IDE file click-ez.ide
Using IDE file autor-ke.ide
Using IDE file psyme-jx.ide
Using IDE file backd-ac.ide
Using IDE file rootk-ds.ide
Using IDE file pswd-gen.ide
Using IDE file agen-hst.ide
Using IDE file dwnl-hie.ide
Using IDE file dorf-bu.ide
Using IDE file autor-kf.ide
Using IDE file obfus-b.ide
Using IDE file swfdlr-b.ide
Using IDE file fakea-ht.ide
Using IDE file vb-ebe.ide
Using IDE file agen-htc.ide
Using IDE file autor-kl.ide
Using IDE file dwnl-hih.ide
Using IDE file zlob-aop.ide
Using IDE file psyme-kd.ide
Using IDE file bank-enm.ide
Using IDE file fakea-eb.ide
Using IDE file usract-a.ide
Using IDE file fakea-ed.ide
Using IDE file agen-htk.ide
Using IDE file pws-aty.ide
Using IDE file pws-aua.ide
Using IDE file geezo-e.ide
Using IDE file banhos-z.ide
Using IDE file agen-hto.ide
Using IDE file dloa-btz.ide
Using IDE file ntroo-dz.ide
Using IDE file fakea-hu.ide
Using IDE file agen-htv.ide
Using IDE file agen-hty.ide
Using IDE file agen-hub.ide
Using IDE file ntroo-ea.ide
Using IDE file bankd-dj.ide
Using IDE file agen-hud.ide
Using IDE file swizz-og.ide
Using IDE file agen-huf.ide
Using IDE file sdbo-dla.ide
Using IDE file pushdo-w.ide
Using IDE file dwnl-hin.ide
Using IDE file autor-ku.ide
Using IDE file agen-hul.ide
Using IDE file poiso-af.ide
Using IDE file looke-ej.ide
Using IDE file agen-huq.ide
Using IDE file agen-hur.ide
Using IDE file fakev-gf.ide
Using IDE file fakev-gh.ide
Using IDE file asp-c.ide
Using IDE file salit-an.ide
Using IDE file fakea-eh.ide
Using IDE file agen-hnf.ide
Using IDE file wow-kd.ide
Using IDE file stayt-a.ide
Using IDE file zlob-anz.ide
Using IDE file autor-kx.ide
Using IDE file fakea-ei.ide
Using IDE file snpves-c.ide
Using IDE file kolabc-d.ide
Using IDE file delpdl-c.ide
Using IDE file geezo-f.ide
Using IDE file delf-fbf.ide
Using IDE file dloa-bun.ide
Using IDE file agen-hvk.ide
Using IDE file agen-hvm.ide
Using IDE file dwnl-his.ide
Using IDE file tileb-kz.ide
Using IDE file zlob-aox.ide
Using IDE file autor-lb.ide
Using IDE file maldoc-f.ide
Using IDE file agen-hvv.ide
Using IDE file dloa-bus.ide
Using IDE file zlob-apa.ide
Using IDE file banho-ab.ide
Using IDE file drop-az.ide
Using IDE file malas-h.ide
Using IDE file buzus-r.ide
Using IDE file agen-hwd.ide
Using IDE file autor-ld.ide
Using IDE file fakea-en.ide
Using IDE file autor-lf.ide
Using IDE file zlob-apd.ide
Using IDE file pushdo-x.ide
Using IDE file bancb-qz.ide
Using IDE file dwnl-hiw.ide
Using IDE file bho-hh.ide
Using IDE file agen-hwr.ide
Using IDE file yahlov-a.ide
Using IDE file agen-hwt.ide
Using IDE file poiso-ag.ide
Using IDE file autor-li.ide
Using IDE file pws-auf.ide
Using IDE file agen-hwu.ide
Using IDE file bckd-qpt.ide
Using IDE file bank-ens.ide
Using IDE file autor-lj.ide
Using IDE file mdro-bwg.ide
Using IDE file agen-hwy.ide
Using IDE file zapch-eh.ide
Using IDE file agen-hxb.ide
Using IDE file emold-a.ide
Using IDE file dorf-bv.ide
Using IDE file zlob-ape.ide
Using IDE file vb-ebj.ide
Using IDE file autor-ln.ide
Using IDE file autor-lq.ide
Using IDE file autor-lr.ide
Using IDE file dwnl-hjg.ide
Using IDE file merein-a.ide
Using IDE file zlob-apg.ide
