Bardzo prosze o sprawdzenia loga.Bardzo muli mi komp

Logfile of HijackThis v1.99.1 Scan saved at 09:44:29, on 2007-07-04 Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16473) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe C:\Program Files\Spyware Doctor\SDTrayApp.exe C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\Program Files\Norton AntiVirus\navapsvc.exe C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe C:\Program Files\Spyware Doctor\svcntaux.exe C:\Program Files\Spyware Doctor\swdsvc.exe C:\Program Files\Common Files\Teleca Shared\Generic.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\Program Files\Skype\Plugin Manager\skypePM.exe C:\WINDOWS\System32\alg.exe C:\Program Files\Common Files\Symantec Shared\NMain.exe C:\Program Files\Gadu-Gadu\gg.exe C:\Program Files\Gadu-Gadu\gg.exe C:\PROGRA~1\NORTON~1\navw32.exe C:\WINDOWS\system32\wuauclt.exe C:\DOCUME~1\admin1\USTAWI~1\Temp\Katalog tymczasowy 2 dla hijackthis.zip\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.com.pl/0SEPLPL/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.com.pl/0SEPLPL/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [SetRefresh] C:\Program Files\Compaq\SetRefresh\SetRefresh.exe O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe" O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spyware Doctor\SDTrayApp.exe" O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\gg.exe" /tray O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O11 - Options group: [INTERNATIONAL] International* O16 - DPF: {34F12AFD-E9B5-492A-85D2-40FA4535BE83} (AxProdInfoCtl Class) - http://www.symantec.com/techsupp/activedata/nprdtinf.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1182602852671 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1182602716906 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{2F474B24-FDDB-4D6A-9BC8-ED49FB3F48C1}: NameServer = 212.244.130.1 194.204.152.34 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe O23 - Service: Harmonogram automatycznej usługi LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe O23 - Service: Spyware Doctor Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe O23 - Service: Spyware Doctor Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe

Odpowiedzi: 1

W tym logu nic nie widać. "mulenie" - cokolwiek to miałoby znaczyć - niekoniecznie przez syf może być spowodowany. Sprawdź ustawienia DMA dysku (w dziele Windows XP w FAQ jest opisane co nieco na temat trybu pracy dysku), sprawdź czy po wykonaniu czystego uruchomienia (http://support.microsoft.com/kb/310353) bedzie dobrze. Profilaktycznie możesz pokazac jeszcze loga Silent Runners
Żółty
Dodano
04.07.2007 14:08:30
  • poranek 04.07.2007 17:22:30

