Mam problem z c:\progra~1\mywebs~1\bar\1.bin\m3plugin.dll

[LiLFaB]

Kod: Zaznacz wszystko

ComboFix 09-07-09.06 - FaB 07/09/2009 21:34.1.2 - NTFSx86 NETWORK
Microsoft® Windows Vista™ Home Basic   6.0.6000.0.1250.48.1045.18.3006.2504 [GMT -4:00]
Uruchomiony z: c:\users\FaB\Desktop\ComboFix.exe
AV: ESET NOD32 Antivirus 4.0 *On-access scanning enabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
SP: ESET NOD32 Antivirus 4.0 *enabled* (Updated) {E5E70D32-0101-4B98-A4D6-D1D15C3BB448}
SP: Windows Defender *disabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

(((((((((((((((((((((((((((((((((((((((   Usunięto   )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\$recycle.bin\S-1-5-21-1715753442-2400452424-3737272102-1000
c:\$recycle.bin\S-1-5-21-2365545147-1999384947-2466353664-500
C:\0c9k.exe
C:\1f.bat
C:\2.bat
C:\28b6ry9r.exe
C:\2a.exe
C:\3.cmd
C:\6phx.com
C:\8gig0ofk.com
C:\8rcahp.exe
C:\9dlvtiil.exe
C:\autorun.inf
C:\cqdis.cmd
C:\d1vmq.exe
C:\d9c.bat
C:\desktop.ini
C:\fsaht.cmd
C:\g6e.exe
C:\gbm6n.exe
C:\gclwpivc.cmd
C:\gpcdt.cmd
C:\husyu8n.exe
C:\i.exe
C:\l8yuk.bat
C:\lad.bat
C:\lc.exe
C:\luk1ylq.com
C:\n68mqcra.exe
C:\p.exe
c:\program files\FunWebProducts
c:\program files\MyWebSearch
c:\program files\MyWebSearch\bar\1.bin\F3BKGERR.JPG
c:\program files\MyWebSearch\bar\1.bin\F3CJPEG.DLL
c:\program files\MyWebSearch\bar\1.bin\F3DTACTL.DLL
c:\program files\MyWebSearch\bar\1.bin\F3HISTSW.DLL
c:\program files\MyWebSearch\bar\1.bin\F3HKSTUB.DLL
c:\program files\MyWebSearch\bar\1.bin\F3HTMLMU.DLL
c:\program files\MyWebSearch\bar\1.bin\F3HTTPCT.DLL
c:\program files\MyWebSearch\bar\1.bin\F3POPSWT.DLL
c:\program files\MyWebSearch\bar\1.bin\F3PSSAVR.SCR
c:\program files\MyWebSearch\bar\1.bin\F3REGHK.DLL
c:\program files\MyWebSearch\bar\1.bin\F3REPROX.DLL
c:\program files\MyWebSearch\bar\1.bin\F3RESTUB.DLL
c:\program files\MyWebSearch\bar\1.bin\F3SPACER.WMV
c:\program files\MyWebSearch\bar\1.bin\F3WALLPP.DAT
c:\program files\MyWebSearch\bar\1.bin\F3WPHOOK.DLL
c:\program files\MyWebSearch\bar\1.bin\FWPBUDDY.PNG