Using IDE file dwnl-hjh.ide
Using IDE file mdro-bwh.ide
Using IDE file autor-lt.ide
Using IDE file agen-hxo.ide
Using IDE file obfjs-bd.ide
Using IDE file agen-hxq.ide
Using IDE file drop-bb.ide
Using IDE file autor-ly.ide
Using IDE file autor-lz.ide
Using IDE file fakev-gl.ide
Using IDE file silly-cr.ide
Using IDE file bank-ent.ide
Using IDE file fakea-et.ide
Using IDE file pdfex-w.ide
Using IDE file zlob-api.ide
Using IDE file autor-mb.ide
Using IDE file agen-hxw.ide
Using IDE file agen-hxy.ide
Using IDE file ifram-bh.ide
Using IDE file fakea-ev.ide
Using IDE file agen-hyc.ide
Using IDE file autor-mc.ide
Using IDE file acespa-a.ide
Using IDE file asp-d.ide
Using IDE file autor-md.ide
Using IDE file onlin-be.ide
Using IDE file onlin-bf.ide
Using IDE file renos-be.ide
Using IDE file banc-bep.ide
Using IDE file agen-hym.ide
Using IDE file psw-fw.ide
Using IDE file pws-aup.ide
Using IDE file onlin-bh.ide
Using IDE file autor-me.ide
Using IDE file zlob-apn.ide
Using IDE file agen-hyo.ide
Using IDE file dloa-bwh.ide
Using IDE file autor-mf.ide
Using IDE file pws-auq.ide
Using IDE file agen-hyv.ide
Using IDE file agen-hyy.ide
Using IDE file bho-hj.ide
Using IDE file agen-hzb.ide
Using IDE file pws-aut.ide
Using IDE file dloa-bwo.ide
Using IDE file dloa-bwr.ide
Using IDE file pdfex-aa.ide
Using IDE file agen-hzu.ide
Using IDE file fakev-go.ide
Using IDE file autor-ml.ide
Using IDE file zimeno-c.ide
Using IDE file obfjs-bf.ide
Using IDE file autor-mo.ide
Using IDE file bank-e.ide
Using IDE file ifgif-a.ide
Using IDE file agen-iab.ide
Using IDE file wowpw-bf.ide
Using IDE file pws-auy.ide
Using IDE file bckd-qpz.ide
Using IDE file gimmiv-a.ide
Using IDE file injec-db.ide
Using IDE file agen-iaj.ide
Using IDE file pdfex-ac.ide
Using IDE file dwnl-hjp.ide
Using IDE file agen-iam.ide
Using IDE file meredr-b.ide
Using IDE file agen-iao.ide
Using IDE file agen-ias.ide
Using IDE file formad-a.ide
Using IDE file dwnl-hjq.ide
Using IDE file ambler-g.ide
Using IDE file agen-iaw.ide
Using IDE file fakea-iy.ide
Using IDE file agen-iaz.ide
Using IDE file swizz-oj.ide
Using IDE file dloa-bwz.ide
Using IDE file fakeal-a.ide
Using IDE file skintr-d.ide
Using IDE file agen-hny.ide
Using IDE file votera-b.ide
Using IDE file agen-ibh.ide
Using IDE file imaut-d.ide
Using IDE file fanbot-l.ide
Using IDE file agen-ibm.ide
Using IDE file dloa-bxb.ide
Using IDE file mdro-bwl.ide
Using IDE file freezo-d.ide
Using IDE file dload-ed.ide
Using IDE file ircb-acv.ide
Using IDE file fakev-gt.ide
Using IDE file agen-ibw.ide
Using IDE file wimad-k.ide
Using IDE file zbot-ar.ide
Using IDE file agen-ibz.ide
Using IDE file dloa-bxh.ide
Using IDE file dloa-bxj.ide
Using IDE file autor-nc.ide
Using IDE file fanbot-m.ide
Using IDE file fakea-fp.ide
Using IDE file drop-bg.ide
Using IDE file agen-ice.ide
Using IDE file dwnld-e.ide
Using IDE file agen-ich.ide
Using IDE file zipcar-b.ide
Using IDE file tiotua-w.ide
Using IDE file fakea-fs.ide
Using IDE file fakev-gw.ide
Using IDE file dloa-bxm.ide
Using IDE file dloa-bsb.ide
Full Scanning
Could not open C:\WINDOWS\system32\drivers\sptd.sys
4 boot sectors swept.
