Strona startowa sama zmienia się na google.pl

Oprogramowanie komputerowe Problemy z oprogramowaniem
#1

Witam

Mam taki problem. Nagle moja strona startowa w IE sama zmienia się na google.pl. Gdy zmnienię ją i zamknę przeglądarkę to przy pierwszym uruchomieniu jest ok, strona startowa jest taka jak ustawiłem. Ale, później znowu google :confused: Co z tym zrobić? Zamieszczam loga może ktoś z niego coś wywnioskuje. Z góry dziękuję za pomoc!

ComboFix 09-12-02.08 - A 2009-12-03 18:45.1.2 - x86

Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.48.1045.18.3326.2127 [GMT 1:00]

Uruchomiony z: c:\users\Zygmunt\Documents\ComboFix.exe

SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

.

((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))

.

c:$recycle.bin\S-1-5-21-3144372156-1898216612-663763168-500

c:$recycle.bin\S-1-5-21-3280075197-1767163855-1278965539-1000

c:\windows\system32\twain_32.dll

.

((((((((((((((((((((((((( Pliki utworzone od 2009-11-03 do 2009-12-03 )))))))))))))))))))))))))))))))

.

2009-12-03 17:52 . 2009-12-03 17:53 -------- d-----w- c:\users\a\AppData\Local\temp

2009-12-03 17:52 . 2009-12-03 17:52 -------- d-----w- c:\users\b\AppData\Local\temp

2009-12-03 17:52 . 2009-12-03 17:52 -------- d-----w- c:\users\Default\AppData\Local\temp

2009-12-03 17:52 . 2009-12-03 17:52 -------- d-----w- c:\users\c\AppData\Local\temp

2009-12-03 17:52 . 2009-12-03 17:52 -------- d-----w- c:\users\d\AppData\Local\temp

2009-12-03 06:02 . 2009-10-28 08:00 84912 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091202.024\NAVENG.SYS

2009-12-03 06:02 . 2009-10-28 08:00 371248 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091202.024\EECTRL.SYS

2009-12-03 06:02 . 2009-10-28 08:00 2747952 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091202.024\CCERASER.DLL

2009-12-03 06:02 . 2009-10-28 08:00 259440 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091202.024\ECMSVR32.DLL

2009-12-03 06:02 . 2009-10-28 08:00 177520 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091202.024\NAVENG32.DLL

2009-12-03 06:02 . 2009-10-28 08:00 1647984 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091202.024\NAVEX32A.DLL

2009-12-03 06:02 . 2009-10-28 08:00 1323568 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091202.024\NAVEX15.SYS

2009-12-03 06:02 . 2009-10-28 08:00 102448 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091202.024\ERASER.SYS

2009-12-02 22:11 . 2009-09-23 12:55 64288 ----a-w- c:\windows\system32\drivers\Lbd.sys

2009-12-02 22:11 . 2009-12-02 22:11 -------- dc----w- c:\windows\system32\DRVSTORE

2009-12-02 22:11 . 2009-12-02 22:11 862040 ----a-w- c:\programdata\Lavasoft\Ad-Aware\Update\threatwork.exe

2009-12-02 22:11 . 2009-12-02 22:11 206944 ----a-w- c:\programdata\Lavasoft\Ad-Aware\Update\lavamessage.dll

2009-12-02 22:11 . 2009-12-02 22:11 15880 ----a-w- c:\programdata\Lavasoft\Ad-Aware\Update\lsdelete.exe

2009-12-02 22:11 . 2009-12-02 22:11 390288 ----a-w- c:\programdata\Lavasoft\Ad-Aware\Update\lavalicense.dll

2009-12-02 22:11 . 2009-12-02 22:11 537576 ----a-w- c:\programdata\Lavasoft\Ad-Aware\Update\aawapi.dll

2009-12-02 22:11 . 2009-12-02 22:11 370744 ----a-w- c:\programdata\Lavasoft\Ad-Aware\Update\UpdateManager.dll

2009-12-02 22:11 . 2009-12-02 22:11 194104 ----a-w- c:\programdata\Lavasoft\Ad-Aware\Update\Savapibridge.dll

