Error : exception processing message c0000013

Nowor · 17 Sierpień 2009 16:54

Witam, mam nadzieję, że ktoś mi pomoże w rozwiązaniu tego problemu

CCleaner usunąłem/naprawiłem wszystkie błędy w rejestrze, zrobiłem też analizę i usunąłem niepotrzebne(?) pliki

ComboFix log

ComboFix 09-08-10.06 - Kuba 2009-08-17 18:17.1.2 - NTFSx86

Microsoft Windows XP Professional 5.1.2600.2.1250.48.1045.18.2046.1300 [GMT 2:00]

Uruchomiony z: c:\documents and settings\Kuba\Pulpit\ComboFix.exe

Użyto następujących komend :: c:\documents and settings\Kuba\Pulpit\CFScript.txt

AV: Kaspersky Anti-Virus *On-access scanning disabled* (Outdated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}

 * Utworzono nowy punkt przywracania

.


((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))

.


C:\188qsm.bat

C:\autorun.inf

C:\desktop.ini

c:\documents and settings\Kuba\Dane aplikacji\BITS

c:\documents and settings\Kuba\Dane aplikacji\BITS\BITS.ini

c:\documents and settings\Kuba\Dane aplikacji\BITS\DHTTable.dat

c:\documents and settings\Kuba\Dane aplikacji\BITS\ProxyList.ini

c:\documents and settings\Kuba\Dane aplikacji\BITS\Torrent\20080918144319.torrent

c:\documents and settings\Kuba\Dane aplikacji\BITS\Torrent\20080918144319.torrent.~tmp

c:\documents and settings\Kuba\Dane aplikacji\BITS\Torrent\20080918144319.torrent.bits

c:\documents and settings\Kuba\Dane aplikacji\BITS\Torrent\20080918144319.torrent.filelist

c:\documents and settings\Kuba\Dane aplikacji\BITS\Torrent\20080918144319.torrent.seeds

c:\documents and settings\Kuba\Dane aplikacji\BITS\UPnP.ini

c:\documents and settings\Kuba\Pulpit\Lady Gaga Ft Colby O'Donis - Just Dance 

c:\documents and settings\Kuba\Pulpit\Lady Gaga Ft Colby O'Donis - Just Dance

c:\program files\FlashGet Network

c:\program files\FlashGet Network\FlashGet universal\btcore.dll

c:\program files\FlashGet Network\FlashGet universal\BtTorrentTemp\48d24ce7.torrent

c:\program files\FlashGet Network\FlashGet universal\btwrap.dll

c:\program files\FlashGet Network\FlashGet universal\BugReport.dll

c:\program files\FlashGet Network\FlashGet universal\BugReport.exe

c:\program files\FlashGet Network\FlashGet universal\ComDlls\Bhoall.htm

c:\program files\FlashGet Network\FlashGet universal\ComDlls\bhoCATCH.dll

c:\program files\FlashGet Network\FlashGet universal\ComDlls\Bhocfg.ini

c:\program files\FlashGet Network\FlashGet universal\ComDlls\Bholink.htm

c:\program files\FlashGet Network\FlashGet universal\ComDlls\ComDlls.ini

c:\program files\FlashGet Network\FlashGet universal\ComDlls\flashget.xpi

c:\program files\FlashGet Network\FlashGet universal\ComDlls\FlashgetXpi.dll

c:\program files\FlashGet Network\FlashGet universal\ComDlls\IFlashgetXpi.xpt

c:\program files\FlashGet Network\FlashGet universal\dbghelp.dll

c:\program files\FlashGet Network\FlashGet universal\DBTrans.dll

c:\program files\FlashGet Network\FlashGet universal\dbtrans_verbose.log

c:\program files\FlashGet Network\FlashGet universal\DBTransC.exe

c:\program files\FlashGet Network\FlashGet universal\ed2kwrap.dll

c:\program files\FlashGet Network\FlashGet universal\explorerbar.dll

c:\program files\FlashGet Network\FlashGet universal\fgoption.ini

c:\program files\FlashGet Network\FlashGet universal\FGVer.dll

c:\program files\FlashGet Network\FlashGet universal\flashget.exe

c:\program files\FlashGet Network\FlashGet universal\gt.exe

c:\program files\FlashGet Network\FlashGet universal\hashgen.dll

c:\program files\FlashGet Network\FlashGet universal\Help\license.txt

c:\program files\FlashGet Network\FlashGet universal\Help\Readme.txt

c:\program files\FlashGet Network\FlashGet universal\Help\WHATSNEW.TXT

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddBatchLinksDlg.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddBTTask.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\Added.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddEMTask.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddHpFpLink.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddLinksDlg.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddLinksDlgEx.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\AddLinksModern.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\BrowserPlugins.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\BTOption.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\CategoryView.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ComfirmWhenExitDialog.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\CommonDlg.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ConfirmInvalidLinks.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ContextMenu.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\DefaultDownloadsDialog.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\DeleteFilesDialog.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\DetailStatus.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\EMOption.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\EMServers.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ExplorerPane.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ExtensionRuleDlg.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FG2SearchTopPlugin.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FileListCtrl.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FileRemovedDialog.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FindTaskDialog.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FlashgetAbout.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FlashGetDlg.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\FSUStatusBar.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\GarageLoginDialog.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\GarageView.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\HotResource.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\HpFpOption.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\Info.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\LogsOutput.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\MACReader.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\MainMenu.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\MainToolbar.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\MonitorOption.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\NormalOption.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\NotifyOption.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\Option.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\P4PPluginMain.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\ProxySetting.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\SearchBar.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\Security.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\SecurityOption.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\SecurityScan.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\SecurityToolbar.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\Shutdown.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\StatusBar.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\TaskDefOption.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\TaskListView.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\TaskNotify.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\UserListCtrl.ini

