Po walce z "wirusami" / zbiory zabezpieczone hasłe

Morgen · 26 Listopad 2006 11:50

Witam serdecznie.

Ściągałem program BitComet z sieci p2p (z eMule).

Po uruchomieniu pliku instalacyjnego okazało się, że są to jakieś cracki i nie wiadomo jakie pliki.

Równo z instalacją tych plików zapora systemu została wyłączona i nie można było jej ponownie włączyć (z tym sobie akurat już poradziłem).

W C:\Program Files utworzyło mi się kilka plików z rozszerzeniem exe (np. patcher.exe), które musiałem usunąć za pomocą Hijacka (podczas restartu systemu).

NOD32 podczas skanowania:

Tych plików tam nie ma, ale mnie niepokoją. Co mogę z tym zrobić?

Poza tym, chyba wszystko jest ok, ale prosiłbym o sprawdzenie loga (sam nic nie znalazłem).

Logfile of HijackThis v1.99.1 Scan saved at 12:52:39, on 2006-11-26 Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe E:\Programy i inne\Antywirusowe\NOD32\nod32kui.exe E:\Programy i inne\Antywirusowe\NOD32\nod32krn.exe C:\WINDOWS\system32\HPZipm12.exe E:\Programy i inne\Alcohol 120\StarWind\StarWindService.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Mozilla Firefox\firefox.exe E:\Programy i inne\Antywirusowe\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.onet.pl/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - E:\Programy i inne\Adobe Reader 7\ActiveX\AcroIEHelper.dll O2 - BHO: IeCatch5 Class - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - E:\PROGRA~1\FlashGet\jccatch.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - E:\Programy i inne\Antywirusowe\Spybot - Search Destroy\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll O2 - BHO: gFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - E:\PROGRA~1\FlashGet\getflash.dll O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - E:\PROGRA~1\FlashGet\fgiebar.dll O4 - HKLM…\Run: [nod32kui] “E:\Programy i inne\Antywirusowe\NOD32\nod32kui.exe” /WAITSERVICE O8 - Extra context menu item: Ściągnij przy pomocy FlashGet’a - E:\Programy i inne\FlashGet\jc_link.htm O8 - Extra context menu item: Ściągnij wszystko przy pomocy FlashGet’a - E:\Programy i inne\FlashGet\jc_all.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll O9 - Extra ‘Tools’ menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - E:\PROGRA~1\FlashGet\flashget.exe O9 - Extra ‘Tools’ menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - E:\PROGRA~1\FlashGet\flashget.exe O16 - DPF: {92ECE6FA-AC2E-4042-BFAE-0C8608E52A43} (SignActivX Control) - https://www.bph.pl/sezam/components/SignActivX.cab O17 - HKLM\System\CCS\Services\Tcpip…{DC5E261A-C9A6-482F-B6F1-EA39389059ED}: NameServer = 213.134.128.19,213.134.128.20 O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - E:\Programy i inne\Antywirusowe\NOD32\nod32krn.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - E:\Programy i inne\Alcohol 120\StarWind\StarWindService.exe

adam9870 · 26 Listopad 2006 11:55

Log masz ok.

Proponuję przeskanować programem AVG Anti-Spyware po update.

Pokaż dla pewności jeszcze log z silenta.

Morgen · 26 Listopad 2006 11:58

Chciałbym, ale nie potrafię go uruchomić :lol:

Kiedyś nie było problemów, a teraz…

Ściągam plik i podczas uruchamiania wyskakuje okno z jakiego programu (rozszerzenie nie jest znane). :x

Joan · 26 Listopad 2006 12:02

O problemach z Silentem poczytaj tutaj -> http://www.searchengines.pl/phpbb203/in … opic=15989

Morgen · 26 Listopad 2006 13:04

AVG wykrył tylko TrackingCookie, ale już usunąłem.

A co do loga z Silenta - nadal nie chce mi się on uruchomić.

Robiłem wszystko to co mi podał/a Joan.

adam9870 · 26 Listopad 2006 14:37

W takim razie proszę wrzucić log z ComboFix. Aby zrobić w nim log należy go uruchomić, wklepać klawisz Y, nacisnąć klawisz enter, czekać cierpliwie i log powinien być w formie pliku .txt o nazwie combofix na partycji C.