2009-12-02 22:11 . 2009-12-02 22:11 163728 ----a-w- c:\programdata\Lavasoft\Ad-Aware\Update\ShellExt.dll

2009-12-02 22:10 . 2009-12-02 22:10 5908024 ----a-w- c:\programdata\Lavasoft\Ad-Aware\Update\Resources.dll

2009-12-02 22:10 . 2009-12-02 22:10 87496 ----a-w- c:\programdata\Lavasoft\Ad-Aware\Update\PrivacyClean.dll

2009-12-02 22:10 . 2009-12-02 22:10 327000 ----a-w- c:\programdata\Lavasoft\Ad-Aware\Update\RPAPI.dll

2009-12-02 22:09 . 2009-12-02 22:10 933120 ----a-w- c:\programdata\Lavasoft\Ad-Aware\Update\CEAPI.dll

2009-12-02 22:09 . 2009-12-02 22:09 641632 ----a-w- c:\programdata\Lavasoft\Ad-Aware\Update\AutoLaunch.exe

2009-12-02 22:09 . 2009-12-02 22:09 816272 ----a-w- c:\programdata\Lavasoft\Ad-Aware\Update\Ad-AwareCommand.exe

2009-12-02 22:09 . 2009-12-02 22:09 822904 ----a-w- c:\programdata\Lavasoft\Ad-Aware\Update\Ad-AwareAdmin.exe

2009-12-02 22:09 . 2009-12-02 22:09 1638640 ----a-w- c:\programdata\Lavasoft\Ad-Aware\Update\Ad-Aware.exe

2009-12-02 22:09 . 2009-12-02 22:09 788880 ----a-w- c:\programdata\Lavasoft\Ad-Aware\Update\AAWTray.exe

2009-12-02 22:08 . 2009-12-02 22:09 1184912 ----a-w- c:\programdata\Lavasoft\Ad-Aware\Update\AAWService.exe

2009-12-02 22:07 . 2009-12-02 22:07 4096 dc-h–w- c:\programdata{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}

2009-12-02 22:07 . 2009-10-03 08:15 2924848 -c–a-w- c:\programdata{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}\Ad-AwareInstallation.exe

2009-12-02 22:07 . 2009-12-02 22:11 -------- d-----w- c:\programdata\Lavasoft

2009-12-02 22:07 . 2009-12-02 22:07 -------- d-----w- c:\program files\Lavasoft

2009-12-01 06:05 . 2009-12-01 06:05 484976 ----a-w- c:\programdata\Google\Google Toolbar\Update\gtbCFFD.tmp.exe

2009-11-25 06:10 . 2009-10-29 09:17 2048 ----a-w- c:\windows\system32\tzres.dll

2009-11-24 18:11 . 2009-08-11 16:44 1401856 ----a-w- c:\windows\system32\msxml6.dll

2009-11-24 18:11 . 2009-08-11 16:44 1248768 ----a-w- c:\windows\system32\msxml3.dll

2009-11-17 10:44 . 2009-11-17 10:44 -------- d-----w- c:\program files\Windows Portable Devices

2009-11-17 10:35 . 2009-10-01 01:02 30208 ----a-w- c:\windows\system32\WPDShextAutoplay.exe

2009-11-17 10:34 . 2009-10-08 21:07 4096 ----a-w- c:\windows\system32\oleaccrc.dll

2009-11-17 10:34 . 2009-10-08 21:08 555520 ----a-w- c:\windows\system32\UIAutomationCore.dll

2009-11-17 10:34 . 2009-10-08 21:08 234496 ----a-w- c:\windows\system32\oleacc.dll

2009-11-15 00:01 . 2009-11-15 00:01 -------- d-----w- c:\programdata\FLEXnet

2009-11-14 23:42 . 2009-11-14 23:42 -------- d-----w- c:\program files\Bonjour

2009-11-14 23:38 . 2009-11-14 23:38 -------- d-----w- c:\program files\Common Files\Macrovision Shared

2009-11-14 23:37 . 2009-11-14 23:37 4096 d-----w- C:\Adobe Photoshop CS3 - pliki instalacyje

2009-11-14 16:52 . 2009-11-15 21:46 -------- d-----w- c:\programdata\PhotoME

2009-11-14 00:27 . 2009-11-14 00:27 -------- d-----w- c:\users\Zygmunt\AppData\Roaming\FastStone