c:\program files\FlashGet Network\FlashGet universal\Langs\FGXL_ENG\XpEnhance.ini

c:\program files\FlashGet Network\FlashGet universal\libupnp.dll

c:\program files\FlashGet Network\FlashGet universal\LiveUpdateUI.dll

c:\program files\FlashGet Network\FlashGet universal\modules\ComHelper\ComHelper.dll

c:\program files\FlashGet Network\FlashGet universal\modules\ComHelper\Info.ini

c:\program files\FlashGet Network\FlashGet universal\modules\Downstat\Downstat.dll

c:\program files\FlashGet Network\FlashGet universal\modules\Downstat\Info.ini

c:\program files\FlashGet Network\FlashGet universal\modules\P4pclient\Info.ini

c:\program files\FlashGet Network\FlashGet universal\modules\P4pclient\P4pclient.dll

c:\program files\FlashGet Network\FlashGet universal\modules\P4pclient\Thumbs.db

c:\program files\FlashGet Network\FlashGet universal\modules\SearchTop\Info.ini

c:\program files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource.ini

c:\program files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\iexplorer.bmp

c:\program files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\resource.bmp

c:\program files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\resource.xml

c:\program files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\search.bmp

c:\program files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\subscribe.bmp

c:\program files\FlashGet Network\FlashGet universal\modules\SearchTop\Resource\Thumbs.db

c:\program files\FlashGet Network\FlashGet universal\modules\SearchTop\SearchTop.dll

c:\program files\FlashGet Network\FlashGet universal\modules\Security\FunctionalRepair.bmp

c:\program files\FlashGet Network\FlashGet universal\modules\Security\Info.ini

c:\program files\FlashGet Network\FlashGet universal\modules\Security\Scanning.bmp

c:\program files\FlashGet Network\FlashGet universal\modules\Security\Security.bmp

c:\program files\FlashGet Network\FlashGet universal\modules\Security\SECURITY.dll

c:\program files\FlashGet Network\FlashGet universal\modules\Security\Security.xml

c:\program files\FlashGet Network\FlashGet universal\modules\Security\SystemFix.bmp

c:\program files\FlashGet Network\FlashGet universal\modules\SnapShot\Info.ini

c:\program files\FlashGet Network\FlashGet universal\modules\SnapShot\SamplerCli.dll

c:\program files\FlashGet Network\FlashGet universal\modules\SnapShot\SnapShot.dll

c:\program files\FlashGet Network\FlashGet universal\modules\tasknotifier\Info.ini

c:\program files\FlashGet Network\FlashGet universal\modules\tasknotifier\tasknotifier.dll

c:\program files\FlashGet Network\FlashGet universal\P2PCfg.ini

c:\program files\FlashGet Network\FlashGet universal\P2PCore.dll

c:\program files\FlashGet Network\FlashGet universal\p2pprot.dll

c:\program files\FlashGet Network\FlashGet universal\p2snetio.dll

c:\program files\FlashGet Network\FlashGet universal\p2spmgr.dll

c:\program files\FlashGet Network\FlashGet universal\p2spmgr.ini

c:\program files\FlashGet Network\FlashGet universal\p2sprot.dll

c:\program files\FlashGet Network\FlashGet universal\p2spwrap.dll

c:\program files\FlashGet Network\FlashGet universal\p4spmgr.ini

c:\program files\FlashGet Network\FlashGet universal\Profiles\config.dat

c:\program files\FlashGet Network\FlashGet universal\Profiles\tasks.dat

c:\program files\FlashGet Network\FlashGet universal\Skins\close_default.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\close_press.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\close_select.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\max_default.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\max_press.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\max_select.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\min_default.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\min_press.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\min_select.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\notify.wav

c:\program files\FlashGet Network\FlashGet universal\Skins\notify_board.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\notify_icon.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\Back.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\Backward.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\BrowserBarCT.xml

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\FlashgetResource.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\Forward.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarCT\Home.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarDisableCT\Backward.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarDisableCT\BrowserBarDisableCT.xml

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarDisableCT\Forward.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarDisableCT\Home.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\BrowserBarDisableCT\Resource.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Available.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\CategoryTreeCT.xml

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Downloaded.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Downloading.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Favorite.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Flashget.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Release.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Rubbish.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\CategoryTreeCT\Search.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\ExpBar\Expbar.xml

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\ExpBar\garage.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\ExpBar\resource.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\ExpBar\transfer.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\BT.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\EM.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\GlobalOptionCT.xml

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\HpFp.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\Monitor.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\Normal.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\Notify.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\Proxy.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\GlobalOptionCT\TaskDef.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\Info.ini

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\About.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\DeleteTask.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\folder.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\MainMenuCT.xml

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\MoveDownTask.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\MoveUpTask.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\NewTask.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\open.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\Option.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\PauseTask.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\Resource.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\StartTask.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainMenuCT\TaskProperties.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\About.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\DeleteTask.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\Folder.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\MainToolbarCT.xml

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\NewTask.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\Open.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\Option.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\PauseTask.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\Resource.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\StartTask.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarCT\TaskProperties.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\About.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\DeleteTask.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\Folder.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\MainToolbarDisableCT.xml