    [quote=Żółty]W tym logu nic nie widać. "mulenie" - cokolwiek to miałoby znaczyć - niekoniecznie przez syf może być spowodowany. Sprawdź ustawienia DMA dysku (w dziele Windows XP w FAQ jest opisane co nieco na temat trybu pracy dysku), sprawdź czy po wykonaniu czystego uruchomienia (http://support.microsoft.com/kb/310353) bedzie dobrze. Profilaktycznie możesz pokazac jeszcze loga Silent Runners[/quote] Mam tylko combofix "admin1" - 2007-07-04 14:57:03 - ComboFix 07-07-04.1 - Dodatek Service Pack 2 ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) C:\DOCUME~1\admin1\Pulpit\internet.lnk ((((((((((((((((((((((((( Files Created from 2007-06-04 to 2007-07-04 ))))))))))))))))))))))))))))))) 2007-07-04 14:55 51,200 --a------ C:\WINDOWS\nircmd.exe 2007-06-30 21:21 21,840 --a----t- C:\WINDOWS\system32\SIntfNT.dll 2007-06-30 21:21 17,212 --a----t- C:\WINDOWS\system32\SIntf32.dll 2007-06-30 21:21 12,067 --a----t- C:\WINDOWS\system32\SIntf16.dll 2007-06-30 21:12 34,150 --a------ C:\WINDOWS\DIIUnin.dat 2007-06-30 21:12 2,829 --a------ C:\WINDOWS\DIIUnin.pif 2007-06-30 21:12 106,496 --a------ C:\WINDOWS\DIIUnin.exe 2007-06-30 20:56 <DIR> d-------- C:\Program Files\Diablo II 2007-06-29 13:42 <DIR> d-------- C:\DOCUME~1\admin1\DANEAP~1\Teleca 2007-06-29 13:41 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\Documents 2007-06-29 13:40 <DIR> d-------- C:\Program Files\Sony Ericsson 2007-06-29 13:40 <DIR> d-------- C:\Program Files\Common Files\Teleca Shared 2007-06-29 13:40 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DANEAP~1\Teleca 2007-06-29 13:40 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DANEAP~1\Sony Ericsson 2007-06-29 13:37 <DIR> d----c--- C:\WINDOWS\system32\DRVSTORE 2007-06-29 13:35 5,744 --a------ C:\WINDOWS\system32\drivers\k750wh.sys 2007-06-29 13:34 94,064 --a------ C:\WINDOWS\system32\drivers\k510mdm.sys 2007-06-29 13:34 85,408 --a------ C:\WINDOWS\system32\drivers\k510mgmt.sys 2007-06-29 13:34 83,344 --a------ C:\WINDOWS\system32\drivers\k510obex.sys 2007-06-29 13:34 8,336 --a------ C:\WINDOWS\system32\drivers\k510mdfl.sys 2007-06-29 13:34 6,176 --a------ C:\WINDOWS\system32\drivers\k510cmnt.sys 2007-06-29 13:34 6,176 --a------ C:\WINDOWS\system32\drivers\k510cm.sys 2007-06-29 13:34 6,144 --a------ C:\WINDOWS\system32\drivers\k750cm.sys 2007-06-29 13:34 58,288 --a------ C:\WINDOWS\system32\drivers\k510bus.sys 2007-06-29 13:34 5,808 --a------ C:\WINDOWS\system32\drivers\k510whnt.sys 2007-06-29 13:34 5,808 --a------ C:\WINDOWS\system32\drivers\k510wh.sys 2007-06-29 13:32 <DIR> d-------- C:\Program Files\Disc2Phone 2007-06-27 19:18 2,829 --a------ C:\WINDOWS\DIIDUnin.pif 2007-06-27 19:18 18,682 --a------ C:\WINDOWS\DIIDUnin.dat 2007-06-27 19:18 102,400 --a------ C:\WINDOWS\DIIDUnin.exe 2007-06-26 17:12 36,624 --------- C:\WINDOWS\system32\drivers\PxHelp20.sys 2007-06-26 17:12 129,784 --------- C:\WINDOWS\system32\pxafs.dll 2007-06-26 17:12 118,520 --------- C:\WINDOWS\system32\pxinsi64.exe 2007-06-26 17:12 116,472 --------- C:\WINDOWS\system32\pxcpyi64.exe 2007-06-26 17:11 <DIR> d-------- C:\Program Files\DivX 2007-06-25 18:22 1,156 --a------ C:\WINDOWS\mozver.dat 2007-06-25 18:14 0 --a------ C:\WINDOWS\nsreg.dat 2007-06-25 18:14 <DIR> d-------- C:\DOCUME~1\admin1\DANEAP~1\Talkback 2007-06-25 08:07 83,536 --a------ C:\WINDOWS\system32\drivers\iksyssec.sys 2007-06-25 08:07 626,688 --a------ C:\WINDOWS\system32\msvcr80.dll 