c:\program files\MyWebSearch\bar\1.bin\M3FFXTBR.JAR
c:\program files\MyWebSearch\bar\1.bin\M3FFXTBR.MANIFEST
c:\program files\MyWebSearch\bar\1.bin\M3HIGHIN.EXE
c:\program files\MyWebSearch\bar\1.bin\M3IDLE.DLL
c:\program files\MyWebSearch\bar\1.bin\M3IMPIPE.EXE
c:\program files\MyWebSearch\bar\1.bin\M3MEDINT.EXE
c:\program files\MyWebSearch\bar\1.bin\M3NTSTBR.JAR
c:\program files\MyWebSearch\bar\1.bin\M3NTSTBR.MANIFEST
c:\program files\MyWebSearch\bar\1.bin\M3PLUGIN.DLL
c:\program files\MyWebSearch\bar\1.bin\M3SKPLAY.EXE
c:\program files\MyWebSearch\bar\1.bin\M3SLSRCH.EXE
c:\program files\MyWebSearch\bar\1.bin\M3SRCHMN.EXE
c:\program files\MyWebSearch\bar\1.bin\MWSBAR.DLL
c:\program files\MyWebSearch\bar\1.bin\MWSOEPLG.DLL
c:\program files\MyWebSearch\bar\1.bin\MWSSRCAS.DLL
c:\program files\MyWebSearch\bar\1.bin\NPMYWEBS.DLL
c:\program files\MyWebSearch\bar\Avatar\COMMON.F3S
c:\program files\MyWebSearch\bar\Game\CHECKERS.F3S
c:\program files\MyWebSearch\bar\Game\CHESS.F3S
c:\program files\MyWebSearch\bar\Game\REVERSI.F3S
c:\program files\MyWebSearch\bar\icons\CM.ICO
c:\program files\MyWebSearch\bar\icons\MFC.ICO
c:\program files\MyWebSearch\bar\icons\PSS.ICO
c:\program files\MyWebSearch\bar\icons\SMILEY.ICO
c:\program files\MyWebSearch\bar\icons\WB.ICO
c:\program files\MyWebSearch\bar\icons\ZWINKY.ICO
c:\program files\MyWebSearch\bar\Message\COMMON.F3S
c:\program files\MyWebSearch\bar\Notifier\COMMON.F3S
c:\program files\MyWebSearch\bar\Notifier\DOG.F3S
c:\program files\MyWebSearch\bar\Notifier\FISH.F3S
c:\program files\MyWebSearch\bar\Notifier\KUNGFU.F3S
c:\program files\MyWebSearch\bar\Notifier\LIFEGARD.F3S
c:\program files\MyWebSearch\bar\Notifier\MAID.F3S
c:\program files\MyWebSearch\bar\Notifier\MAILBOX.F3S
c:\program files\MyWebSearch\bar\Notifier\OPERA.F3S
c:\program files\MyWebSearch\bar\Notifier\ROBOT.F3S
c:\program files\MyWebSearch\bar\Notifier\SEDUCT.F3S
c:\program files\MyWebSearch\bar\Notifier\SURFER.F3S
c:\program files\MyWebSearch\bar\Settings\s_pid.dat
c:\recycled\Recycled
c:\recycler\S-1-5-21-343818398-1592454029-725345543-1003