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\NewTask.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\Open.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\Option.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\PauseTask.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\Resource.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\StartTask.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\MainToolbarDisableCT\TaskProperties.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\Monitor\InfoBkg.Bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\Monitor\MonitorBkg.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\OutpuLogCT\Down.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\OutpuLogCT\Error.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\OutpuLogCT\Normal.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\OutpuLogCT\OutpuLogCT.xml

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\OutpuLogCT\Up.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\All.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Book.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Bt.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Game.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Movie.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Music.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Phone.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Picture.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\SobarIconCT.xml

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\SobarIconCT\Software.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Error.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\hashing.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\OK.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Pause.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Pin.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Schedule.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Start.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\TaskListCT.xml

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Upload.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\ShadowGrayBlue\TaskListCT\Wait.bmp

c:\program files\FlashGet Network\FlashGet universal\Skins\Thumbs.db

c:\program files\FlashGet Network\FlashGet universal\storage.dll

c:\program files\FlashGet Network\FlashGet universal\SysOpt.exe

c:\program files\FlashGet Network\FlashGet universal\transaction.log

c:\program files\FlashGet Network\FlashGet universal\uninst.exe

c:\program files\FlashGet Network\FlashGet universal\zlib.dll

c:\program files\myglobalsearch

c:\program files\myglobalsearch\bar\History\search

c:\windows\Installer\1d6cfe0.msi

c:\windows\Installer\897e3.msi

c:\windows\system32\amvo.exe

c:\windows\system32\amvo0.dll

c:\windows\system32\amvo1.dll

c:\windows\system32\kdfinj.dll

D:\188qsm.bat

D:\autorun.inf

D:\comment.htt

I:\188qsm.bat

I:\Autorun.inf

I:\comment.htt


.

((((((((((((((((((((((((( Pliki utworzone od 2009-07-17 do 2009-08-17 )))))))))))))))))))))))))))))))

.


2009-08-17 16:07 . 2009-08-17 16:07	--------	d-----w-	c:\program files\CCleaner

2009-08-17 01:03 . 2009-08-17 01:03	--------	d-----w-	c:\program files\Microsoft Works

2009-08-13 19:25 . 2009-08-13 19:25	--------	d-----w-	c:\program files\Microsoft Silverlight

2009-08-13 19:22 . 2009-08-13 19:22	--------	d-----w-	c:\windows\ServicePackFiles

2009-08-13 09:46 . 2008-10-16 12:06	268648	----a-w-	c:\windows\system32\mucltui.dll

2009-08-13 09:46 . 2008-10-16 12:06	208744	----a-w-	c:\windows\system32\muweb.dll

2009-08-12 16:17 . 2009-08-17 16:23	--------	d-----w-	c:\documents and settings\Kuba\Tracing

2009-08-12 16:09 . 2009-08-12 16:09	--------	d-----w-	c:\program files\Microsoft

2009-08-12 16:09 . 2009-08-12 16:09	--------	d-----w-	c:\program files\Windows Live SkyDrive

2009-08-12 16:09 . 2009-08-12 16:10	--------	d-----w-	c:\program files\Windows Live

2009-08-12 16:02 . 2009-08-12 16:02	--------	d-----w-	c:\program files\Common Files\Windows Live

2009-08-11 20:07 . 2009-08-12 14:02	--------	d-----w-	c:\program files\Cheat Engine

2009-08-11 20:07 . 2007-12-26 15:30	679936	----a-w-	c:\windows\system32\D3DX81ab.dll

2009-08-11 20:07 . 2007-12-26 15:30	1970176	----a-w-	c:\windows\system32\d3dx9.dll

2009-08-05 14:01 . 2009-06-25 14:36	1291640	----a-w-	c:\documents and settings\Kuba\Dane aplikacji\Mozilla\Firefox\Profiles\qv60vx6u.default\extensions\battlefieldheroespatcher@ea.com\platform\WINNT_x86-msvc\plugins\BFHUpdater.exe

2009-08-05 14:01 . 2009-06-25 14:36	729088	----a-w-	c:\documents and settings\Kuba\Dane aplikacji\Mozilla\Firefox\Profiles\qv60vx6u.default\extensions\battlefieldheroespatcher@ea.com\platform\WINNT_x86-msvc\plugins\npBFHUpdater.dll

2009-08-04 08:18 . 2009-08-05 16:23	--------	d-----w-	c:\documents and settings\Kuba\Ustawienia lokalne\Dane aplikacji\PunkBuster


.

(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2009-08-17 16:26 . 2009-02-28 11:20	590368	--sha-w-	c:\windows\system32\drivers\fidbox2.dat

2009-08-17 16:24 . 2009-02-28 11:20	24374816	--sha-w-	c:\windows\system32\drivers\fidbox.dat

2009-08-17 16:22 . 2009-02-28 11:20	59432	--sha-w-	c:\windows\system32\drivers\fidbox2.idx

2009-08-17 16:22 . 2009-02-28 11:20	330464	--sha-w-	c:\windows\system32\drivers\fidbox.idx

2009-08-17 15:15 . 2008-05-29 18:13	--------	d-----w-	c:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab

2009-08-17 08:14 . 2008-04-19 13:20	66320	-c--a-w-	c:\documents and settings\Kuba\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT

2009-08-10 19:03 . 2009-03-02 12:58	146772	-c--a-w-	c:\windows\War3Unin.dat

2009-08-07 16:11 . 2008-09-28 13:57	189488	----a-w-	c:\windows\system32\PnkBstrB.exe

2009-08-07 14:50 . 2008-09-28 13:57	139016	----a-w-	c:\windows\system32\drivers\PnkBstrK.sys

2009-08-06 09:30 . 2008-11-15 18:31	139152	-c--a-w-	c:\documents and settings\Kuba\Dane aplikacji\PnkBstrK.sys