2009-11-13 23:46 . 2009-11-14 00:47 -------- d-----w- c:\program files\Common Files\PX Storage Engine

2009-11-13 23:44 . 2009-11-13 23:44 -------- d-----w- c:\windows\system32\IOSUBSYS

2009-11-12 20:33 . 2009-10-28 22:37 343088 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091111.001\IDSvix86.sys

2009-11-12 20:33 . 2009-10-28 22:37 329592 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091111.001\IDSXpx86.sys

2009-11-12 20:33 . 2009-10-28 22:37 811896 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091111.001\Scxpx86.dll

2009-11-12 20:33 . 2009-10-28 22:37 488312 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091111.001\IDSxpx86.dll

2009-11-12 20:33 . 2009-10-28 22:37 466992 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091111.001\IDSviA64.sys

2009-11-12 11:30 . 2009-08-14 13:27 2036736 ----a-w- c:\windows\system32\win32k.sys

2009-11-12 11:29 . 2009-10-28 22:37 329592 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091107.001\IDSXpx86.sys

2009-11-12 11:29 . 2009-10-28 22:37 811896 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091107.001\Scxpx86.dll

2009-11-12 11:29 . 2009-10-28 22:37 343088 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091107.001\IDSvix86.sys

2009-11-12 11:29 . 2009-10-28 22:37 488312 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091107.001\IDSxpx86.dll

2009-11-12 11:29 . 2009-10-28 22:37 466992 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091107.001\IDSviA64.sys

2009-11-12 11:28 . 2009-08-10 12:35 355328 ----a-w- c:\windows\system32\WSDApi.dll

2009-11-11 12:50 . 2009-11-11 13:28 4096 d-----w- c:\users\Karol\AppData\Local\LogMeIn Hamachi

2009-11-11 12:50 . 2009-11-11 12:50 4096 d-----w- c:\program files\LogMeIn Hamachi

2009-11-08 08:17 . 2009-10-28 08:00 177520 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091107.022\NAVENG32.DLL

2009-11-08 08:17 . 2009-10-28 08:00 1647984 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091107.022\NAVEX32A.DLL

2009-11-08 08:17 . 2009-10-28 08:00 1323568 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091107.022\NAVEX15.SYS

2009-11-08 08:17 . 2009-10-28 08:00 84912 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091107.022\NAVENG.SYS

2009-11-08 08:17 . 2009-10-28 08:00 371248 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091107.022\EECTRL.SYS

2009-11-08 08:17 . 2009-10-28 08:00 2747952 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091107.022\CCERASER.DLL

2009-11-08 08:17 . 2009-10-28 08:00 259440 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091107.022\ECMSVR32.DLL

2009-11-08 08:17 . 2009-10-28 08:00 102448 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091107.022\ERASER.SYS

2009-11-05 22:02 . 2009-11-05 22:02 411368 ----a-w- c:\windows\system32\deploytk.dll

2009-11-05 22:02 . 2009-11-05 22:02 -------- d-----w- c:\program files\Java

.

(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2009-12-03 17:40 . 2008-01-21 06:24 708526 ----a-w- c:\windows\system32\perfh015.dat

2009-12-03 17:40 . 2008-01-21 06:24 144224 ----a-w- c:\windows\system32\perfc015.dat

2009-12-03 06:15 . 2009-04-25 13:55 12 ----a-w- c:\windows\bthservsdp.dat

2009-12-01 08:37 . 2009-06-14 09:52 4096 d-----w- c:\program files\Google

2009-11-20 15:09 . 2009-08-02 10:12 -------- d-----w- c:\users\d\AppData\Roaming\Ahead

2009-11-20 15:08 . 2009-04-06 16:03 99864 ----a-w- c:\users\Karol\AppData\Local\GDIPFONTCACHEV1.DAT

2009-11-20 15:07 . 2009-11-20 15:07 0 —ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf

2009-11-17 10:44 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat

2009-11-17 10:44 . 2009-11-17 10:44 0 —ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_07_00.Wdf