31982 files swept in 38 minutes and 57 seconds.
1 error was encountered.
No viruses were discovered.
Ending Sophos Anti-Virus.
Miałes dwa logi zrobić i wkleic.
tutaj daje log ze scanu combofix'a
ComboFix 08-10-29.06 - Mati 2008-10-29 15:03:25.1 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.1.1045.18.1512 [GMT 1:00]
Uruchomiony z: C:\Documents and Settings\Mati\Pulpit\ComboFix.exe
* Utworzono nowy punkt przywracania
[COLOR=RED][B]UWAGA - TEN KOMPUTER NIE MA ZAINSTALOWANEJ KONSOLI ODZYSKIWANIA !![/B][/COLOR]
.
((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\WINDOWS\IE4 Error Log.txt
C:\WINDOWS\system32\mdm.exe
.
((((((((((((((((((((((((( Pliki utworzone od 2008-09-28 do 2008-10-29 )))))))))))))))))))))))))))))))
.
2008-10-29 14:48 . 2008-10-29 14:52 d-------- C:\SDFix
2008-10-24 05:15 . 2008-10-15 17:36 337,408 -----c--- C:\WINDOWS\system32\dllcache\netapi32.dll
2008-10-23 19:59 . 2008-10-23 19:59 96,976 --a------ C:\WINDOWS\system32\drivers\klin.dat
2008-10-23 19:59 . 2008-10-23 19:59 87,855 --a------ C:\WINDOWS\system32\drivers\klick.dat
2008-10-23 19:57 . 2008-10-23 19:57 d-------- C:\Program Files\Kaspersky Lab
2008-10-23 19:57 . 2008-10-29 15:10 d-------- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab
2008-10-23 19:57 . 2008-10-28 15:00 2,777,632 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat
2008-10-23 19:57 . 2008-10-29 15:06 294,944 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.dat
2008-10-23 19:57 . 2008-10-28 15:00 25,924 --ahs---- C:\WINDOWS\system32\drivers\fidbox.idx
2008-10-23 19:57 . 2008-10-29 15:03 3,136 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.idx
2008-10-23 19:55 . 2008-10-23 19:55 d-------- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files
2008-10-23 18:25 . 2008-10-23 18:25 d-------- C:\WINDOWS\system32\pl
2008-10-23 18:25 . 2008-10-23 18:25 d-------- C:\WINDOWS\system32\bits
2008-10-23 18:25 . 2008-10-23 18:25 d-------- C:\WINDOWS\l2schemas
2008-10-23 18:22 . 2008-10-23 18:22 d-------- C:\WINDOWS\ServicePackFiles
2008-10-23 18:14 . 2008-10-23 18:14 d-------- C:\WINDOWS\EHome
2008-10-23 18:01 . 2008-10-23 18:01 d-------- C:\WINDOWS\system32\AGEIA
2008-10-23 18:01 . 2008-10-23 18:01 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-10-23 18:01 . 2008-10-23 18:01 d-------- C:\Program Files\AGEIA Technologies
2008-10-23 18:00 . 2008-10-23 18:00 d-------- C:\WINDOWS\nview
2008-10-23 18:00 . 2008-10-07 12:33 453,152 --a------ C:\WINDOWS\system32\nvudisp.exe
2008-10-23 18:00 . 2008-10-29 15:10 200,819 --a------ C:\WINDOWS\system32\nvapps.xml
2008-10-23 18:00 . 2008-10-07 12:33 18,477 --a------ C:\WINDOWS\system32\nvdisp.nvu
2008-10-23 17:59 . 2008-10-02 09:07 453,152 --a------ C:\WINDOWS\system32\NVUNINST.EXE
2008-10-21 19:18 . 2004-08-03 23:35 701,440 --------- C:\WINDOWS\system32\drivers\ati2mtag.sys
2008-10-19 13:26 . 2008-07-12 07:18 3,851,784 --a------ C:\WINDOWS\system32\D3DX9_39.dll
2008-10-19 13:26 . 2008-07-12 07:18 1,493,528 --a------ C:\WINDOWS\system32\D3DCompiler_39.dll
2008-10-19 13:26 . 2008-07-31 09:40 509,448 --a------ C:\WINDOWS\system32\XAudio2_2.dll
2008-10-19 13:26 . 2008-07-12 07:18 467,984 --a------ C:\WINDOWS\system32\d3dx10_39.dll
2008-10-19 13:26 . 2008-07-31 09:41 238,088 --a------ C:\WINDOWS\system32\xactengine3_2.dll
2008-10-19 13:26 . 2008-07-31 09:41 68,616 --a------ C:\WINDOWS\system32\XAPOFX1_1.dll
2008-10-15 07:25 . 2008-09-08 11:41 333,824 -----c--- C:\WINDOWS\system32\dllcache\srv.sys
2008-10-15 07:24 . 2008-08-14 14:26 2,190,464 -----c--- C:\WINDOWS\system32\dllcache\ntoskrnl.exe
2008-10-15 07:24 . 2008-08-14 14:26 2,146,816 -----c--- C:\WINDOWS\system32\dllcache\ntkrnlmp.exe
2008-10-15 07:24 . 2008-08-14 14:26 2,067,328 -----c--- C:\WINDOWS\system32\dllcache\ntkrnlpa.exe
2008-10-15 07:24 . 2008-08-14 14:26 2,025,472 -----c--- C:\WINDOWS\system32\dllcache\ntkrpamp.exe
2008-10-15 07:24 . 2008-09-15 16:27 1,846,656 -----c--- C:\WINDOWS\system32\dllcache\win32k.sys
2008-10-04 22:13 . 2008-10-04 22:14 21,840 --a----t- C:\WINDOWS\system32\SIntfNT.dll
2008-10-04 22:13 . 2008-10-04 22:14 17,212 --a----t- C:\WINDOWS\system32\SIntf32.dll
2008-10-04 22:13 . 2008-10-04 22:14 12,067 --a----t- C:\WINDOWS\system32\SIntf16.dll
2008-10-04 22:09 . 2008-10-04 22:09 106,496 --a------ C:\WINDOWS\DIIUnin.exe