2009-08-06 09:30 . 2008-11-15 18:31	139152	-c--a-w-	c:\documents and settings\Kuba\Dane aplikacji\PnkBstrK.sys

2009-08-06 09:30 . 2008-11-15 18:30	794408	----a-w-	c:\windows\system32\pbsvc.exe

2009-08-06 09:30 . 2008-09-28 13:57	75064	----a-w-	c:\windows\system32\PnkBstrA.exe

2009-08-05 09:08 . 2004-08-03 22:44	205312	----a-w-	c:\windows\system32\mswebdvd.dll

2009-07-25 14:56 . 2008-05-08 17:40	--------	d-----w-	c:\documents and settings\Kuba\Dane aplikacji\Skype

2009-07-25 14:06 . 2008-05-08 17:40	--------	d-----w-	c:\documents and settings\Kuba\Dane aplikacji\skypePM

2009-07-17 18:57 . 2004-08-03 22:43	58880	----a-w-	c:\windows\system32\atl.dll

2009-07-13 00:18 . 2004-08-03 22:44	233472	----a-w-	c:\windows\system32\wmpdxm.dll

2009-07-06 11:04 . 2008-04-19 13:27	--------	d--h--w-	c:\program files\InstallShield Installation Information

2009-07-02 20:42 . 2009-07-02 20:42	--------	d-----w-	c:\program files\AhnLab

2009-06-26 16:19 . 2004-08-03 22:44	662016	----a-w-	c:\windows\system32\wininet.dll

2009-06-26 16:19 . 2004-08-03 22:44	81920	----a-w-	c:\windows\system32\ieencode.dll

2009-06-25 18:37 . 2004-08-03 22:44	95744	----a-w-	c:\windows\system32\mqsec.dll

2009-06-25 18:37 . 2004-08-03 22:44	661504	----a-w-	c:\windows\system32\mqqm.dll

2009-06-25 18:37 . 2004-08-03 22:44	517120	----a-w-	c:\windows\system32\mqsnap.dll

2009-06-25 18:37 . 2004-08-03 22:44	512000	----a-w-	c:\windows\system32\mqutil.dll

2009-06-25 18:37 . 2004-08-03 22:44	48640	----a-w-	c:\windows\system32\mqupgrd.dll

2009-06-25 18:37 . 2004-08-03 22:44	47104	----a-w-	c:\windows\system32\mqdscli.dll

2009-06-25 18:37 . 2004-08-03 22:44	225280	----a-w-	c:\windows\system32\mqoa.dll

2009-06-25 18:37 . 2004-08-03 22:44	186880	----a-w-	c:\windows\system32\mqtrig.dll

2009-06-25 18:37 . 2004-08-03 22:44	177152	----a-w-	c:\windows\system32\mqrt.dll

2009-06-25 18:37 . 2004-08-03 22:44	16896	----a-w-	c:\windows\system32\mqise.dll

2009-06-25 18:37 . 2004-08-03 22:44	138240	----a-w-	c:\windows\system32\mqad.dll

2009-06-25 18:37 . 2004-08-03 22:44	123392	----a-w-	c:\windows\system32\mqrtdep.dll

2009-06-25 18:07 . 2009-02-28 11:48	4000	----a-w-	C:\ao.dat

2009-06-22 11:49 . 2004-08-03 22:44	19968	----a-w-	c:\windows\system32\mqbkup.exe

2009-06-22 11:49 . 2004-08-03 22:44	117248	----a-w-	c:\windows\system32\mqtgsvc.exe

2009-06-22 11:49 . 2004-08-03 22:44	4608	----a-w-	c:\windows\system32\mqsvc.exe

2009-06-22 11:48 . 2004-08-03 20:58	91776	----a-w-	c:\windows\system32\drivers\mqac.sys

2009-06-17 10:14 . 2009-06-16 13:12	141264	----a-w-	c:\windows\hpoins12.dat

2009-06-16 14:55 . 2004-08-03 22:44	119808	----a-w-	c:\windows\system32\t2embed.dll

2009-06-16 14:55 . 2001-10-26 15:29	82432	----a-w-	c:\windows\system32\fontsub.dll

2009-06-15 11:33 . 2004-08-03 22:44	78336	----a-w-	c:\windows\system32\telnet.exe

2009-06-15 11:33 . 2004-08-03 22:44	82944	----a-w-	c:\windows\system32\tlntsess.exe

2009-06-11 06:48 . 2008-06-22 19:42	98304	----a-w-	c:\windows\system32\CmdLineExt.dll

2009-06-10 14:25 . 2004-08-03 22:43	84992	----a-w-	c:\windows\system32\avifil32.dll

2009-06-10 06:31 . 2004-08-03 22:44	132096	----a-w-	c:\windows\system32\wkssvc.dll

2009-06-05 07:46 . 2008-04-19 13:12	655872	----a-w-	c:\windows\system32\mstscax.dll

2009-06-03 19:27 . 2004-08-03 22:44	1294336	----a-w-	c:\windows\system32\quartz.dll

.


------- Sigcheck -------


[-] 2007-06-13 13:23	1424896	6E6AAC832F1B393FA605A528BB54D6DC	c:\windows\explorer.exe

[7] 2007-06-13 13:12	1034752	8DB0650B211425B9CDB7D1C4A8F6B482	c:\windows\$hf_mig$\KB938828\SP2QFE\explorer.exe

[7] 2004-08-03 22:44	1033728	379098A96E6C165B659DE7E4328010EA	c:\windows\$NtUninstallKB938828$\explorer.exe

[-] 2008-04-14 17:21	1035264	C791ED9EAC5E76D9525E157B1D7A599A	c:\windows\SoftwareDistribution\Download\85612d9569f9a4d033130e1ccf6503f1\explorer.exe

[7] 2007-06-13 13:23	1034752	029A562E81BBEE088C61D418BF408F44	c:\windows\system32\dllcache\explorer.exe

.