Morgen · 26 Listopad 2006 14:52

Admin - 06-11-26 15:54:22,14 Dodatek Service Pack 2 ComboFix 06.11.26 - Running from: “C:\Documents and Settings\Admin\Pulpit” ((((((((((((((((((((((((((((((( Files Created from 2006-10-26 to 2006-11-26 )))))))))))))))))))))))))))))))))) 2006-11-26 13:51 3,968 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys 2006-11-26 13:29 816,672 --a------ C:\WINDOWS\system32\drivers\avg7core.sys 2006-11-26 13:29 4,224 --a------ C:\WINDOWS\system32\drivers\avg7rsw.sys 2006-11-26 13:29 3,968 --a------ C:\WINDOWS\system32\drivers\avgclean.sys 2006-11-26 13:29 28,416 --a------ C:\WINDOWS\system32\drivers\avg7rsxp.sys 2006-11-26 13:29 18,240 --a------ C:\WINDOWS\system32\drivers\avgmfx86.sys 2006-11-26 13:29 110,592 --a------ C:\WINDOWS\system32\avgfwafu.dll 2006-11-26 13:29 2006-11-26 13:29 2006-11-26 13:29 2006-11-26 11:56 2006-11-26 11:22 280,692 --a------ C:\WINDOWS\dr.exe 2006-11-26 11:22 279,552 --a------ C:\WINDOWS\user32.exe 2006-11-26 11:22 194,133 --a------ C:\WINDOWS\patcher.exe 2006-11-26 11:16 2006-11-26 10:56 223,128 --a------ C:\WINDOWS\system32\drivers\vaxscsi.sys 2006-11-26 10:47 271,360 --a------ C:\WINDOWS\system32\drivers\atksgt.sys 2006-11-26 10:47 18,048 --a------ C:\WINDOWS\system32\drivers\lirsgt.sys 2006-11-25 20:37 2006-11-25 19:39 2006-11-25 19:21 225,280 --a------ C:\WINDOWS\system32\rewire.dll 2006-11-25 17:43 6,144 --a------ C:\WINDOWS\system32\ff_vfw.dll 2006-11-25 17:43 2006-11-25 16:07 81,920 --------- C:\WINDOWS\system32\vdrmux.dll 2006-11-25 16:07 76,800 --------- C:\WINDOWS\system32\Lfwmf13n.dll 2006-11-25 16:07 73,728 --------- C:\WINDOWS\system32\MMAviAx.dll 2006-11-25 16:07 73,728 --------- C:\WINDOWS\system32\lffax13n.dll 2006-11-25 16:07 65,536 --------- C:\WINDOWS\system32\Lfpct13n.dll 2006-11-25 16:07 46,592 --------- C:\WINDOWS\system32\vdrcodec.dll 2006-11-25 16:07 453,120 --------- C:\WINDOWS\system32\ltkrn13n.dll 2006-11-25 16:07 44,544 --------- C:\WINDOWS\system32\msxml4a.dll 2006-11-25 16:07 40,960 --------- C:\WINDOWS\system32\langserv.dll 2006-11-25 16:07 393,216 --------- C:\WINDOWS\system32\LFCMP13n.DLL 2006-11-25 16:07 32,838 --------- C:\WINDOWS\system32\Cachex.dll 2006-11-25 16:07 32,768 --------- C:\WINDOWS\system32\MLPagAx.dll 2006-11-25 16:07 30,208 --------- C:\WINDOWS\system32\lfbmp13n.dll 2006-11-25 16:07 294,912 --------- C:\WINDOWS\system32\pvmjpg21.dll 2006-11-25 16:07 278,016 --------- C:\WINDOWS\system32\LFJ2K13n.dll 2006-11-25 16:07 24,576 --------- C:\WINDOWS\system32\lftga13n.dll 2006-11-25 16:07 204,881 --------- C:\WINDOWS\system32\DiskIO.dll 2006-11-25 16:07 155,721 --------- C:\WINDOWS\system32\RALMain.dll 2006-11-25 16:07 153,088 --------- C:\WINDOWS\system32\ltfil13n.DLL 2006-11-25 16:07 143,360 --------- C:\WINDOWS\system32\lftif13n.dll 2006-11-25 16:07 114,759 --------- C:\WINDOWS\system32\Aviprax.dll 2006-11-25 16:07 1,693,696 --------- C:\WINDOWS\system32\LTCLR13n.dll 2006-11-25 16:06 90,112 --a------ C:\WINDOWS\unvise32.exe 2006-11-25 16:06 11,264 --a------ C:\WINDOWS\system32\drivers\asapiW2k.sys 2006-11-25 16:05 974,848 --a------ C:\WINDOWS\system32\MFC70.DLL 2006-11-25 16:05 964,608 --a------ C:\WINDOWS\system32\MFC70U.DLL 2006-11-25 16:05 84,992 --a------ C:\WINDOWS\system32\ATL70.DLL 2006-11-25 16:05 61,440 --a------ C:\WINDOWS\system32\pclepim1.dll 2006-11-25 16:05 54,784 --a------ C:\WINDOWS\system32\MSVCI70.DLL 2006-11-25 16:05 49,152 --a------ C:\WINDOWS\system32\PCLEGetGuid.dll 2006-11-25 16:05 487,424 --a------ C:\WINDOWS\system32\MSVCP70.DLL 2006-11-25 16:05 406,016 --a------ C:\WINDOWS\system32\PSDrvCheck.exe 2006-11-25 16:05 344,064 --a------ C:\WINDOWS\system32\msvcr70.dll 2006-11-25 16:05 19,456 --a------ C:\WINDOWS\system32\asapi.dll 2006-11-25 16:03 14,165 --------- C:\WINDOWS\system32\drivers\Pclepci.sys 2006-11-25 16:03 2006-11-25 16:03 2006-11-25 10:03 2006-11-24 17:43 2006-11-24 17:33 2006-11-24 17:21 2006-11-24 17:20 2006-11-24 17:20 2006-11-24 17:20 2006-11-24 17:19 