2009-11-16 08:54 . 2009-04-05 16:25 99864 ----a-w- c:\users\a\AppData\Local\GDIPFONTCACHEV1.DAT

2009-11-15 00:01 . 2009-04-05 15:24 99864 ----a-w- c:\users\b\AppData\Local\GDIPFONTCACHEV1.DAT

2009-11-14 23:43 . 2009-04-21 15:04 4096 d-----w- c:\program files\Common Files\Adobe

2009-11-13 07:28 . 2006-11-02 11:18 4096 d-----w- c:\program files\Windows Mail

2009-11-13 07:25 . 2009-02-26 20:10 8192 d-----w- c:\programdata\Microsoft Help

2009-10-28 23:04 . 2009-10-28 22:44 806 ----a-w- c:\windows\system32\drivers\SYMEVENT.INF

2009-10-28 23:04 . 2009-10-28 22:44 7456 ----a-w- c:\windows\system32\drivers\SYMEVENT.CAT

2009-10-28 23:04 . 2009-10-28 22:44 124976 ----a-w- c:\windows\system32\drivers\SYMEVENT.SYS

2009-10-28 23:04 . 2009-10-28 22:44 -------- d-----w- c:\program files\Symantec

2009-10-28 22:57 . 2009-10-28 22:44 -------- d-----w- c:\program files\Common Files\Symantec Shared

2009-10-28 22:44 . 2009-10-28 22:44 1294680 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\SyKnAppS\SyKnAppS.dll

2009-10-28 22:44 . 2009-10-28 22:44 136840 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\SyKnAppS\patch25.dll

2009-10-28 22:44 . 2009-10-28 22:44 796016 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\CLT\cltLMSx.dll

2009-10-28 22:44 . 2009-10-28 22:44 -------- d-----w- c:\program files\Norton Internet Security

2009-10-28 22:44 . 2009-04-05 15:43 -------- d-----w- c:\programdata\Norton

2009-10-28 22:43 . 2009-04-05 15:42 -------- d-----w- c:\programdata\NortonInstaller

2009-10-28 22:43 . 2009-10-28 22:43 -------- d-----w- c:\program files\NortonInstaller

2009-10-28 22:37 . 2009-10-28 22:37 343088 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\IDSvix86.sys

2009-10-28 22:37 . 2009-10-28 22:37 329592 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\IDSXpx86.sys

2009-10-28 22:37 . 2009-10-28 22:37 811896 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\Scxpx86.dll

2009-10-28 22:37 . 2009-10-28 22:37 488312 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\IDSxpx86.dll

2009-10-28 22:37 . 2009-10-28 22:37 466992 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\IDSviA64.sys

2009-10-15 05:10 . 2009-02-26 20:14 -------- d-----w- c:\program files\Microsoft SQL Server

2009-10-01 01:02 . 2009-11-17 10:35 2537472 ----a-w- c:\windows\system32\wpdshext.dll

2009-10-01 01:02 . 2009-11-17 10:35 334848 ----a-w- c:\windows\system32\PortableDeviceApi.dll

2009-10-01 01:02 . 2009-11-17 10:35 87552 ----a-w- c:\windows\system32\WPDShServiceObj.dll

2009-10-01 01:02 . 2009-11-17 10:35 31232 ----a-w- c:\windows\system32\BthMtpContextHandler.dll

2009-10-01 01:01 . 2009-11-17 10:35 546816 ----a-w- c:\windows\system32\wpd_ci.dll

2009-10-01 01:01 . 2009-11-17 10:35 160256 ----a-w- c:\windows\system32\PortableDeviceTypes.dll

2009-10-01 01:01 . 2009-11-17 10:35 60928 ----a-w- c:\windows\system32\PortableDeviceConnectApi.dll

2009-10-01 01:01 . 2009-11-17 10:35 350208 ----a-w- c:\windows\system32\WPDSp.dll

2009-10-01 01:01 . 2009-11-17 10:35 196608 ----a-w- c:\windows\system32\PortableDeviceWMDRM.dll

2009-10-01 01:01 . 2009-11-17 10:35 100864 ----a-w- c:\windows\system32\PortableDeviceClassExtension.dll

2009-10-01 01:01 . 2009-11-17 10:35 81920 ----a-w- c:\windows\system32\wpdbusenum.dll