2007-06-25 08:07 59,984 --a------ C:\WINDOWS\system32\drivers\iksysflt.sys 2007-06-25 08:07 52,304 --a------ C:\WINDOWS\system32\drivers\ikfilesec.sys 2007-06-25 08:07 39,248 --a------ C:\WINDOWS\system32\drivers\ikfileflt.sys 2007-06-25 08:07 26,064 --a------ C:\WINDOWS\system32\drivers\kcom.sys 2007-06-25 08:07 <DIR> d-------- C:\Program Files\Spyware Doctor 2007-06-25 08:07 <DIR> d-------- C:\DOCUME~1\admin1\DANEAP~1\PC Tools 2007-06-24 13:27 <DIR> d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2 2007-06-24 13:25 <DIR> d-------- C:\Program Files\MSXML 4.0 2007-06-24 12:46 <DIR> d-------- C:\Program Files\Windows Media Connect 2 2007-06-24 12:45 <DIR> d-------- C:\WINDOWS\system32\LogFiles 2007-06-24 12:45 <DIR> d-------- C:\WINDOWS\system32\drivers\UMDF 2007-06-24 12:14 <DIR> d-------- C:\WINDOWS\RegisteredPackages 2007-06-24 12:00 <DIR> d-------- C:\Program Files\Windows Live Toolbar 2007-06-24 12:00 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\DANEAP~1\Windows Live Toolbar 2007-06-24 09:29 <DIR> d-------- C:\DOCUME~1\admin1\DANEAP~1\Gadu-Gadu 2007-06-24 08:29 271,224 --a------ C:\WINDOWS\system32\mucltui.dll 2007-06-23 19:49 <DIR> d-------- C:\DOCUME~1\admin1\DANEAP~1\InterVideo 2007-06-23 19:43 2,278,784 --a------ C:\WINDOWS\system32\drivers\ALCXWDM.SYS 2007-06-23 19:43 156,672 --a------ C:\WINDOWS\system32\RTLCPAPI.dll 2007-06-23 19:42 970,240 --a------ C:\WINDOWS\system32\drivers\ati2mtag.sys 2007-06-23 19:42 94,208 --a------ C:\WINDOWS\system32\atipdlxx.dll 2007-06-23 19:42 73,845 --a------ C:\WINDOWS\system32\atiicdxx.dat 2007-06-23 19:42 73,728 --a------ C:\WINDOWS\system32\Oemdspif.dll 2007-06-23 19:42 61,440 --a------ C:\WINDOWS\system32\ati2evxx.dll 2007-06-23 19:42 6,668,288 --a------ C:\WINDOWS\system32\atioglxx.dll 2007-06-23 19:42 53,248 --a------ C:\WINDOWS\system32\ATIDDC.DLL 2007-06-23 19:42 437,728 --a------ C:\WINDOWS\system32\ativvaxx.dll 2007-06-23 19:42 39,936 --a------ C:\WINDOWS\system32\ati2edxx.dll 2007-06-23 19:42 36,864 --a------ C:\WINDOWS\system32\drivers\ati2erec.dll 2007-06-23 19:42 348,160 --a------ C:\WINDOWS\system32\ati2evxx.exe 2007-06-23 19:42 299,008 --a------ C:\WINDOWS\system32\atiiiexx.dll 2007-06-23 19:42 25,088 --a------ C:\WINDOWS\system32\Ati2mdxx.exe 2007-06-23 19:42 249,856 --a------ C:\WINDOWS\system32\ati2cqag.dll 2007-06-23 19:42 24,064 --a------ C:\WINDOWS\system32\ativcoxx.dll 2007-06-23 19:42 223,744 --a------ C:\WINDOWS\system32\ati2dvag.dll 2007-06-23 19:42 212,992 --a------ C:\WINDOWS\system32\ATIDEMGR.dll 2007-06-23 19:42 2,185,440 --a------ C:\WINDOWS\system32\ati3duag.dll 2007-06-23 19:42 17,408 --a------ C:\WINDOWS\system32\atitvo32.dll 2007-06-23 19:42 132,608 --a------ C:\WINDOWS\system32\drivers\b57xp32.sys 2007-06-23 19:41 68,096 --a------ C:\WINDOWS\agrsmdel.exe 2007-06-23 19:41 3,456 --a------ C:\WINDOWS\system32\drivers\pciide.sys 2007-06-23 19:41 1,094,751 --a------ C:\WINDOWS\system32\drivers\AGRSM.sys 2007-06-23 19:41 <DIR> dr-hs---- C:\WINDOWS\system32\dllcache 2007-06-23 19:41 <DIR> dr-h----- C:\DOCUME~1\DEFAUL~1\Dane