2006-11-24 17:18 15,104 --a------ C:\WINDOWS\system32\drivers\usbscan.sys 2006-11-24 17:17 94,208 --a------ C:\WINDOWS\system32\HPZipt12.dll 2006-11-24 17:17 69,632 --a------ C:\WINDOWS\system32\HPZipm12.exe 2006-11-24 17:17 61,440 --a------ C:\WINDOWS\system32\HPZinw12.exe 2006-11-24 17:17 57,344 --a------ C:\WINDOWS\system32\HPZisn12.dll 2006-11-24 17:17 306,688 --a------ C:\WINDOWS\IsUninst.exe 2006-11-24 17:17 278,584 --a------ C:\WINDOWS\system32\HPZidr12.dll 2006-11-24 17:17 204,800 --a------ C:\WINDOWS\system32\HPZipr12.dll 2006-11-24 17:16 26,496 --a------ C:\WINDOWS\system32\drivers\USBSTOR.SYS 2006-11-24 17:16 2006-11-24 17:15 2006-11-24 17:15 2006-11-24 16:29 221,184 --a------ C:\WINDOWS\system32\wmpns.dll 2006-11-24 16:24 2006-11-24 16:24 2006-11-24 16:19 25,856 --a------ C:\WINDOWS\system32\drivers\usbprint.sys 2006-11-24 16:18 31,616 --a------ C:\WINDOWS\system32\drivers\usbccgp.sys 2006-11-24 15:52 2006-11-24 15:34 2006-11-24 15:30 2006-11-24 15:29 2006-11-24 15:29 2006-11-24 15:28 2006-11-24 15:28 2006-11-24 15:25 639,224 --a------ C:\WINDOWS\system32\drivers\sptd.sys 2006-11-24 14:23 2006-11-24 13:49 2006-11-24 13:49 2006-11-24 13:48 2006-11-24 13:33 2006-11-24 13:33 2006-11-24 13:16 2006-11-24 13:10 765,952 --a------ C:\WINDOWS\system32\xvidcore.dll 2006-11-24 13:10 180,224 --a------ C:\WINDOWS\system32\xvidvfw.dll 2006-11-24 13:10 2006-11-24 13:10 2006-11-24 13:07 68,888 --a------ C:\WINDOWS\system32\xinput1_3.dll 2006-11-24 13:07 62,744 --a------ C:\WINDOWS\system32\xinput1_2.dll 2006-11-24 13:07 237,848 --a------ C:\WINDOWS\system32\xactengine2_4.dll 2006-11-24 13:07 236,824 --a------ C:\WINDOWS\system32\xactengine2_3.dll 2006-11-24 13:07 2,414,360 --a------ C:\WINDOWS\system32\d3dx9_31.dll 2006-11-24 13:07 2,297,552 --a------ C:\WINDOWS\system32\d3dx9_26.dll 2006-11-24 13:07 15,128 --a------ C:\WINDOWS\system32\x3daudio1_1.dll 2006-11-24 12:47 2006-11-24 12:43 82,944 --a------ C:\WINDOWS\system32\drivers\wdmaud.sys 2006-11-24 12:43 7,552 --a------ C:\WINDOWS\system32\drivers\MSKSSRV.sys 2006-11-24 12:43 60,800 --a------ C:\WINDOWS\system32\drivers\sysaudio.sys 2006-11-24 12:43 60,288 --a------ C:\WINDOWS\system32\drivers\drmk.sys 2006-11-24 12:43 6,400 --a------ C:\WINDOWS\system32\drivers\splitter.sys 2006-11-24 12:43 58,624 --a------ C:\WINDOWS\system32\drivers\redbook.sys 2006-11-24 12:43 54,272 --a------ C:\WINDOWS\system32\drivers\swmidi.sys 2006-11-24 12:43 52,864 --a------ C:\WINDOWS\system32\drivers\DMusic.sys 2006-11-24 12:43 5,376 --a------ C:\WINDOWS\system32\drivers\MSPCLOCK.sys 2006-11-24 12:43 4,992 --a------ C:\WINDOWS\system32\drivers\MSPQM.sys 2006-11-24 12:43 4,096 --a------ C:\WINDOWS\system32\ksuser.dll 2006-11-24 12:43 3,072 --a------ C:\WINDOWS\system32\drivers\audstub.sys 2006-11-24 12:43 2,944 --a------ C:\WINDOWS\system32\drivers\msmpu401.sys 2006-11-24 12:43 2,944 --a------ C:\WINDOWS\system32\drivers\drmkaud.sys 2006-11-24 12:43 172,416 --a------ C:\WINDOWS\system32\drivers\kmixer.sys 2006-11-24 12:43 145,792 --a------ C:\WINDOWS\system32\drivers\portcls.sys 2006-11-24 12:43 142,464 --a------ C:\WINDOWS\system32\drivers\aec.sys 2006-11-24 12:42 870,784 --a------ C:\WINDOWS\system32\ati3d1ag.dll 2006-11-24 12:42 77,312 --a------ C:\WINDOWS\system32\usbui.dll 2006-11-24 12:42 3,712 --a------ C:\WINDOWS\system32\drivers\ctljystk.sys 2006-11-24 12:42 290,816 --a------ C:\WINDOWS\system32\ati2cqag.dll 2006-11-24 12:42 260,096 --a------ C:\WINDOWS\system32\ati2dvag.dll 2006-11-24 12:42 2,510,752 --a------ C:\WINDOWS\system32\ativvaxx.dll 2006-11-24 12:42 2,401,984 --a------ C:\WINDOWS\system32\ati3duag.dll 2006-11-24 12:42 10,624 --a------ C:\WINDOWS\system32\drivers\gameenum.sys 2006-11-24 12:42 1,723,904 --a------ C:\WINDOWS\system32\drivers\ati2mtag.sys 2006-11-24 12:41 9,936 --a------ C:\WINDOWS\system\LZEXPAND.DLL 2006-11-24 12:41 9,168 --a------ C:\WINDOWS\system\VER.DLL 2006-11-24 12:41 85,532 --a------ C:\WINDOWS\system32\dgsetup.dll 2006-11-24 