c:\recycler\S-1-5-21-854245398-1343024091-725345543-1003
C:\sm.exe
C:\sv8c2bjw.bat
C:\uhoxajc.cmd
C:\ukvr.bat
C:\upw.bat
C:\upx.bat
c:\windows\system32\f3PSSavr.scr
C:\xdglur.bat
C:\xhah66s.cmd
C:\xrdygg.bat
C:\yhh.bat
C:\ysep1.exe
D:\0c9k.exe
D:\1f.bat
D:\28b6ry9r.exe
D:\2a.exe
D:\3.cmd
D:\6phx.com
D:\8gig0ofk.com
D:\8rcahp.exe
D:\9dlvtiil.exe
D:\autorun.inf
D:\comment.htt
D:\d9c.bat
D:\fsaht.cmd
D:\g6e.exe
D:\gbm6n.exe
D:\gclwpivc.cmd
D:\gpcdt.cmd
D:\husyu8n.exe
D:\lad.bat
D:\lc.exe
D:\luk1ylq.com
D:\n68mqcra.exe
D:\p.exe
D:\sm.exe
D:\sv8c2bjw.bat
D:\uhoxajc.cmd
D:\ukvr.bat
D:\upw.bat
D:\upx.bat
D:\xdglur.bat
D:\xhah66s.cmd
D:\yhh.bat
D:\ysep1.exe
E:\0c9k.exe
E:\0oyl662q.cmd
E:\11rhbu.cmd
E:\1f.bat
E:\2.bat
E:\28b6ry9r.exe
E:\2a.exe
E:\2fiy.bat
E:\2u.com
E:\3.cmd
E:\6phx.com
E:\8gig0ofk.com
E:\8rcahp.exe
E:\9dlvtiil.exe
E:\a2h2.com
E:\abk.bat
E:\Autorun.inf
E:\comment.htt
E:\cqdis.cmd
E:\d9c.bat
E:\fsaht.cmd
E:\ft96s.exe
E:\g6e.exe
E:\gbm6n.exe
E:\gclwpivc.cmd
E:\gpcdt.cmd
E:\husyu8n.exe
E:\l8yuk.bat
E:\lad.bat
E:\lc.exe
E:\luk1ylq.com
E:\m2nl.bat
E:\n68mqcra.exe
E:\ncyrf.bat
E:\p.exe
E:\qquq.bat
E:\r8.bat
E:\sm.exe
E:\sq.com
E:\sv8c2bjw.bat
E:\tvlx2fg.exe
E:\uhoxajc.cmd
E:\ukvr.bat
E:\upw.bat
E:\upx.bat
E:\ur0.com
E:\wqesvxa.exe
E:\xdglur.bat
E:\xhah66s.cmd
E:\xrdygg.bat
E:\yhh.bat
E:\ysep1.exe
G:\0c9k.exe
G:\0oyl662q.cmd
G:\11rhbu.cmd
G:\1f.bat
G:\2.bat
G:\28b6ry9r.exe
G:\2a.exe
G:\2u.com
G:\3.cmd
G:\6phx.com
G:\8gig0ofk.com
G:\8rcahp.exe
G:\9dlvtiil.exe
G:\a2h2.com
G:\abk.bat
G:\Autorun.inf
G:\comment.htt
G:\cqdis.cmd
G:\d9c.bat
G:\fsaht.cmd
G:\ft96s.exe
G:\g6e.exe
G:\gbm6n.exe
G:\gclwpivc.cmd
G:\gpcdt.cmd
G:\husyu8n.exe
G:\l8yuk.bat
G:\lad.bat
G:\lc.exe
G:\luk1ylq.com
G:\m2nl.bat
G:\n68mqcra.exe
G:\ncyrf.bat
G:\p.exe
G:\qquq.bat
G:\r8.bat
G:\sm.exe
G:\sq.com
G:\sv8c2bjw.bat
G:\tvlx2fg.exe
G:\uhoxajc.cmd
G:\ukvr.bat
G:\upw.bat
G:\upx.bat
G:\ur0.com
G:\wqesvxa.exe
G:\xdglur.bat
G:\xhah66s.cmd
G:\xrdygg.bat
G:\yhh.bat
G:\ysep1.exe

.
(((((((((((((((((((((((((   Pliki utworzone od 2009-06-10 do 2009-07-10  )))))))))))))))))))))))))))))))
.