2008-10-04 22:09 . 2008-10-06 10:32 15,947 --a------ C:\WINDOWS\DIIUnin.dat
2008-10-04 22:09 . 2008-10-04 22:09 2,829 --a------ C:\WINDOWS\DIIUnin.pif
2008-10-02 20:47 . 2008-10-02 20:47 d-------- C:\WINDOWS\system32\Adobe
.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-10-28 13:37 --------- d-----w C:\Program Files\Kalendarz XP
2008-10-27 12:21 --------- d-----w C:\Documents and Settings\Mati\Dane aplikacji\skypePM
2008-10-27 12:21 --------- d-----w C:\Documents and Settings\Mati\Dane aplikacji\Skype
2008-10-23 19:25 --------- d-----w C:\Program Files\Eset
2008-10-22 17:09 --------- d-----w C:\Program Files\Programy
2008-10-09 13:06 --------- d-----w C:\Program Files\Lexmark X1100 Series
2008-10-07 11:33 6,133,856 ----a-w C:\WINDOWS\system32\drivers\nv4_mini.sys
2008-09-25 13:39 279,712 ----a-w C:\WINDOWS\system32\drivers\atksgt.sys
2008-09-25 13:39 25,888 ----a-w C:\WINDOWS\system32\drivers\lirsgt.sys
2008-09-08 16:07 --------- d-----w C:\Program Files\ABBYY FineReader 6.0
2008-09-08 16:07 --------- d-----w C:\Program Files\ABBYY FineReader 5.0 Sprint
2008-09-08 10:41 333,824 ----a-w C:\WINDOWS\system32\drivers\srv.sys
2008-09-03 18:09 --------- d-----w C:\Documents and Settings\Mati\Dane aplikacji\Media Player Classic
2008-08-30 18:21 --------- d-----w C:\Program Files\Skype
2008-08-30 18:21 --------- d-----w C:\Program Files\Google
2008-08-30 18:21 --------- d-----w C:\Program Files\Common Files\Skype
2008-08-30 18:21 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\Skype
2008-08-28 15:00 --------- d-----w C:\Documents and Settings\Mati\Dane aplikacji\gtk-2.0
1999-05-17 12:58 99,840 -c--a-w C:\Program Files\Common Files\IRAABOUT.DLL
1998-12-09 01:53 70,144 -c--a-w C:\Program Files\Common Files\IRAMDMTR.DLL
1998-12-09 01:53 48,640 -c--a-w C:\Program Files\Common Files\IRALPTTR.DLL
1998-12-09 01:53 31,744 -c--a-w C:\Program Files\Common Files\IRAWEBTR.DLL
1998-12-09 01:53 186,368 -c--a-w C:\Program Files\Common Files\IRAREG.DLL
1998-12-09 01:53 17,920 -c--a-w C:\Program Files\Common Files\IRASRIAL.DLL
.
((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{57BCA5FA-5DBB-45a2-B558-1755C3F6253B}"= "C:\Program Files\Winamp Toolbar\winamptb.dll" [2008-03-19 1267040]
[HKEY_CLASSES_ROOT\clsid\{57bca5fa-5dbb-45a2-b558-1755c3f6253b}]
[HKEY_CLASSES_ROOT\WINAMPTB.AOLTBSearch.1]
[HKEY_CLASSES_ROOT\TypeLib\{538CD77C-BFDD-49b0-9562-77419CAB89D1}]
[HKEY_CLASSES_ROOT\WINAMPTB.AOLTBSearch]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Orb"="C:\Program Files\Winamp Remote\bin\OrbTray.exe" [2008-04-01 507904]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" [2008-02-28 1828136]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2008-04-14 1695232]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 15360]
"Gadu-Gadu"="C:\Program Files\Programy\Gadu-Gadu\gg.exe" [2008-03-20 2127296]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-09-17 68856]
"ares"="C:\Program Files\Ares\Ares.exe" [2007-05-04 961024]
"DAEMON Tools Lite"="C:\Program Files\Programy\DAEMON Tools Lite\daemon.exe" [2008-08-08 490952]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QuickTime Task"="C:\WINDOWS\system32\qttask.exe" [2008-07-10 98304]
"NeroFilterCheck"="C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe" [2008-02-28 570664]
"NBKeyScan"="C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-02-18 2221352]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2008-10-07 13574144]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2008-10-07 86016]
"AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe" [2008-07-29 206088]
"RTHDCPL"="RTHDCPL.EXE" [2007-07-05 C:\WINDOWS\RTHDCPL.exe]
"SkyTel"="SkyTel.EXE" [2007-06-15 C:\WINDOWS\SkyTel.exe]
"nwiz"="nwiz.exe" [2008-10-07 C:\WINDOWS\system32\nwiz.exe]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 15360]
C:\Documents and Settings\All Users\Menu Start\Programy\AutostartKalendarz XP.lnk - C:\Program Files\Kalendarz XP\Kalendarz.exe [2008-07-27 882176]
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE [1999-02-17 65588]
Program sieciowy dla SAGEM Wi-Fi 11g USB adapter.lnk - C:\Program Files\SAGEM WiFi manager\WLANUTL.exe [2008-07-09 950272]