12:41 83,456 --a------ C:\WINDOWS\system\OLECLI.DLL 2006-11-24 12:41 8,704 --a------ C:\WINDOWS\system32\batt.dll 2006-11-24 12:41 8,192 -ra------ C:\WINDOWS\system32\kbdhept.dll 2006-11-24 12:41 75,776 --a------ C:\WINDOWS\system32\storprop.dll 2006-11-24 12:41 70,144 --a------ C:\WINDOWS\NOTEPAD.EXE 2006-11-24 12:41 70,096 --a------ C:\WINDOWS\system\AVICAP.DLL 2006-11-24 12:41 7,168 --a------ C:\WINDOWS\system32\kbdcz.dll 2006-11-24 12:41 69,552 --a------ C:\WINDOWS\system\MMSYSTEM.DLL 2006-11-24 12:41 6,656 -ra------ C:\WINDOWS\system32\kbdhela3.dll 2006-11-24 12:41 6,656 --a------ C:\WINDOWS\system32\kbdycl.dll 2006-11-24 12:41 6,656 --a------ C:\WINDOWS\system32\kbdsl1.dll 2006-11-24 12:41 6,656 --a------ C:\WINDOWS\system32\kbdsl.dll 2006-11-24 12:41 6,656 --a------ C:\WINDOWS\system32\kbdhu.dll 2006-11-24 12:41 6,656 --a------ C:\WINDOWS\system32\kbdcz2.dll 2006-11-24 12:41 6,656 --a------ C:\WINDOWS\system32\kbdcz1.dll 2006-11-24 12:41 6,656 --a------ C:\WINDOWS\system32\kbdcr.dll 2006-11-24 12:41 6,656 --a------ C:\WINDOWS\system32\KBDAL.DLL 2006-11-24 12:41 6,144 -ra------ C:\WINDOWS\system32\kbdtuq.dll 2006-11-24 12:41 6,144 -ra------ C:\WINDOWS\system32\kbdtuf.dll 2006-11-24 12:41 6,144 -ra------ C:\WINDOWS\system32\kbdlv1.dll 2006-11-24 12:41 6,144 -ra------ C:\WINDOWS\system32\kbdlv.dll 2006-11-24 12:41 6,144 -ra------ C:\WINDOWS\system32\kbdhela2.dll 2006-11-24 12:41 6,144 -ra------ C:\WINDOWS\system32\kbdgkl.dll 2006-11-24 12:41 6,144 -ra------ C:\WINDOWS\system32\kbdest.dll 2006-11-24 12:41 5,632 -ra------ C:\WINDOWS\system32\kbdycc.dll 2006-11-24 12:41 5,632 -ra------ C:\WINDOWS\system32\kbduzb.dll 2006-11-24 12:41 5,632 -ra------ C:\WINDOWS\system32\kbdur.dll 2006-11-24 12:41 5,632 -ra------ C:\WINDOWS\system32\kbdtat.dll 2006-11-24 12:41 5,632 -ra------ C:\WINDOWS\system32\kbdru1.dll 2006-11-24 12:41 5,632 -ra------ C:\WINDOWS\system32\kbdru.dll 2006-11-24 12:41 5,632 -ra------ C:\WINDOWS\system32\kbdmon.dll 2006-11-24 12:41 5,632 -ra------ C:\WINDOWS\system32\kbdlt1.dll 2006-11-24 12:41 5,632 -ra------ C:\WINDOWS\system32\kbdlt.dll 2006-11-24 12:41 5,632 -ra------ C:\WINDOWS\system32\kbdkyr.dll 2006-11-24 12:41 5,632 -ra------ C:\WINDOWS\system32\kbdkaz.dll 2006-11-24 12:41 5,632 -ra------ C:\WINDOWS\system32\kbdhe319.dll 2006-11-24 12:41 5,632 -ra------ C:\WINDOWS\system32\kbdhe220.dll 2006-11-24 12:41 5,632 -ra------ C:\WINDOWS\system32\kbdhe.dll 2006-11-24 12:41 5,632 -ra------ C:\WINDOWS\system32\kbdbu.dll 2006-11-24 12:41 5,632 -ra------ C:\WINDOWS\system32\kbdblr.dll 2006-11-24 12:41 5,632 -ra------ C:\WINDOWS\system32\kbdazel.dll 2006-11-24 12:41 5,632 -ra------ C:\WINDOWS\system32\kbdaze.dll 2006-11-24 12:41 5,632 --a------ C:\WINDOWS\system32\kbdro.dll 2006-11-24 12:41 5,632 --a------ C:\WINDOWS\system32\kbdhu1.dll 2006-11-24 12:41 5,120 --a------ C:\WINDOWS\system\SHELL.DLL 2006-11-24 12:41 33,376 --a------ C:\WINDOWS\system\COMMDLG.DLL 2006-11-24 12:41 24,661 --a------ C:\WINDOWS\system32\spxcoins.dll 2006-11-24 12:41 24,064 --a------ C:\WINDOWS\system\OLESVR.DLL 2006-11-24 12:41 19,200 --a------ C:\WINDOWS\system\TAPI.DLL 2006-11-24 12:41 176,157 --a------ C:\WINDOWS\system32\dgrpsetu.dll 2006-11-24 12:41 15,360 --a------ C:\WINDOWS\TASKMAN.EXE 2006-11-24 12:41 13,312 --a------ C:\WINDOWS\system32\irclass.dll 2006-11-24 12:41 127,008 --a------ C:\WINDOWS\system\MSVIDEO.DLL 2006-11-24 12:41 11,264 --a------ C:\WINDOWS\system32\drivers\irenum.sys 2006-11-24 12:41 109,488 --a------ C:\WINDOWS\system\AVIFILE.DLL 2006-11-24 12:41 103,424 --a------ C:\WINDOWS\system32\EqnClass.Dll 2006-11-24 12:41 2006-11-24 12:41 2006-11-24 12:41 2006-11-24 12:41 2006-11-24 12:41 2006-11-24 12:41 2006-11-24 12:41 2006-11-24 12:41 2006-11-24 12:41 2006-11-24 12:41 2006-11-24 12:41 2006-11-24 12:41 2006-11-24 12:41 2006-11-24 12:41 2006-11-24 12:41 2006-11-24 12:40 2006-11-24 12:40 2006-11-24 12:40 2006-11-24 12:40 2006-11-24 12:40 2006-11-24 12:40 2006-11-24 12:40 2006-11-24 12:40 