2009-07-10 01:39 . 2009-07-10 01:39   --------   d-----w-   c:\users\FaB\AppData\Local\temp
2009-07-10 00:51 . 2009-07-10 00:51   335   ----a-w-   c:\windows\nsreg.dat
2009-07-10 00:51 . 2009-07-10 00:51   --------   d-----w-   c:\users\FaB\AppData\Roaming\Talkback
2009-07-10 00:51 . 2005-09-15 16:45   99024   ----a-w-   c:\windows\MozillaUninstall.exe
2009-07-10 00:50 . 2009-07-10 00:50   98512   ----a-w-   c:\windows\GREUninstall.exe
2009-07-10 00:50 . 2009-07-10 00:51   8956   ----a-w-   c:\windows\mozver.dat
2009-07-10 00:50 . 2009-07-10 00:50   --------   d-----w-   c:\program files\Common Files\mozilla.org
2009-07-10 00:50 . 2009-07-10 00:50   --------   d-----w-   c:\program files\mozilla.org
2009-07-09 21:48 . 2009-07-09 21:48   --------   d-----w-   c:\users\FaB\AppData\Local\ESET
2009-07-09 21:46 . 2009-07-09 21:46   --------   d-----w-   c:\program files\ESET
2009-07-03 17:00 . 2009-07-03 17:38   --------   d-----w-   c:\program files\coolpro2
2009-07-02 17:16 . 2009-07-10 01:10   --------   d-----w-   c:\users\FaB\AppData\Roaming\ipla
2009-07-02 17:16 . 2009-07-02 17:16   --------   d-----w-   c:\progra~2\ipla
2009-07-02 17:16 . 2009-07-02 17:16   --------   d-----w-   c:\program files\ipla
2009-07-02 17:16 . 2009-07-02 17:16   1700352   ----a-w-   c:\windows\system32\gdiplus.dll
2009-07-02 15:21 . 2009-07-02 15:21   --------   d-----w-   c:\users\FaB\AppData\Roaming\Gadu-Gadu
2009-07-02 07:00 . 2009-07-02 07:00   268800   ----a-w-   c:\windows\system32\es.dll
2009-07-02 02:40 . 2009-07-02 02:40   --------   d-----w-   c:\users\FaB\AppData\Roaming\Sonic Foundry
2009-07-02 02:40 . 2009-07-02 02:40   --------   d-----w-   c:\program files\Sonic Foundry
2009-07-02 02:39 . 2009-07-02 02:39   --------   d-----w-   c:\program files\Sonic Foundry Setup
2009-07-02 02:35 . 1996-07-18 17:06   297472   ----a-w-   c:\windows\uninst.exe
2009-07-01 17:26 . 2009-07-01 17:26   28672   ----a-w-   c:\windows\system32\FwRemoteSvr.dll
2009-07-01 17:26 . 2009-07-01 17:26   61440   ----a-w-   c:\windows\system32\winipsec.dll
2009-07-01 17:26 . 2009-07-01 17:26   361984   ----a-w-   c:\windows\system32\IPSECSVC.DLL
2009-07-01 17:26 . 2009-07-01 17:26   272896   ----a-w-   c:\windows\system32\polstore.dll
2009-07-01 17:22 . 2009-07-01 17:22   95232   ----a-w-   c:\windows\system32\PortableDeviceClassExtension.dll
2009-07-01 17:22 . 2009-07-01 17:22   241152   ----a-w-   c:\windows\system32\PortableDeviceApi.dll
2009-07-01 17:22 . 2009-07-01 17:22   160768   ----a-w-   c:\windows\system32\PortableDeviceTypes.dll
2009-07-01 17:20 . 2009-07-01 17:20   39424   ----a-w-   c:\windows\system32\ACCTRES.dll
2009-07-01 17:20 . 2009-07-01 17:20   87040   ----a-w-   c:\windows\system32\msoert2.dll
2009-07-01 17:20 . 2009-07-01 17:20   205824   ----a-w-   c:\windows\system32\msoeacct.dll