((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  

REGEDIT4


[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]

"{c95a4e8e-816d-4655-8c79-d736da1adb6d}"= "c:\program files\Hotspot_Shield\tbHot0.dll" [2009-07-31 2215960]


[HKEY_CLASSES_ROOT\clsid\{c95a4e8e-816d-4655-8c79-d736da1adb6d}]


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{c95a4e8e-816d-4655-8c79-d736da1adb6d}]

2009-07-31 09:34	2215960	----a-w-	c:\program files\Hotspot_Shield\tbHot0.dll


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}]

2008-11-27 17:01	204248	----a-w-	c:\program files\Hotspot Shield\HssIE\HssIE.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

"{c95a4e8e-816d-4655-8c79-d736da1adb6d}"= "c:\program files\Hotspot_Shield\tbHot0.dll" [2009-07-31 2215960]


[HKEY_CLASSES_ROOT\clsid\{c95a4e8e-816d-4655-8c79-d736da1adb6d}]


[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]

"{C95A4E8E-816D-4655-8C79-D736DA1ADB6D}"= "c:\program files\Hotspot_Shield\tbHot0.dll" [2009-07-31 2215960]


[HKEY_CLASSES_ROOT\clsid\{c95a4e8e-816d-4655-8c79-d736da1adb6d}]


[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1TortoiseNormal]

@="{C5994560-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994560-53D9-4125-87C9-F193FC689CB2}]

2008-01-16 15:52	80384	----a-w-	c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll


[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2TortoiseModified]

@="{C5994561-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994561-53D9-4125-87C9-F193FC689CB2}]

2008-01-16 15:52	80384	----a-w-	c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll


[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\3TortoiseConflict]

@="{C5994562-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994562-53D9-4125-87C9-F193FC689CB2}]

2008-01-16 15:52	80384	----a-w-	c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll


[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\4TortoiseLocked]

@="{C5994563-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994563-53D9-4125-87C9-F193FC689CB2}]

2008-01-16 15:52	80384	----a-w-	c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll


[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\5TortoiseReadOnly]

@="{C5994564-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994564-53D9-4125-87C9-F193FC689CB2}]

2008-01-16 15:52	80384	----a-w-	c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll


[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\6TortoiseDeleted]

@="{C5994565-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994565-53D9-4125-87C9-F193FC689CB2}]

2008-01-16 15:52	80384	----a-w-	c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll


[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\7TortoiseAdded]

@="{C5994566-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994566-53D9-4125-87C9-F193FC689CB2}]

2008-01-16 15:52	80384	----a-w-	c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll


[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\8TortoiseIgnored]

@="{C5994567-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994567-53D9-4125-87C9-F193FC689CB2}]

2008-01-16 15:52	80384	----a-w-	c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll


[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\9TortoiseUnversioned]

@="{C5994568-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994568-53D9-4125-87C9-F193FC689CB2}]

2008-01-16 15:52	80384	----a-w-	c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll


[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2008-04-01 486856]

"Creative Live! Cam Manager"="c:\program files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe" [2007-06-07 155648]

"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-08-19 68856]

"Rainlendar2"="c:\program files\Rainlendar2\Rainlendar2.exe" [2007-07-24 1298432]

"PcSync"="c:\program files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2006-06-27 1449984]

"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-02-06 3885408]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"UserFaultCheck"="c:\windows\system32\dumprep 0 -u" [X]

"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-12-04 8523776]

"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-12-04 81920]

"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2006-12-10 49152]

"SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 144784]

"V0420Mon.exe"="c:\windows\V0420Mon.exe" [2007-04-30 32768]

"amd_dc_opt"="c:\program files\AMD\amd_dc_opt\amd_dc_opt.exe" [2006-06-28 106496]

"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-03-30 185632]

"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2007-12-04 1626112]

"RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.exe [2007-05-10 16342528]

"BluetoothAuthenticationAgent"="bthprops.cpl" - c:\windows\system32\bthprops.cpl [2004-08-03 110592]


[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-03 15360]


c:\documents and settings\All Users\Menu Start\Programy\Autostart\

Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-9-24 29696]

HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2007-1-2 210520]


[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]

"DisableMonitoring"=dword:00000001


[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]

"DisableMonitoring"=dword:00000001


[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]

"DisableMonitoring"=dword:00000001


[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]

"DisableMonitoring"=dword:00000001


[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"c:\\wamp\\bin\\apache\\apache2.2.8\\bin\\httpd.exe"=