2006-11-24 12:40 2006-11-24 12:40 2006-11-24 12:39 502,368 --a------ C:\WINDOWS\system32\drivers\amon.sys 2006-11-24 12:39 274,432 --a------ C:\WINDOWS\system32\imon.dll 2006-11-24 12:37 22,752 --a------ C:\WINDOWS\system32\spupdsvc.exe 2006-11-24 12:37 2006-11-24 12:37 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:36 2006-11-24 12:26 2006-11-24 12:24 516,096 --------- C:\WINDOWS\system32\ati2sgag.exe 2006-11-24 12:23 451,072 --a------ C:\WINDOWS\Radeon Omega Drivers v3.8.291 Uninstall.exe 2006-11-24 12:23 2006-11-24 12:23 2006-11-24 12:19 2006-11-24 12:17 2006-11-24 12:17 2006-11-24 12:06 2006-11-24 12:04 60,416 --a------ C:\WINDOWS\ALCFDRTM.EXE 2006-11-24 12:04 2006-11-24 12:03 765,952 --a------ C:\WINDOWS\system\crlds3d.dll 2006-11-24 12:03 7,506,432 --a------ C:\WINDOWS\system32\RTLCPL.EXE 2006-11-24 12:03 67,584 --a------ C:\WINDOWS\SOUNDMAN.EXE 2006-11-24 12:03 65,536 --a------ C:\WINDOWS\system32\Audio3D.dll 2006-11-24 12:03 65,536 --a------ C:\WINDOWS\system32\a3d.dll 2006-11-24 12:03 626,204 --a------ C:\WINDOWS\system32\drivers\ALCXWDM.SYS 2006-11-24 12:03 400,384 --a------ C:\WINDOWS\system32\drivers\ALCXSENS.SYS 2006-11-24 12:03 208,896 --------- C:\WINDOWS\alcupd.exe 2006-11-24 12:03 155,648 --a------ C:\WINDOWS\system32\RTLCPAPI.dll 2006-11-24 12:03 139,264 --------- C:\WINDOWS\alcrmv.exe 2006-11-24 12:03 2006-11-24 12:03 2006-11-24 12:03 2006-11-24 11:59 8,192 -ra------ C:\WINDOWS\system32\bdco1.dll 2006-11-24 11:59 79,360 -ra------ C:\WINDOWS\system32\drivers\nvatabus.sys 2006-11-24 11:59 57,600 -ra------ C:\WINDOWS\system32\drivers\nvnrm.sys 2006-11-24 11:59 33,024 -ra------ C:\WINDOWS\system32\drivers\NVENETFD.sys 2006-11-24 11:59 32,256 -ra------ C:\WINDOWS\system32\nvconrm.dll 2006-11-24 11:59 294,400 -ra------ C:\WINDOWS\system32\idecoi.dll 2006-11-24 11:59 198,656 -ra------ C:\WINDOWS\system32\fdco1.dll 2006-11-24 11:59 191,232 -ra------ C:\WINDOWS\system32\drivers\nvsnpu.sys 2006-11-24 11:59 172,032 -ra------ C:\WINDOWS\system32\nvusmb.exe 2006-11-24 11:59 172,032 -ra------ C:\WINDOWS\system32\nvuide.exe 2006-11-24 11:59 172,032 --a------ C:\WINDOWS\system32\nvunrm.exe 2006-11-24 11:59 172,032 --a------ C:\WINDOWS\system32\NVUNINST.EXE 2006-11-24 11:59 12,928 -ra------ C:\WINDOWS\system32\drivers\nvnetbus.sys 2006-11-24 11:58 5,824 --a------ C:\WINDOWS\system32\drivers\ASUSHWIO.SYS 2006-11-24 11:58 32,256 -ra------ C:\WINDOWS\system32\NVCOG.DLL 2006-11-24 11:58 21,120 -ra------ C:\WINDOWS\system32\drivers\nv_agp.SYS 2006-11-24 11:58 172,032 --a------ C:\WINDOWS\system32\nvugart.exe 2006-11-24 11:58 2006-11-24 11:58 2006-11-24 11:53 2006-11-24 11:53 2006-11-24 11:53 2006-11-24 11:53 2006-11-24 11:53 2006-11-24 11:53 2006-11-24 11:53 2006-11-24 11:53 2006-11-24 11:53 2006-11-24 11:53 2006-11-24 11:53 2006-11-24 11:53 2006-11-24 11:53 2006-11-24 11:53 2006-11-24 11:53 2006-11-24 11:53 2006-11-24 11:53 2006-11-24 11:53 2006-11-24 11:52 2006-11-24 11:52 2006-11-24 11:52 2006-11-24 11:49 112,128 --a------ C:\WINDOWS\system32\mapi32.dll 2006-11-24 11:49 0 -rahs---- C:\MSDOS.SYS 2006-11-24 11:49 0 -rahs---- C:\IO.SYS 2006-11-24 11:49 0 --a------ C:\CONFIG.SYS 2006-11-24 11:49 0 --a------ C:\AUTOEXEC.BAT 2006-11-24 11:49 2006-11-24 11:49 2006-11-24 11:49 2006-11-24 11:48 2006-11-24 11:48 2006-11-24 11:48 2006-11-24 11:48 2006-11-24 11:48 2006-11-24 11:47 86,016 --a------ C:\WINDOWS\system32\isign32.dll 2006-11-24 11:47 81,920 --a------ C:\WINDOWS\system32\ils.dll 2006-11-24 11:47 8,192 --a------ C:\WINDOWS\system32\bitsprx2.dll 2006-11-24 11:47 73,728 --a------ C:\WINDOWS\system32\icwdial.dll 2006-11-24 11:47 73,472 --a------ C:\WINDOWS\system32\drivers\sr.sys 2006-11-24 11:47 7,168 --a------ C:\WINDOWS\system32\bitsprx3.dll 2006-11-24 11:47 69,632 --a------ C:\WINDOWS\system32\msconf.dll 2006-11-24 11:47 678,400 --a------ C:\WINDOWS\system32\inetcomm.dll 2006-11-24 11:47 67,584 --a------ C:\WINDOWS\system32\srclient.dll 2006-11-24 11:47 67,584 --a------ C:\WINDOWS\system32\acctres.dll 