2009-07-01 17:17 . 2009-07-01 17:17   110080   ----a-w-   c:\windows\system32\drivers\mrxdav.sys
2009-07-01 17:17 . 2009-07-01 17:17   194560   ----a-w-   c:\windows\system32\WebClnt.dll
2009-07-01 17:15 . 2009-07-01 17:15   2028032   ----a-w-   c:\windows\system32\win32k.sys
2009-07-01 17:14 . 2009-07-01 17:14   49664   ----a-w-   c:\windows\system32\csrsrv.dll
2009-07-01 17:14 . 2009-07-01 17:14   376320   ----a-w-   c:\windows\system32\winsrv.dll
2009-07-01 17:09 . 2009-07-01 17:09   376832   ----a-w-   c:\windows\system32\winhttp.dll
2009-07-01 17:06 . 2009-07-01 17:06   297472   ----a-w-   c:\windows\system32\gdi32.dll
2009-07-01 17:04 . 2009-07-01 17:04   1060920   ----a-w-   c:\windows\system32\drivers\ntfs.sys
2009-07-01 17:04 . 2009-07-01 17:04   41984   ----a-w-   c:\windows\system32\drivers\monitor.sys
2009-07-01 17:03 . 2009-07-01 17:03   211456   ----a-w-   c:\windows\system32\drivers\mrxsmb10.sys
2009-07-01 17:01 . 2009-07-01 17:01   500736   ----a-w-   c:\windows\system32\msdtcprx.dll
2009-07-01 17:01 . 2009-07-01 17:01   30208   ----a-w-   c:\windows\system32\xolehlp.dll
2009-07-01 17:00 . 2009-07-01 17:00   28672   ----a-w-   c:\windows\system32\Apphlpdm.dll
2009-07-01 17:00 . 2009-07-01 17:00   4247552   ----a-w-   c:\windows\system32\GameUXLegacyGDFs.dll
2009-07-01 17:00 . 2009-07-01 17:00   1687040   ----a-w-   c:\windows\system32\gameux.dll
2009-07-01 16:58 . 2009-07-01 16:58   303616   ----a-w-   c:\windows\system32\wmpeffects.dll
2009-07-01 16:56 . 2009-07-01 16:56   2048   ----a-w-   c:\windows\system32\msxml3r.dll
2009-07-01 16:56 . 2009-07-01 16:56   1194496   ----a-w-   c:\windows\system32\msxml3.dll
2009-07-01 16:55 . 2009-07-01 16:55   414208   ----a-w-   c:\windows\system32\msscp.dll
2009-07-01 16:53 . 2009-07-01 16:53   356864   ----a-w-   c:\windows\system32\MediaMetadataHandler.dll
2009-07-01 16:52 . 2009-07-01 16:52   392192   ----a-w-   c:\windows\system32\FirewallAPI.dll
2009-07-01 16:52 . 2009-07-01 16:52   63488   ----a-w-   c:\windows\system32\drivers\mpsdrv.sys
2009-07-01 16:52 . 2009-07-01 16:52   396800   ----a-w-   c:\windows\system32\MPSSVC.dll
2009-07-01 16:52 . 2009-07-01 16:52   86016   ----a-w-   c:\windows\system32\icfupgd.dll
2009-07-01 16:52 . 2009-07-01 16:52   16896   ----a-w-   c:\windows\system32\wfapigp.dll
2009-07-01 16:52 . 2009-07-01 16:52   61952   ----a-w-   c:\windows\system32\cmifw.dll
2009-07-01 16:52 . 2009-07-01 16:52   23040   ----a-w-   c:\windows\system32\drivers\tunnel.sys
2009-07-01 16:52 . 2009-07-01 16:52   178688   ----a-w-   c:\windows\system32\iphlpsvc.dll
2009-07-01 16:52 . 2009-07-01 16:52   15360   ----a-w-   c:\windows\system32\drivers\TUNMP.SYS
2009-07-01 16:49 . 2009-07-01 16:49   2048   ----a-w-   c:\windows\system32\tzres.dll
2009-07-01 16:46 . 2009-07-01 16:46   8147968   ----a-w-   c:\windows\system32\wmploc.DLL