aplikacji 2007-06-23 19:41 <DIR> dr-h----- C:\DOCUME~1\ALLUSE~1\Dane aplikacji 2007-06-23 19:41 <DIR> dr--s---- C:\WINDOWS\Fonts 2007-06-23 19:41 <DIR> dr------- C:\WINDOWS\Web 2007-06-23 19:41 <DIR> dr------- C:\WINDOWS\Offline Web Pages 2007-06-23 19:41 <DIR> dr------- C:\Program Files 2007-06-23 19:41 <DIR> dr------- C:\DOCUME~1\DEFAUL~1\Ulubione 2007-06-23 19:41 <DIR> dr------- C:\DOCUME~1\DEFAUL~1\Moje dokumenty 2007-06-23 19:41 <DIR> dr------- C:\DOCUME~1\DEFAUL~1\Menu Start 2007-06-23 19:41 <DIR> dr------- C:\DOCUME~1\ALLUSE~1\Menu Start 2007-06-23 19:41 <DIR> dr------- C:\DOCUME~1\ALLUSE~1\Dokumenty 2007-06-23 19:41 <DIR> d--hs---- C:\WINDOWS\Installer 2007-06-23 19:41 <DIR> d--hs---- C:\System Volume Information 2007-06-23 19:41 <DIR> d--hs---- C:\DOCUME~1\ALLUSE~1\DRM 2007-06-23 19:41 <DIR> d--h----- C:\WINDOWS\inf 2007-06-23 19:41 <DIR> d--h----- C:\Program Files\WindowsUpdate 2007-06-23 19:41 <DIR> d--h----- C:\DOCUME~1\NETWOR~1\Ustawienia lokalne (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) 2007-06-24 13:43:11 67,298 ----a-w C:\WINDOWS\system32\perfc015.dat 2007-06-24 13:43:11 436,322 ----a-w C:\WINDOWS\system32\perfh015.dat 2007-06-23 17:41:29 -------- d-----w C:\Program Files\Usługi online 2007-06-23 09:09:53 -------- d-----w C:\Program Files\Skróty programów 2007-05-31 06:45:07 524,288 ----a-w C:\WINDOWS\system32\DivXsm.exe 2007-05-31 06:44:55 823,296 ----a-w C:\WINDOWS\system32\divx_xx07.dll 2007-05-31 06:44:54 823,296 ----a-w C:\WINDOWS\system32\divx_xx0c.dll 2007-05-31 06:44:54 802,816 ----a-w C:\WINDOWS\system32\divx_xx11.dll 2007-05-31 06:44:54 740,442 ----a-w C:\WINDOWS\system32\DivX.dll 2007-05-16 15:18:58 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll 2007-04-25 14:23:30 144,896 ----a-w C:\WINDOWS\system32\schannel.dll 2007-04-23 00:15:29 3,596,288 ----a-w C:\WINDOWS\system32\qt-dx331.dll 2007-04-23 00:15:18 200,704 ----a-w C:\WINDOWS\system32\ssldivx.dll 2007-04-23 00:15:18 1,044,480 ----a-w C:\WINDOWS\system32\libdivx.dll 2007-04-23 00:02:34 73,728 ----a-w C:\WINDOWS\system32\dpl100.dll 2007-04-23 00:02:34 196,608 ----a-w C:\WINDOWS\system32\dtu100.dll 2007-04-23 00:02:33 53,248 ----a-w C:\WINDOWS\system32\dpuGUI10.dll 2007-04-23 00:02:31 593,920 ----a-w C:\WINDOWS\system32\dpuGUI11.dll 2007-04-23 00:02:31 57,344 ----a-w C:\WINDOWS\system32\dpv11.dll 2007-04-23 00:02:31 344,064 ----a-w C:\WINDOWS\system32\dpus11.dll 2007-04-23 00:02:31 294,912 ----a-w C:\WINDOWS\system32\dpu11.dll 2007-04-23 00:02:31 294,912 ----a-w C:\WINDOWS\system32\dpu10.dll 2007-04-23 00:01:47 12,288 ----a-w C:\WINDOWS\system32\DivXWMPExtType.dll 2007-04-23 00:01:46 124,472 ----a-w C:\WINDOWS\system32\DivXCodecUpdateChecker.exe 2007-04-18 16:14:32 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll 2007-04-16 20:47:36 33,624 ----a-w C:\WINDOWS\system32\wups.dll 2007-04-16 20:45:54 1,710,936 ----a-w C:\WINDOWS\system32\wuaueng.dll 2007-04-16 20:45:48 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll 2007-04-16 20:45:42 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll 2007-04-16 20:45:28 92,504 ----a-w C:\WINDOWS\system32\cdm.dll 2007-04-16 20:45:20 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe 2007-04-16 20:43:44 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll 2007-04-16 20:43:40 208,248 ----a-w C:\WINDOWS\system32\muweb.dll ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) *Note* empty entries & legit default entries are not shown [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}] 2001-04-16 16:39 37808 --a------ C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}] 2007-05-18 13:14 722472 --a------ C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BDF3E430-B101-42AD-A544-FADC6B084872}] 2005-11-17 12:26 218712 --a------ C:\Program Files\Norton AntiVirus\NavShExt.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-02-08 21:05] "SetRefresh"="C:\Program Files\Compaq\SetRefresh\SetRefresh.exe" [2003-11-20 21:01] "ccApp"="C:\Program Files\Common Files\Symantec Shared\ccApp.exe" [2007-02-22 10:58] "Symantec NetDriver Monitor"="C:\PROGRA~1\SYMNET~1\SNDMon.exe" [2007-06-23 11:30] "RoxioDragToDisc"="C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe" [2005-02-04 03:14] "SDTray"="C:\Program Files\Spyware Doctor\SDTrayApp.exe" [2007-06-25 08:10] "@"="" [] "Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2005-10-26 16:17] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 09:44] "MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 18:24] "Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2007-05-18 13:14] "Gadu-Gadu"="C:\Program Files\Gadu-Gadu\gg.exe" [2007-05-10 16:36] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\sdauxservice] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\sdcoreservice] Contents of the 'Scheduled Tasks' folder 2007-06-23 09:22:18 C:\WINDOWS\tasks\Norton AntiVirus - Skanuj komputer - admin1.job ************************************************************************** catchme 0.3.914 W2K/XP/Vista - rootkit detector by Gmer, http://www.gmer.net Rootkit scan 2007-07-04 14:59:54 Windows 5.1.2600 Dodatek Service Pack 2 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\H a r m o n o g r a m a u t o m a t y c z n e j u s Bu g i L i v e U p d a t e ] "ImagePath"="\"C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe\"" [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\helpsvc] "ServiceDll"="%WINDIR%\PCHealth\HelpCtr\Binaries\pchsvc.dll" [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\HidServ] "ServiceDll"="%SystemRoot%\System32\hidserv.dll" [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\HidUsb] "ImagePath"="system32\DRIVERS\hidusb.sys" [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\hpn] [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\HTTP] "ImagePath"="System32\Drivers\HTTP.sys" [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\HTTPFilter] "ServiceDll"="%SystemRoot%\System32\w3ssl.dll" Completion time: 2007-07-04 15:00:34 C:\ComboFix-quarantined-files.txt ... 2007-07-04 15:00 --- E O F ---

poranek
Dodano:
04.07.2007 11:54:37
Komentarzy:
1
Strona 1 / 1