2006-11-24 11:47 65,536 --a------ C:\WINDOWS\system32\icwphbk.dll 2006-11-24 11:47 6,656 --a------ C:\WINDOWS\system32\wuauserv.dll 2006-11-24 11:47 49,664 --a------ C:\WINDOWS\system32\inetres.dll 2006-11-24 11:47 466,200 --a------ C:\WINDOWS\system32\wuapi.dll 2006-11-24 11:47 45,568 --a------ C:\WINDOWS\system32\safrslv.dll 2006-11-24 11:47 43,520 --a------ C:\WINDOWS\system32\safrcdlg.dll 2006-11-24 11:47 43,520 --a------ C:\WINDOWS\system32\racpldlg.dll 2006-11-24 11:47 41,240 --a------ C:\WINDOWS\system32\wups.dll 2006-11-24 11:47 382,464 --a------ C:\WINDOWS\system32\qmgr.dll 2006-11-24 11:47 34,560 --a------ C:\WINDOWS\system32\mnmdd.dll 2006-11-24 11:47 32,768 --a------ C:\WINDOWS\system32\mnmsrvc.exe 2006-11-24 11:47 32,768 --a------ C:\WINDOWS\system32\isrdbg32.dll 2006-11-24 11:47 29,696 --a------ C:\WINDOWS\system32\safrdm.dll 2006-11-24 11:47 28,672 --a------ C:\WINDOWS\system32\nmmkcert.dll 2006-11-24 11:47 278,528 --a------ C:\WINDOWS\system32\mstask.dll 2006-11-24 11:47 278,528 --a------ C:\WINDOWS\system32\inetcfg.dll 2006-11-24 11:47 252,928 --a------ C:\WINDOWS\system32\msoeacct.dll 2006-11-24 11:47 240,128 --a------ C:\WINDOWS\system32\srrstr.dll 2006-11-24 11:47 23,040 --a------ C:\WINDOWS\system32\fltmc.exe 2006-11-24 11:47 195,352 --a------ C:\WINDOWS\system32\wuaueng1.dll 2006-11-24 11:47 192,000 --a------ C:\WINDOWS\system32\schedsvc.dll 2006-11-24 11:47 18,944 --a------ C:\WINDOWS\system32\qmgrprxy.dll 2006-11-24 11:47 175,384 --a------ C:\WINDOWS\system32\wuauclt1.exe 2006-11-24 11:47 173,536 --a------ C:\WINDOWS\system32\wuweb.dll 2006-11-24 11:47 171,008 --a------ C:\WINDOWS\system32\srsvc.dll 2006-11-24 11:47 16,896 --a------ C:\WINDOWS\system32\fltlib.dll 2006-11-24 11:47 16,384 --a------ C:\WINDOWS\system32\icfgnt5.dll 2006-11-24 11:47 128,896 --a------ C:\WINDOWS\system32\drivers\fltmgr.sys 2006-11-24 11:47 128,280 --a------ C:\WINDOWS\system32\wucltui.dll 2006-11-24 11:47 125,208 --a------ C:\WINDOWS\system32\wuauclt.exe 2006-11-24 11:47 12,288 --a------ C:\WINDOWS\system32\nmevtmsg.dll 2006-11-24 11:47 12,288 --a------ C:\WINDOWS\system32\mstinit.exe 2006-11-24 11:47 11,264 --a------ C:\WINDOWS\system32\atrace.dll 2006-11-24 11:47 105,984 --a------ C:\WINDOWS\system32\msoert2.dll 2006-11-24 11:47 1,343,768 --a------ C:\WINDOWS\system32\wuaueng.dll 2006-11-24 11:47 2006-11-24 11:47 2006-11-24 11:47 2006-11-24 11:47 2006-11-24 11:47 2006-11-24 11:47 2006-11-24 11:47 2006-11-24 11:47 2006-11-24 11:47 2006-11-24 11:47 2006-11-24 11:47 2006-11-24 11:47 2006-11-24 11:46 80,896 --a------ C:\WINDOWS\system32\charmap.exe 2006-11-24 11:46 73,216 --a------ C:\WINDOWS\system32\avwav.dll 2006-11-24 11:46 605,696 --a------ C:\WINDOWS\system32\getuname.dll 2006-11-24 11:46 57,344 --a------ C:\WINDOWS\system32\sol.exe 2006-11-24 11:46 5,632 --a------ C:\WINDOWS\system32\write.exe 2006-11-24 11:46 44,544 --a------ C:\WINDOWS\system32\hticons.dll 2006-11-24 11:46 35,328 --a------ C:\WINDOWS\system32\winchat.exe 2006-11-24 11:46 231,424 --a------ C:\WINDOWS\system32\avtapi.dll 2006-11-24 11:46 16,384 --a------ C:\WINDOWS\system32\avmeter.dll 2006-11-24 11:46 139,264 --a------ C:\WINDOWS\system32\sndvol32.exe 2006-11-24 11:46 119,808 --a------ C:\WINDOWS\system32\winmine.exe 2006-11-24 11:46 115,200 --a------ C:\WINDOWS\system32\calc.exe 2006-11-24 11:46 2006-11-24 11:46 2006-11-24 11:46 2006-11-24 11:45 97,792 --a------ C:\WINDOWS\system32\comrepl.dll 2006-11-24 11:45 956,416 --a------ C:\WINDOWS\system32\msdtctm.dll 2006-11-24 11:45 94,720 --a------ C:\WINDOWS\system32\tscfgwmi.dll 2006-11-24 11:45 91,136 --a------ C:\WINDOWS\system32\mtxoci.dll 2006-11-24 11:45 9,728 --a------ C:\WINDOWS\system32\reset.exe 2006-11-24 11:45 87,176 --a------ C:\WINDOWS\system32\rdpwsx.dll 2006-11-24 11:45 85,504 --a------ C:\WINDOWS\system32\catsrvps.dll 2006-11-24 11:45 67,072 --a------ C:\WINDOWS\system32\rdshost.exe 2006-11-24 11:45 655,360 --a------ C:\WINDOWS\system32\mstscax.dll 