Symantec Fax Starter Edition Port.lnk - C:\Program Files\Microsoft Office\Office\1045\OLFSNT40.EXE [1999-05-17 46080]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"msacm.iac2"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\iac25_32.ax
"vidc.avrn"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\AVIDAV~1.DLL
"vidc.advj"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\AVIDAV~1.DLL
"vidc.mszh"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\avimszh.dll
"vidc.zlib"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\avizlib.dll
"vidc.cscd"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\camcodec.dll
"vidc.cvid"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\iccvid.dll
"msacm.trspch"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\tssoft32.acm
"vidc.em2v"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\etxcodec.dll
"vidc.mkvc"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\kmvidc32.dll
"vidc.hfyu"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\huffyuv.dll
"msacm.lhacm"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\lhacm.acm
"msacm.l3acm"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\l3codecp.acm
"vidc.sjpg"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\pmjpeg32.dll
"vidc.dmb2"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\pmjpeg32.dll
"vidc.gepj"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\pmjpeg32.dll
"vidc.qpeg"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Qpeg32.dll
"vidc.q1.0"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Qpeg32.dll
"msacm.sl_anet"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\sl_anet.acm
"vidc.tscc"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\tsccvid.dll
"vidc.vifp"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\vfcodec.dll
"vidc.wrpr"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\aviwrap.dll
"vidc.wnv1"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\wnvplay1.dll
"vidc.advs"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Adaptec\Dvc.dll
"vidc.aflc"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Autodesk\FLCCOD~1.DLL
"vidc.afli"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Autodesk\FLCCOD~1.DLL
"vidc.aasc"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Autodesk\Aasc32.dll
"vidc.aas4"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Autodesk\Aasc32.dll
"vidc.asv1"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\ASUS\asusasv1.dll
"vidc.asv2"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\ASUS\asusasv2.dll
"vidc.asvx"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\ASUS\asusasv2.dll
"vidc.vcr1"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\ATI\ativcr1.dll
"vidc.vcr2"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\ATI\ativcr2.dll
"vidc.mwv1"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Aware\icmw_32.dll
"vidc.bt20"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\BROOKT~1\btvvc32.drv
"vidc.y41p"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\BROOKT~1\btvvc32.drv
"msacm.pcdv"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Canopus\pcdv.acm
"vidc.cdvc"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Canopus\CSCCDVC.DLL
"vidc.ddvc"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Canopus\CSCdvsd.DLL
"vidc.png1"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Core\COREPN~1.DLL
"msacm.CoreFLAC_ACM"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Core\COREFL~1.ACM
"vidc.davc"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\dicas\davcvfw.dll
"vidc.div3"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\DivX\DivXc32.dll
"vidc.div5"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\DivX\DivXc32.dll
"vidc.mpg3"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\DivX\DivXc32.dll
"vidc.div4"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\DivX\DivXc32f.dll
"vidc.div6"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\DivX\DivXc32f.dll
"vidc.ap41"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\DivX\DivXc32f.dll
"vidc.dvx4"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\DivX\divx4.dll
"msacm.divxa32"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\DivX\divxa32.acm
"vidc.frwd"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Forward\frwd.dll
"vidc.frwt"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Forward\frwd.dll