2009-10-01 01:01 . 2009-11-17 10:35 40448 ----a-w- c:\windows\system32\drivers\WpdUsb.sys

2009-10-01 01:01 . 2009-11-17 10:35 226816 ----a-w- c:\windows\system32\WpdMtp.dll

2009-10-01 01:01 . 2009-11-17 10:35 33280 ----a-w- c:\windows\system32\WpdConns.dll

2009-10-01 01:01 . 2009-11-17 10:35 61952 ----a-w- c:\windows\system32\WpdMtpUS.dll

2009-09-25 02:10 . 2009-11-17 10:36 974848 ----a-w- c:\windows\system32\WindowsCodecs.dll

2009-09-25 02:07 . 2009-11-17 10:36 189440 ----a-w- c:\windows\system32\WindowsCodecsExt.dll

2009-09-25 02:04 . 2009-11-17 10:36 321024 ----a-w- c:\windows\system32\PhotoMetadataHandler.dll

2009-09-25 01:49 . 2009-11-17 10:36 1554432 ----a-w- c:\windows\system32\xpsservices.dll

2009-09-25 01:48 . 2009-11-17 10:36 351232 ----a-w- c:\windows\system32\XpsPrint.dll

2009-09-25 01:38 . 2009-11-17 10:36 847360 ----a-w- c:\windows\system32\OpcServices.dll

2009-09-25 01:36 . 2009-11-17 10:36 280064 ----a-w- c:\windows\system32\XpsGdiConverter.dll

2009-09-25 01:35 . 2009-11-17 10:36 135680 ----a-w- c:\windows\system32\XpsRasterService.dll

2009-09-25 01:33 . 2009-11-17 10:36 195584 ----a-w- c:\windows\system32\dxdiagn.dll

2009-09-25 01:33 . 2009-11-17 10:36 829440 ----a-w- c:\windows\system32\d3d10warp.dll

2009-09-25 01:33 . 2009-11-17 10:36 369664 ----a-w- c:\windows\system32\WMPhoto.dll

2009-09-25 01:32 . 2009-11-17 10:36 252928 ----a-w- c:\windows\system32\dxdiag.exe

2009-09-25 01:31 . 2009-11-17 10:36 519680 ----a-w- c:\windows\system32\d3d11.dll

2009-09-25 01:31 . 2009-11-17 10:36 486912 ----a-w- c:\windows\system32\d3d10level9.dll

2009-09-25 01:31 . 2009-11-17 10:36 161280 ----a-w- c:\windows\system32\d3d10_1.dll

2009-09-25 01:31 . 2009-11-17 10:36 218112 ----a-w- c:\windows\system32\d3d10_1core.dll

2009-09-25 01:31 . 2009-11-17 10:36 1030144 ----a-w- c:\windows\system32\d3d10.dll

2009-09-25 01:31 . 2009-11-17 10:36 828928 ----a-w- c:\windows\system32\d2d1.dll

2009-09-25 01:30 . 2009-11-17 10:36 481792 ----a-w- c:\windows\system32\dxgi.dll

2009-09-25 01:30 . 2009-11-17 10:36 190464 ----a-w- c:\windows\system32\d3d10core.dll

2009-09-25 01:27 . 2009-11-17 10:36 634880 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys

2009-09-25 01:27 . 2009-11-17 10:36 37888 ----a-w- c:\windows\system32\cdd.dll

2009-09-25 01:27 . 2009-11-17 10:36 793088 ----a-w- c:\windows\system32\FntCache.dll

2009-09-25 01:27 . 2009-11-17 10:36 1064448 ----a-w- c:\windows\system32\DWrite.dll

2009-09-24 22:54 . 2009-11-17 10:36 258048 ----a-w- c:\windows\system32\winspool.drv

2009-09-24 22:54 . 2009-11-17 10:36 667648 ----a-w- c:\windows\system32\printfilterpipelinesvc.exe

2009-09-24 22:54 . 2009-11-17 10:36 26112 ----a-w- c:\windows\system32\printfilterpipelineprxy.dll

2009-09-23 08:41 . 2009-09-23 08:41 26176 —ha-w- c:\windows\system32\drivers\hamachi.sys