"c:\\Program Files\\Hamachi\\hamachi.exe"=

"d:\\Company of Heroes\\BugReport\\BugReport.exe"=

"c:\\WINDOWS\\system32\\java.exe"=

"c:\\Program Files\\Gadu-Gadu\\gg.exe"=

"c:\\Program Files\\BearShare\\BearShare.exe"=

"d:\\Gry\\Valve\\hl.exe"=

"c:\\WINDOWS\\system32\\dpnsvr.exe"=

"c:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 6.0\\avp.exe"=

"c:\\Program Files\\MAIET\\Gunz\\GunzLauncher.exe"=

"c:\\Program Files\\MAIET\\Gunz\\Gunz.exe"=

"d:\\Gry\\Battlefield 2\\BF2.exe"=

"d:\\Muza\\Bearshare\\BearShare.exe"=

"d:\\Program Files\\BitComet\\BitComet.exe"=

"d:\\GameSpy Arcade\\Aphex.exe"=

"d:\\Gry\\Original War\\OwarFull.dll"=

"d:\\Gry\\Original War\\OwarDedicated.exe"=

"c:\\WINDOWS\\system32\\dplaysvr.exe"=

"i:\\Program files\\Giants\\Giants.exe"=

"d:\\Gry\\NfS - Most Wanted\\speed.exe"=

"i:\\Nexon\\gms0.59\\DewStory.exe"=

"d:\\Gry\\Call of Duty 2\\CoD2MP_s.exe"=

"d:\\Gry\\EA Sports\\FIFA 08\\FIFA08.exe"=

"d:\\Company of Heroes\\RelicCOH.exe"=

"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=

"c:\\WINDOWS\\system32\\PnkBstrA.exe"=

"c:\\WINDOWS\\system32\\PnkBstrB.exe"=

"i:\\CoDWaW\\CoDWaW.exe"=

"i:\\CoDWaW\\CoDWaWmp.exe"=

"i:\\CoDWaW\\CoDWaW_LANFixed.exe"=

"c:\\Documents and Settings\\All Users\\Dane aplikacji\\NexonJP\\NGM\\NGM.exe"=

"d:\\Gry\\CoD2\\CoD2MP_s.exe"=

"d:\\Gry\\Warcraft IIIPL\\Warcraft III.exe"=

"d:\\Gry\\Valve\\hlds.exe"=

"c:\\Program Files\\SightSpeed\\SightSpeed.exe"=

"d:\\Gry\\World of Warcraft\\Launcher.exe"=

"d:\\Gry\\Left 4 Dead\\left4dead.exe"=

"c:\\Program Files\\Garena\\Garena.exe"=

"d:\\Gry\\ZT2\\zt.exe"=

"c:\\Documents and Settings\\Kuba\\Pulpit\\Nowy folder (9)\\VisualBoyAdvance.exe"=

"d:\\Gry\\Demigod\\bin\\Demigod.exe"=

"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=

"d:\\Gry\\Sacrifice\\Sacrifice.exe"=

"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=


[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]

"11752:TCP"= 11752:TCP:BitComet 11752 TCP

"11752:UDP"= 11752:UDP:BitComet 11752 UDP

"8461:TCP"= 8461:TCP:GoD High Port

"8462:TCP"= 8462:TCP:GoD Low Port

"58394:TCP"= 58394:TCP:Pando Media Booster

"58394:UDP"= 58394:UDP:Pando Media Booster


R2 HssSrv;Hotspot Shield Helper Service;c:\program files\Hotspot Shield\HssWPR\hsssrv.exe [2009-04-22 328752]

R3 AmdTools;AMD Special Tools Driver;c:\windows\system32\drivers\AmdTools.sys [2008-08-04 31744]

R3 tj2knd5;Terayon Cable Modem (NDIS);c:\windows\system32\drivers\tj2knd5.sys [2008-04-19 17616]

R3 tj2kunic;Terayon Cable Modem (WDM);c:\windows\system32\drivers\tj2kunic.sys [2008-04-19 69680]

S3 HssTrayService;Hotspot Shield Tray Service;c:\program files\Hotspot Shield\bin\HssTrayService.exe [2009-04-22 34352]

S3 maxD20081102;maxD20081102;c:\documents and settings\Kuba\Pulpit\imax\max20081102.sys [2009-08-16 19968]

S3 Mkd2kfNt;Mkd2kfNt;c:\windows\system32\drivers\Mkd2kfNT.sys [2009-07-02 131072]

S3 Mkd2Nadr;Mkd2Nadr;c:\windows\system32\drivers\Mkd2Nadr.sys [2009-07-02 79104]

S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des -service -- c:\windows\system32\GameMon.des -service [?]

S3 V0420VID;Live! Cam Vista IM (VF0420);c:\windows\system32\drivers\V0420Vid.sys [2008-06-13 99648]

S3 XDva120;XDva120;\??\c:\windows\system32\XDva120.sys -- c:\windows\system32\XDva120.sys [?]

S3 XDva193;XDva193;\??\c:\windows\system32\XDva193.sys -- c:\windows\system32\XDva193.sys [?]

S3 XDva202;XDva202;\??\c:\windows\system32\XDva202.sys -- c:\windows\system32\XDva202.sys [?]


[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

HPZ12	REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12

hpdevmgmt	REG_MULTI_SZ hpqcxs08 hpqddsvc

.

Zawartość folderu 'Zaplanowane zadania'


2009-08-17 c:\windows\Tasks\WGASetup.job

- c:\windows\system32\KB905474\wgasetup.exe [2009-05-07 20:18]

.

- - - - USUNIĘTO PUSTE WPISY - - - -


HKCU-Run-FlashGet - c:\program files\FlashGet Network\FlashGet universal\FlashGet.exe

HKLM-Run-FlashGet - c:\program files\FlashGet Network\FlashGet universal\FlashGet.exe



.