"vidc.frwa"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Forward\frwt.dll
"vidc.frwu"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Forward\frwu.dll
"vidc.glzw"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Gabest\GLZW.dll
"vidc.gpeg"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Gabest\GPEG.dll
"vidc.i263"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\i263_32.drv
"vidc.iv30"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv31"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv32"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv33"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv34"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv35"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv36"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv37"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv38"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv39"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv40"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv41"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv42"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv43"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv44"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv45"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv46"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv47"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv48"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv49"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv50"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\ir50_32.dll
"vidc.iyuv"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\iyuv_32.dll
"vidc.yvu9"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\Iyvu9_32.dll
"vidc.ir21"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\IR21_R.DLL
"vidc.rt21"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\IR21_R.DLL
"msacm.imc"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Intel\IMC32.ACM
"vidc.lead"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\LEAD\LCODCCMP.DLL
"vidc.dvsd"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MAINCO~1\MCDVD_32.DLL
"vidc.dvc"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MAINCO~1\MCDVD_32.DLL
"vidc.dvcs"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MAINCO~1\MCDVD_32.DLL
"vidc.dcmj"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MAINCO~1\MCMJPG32.DLL
"vidc.avi1"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MAINCO~1\MCMJPG32.DLL
"vidc.avi2"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MAINCO~1\MCMJPG32.DLL
"vidc.dv25"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.dv50"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.msmc"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mmjp"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx1"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx2"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx3"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx4"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx5"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx6"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx7"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx8"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx9"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mmes"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"msacm.msadpcm"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\msadp32.acm
"msacm.imaadpcm"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\imaadp32.acm
"msacm.msg711"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\msg711.acm
"msacm.msg723"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\msg723.acm
"msacm.msgsm610"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\msgsm32.acm
"vidc.m261"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\msh261.drv
"vidc.m263"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\msh263.drv
"vidc.i420"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\msh263.drv
"vidc.mrle"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\msrle32.dll
"vidc.uyvy"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\msyuv.dll
"vidc.yuy2"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\msyuv.dll