2009-09-14 09:29 . 2009-10-14 20:00 144896 ----a-w- c:\windows\system32\drivers\srv2.sys

2009-09-10 16:48 . 2009-10-14 20:02 218624 ----a-w- c:\windows\system32\msv1_0.dll

2009-09-10 14:59 . 2009-10-28 17:21 8147456 ----a-w- c:\windows\system32\wmploc.DLL

2009-09-10 14:58 . 2009-10-28 17:21 310784 ----a-w- c:\windows\system32\unregmp2.exe

2009-09-10 02:01 . 2009-11-17 10:36 3023360 ----a-w- c:\windows\system32\UIRibbon.dll

2009-09-10 02:00 . 2009-11-17 10:36 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll

2009-09-10 02:00 . 2009-11-17 10:36 92672 ----a-w- c:\windows\system32\UIAnimation.dll

1601-01-01 00:00 . 1601-01-01 00:00 0 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\SyKnAppS\LiveUpdate\cur.scr

1601-01-01 00:00 . 1601-01-01 00:00 0 ----a-w- c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Lue\Downloads\Patch2724\cur.scr

.

((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane

REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

“Sidebar”=“c:\program files\Windows Sidebar\sidebar.exe” [2009-04-11 1233920]

“BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}”=“c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe” [2007-06-27 152872]

“msnmsgr”=“c:\program files\Windows Live\Messenger\msnmsgr.exe” [2007-10-18 5724184]

“swg”=“c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe” [2009-06-14 39408]

“WMPNSCFG”=“c:\program files\Windows Media Player\WMPNSCFG.exe” [2008-01-21 202240]

“ehTray.exe”=“c:\windows\ehome\ehTray.exe” [2008-01-21 125952]

“WindowsWelcomeCenter”=“oobefldr.dll” - c:\windows\System32\oobefldr.dll [2009-04-11 2153472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

“Windows Defender”=“c:\program files\Windows Defender\MSASCui.exe” [2008-01-21 1008184]

“NeroFilterCheck”=“c:\program files\Common Files\Ahead\Lib\NeroCheck.exe” [2007-03-01 153136]

“NvCplDaemon”=“c:\windows\system32\NvCpl.dll” [2008-11-12 13675040]

“NvMediaCenter”=“c:\windows\system32\NvMcTray.dll” [2008-11-12 92704]

“Windows Mobile Device Center”=“c:\windows\WindowsMobile\wmdc.exe” [2007-05-31 648072]

“Adobe Reader Speed Launcher”=“c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe” [2009-10-03 35696]

“Adobe ARM”=“c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe” [2009-09-04 935288]

“SunJavaUpdateSched”=“c:\program files\Java\jre6\bin\jusched.exe” [2009-11-05 149280]

“RtHDVCpl”=“RtHDVCpl.exe” - c:\windows\RtHDVCpl.exe [2008-02-13 4915200]

“Skytel”=“Skytel.exe” - c:\windows\SkyTel.exe [2007-11-20 1826816]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

“EnableUIADesktopToggle”= 0 (0x0)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

@=“Service”

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SymEFA.sys]

@=“FSFilter Activity Monitor”

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

@=“Service”

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]

“VistaSp2”=hex(b):0f,e6,75,f5,f7,3e,ca,01

R0 Lbd;Lbd;c:\windows\System32\drivers\Lbd.sys [2009-12-02 64288]

R0 SymEFA;Symantec Extended File Attributes;c:\windows\System32\drivers\NIS\1007020.00B\SymEFA.sys [2009-10-29 310320]

R1 BHDrvx86;Symantec Heuristics Driver;c:\windows\System32\drivers\NIS\1007020.00B\BHDrvx86.sys [2009-10-29 259632]

R1 ccHP;Symantec Hash Provider;c:\windows\System32\drivers\NIS\1007020.00B\cchpx86.sys [2009-10-29 482432]

R1 IDSVix86;IDSVix86;c:\programdata\Norton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091111.001\IDSvix86.sys [2009-11-12 343088]

R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2009-10-29 1074568]

R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [2009-09-24 1184912]