------- Skan uzupełniający -------

.

uStart Page = hxxp://google.bearshare.com/pl

uSearch Page = hxxp://www.google.com

uSearch Bar = hxxp://www.google.com/ie

uSearchURL,(Default) = hxxp://www.google.com/search?q=%s

IE: Download with BitComet - d:\program files\BitComet\BitComet.exe/AddLink.htm

IE: Download all video with BitComet - d:\program files\BitComet\BitComet.exe/AddVideo.htm

IE: Download all with BitComet - d:\program files\BitComet\BitComet.exe/AddAllLink.htm

IE: Download All by FlashGet - c:\program files\FlashGet Network\FlashGet universal\ComDlls\Bhoall.htm

IE: Download by FlashGet - c:\program files\FlashGet Network\FlashGet universal\ComDlls\Bholink.htm

IE: Eksport do programu Microsoft Excel - c:\progra~1\MICROS~4\OFFICE11\EXCEL.EXE/3000

FF - ProfilePath - c:\documents and settings\Kuba\Dane aplikacji\Mozilla\Firefox\Profiles\qv60vx6u.default\

FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1561552SearchSource=3q=

FF - component: c:\documents and settings\Kuba\Dane aplikacji\Mozilla\Firefox\Profiles\qv60vx6u.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\components\IBitCometExtension.dll

FF - component: c:\documents and settings\Kuba\Dane aplikacji\Mozilla\Firefox\Profiles\qv60vx6u.default\extensions\{c95a4e8e-816d-4655-8c79-d736da1adb6d}\components\FFAlert.dll

FF - plugin: c:\documents and settings\All Users\Dane aplikacji\NexonJP\NGM\npNxGameJP.dll

FF - plugin: c:\documents and settings\Kuba\Dane aplikacji\Mozilla\Firefox\Profiles\qv60vx6u.default\extensions\battlefieldheroespatcher@ea.com\platform\WINNT_x86-msvc\plugins\npBFHUpdater.dll

FF - plugin: c:\program files\AhnLab\ASP\MyKeyDefense 2.5\npmkd25aos.dll

FF - plugin: c:\program files\Microsoft Silverlight\3.0.40723.0\npctrl.1.0.20926.0.dll

FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll

FF - plugin: c:\program files\Mozilla Firefox\plugins\npganymedenet.dll

FF - plugin: c:\program files\Mozilla Firefox\plugins\npPandoWebInst.dll

FF - plugin: c:\program files\Mozilla Firefox\plugins\npWebLaunch.dll

.


**************************************************************************


catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2009-08-17 18:23

Windows 5.1.2600 Dodatek Service Pack 2 NTFS


skanowanie ukrytych procesów ...  


skanowanie ukrytych wpisów autostartu ... 


skanowanie ukrytych plików ...  


skanowanie pomyślnie ukończone

ukryte pliki: 0


**************************************************************************


[HKEY_LOCAL_MACHINE\System\ControlSet004\Services\MySQL]

"ImagePath"="\"c:\program files\MySQL\MySQL Server 5.0\bin\mysqld-nt\" --defaults-file=\"c:\program files\MySQL\MySQL Server 5.0\my.ini\" MySQL"


[HKEY_LOCAL_MACHINE\System\ControlSet004\Services\npggsvc]

"ImagePath"="c:\windows\system32\GameMon.des -service"

.

--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------


- - - - - - - 'winlogon.exe'(1076)

c:\windows\system32\klogon.dll

c:\windows\system32\cscui.dll


- - - - - - - 'explorer.exe'(3744)

c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

c:\program files\TortoiseSVN\bin\TortoiseStub.dll

c:\program files\TortoiseSVN\bin\TortoiseSVN.dll

c:\program files\TortoiseSVN\bin\intl3_tsvn.dll

c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scrchpg.dll

c:\windows\system32\msi.dll

c:\windows\system32\browselc.dll

c:\program files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

c:\program files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll

c:\windows\system32\SETUPAPI.dll

c:\windows\system32\NETSHELL.dll

c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\ShellEx.dll

c:\program files\WinRAR\rarext.dll

c:\program files\Nokia\Nokia PC Suite 6\PhoneBrowser.dll

c:\program files\Nokia\Nokia PC Suite 6\PCSCM.dll

c:\windows\system32\ConnAPI.DLL

c:\windows\system32\MSVCP71.dll

c:\program files\Nokia\Nokia PC Suite 6\Lang\PhoneBrowser_eng.nlr

c:\program files\Nokia\Nokia PC Suite 6\Resource\PhoneBrowser_Nokia.ngr

.

------------------------ Pozostałe uruchomione procesy ------------------------

.

c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe

c:\program files\Hotspot Shield\bin\openvpnas.exe

c:\program files\Common Files\Microsoft Shared\VS7Debug\MDM.EXE

c:\windows\system32\PnkBstrA.exe

c:\windows\system32\PnkBstrB.exe

c:\windows\system32\wdfmgr.exe

c:\windows\system32\wscntfy.exe

c:\program files\TortoiseSVN\bin\TSVNCache.exe

.

**************************************************************************

.

Czas ukończenia: 2009-08-17 18:29 - komputer został uruchomiony ponownie

ComboFix-quarantined-files.txt 2009-08-17 16:29


Przed: 5 524 193 280 bajtów wolnych

Po: 5 513 646 080 bajtów wolnych


WindowsXP-KB310994-SP2-Pro-BootDisk-PLK.exe

[boot loader]

timeout=2

default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS

[operating systems]

c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons

multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect


Current=4 Default=4 Failed=3 LastKnownGood=5 Sets=1,2,3,4,5

612	--- E O F ---	2009-08-17 01:05

HijackThis log

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 18:52:05, on 2009-08-17

Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Boot mode: Normal


Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\RTHDCPL.EXE

C:\Program Files\DAEMON Tools Lite\daemon.exe

C:\Program Files\Rainlendar2\Rainlendar2.exe

C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe

C:\Program Files\Hotspot Shield\bin\openvpnas.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe

C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\PnkBstrA.exe

C:\WINDOWS\system32\PnkBstrB.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\wscntfy.exe