"vidc.yvyu"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\msyuv.dll
"vidc.msvc"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\msvidc32.dll
"vidc.cram"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\msvidc32.dll
"vidc.mpg4"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\mpg4c32.dll
"vidc.mp41"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\mpg4c32.dll
"vidc.mp42"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\mpg4c32.dll
"vidc.mp43"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\mpg4c32.dll
"vidc.mp4s"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\mpg4c32.dll
"vidc.mp4v"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\mpg4c32.dll
"vidc.wmv3"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\WMV9VCM.dll
"msacm.msaudio1"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\MICROS~1\msaud32.acm
"vidc.vixl"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Miro\miroxl32.dll
"vidc.nt00"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Newtek\ntcodec.dll
"msacm.vorbis"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\OGG\vorbis.acm
"vidc.vp30"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\ON2TEC~1\vp31vfw.dll
"vidc.vp31"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\ON2TEC~1\vp31vfw.dll
"vidc.vp60"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\ON2TEC~1\vp6vfw.dll
"vidc.vp61"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\ON2TEC~1\vp6vfw.dll
"vidc.pdvc"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\PANASO~1\idvcodec.dll
"vidc.ipdv"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\PANASO~1\idvcodec.dll
"vidc.pvw2"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Pegasus\pvwv220.dll
"vidc.pimj"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Pegasus\pvljpg20.dll
"vidc.mjpx"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Pegasus\pvmjpg21.dll
"vidc.miro"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Pinnacle\MIRODV~1.DLL
"vidc.dcap"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Pinnacle\MIRODV~1.DLL
"vidc.mjpa"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Pinnacle\RTMJPG~1.DLL
"vidc.gpjm"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Pinnacle\RTMJPG~1.DLL
"vidc.pim1"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Pinnacle\pclepim1.dll
"msacm.qmpeg"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\QDesign\qmpeg.acm
"vidc.rmp4"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\REALMA~1\rmp4.dll
"vidc.rud0"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Rududu\rududu.dll
"msacm.at3"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\SONY\atrac3.acm
"vidc.sony"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\SONY\sonydv.dll
"vidc.dvcp"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\SONY\sonydv.dll
"vidc.s422"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Tekram\tekyuv.dll
"vidc.t420"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Toshiba\tsbyuv.dll
"vidc.y411"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\Toshiba\tsbyuv.dll
"vidc.vssv"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\VANGUA~1\vsscodec.dll
"msacm.voxacm160"= C:\PROGRA~1\Programy\ACEMEG~1\SystemS\VoxWare\vct3216.acm
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Winamp Remote\\bin\\Orb.exe"=
"C:\\Program Files\\Winamp Remote\\bin\\OrbTray.exe"=
"C:\\Program Files\\Winamp Remote\\bin\\OrbStreamerClient.exe"=
"E:\\BitLord\\BitLord.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\Ares\\Ares.exe"=
"C:\\Program Files\\Programy\\Gadu-Gadu\\gg.exe"=
"E:\\BitLord\\Downloads\\Pro.Evolution.Soccer.2009.Full-Rip.Skullptura\\Pro.Evolution.Soccer.2009.Full-Rip.Skullptura\\PES 2009\\pes2009.exe"=
"C:\\Documents and Settings\\All Users\\Dane aplikacji\\Kaspersky Lab Setup Files\\Kaspersky Anti-Virus 2009\\Polish\\setup.exe"=
"C:\\Program Files\\Skype\\Phone\\Skype.exe"=
R0 klbg;Kaspersky Lab Boot Guard Driver;C:\WINDOWS\system32\drivers\klbg.sys [2008-01-29 32784]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;C:\WINDOWS\system32\DRIVERS\klim5.sys [2008-04-30 24592]
R3 SG762_XP;SAGEM 802.11g XG762 1211B Driver;C:\WINDOWS\system32\DRIVERS\WlanBZXP.sys [2007-01-10 450560]
S3 ZDCndis5;ZDCndis5 Protocol Driver;C:\WINDOWS\system32\ZDCndis5.SYS [ ]
.