2006-11-24 11:45 625,152 --a------ C:\WINDOWS\system32\catsrvut.dll 2006-11-24 11:45 62,464 --a------ C:\WINDOWS\system32\rdpclip.exe 2006-11-24 11:45 60,928 --a------ C:\WINDOWS\system32\remotepg.dll 2006-11-24 11:45 60,416 --a------ C:\WINDOWS\system32\colbact.dll 2006-11-24 11:45 6,144 --a------ C:\WINDOWS\system32\msdtc.exe 2006-11-24 11:45 58,880 --a------ C:\WINDOWS\system32\msdtclog.dll 2006-11-24 11:45 58,880 --a------ C:\WINDOWS\system32\licwmi.dll 2006-11-24 11:45 56,320 --a------ C:\WINDOWS\system32\servdeps.dll 2006-11-24 11:45 55,808 --a------ C:\WINDOWS\system32\freecell.exe 2006-11-24 11:45 540,160 --a------ C:\WINDOWS\system32\comuid.dll 2006-11-24 11:45 54,272 --a------ C:\WINDOWS\system32\stclient.dll 2006-11-24 11:45 539,136 --a------ C:\WINDOWS\system32\spider.exe 2006-11-24 11:45 5,120 --a------ C:\WINDOWS\system32\dcomcnfg.exe 2006-11-24 11:45 498,688 --a------ C:\WINDOWS\system32\clbcatq.dll 2006-11-24 11:45 44,544 --a------ C:\WINDOWS\system32\tscupgrd.exe 2006-11-24 11:45 426,496 --a------ C:\WINDOWS\system32\msdtcprx.dll 2006-11-24 11:45 408,576 --a------ C:\WINDOWS\system32\mstsc.exe 2006-11-24 11:45 40,840 --a------ C:\WINDOWS\system32\drivers\termdd.sys 2006-11-24 11:45 4,608 --a------ C:\WINDOWS\system32\rdpcfgex.dll 2006-11-24 11:45 4,096 --a------ C:\WINDOWS\system32\mtxex.dll 2006-11-24 11:45 38,912 --a------ C:\WINDOWS\system32\cfgbkend.dll 2006-11-24 11:45 351,744 --a------ C:\WINDOWS\system32\hypertrm.dll 2006-11-24 11:45 345,088 --a------ C:\WINDOWS\system32\mspaint.exe 2006-11-24 11:45 33,792 --a------ C:\WINDOWS\system32\regini.exe 2006-11-24 11:45 296,448 --a------ C:\WINDOWS\system32\termsrv.dll 2006-11-24 11:45 25,600 --a------ C:\WINDOWS\system32\comaddin.dll 2006-11-24 11:45 25,088 --a------ C:\WINDOWS\system32\mtxlegih.dll 2006-11-24 11:45 225,792 --a------ C:\WINDOWS\system32\catsrv.dll 2006-11-24 11:45 22,528 --a------ C:\WINDOWS\system32\qwinsta.exe 2006-11-24 11:45 22,528 --a------ C:\WINDOWS\system32\msg.exe 2006-11-24 11:45 21,896 --a------ C:\WINDOWS\system32\drivers\tdtcp.sys 2006-11-24 11:45 20,992 --a------ C:\WINDOWS\system32\qprocess.exe 2006-11-24 11:45 20,480 --a------ C:\WINDOWS\system32\mtxdm.dll 2006-11-24 11:45 196,864 --a------ C:\WINDOWS\system32\drivers\rdpdr.sys 2006-11-24 11:45 19,968 --a------ C:\WINDOWS\system32\rdpsnd.dll 2006-11-24 11:45 187,904 --a------ C:\WINDOWS\system32\cmprops.dll 2006-11-24 11:45 187,904 --a------ C:\WINDOWS\system32\accwiz.exe 2006-11-24 11:45 17,920 --a------ C:\WINDOWS\system32\tsshutdn.exe 2006-11-24 11:45 17,920 --a------ C:\WINDOWS\system32\mmfutil.dll 2006-11-24 11:45 17,408 --a------ C:\WINDOWS\system32\qappsrv.exe 2006-11-24 11:45 161,280 --a------ C:\WINDOWS\system32\msdtcuiu.dll 2006-11-24 11:45 16,384 --a------ C:\WINDOWS\system32\tskill.exe 2006-11-24 11:45 16,384 --a------ C:\WINDOWS\system32\rwinsta.exe 2006-11-24 11:45 15,872 --a------ C:\WINDOWS\system32\logoff.exe 2006-11-24 11:45 15,872 --a------ C:\WINDOWS\system32\cdmodem.dll 2006-11-24 11:45 15,360 --a------ C:\WINDOWS\system32\tsdiscon.exe 2006-11-24 11:45 15,360 --a------ C:\WINDOWS\system32\tscon.exe 2006-11-24 11:45 15,360 --a------ C:\WINDOWS\system32\shadow.exe 2006-11-24 11:45 147,968 --a------ C:\WINDOWS\system32\rdchost.dll 2006-11-24 11:45 147,456 --a------ C:\WINDOWS\system32\comsnap.dll 2006-11-24 11:45 141,824 --a------ C:\WINDOWS\system32\sessmgr.exe 2006-11-24 11:45 139,528 --a------ C:\WINDOWS\system32\drivers\rdpwd.sys 2006-11-24 11:45 132,608 --a------ C:\WINDOWS\system32\sndrec32.exe 2006-11-24 11:45 13,824 --a------ C:\WINDOWS\system32\rdsaddin.exe 2006-11-24 11:45 128,000 --a------ C:\WINDOWS\system32\mshearts.exe 2006-11-24 11:45 124,928 --a------ C:\WINDOWS\system32\mplay32.exe 2006-11-24 11:45 12,040 --a------ C:\WINDOWS\system32\drivers\tdpipe.sys 2006-11-24 11:45 110,080 --a------ C:\WINDOWS\system32\clbcatex.dll 2006-11-24 11:45 11,776 --a------ C:\WINDOWS\system32\xolehlp.dll 2006-11-24 11:45 