C:\Program Files\TortoiseSVN\bin\TSVNCache.exe

C:\WINDOWS\explorer.exe

C:\WINDOWS\system32\notepad.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Documents and Settings\Kuba\Pulpit\launch.exe

C:\DOCUME~1\Kuba\USTAWI~1\Temp\RarSFX0\8e2c6t.exe

C:\DOCUME~1\Kuba\USTAWI~1\Temp\RarSFX0\fpyq9.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe


R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.bearshare.com/pl

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza

R3 - URLSearchHook: Hotspot Shield Toolbar - {c95a4e8e-816d-4655-8c79-d736da1adb6d} - C:\Program Files\Hotspot_Shield\tbHot0.dll

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: flashget2 urlcatch - {1F364306-AA45-47B5-9F9D-39A8B94E7EF1} - (no file)

O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - D:\Program Files\BitComet\tools\BitCometBHO_1.2.2.28.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O2 - BHO: Pomocnik rejestracji usługi Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll

O2 - BHO: HP Smart Web Printing 1.0 - {AE84A6AA-A333-4B92-B276-C11E2212E4FE} - C:\Program Files\HP\Smart Web Printing\SmartWebPrinting.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll

O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll

O2 - BHO: Hotspot Shield Toolbar - {c95a4e8e-816d-4655-8c79-d736da1adb6d} - C:\Program Files\Hotspot_Shield\tbHot0.dll

O2 - BHO: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files\Hotspot Shield\hssie\HssIE.dll

O3 - Toolbar: Hotspot Shield Toolbar - {c95a4e8e-816d-4655-8c79-d736da1adb6d} - C:\Program Files\Hotspot_Shield\tbHot0.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"

O4 - HKLM\..\Run: [V0420Mon.exe] C:\WINDOWS\V0420Mon.exe

O4 - HKLM\..\Run: [amd_dc_opt] "C:\Program Files\AMD\amd_dc_opt\amd_dc_opt.exe"

O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -startup

O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u

O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun

O4 - HKCU\..\Run: [Creative Live! Cam Manager] "C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe"

O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [Rainlendar2] C:\Program Files\Rainlendar2\Rainlendar2.exe

O4 - HKCU\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

O8 - Extra context menu item: Download with BitComet - res://D:\Program Files\BitComet\BitComet.exe/AddLink.htm

O8 - Extra context menu item: Download all video with BitComet - res://D:\Program Files\BitComet\BitComet.exe/AddVideo.htm

O8 - Extra context menu item: Download all with BitComet - res://D:\Program Files\BitComet\BitComet.exe/AddAllLink.htm

O8 - Extra context menu item: Download All by FlashGet - C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\Bhoall.htm

O8 - Extra context menu item: Download by FlashGet - C:\Program Files\FlashGet Network\FlashGet universal\ComDlls\Bholink.htm

O8 - Extra context menu item: Eksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll

O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL

O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://D:\Program Files\BitComet\tools\BitCometBHO_1.2.2.28.dll/206 (file missing)

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll

O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Hotspot Shield Service (HotspotShieldService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\openvpnas.exe

O23 - Service: Hotspot Shield Helper Service (HssSrv) - AnchorFree Inc. - C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe

O23 - Service: Hotspot Shield Tray Service (HssTrayService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE

O23 - Service: MySQL - Unknown owner - C:\Program.exe (file missing)

O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe

O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe

O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe

O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.8\bin\httpd.exe

O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.0.51a\bin\mysqld-nt.exe


--

End of file - 9083 bytes

Jeszcze skanuję teraz Dr.Web’em, jeśli będzie trzeba umieszczę log’a.

Z góry dzięki

Neon1992 · 17 Sierpień 2009 17:16

Przeskanuj jeszcze system Malwarebytes AntiMalware następnie log wrzuć na forum.

Nowor · 18 Sierpień 2009 11:02

oto log

Malwarebytes' Anti-Malware 1.40

Wersja bazy definicji: 2646

Windows 5.1.2600 Dodatek Service Pack 2


2009-08-18 13:01:16

mbam-log-2009-08-18 (13-01-16).txt


Typ skanowania: Pełne skanowanie (C:\|D:\|I:\|)

Przeskanowane obiekty: 343001

Upłynęło: 1 hour(s), 9 minute(s), 58 second(s)


Zainfekowane procesy w pamięci: 0

Zainfekowane moduły pamięci: 0

Zainfekowane klucze rejestru: 1

Zainfekowane wartości rejestru: 0

Zainfekowane pliki rejestru: 0

Zainfekowane foldery: 0

Zainfekowane pliki: 3


Zainfekowane procesy w pamięci:

(Nie wykryto groźnych plików)


Zainfekowane moduły pamięci:

(Nie wykryto groźnych plików)


Zainfekowane klucze rejestru:

HKEY_LOCAL_MACHINE\SOFTWARE\MyGlobalSearch (Adware.BookedSpace) -> Quarantined and deleted successfully.


Zainfekowane wartości rejestru:

(Nie wykryto groźnych plików)


Zainfekowane pliki rejestru:

(Nie wykryto groźnych plików)


Zainfekowane foldery:

(Nie wykryto groźnych plików)


Zainfekowane pliki:

D:\Gry\SPORE\Support\Support.exe (Worm.Wukill) -> Quarantined and deleted successfully.

D:\My Downloads\My Downloads.exe (Worm.Wukill) -> Quarantined and deleted successfully.

I:\My Downloads\My Downloads.exe (Worm.Wukill) -> Quarantined and deleted successfully.