.
------- Skan uzupełniający -------
.
FireFox -: Profile - C:\Documents and Settings\Mati\Dane aplikacji\Mozilla\Firefox\Profiles\qj08ib8a.defaultFireFox -: prefs.js - STARTUP.HOMEPAGE - www.wp.pl
FF -: plugin - C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
FF -: plugin - C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll
.
**************************************************************************
catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-29 15:10:31
Windows 5.1.2600 Dodatek Service Pack 3 NTFS
skanowanie ukrytych procesów ...
skanowanie ukrytych wpisów autostartu ...
skanowanie ukrytych plików ...
skanowanie pomyślnie ukończone
ukryte pliki: 0
**************************************************************************
.
------------------------ Pozostałe uruchomione procesy ------------------------
.
C:\WINDOWS\system32\savedump.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
C:\WINDOWS\system32\imapi.exe
.
**************************************************************************
.
Czas ukończenia: 2008-10-29 15:12:40 - komputer został uruchomiony ponownie
ComboFix-quarantined-files.txt 2008-10-29 14:12:29
Przed: 4 130 353 152 bajtów wolnych
Po: 4,545,208,320 bajtów wolnych
334 --- E O F --- 2008-10-25 01:00:55
Combofix http://www.bleepingcomputer.com/combofix/pl/instrukcja-uzycia-combofix
SDFix - http://cybertrash.pl/images/tata/SDFix.html
ale niewiem o co w sumie chodzi z tymi logami?? jakbys mogł mi to lepiej objanic?? jestem prawie zielony
Nie wiem o czym ten Twój kumpel Ci mówi ale ja jakoś sceptycznie do tego podejdę.
Wrzuć na logi - Combofixa i SDFixa - w takiej kolejności je wykonaj. Jezeli sa jakies alternatywne strumienie danych w plikach to SDFix powinien je pokazać.
wiec scan nic nie dał, gadałem dzis z kumplem i mówił ze zaden antywir tego nie wykrywa i ze moze pomóc przeformatowanie na format FAT32
Przeskanuj jeden plik i zobacz czy cos skanery znajdą - będzie mozna dalej myslec.
Choć watpie by to jakieś wirusy były.
Ale od czegos trzeba zacząć.
ale tu nie chodzi o jedna gre leczo o wszystkie gry i programy w sumie o cały sysytem
No to sprawdź czy nie jest zarażony plik exe gry - np korzysstając ze skaneru onlinewego - http://virusscan.jotti.org/
ale chodzi o to ze mi sie wydaje iz to jakis wirus jest poniewaz teraz to juz winamp mi sie przycina oraz filmy. mój kumpel cos takiego miał lecz nie pamieta jak sie nazywał ten wirus. a jak pisałem stało sie to po pewnym czasie zrpobiłem formata zainstalowałem wsztstkie sterowniki i dalej sie tak dzieje PES chodził dobrze ale tez został zarazony (tak mi sie wydaje)
Wszelkie sterowniki poinstalowane ??
Wszelkie napędy w trybie DMA działają ??
Strona 1 / 1