11,264 --a------ C:\WINDOWS\system32\icaapi.dll 2006-11-24 11:45 103,424 --a------ C:\WINDOWS\system32\clipbrd.exe 2006-11-24 11:45 1,267,200 --a------ C:\WINDOWS\system32\comsvcs.dll 2006-11-24 11:45 1,225 --a------ C:\WINDOWS\system32\usrlogon.cmd 2006-11-24 11:45 2006-11-24 11:45 2006-11-24 11:45 2006-11-04 14:14 1,245,696 --a------ C:\WINDOWS\system32\msxml4.dll (((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))) (((((((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))) *Note* empty entries are not shown [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run] “nod32kui”="“E:\Programy i inne\Antywirusowe\NOD32\nod32kui.exe” /WAITSERVICE" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL] “Installed”=“1” [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI] “Installed”=“1” “NoChange”=“1” [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS] “Installed”=“1” [HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components] “DeskHtmlVersion”=dword:00000110 “DeskHtmlMinorVersion”=dword:00000005 “Settings”=dword:00000001 “GeneralFlags”=dword:00000005 [HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0] “Source”=“About:Home” “SubscribedURL”=“About:Home” “FriendlyName”=“Moja bieżąca strona główna” “Flags”=dword:00000002 “Position”=hex:2c,00,00,00,9e,00,00,00,00,00,00,00,16,03,00,00,e2,02,00,00,00,\ 00,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00 “CurrentState”=hex:04,00,00,40 “OriginalStateInfo”=hex:18,00,00,00,ff,ff,00,00,ff,ff,00,00,ff,ff,ff,ff,ff,ff,\ ff,ff,04,00,00,00 “RestoredStateInfo”=hex:18,00,00,00,12,03,00,00,23,00,00,00,dc,00,00,00,d2,00,\ 00,00,01,00,00,00 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler] “{438755C2-A8BA-11D1-B96B-00A0C90312E1}”=“Moduł wstępnego ładowania interfejsu Browseui” “{8C7461EF-2B13-11d2-BE35-3078302C2030}”=“Demon buforu kategorii składników” [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks] “{AEB6717E-7E19-11d0-97EE-00C04FD91972}”="" “{57B86673-276A-48B2-BAE7-C6DBB3020EB8}”=“AVG Anti-Spyware 7.5” [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] “NoDriveTypeAutoRun”=dword:00000091 [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] “dontdisplaylastusername”=dword:00000000 “legalnoticecaption”="" “legalnoticetext”="" “shutdownwithoutlogon”=dword:00000001 “undockwithoutlogon”=dword:00000001 [HKEY_USERS.default\software\microsoft\windows\currentversion\policies\explorer] “NoDriveTypeAutoRun”=dword:00000091 [HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer] “NoDriveTypeAutoRun”=dword:00000091 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload] “PostBootReminder”="{7849596a-48ea-486e-8937-a2a3009f31a9}" “CDBurn”="{fbeb8a05-beee-4442-804e-409d6c4515e9}" “WebCheck”="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" “SysTray”="{35CEC8A3-2BE6-11D2-8773-92E220524153}" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE] “key”=“SOFTWARE\Microsoft\Windows\CurrentVersion\Run” “item”=“ctfmon” “hkey”=“HKCU” “command”=“C:\WINDOWS\system32\ctfmon.exe” “inimapping”=“0” [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\I downloaded pirated Software from P2P] “key”=“SOFTWARE\Microsoft\Windows\CurrentVersion\Run” “item”=“Gothic 3” “hkey”=“HKLM” “command”=“Gothic 3” “inimapping”=“0” [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan] “key”=“SOFTWARE\Microsoft\Windows\CurrentVersion\Run” “item”=“SOUNDMAN” “hkey”=“HKLM” “command”=“SOUNDMAN.EXE” “inimapping”=“0” [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam] “key”=“SOFTWARE\Microsoft\Windows\CurrentVersion\Run” “item”="" “hkey”=“HKCU” “command”="" “inimapping”=“0” [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] “SecurityProviders”=“msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll” Contents of the ‘Scheduled Tasks’ folder C:\WINDOWS\tasks\At1.job C:\WINDOWS\tasks\At2.job C:\WINDOWS\tasks\At3.job Completion time: 06-11-26 15:54:52.28 C:\ComboFix.txt … 06-11-26 15:54

Bieniol · 27 Listopad 2006 14:13

Jest OK