2009-07-01 16:46 . 2009-07-01 16:46   7680   ----a-w-   c:\windows\system32\spwmp.dll
2009-07-01 16:46 . 2009-07-01 16:46   4096   ----a-w-   c:\windows\system32\dxmasf.dll
2009-07-01 16:41 . 2009-07-01 16:41   696832   ----a-w-   c:\windows\system32\localspl.dll
2009-07-01 16:39 . 2009-07-01 16:39   45112   ----a-w-   c:\windows\system32\drivers\pciidex.sys
2009-07-01 16:39 . 2009-07-01 16:39   21560   ----a-w-   c:\windows\system32\drivers\atapi.sys
2009-07-01 16:39 . 2009-07-01 16:39   15928   ----a-w-   c:\windows\system32\drivers\pciide.sys
2009-07-01 16:39 . 2009-07-01 16:39   109624   ----a-w-   c:\windows\system32\drivers\ataport.sys
2009-07-01 16:39 . 2009-07-01 16:39   211000   ----a-w-   c:\windows\system32\drivers\volsnap.sys
2009-07-01 16:39 . 2009-07-01 16:39   154624   ----a-w-   c:\windows\system32\drivers\nwifi.sys
2009-07-01 16:38 . 2009-07-01 16:38   104448   ----a-w-   c:\windows\system32\DWWIN.EXE
2009-07-01 16:37 . 2009-07-01 16:37   2923520   ----a-w-   c:\windows\explorer.exe
2009-07-01 16:34 . 2009-07-01 16:34   8704   ----a-w-   c:\windows\system32\hcrstco.dll
2009-07-01 16:34 . 2009-07-01 16:34   8704   ----a-w-   c:\windows\system32\hccoin.dll
2009-07-01 16:34 . 2009-07-01 16:34   5888   ----a-w-   c:\windows\system32\drivers\usbd.sys
2009-07-01 16:34 . 2009-07-01 16:34   38400   ----a-w-   c:\windows\system32\drivers\usbehci.sys
2009-07-01 16:34 . 2009-07-01 16:34   224768   ----a-w-   c:\windows\system32\drivers\usbport.sys
2009-07-01 16:34 . 2009-07-01 16:34   19456   ----a-w-   c:\windows\system32\drivers\usbohci.sys
2009-07-01 16:34 . 2009-07-01 16:34   192000   ----a-w-   c:\windows\system32\drivers\usbhub.sys
2009-07-01 16:34 . 2009-07-01 16:34   73216   ----a-w-   c:\windows\system32\drivers\usbccgp.sys
2009-07-01 16:32 . 2009-07-01 16:32   24064   ----a-w-   c:\windows\system32\netcfg.exe
2009-07-01 16:32 . 2009-07-01 16:32   803328   ----a-w-   c:\windows\system32\drivers\tcpip.sys
2009-07-01 16:32 . 2009-07-01 16:32   22016   ----a-w-   c:\windows\system32\netiougc.exe
2009-07-01 16:32 . 2009-07-01 16:32   216632   ----a-w-   c:\windows\system32\drivers\netio.sys
2009-07-01 16:32 . 2009-07-01 16:32   167424   ----a-w-   c:\windows\system32\tcpipcfg.dll
2009-07-01 16:31 . 2009-07-01 16:31   1808896   ----a-w-   c:\windows\system32\NlsLexicons0046.dll
2009-07-01 16:31 . 2009-07-01 16:31   1793536   ----a-w-   c:\windows\system32\NlsLexicons0045.dll
2009-07-01 16:31 . 2009-07-01 16:31   1411072   ----a-w-   c:\windows\system32\NlsLexicons0047.dll
2009-07-01 16:31 . 2009-07-01 16:31   1782272   ----a-w-   c:\windows\system32\NlsLexicons0039.dll
2009-07-01 16:31 . 2009-07-01 16:31   1558016   ----a-w-   c:\windows\system32\NlsLexicons0049.dll
2009-07-01 16:31 . 2009-07-01 16:31   1236992   ----a-w-   c:\windows\system32\NlsLexicons0020.dll