R2 Norton Internet Security;Norton Internet Security;c:\program files\Norton Internet Security\Engine\16.7.2.11\ccSvcHst.exe [2009-10-29 117640]

R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2009-10-28 102448]

R3 SYMNDISV;Symantec Network Filter Driver;c:\windows\System32\drivers\NIS\1007020.00B\symndisv.sys [2009-10-29 48688]

S2 gupdate1c9fe2ac7d242a0;Usługa Google Update (gupdate1c9fe2ac7d242a0);c:\program files\Google\Update\GoogleUpdate.exe [2009-07-06 133104]

S3 FontCache;Usług systemu Windows buforowania czcionek;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-01-21 21504]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

WindowsMobile REG_MULTI_SZ wcescomm rapimgr

LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr

bthsvcs REG_MULTI_SZ BthServ

LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache

.

Zawartość folderu ‘Zaplanowane zadania’

2009-12-03 c:\windows\Tasks\Google Software Updater.job

  • c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-06-14 11:11]

2009-12-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

  • c:\program files\Google\Update\GoogleUpdate.exe [2009-07-06 11:13]

2009-12-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

  • c:\program files\Google\Update\GoogleUpdate.exe [2009-07-06 11:13]

2009-12-02 c:\windows\Tasks\Sprawdź aktualizacje paska narzędzi Windows Live Toolbar.job

  • c:\program files\Windows Live Toolbar\MSNTBUP.EXE [2007-10-19 10:20]

2009-12-03 c:\windows\Tasks\User_Feed_Synchronization-{AB077B47-D70E-4697-99A6-DC744FA1CCCB}.job

  • c:\windows\system32\msfeedssync.exe [2009-10-14 03:41]

2009-12-03 c:\windows\Tasks\User_Feed_Synchronization-{D916D566-3493-435F-9EFD-C9B075ED8C81}.job

  • c:\windows\system32\msfeedssync.exe [2009-10-14 03:41]

.

.

------- Skan uzupełniający -------

.

uStart Page = hxxp://www.google.com/

uDefault_Search_URL = hxxp://www.google.com/ie

uInternet Settings,ProxyOverride = *.local

uSearchURL,(Default) = hxxp://www.google.com/search?q=%s

IE: &Windows Live Search - c:\program files\Windows Live Toolbar\msntb.dll/search.htm

IE: E&ksportuj do programu Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000

IE: Funkcja Google Sidewiki - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html

LSP: c:\windows\system32\wpclsp.dll

Handler: mpbook - {1D80410C-BBCF-4D08-AC3A-0BBAF4CE1D75} - c:\program files\Interna\InternaHandler.dll

.

        • USUNIĘTO PUSTE WPISY - - - -

AddRemove-Activation Assistant for the 2007 Microsoft Office suites - c:\programdata{623D32E9-0C62-4453-AD44-98B31F52A5E1}\Microsoft Office Activation Assistant.exe REMOVE=TRUE MODIFY=FALSE

AddRemove-Ad-Aware - c:\programdata{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}\Ad-AwareInstallation.exe REMOVE=TRUE MODIFY=FALSE

AddRemove-NVIDIA Drivers - c:\windows\system32\nvuninst.exe UninstallGUI

AddRemove-Windows Live Toolbar - c:\program files\Windows Live Toolbar\UnInstall.exe {B0BC0B99-C81A-4AAD-9713-14A82011364C}

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2009-12-03 18:53

Windows 6.0.6002 Service Pack 2 NTFS

skanowanie ukrytych procesów …

skanowanie ukrytych wpisów autostartu …

skanowanie ukrytych plików …

skanowanie pomyślnie ukończone

ukryte pliki: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norton Internet Security]

“ImagePath”="“c:\program files\Norton Internet Security\Engine\16.7.2.11\ccSvcHst.exe” /s “Norton Internet Security” /m “c:\program files\Norton Internet Security\Engine\16.7.2.11\diMaster.dll” /prefetch:1"

.

Czas ukończenia: 2009-12-03 18:55

ComboFix-quarantined-files.txt 2009-12-03 17:55

Przed: 708 050 599 936 bajtów wolnych

Po: 708 115 451 904 bajtów wolnych

    • End Of File - - 63E42A86221F0FA2D7633BD8458B1CB3