2009-07-01 16:31 . 2009-07-01 16:31   5499904   ----a-w-   c:\windows\system32\NlsLexicons0022.dll
2009-07-01 16:31 . 2009-07-01 16:31   2136064   ----a-w-   c:\windows\system32\NlsLexicons0021.dll
2009-07-01 16:25 . 2009-07-01 16:25   1585664   ----a-w-   c:\windows\system32\setupapi.dll
2009-07-01 16:24 . 2009-07-01 16:24   6656   ----a-w-   c:\windows\system32\kbd106.dll
2009-07-01 16:24 . 2009-07-01 16:24   54784   ----a-w-   c:\windows\system32\drivers\i8042prt.sys
2009-07-01 16:24 . 2009-07-01 16:24   35384   ----a-w-   c:\windows\system32\drivers\kbdclass.sys
2009-07-01 16:24 . 2009-07-01 16:24   35328   ----a-w-   c:\windows\system32\dispci.dll
2009-07-01 16:24 . 2009-07-01 16:24   34360   ----a-w-   c:\windows\system32\drivers\mouclass.sys
2009-07-01 16:24 . 2009-07-01 16:24   19968   ----a-w-   c:\windows\system32\drivers\sermouse.sys
2009-07-01 16:24 . 2009-07-01 16:24   15872   ----a-w-   c:\windows\system32\drivers\kbdhid.sys
2009-07-01 16:20 . 2009-07-01 16:20   82432   ----a-w-   c:\windows\system32\drivers\sdbus.sys
2009-07-01 16:18 . 2009-07-01 16:18   9728   ----a-w-   c:\windows\system32\LAPRXY.DLL
2009-07-01 16:18 . 2009-07-01 16:18   223232   ----a-w-   c:\windows\system32\WMASF.DLL
2009-07-01 16:18 . 2009-07-01 16:18   2048   ----a-w-   c:\windows\system32\asferror.dll
2009-07-01 16:17 . 2009-07-01 16:17   7680   ----a-w-   c:\windows\system32\lsass.exe
2009-07-01 16:17 . 2009-07-01 16:17   72704   ----a-w-   c:\windows\system32\secur32.dll
2009-07-01 16:17 . 2009-07-01 16:17   1233408   ----a-w-   c:\windows\system32\lsasrv.dll
2009-07-01 16:17 . 2009-07-01 16:17   25600   ----a-w-   c:\windows\system32\amxread.dll
2009-07-01 16:17 . 2009-07-01 16:17   14848   ----a-w-   c:\windows\system32\apilogen.dll
2009-07-01 16:16 . 2009-07-01 16:16   33280   ----a-w-   c:\windows\system32\slwmi.dll
2009-07-01 16:16 . 2009-07-01 16:16   268288   ----a-w-   c:\windows\system32\mcbuilder.exe
2009-07-01 16:16 . 2009-07-01 16:16   223232   ----a-w-   c:\windows\system32\SLC.dll
2009-07-01 16:16 . 2009-07-01 16:16   566784   ----a-w-   c:\windows\system32\SLCommDlg.dll
2009-07-01 16:16 . 2009-07-01 16:16   351232   ----a-w-   c:\windows\system32\SLUI.exe
2009-07-01 16:16 . 2009-07-01 16:16   57856   ----a-w-   c:\windows\system32\SLUINotify.dll
2009-07-01 16:16 . 2009-07-01 16:16   186368   ----a-w-   c:\windows\system32\SLLUA.exe
2009-07-01 16:16 . 2009-07-01 16:16   39936   ----a-w-   c:\windows\system32\slcinst.dll
2009-07-01 16:16 . 2009-07-01 16:16   2605568   ----a-w-   c:\windows\system32\SLsvc.exe
2009-07-01 16:15 . 2009-07-01 16:15   712192   ----a-w-   c:\windows\system32\WindowsCodecs.dll
2009-07-01 16:15 . 2009-07-01 16:15   425472   ----a-w-   c:\windows\system32\PhotoMetadataHandler.dll
2009-07-01 16:15 . 2009-07-01 16:15   347136   ----a-w-   c:\windows\system32\WindowsCodecsExt.dll
2009-07-01 16:11 . 2009-07-01 16:11   441856   ----a-w-   c:\windows\system32\win32spl.dll
2009-07-01 16:11 . 2009-07-01 16:11   37376   ----a-w-   c:\windows\system32\printcom.dll

.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-07-10 01:28 . 2006-12-05 05:19   85832   ----a-w-   c:\windows\system32\perfc015.dat
2009-07-10 01:28 . 2006-12-05 05:19   534582   ----a-w-   c:\windows\system32\perfh015.dat
2009-07-10 01:24 . 2009-06-26 08:54   1356   ----a-w-   c:\users\FaB\AppData\Local\d3d9caps.dat
2009-07-10 00:36 . 2009-06-29 23:24   31681   ----a-w-   c:\progra~2\nvModes.dat
2009-07-01 17:38 . 2006-11-02 10:25   665600   ----a-w-   c:\windows\inf\drvindex.dat
2009-07-01 17:29 . 2006-11-02 12:35   --------   d-----w-   c:\program files\Windows Calendar
2009-07-01 17:29 . 2006-11-02 11:18   --------   d-----w-   c:\program files\Windows Mail
2009-07-01 17:29 . 2006-11-02 12:35   --------   d-----w-   c:\program files\Windows Defender
2009-07-01 17:28 . 2006-11-02 12:35   --------   d-----w-   c:\program files\Windows Sidebar
2009-07-01 17:18 . 2009-07-01 17:18   704000   ----a-w-   c:\windows\system32\PhotoScreensaver.scr
2009-07-01 16:30 . 2009-07-01 16:30   7964672   ----a-w-   c:\windows\system32\NlsLexicons0024.dll
2009-07-01 16:25 . 2009-07-01 16:25   40960   ----a-w-   c:\windows\system32\srclient.dll
2009-07-01 16:21 . 2009-07-01 16:21   549888   ----a-w-   c:\windows\system32\rpcss.dll
2009-07-01 16:21 . 2009-07-01 16:21   3503584   ----a-w-   c:\windows\system32\ntkrnlpa.exe
2009-07-01 16:21 . 2009-07-01 16:21   3469280   ----a-w-   c:\windows\system32\ntoskrnl.exe
2009-07-01 16:21 . 2009-07-01 16:21   24576   ----a-w-   c:\windows\system32\printfilterpipelineprxy.dll
2009-07-01 16:21 . 2009-07-01 16:21   654336   ----a-w-   c:\windows\system32\printfilterpipelinesvc.exe
2009-07-01 16:21 . 2009-07-01 16:21   501760   ----a-w-   c:\windows\system32\wbem\WmiPrvSD.dll
2009-07-01 16:21 . 2009-07-01 16:21   247296   ----a-w-   c:\windows\system32\wbem\WmiPrvSE.exe
2009-07-01 16:21 . 2009-07-01 16:21   130560   ----a-w-   c:\windows\system32\wbem\WmiDcPrv.dll
2009-07-01 16:21 . 2009-07-01 16:21   614912   ----a-w-   c:\windows\system32\wbem\fastprox.dll
2009-07-01 16:21 . 2009-07-01 16:21   97280   ----a-w-   c:\windows\system32\iasrecst.dll
2009-07-01 16:21 . 2009-07-01 16:21   53248   ----a-w-   c:\windows\system32\iasads.dll
2009-07-01 16:21 . 2009-07-01 16:21   37888   ----a-w-   c:\windows\system32\iasdatastore.dll
2009-07-01 16:21 . 2009-07-01 16:21   158720   ----a-w-   c:\windows\system32\sdohlp.dll
2009-07-01 15:55 . 2009-07-01 15:55   72704   ----a-w-   c:\windows\system32\admparse.dll
2009-07-01 15:55 . 2009-07-01 15:55   827392   ----a-w-   c:\windows\system32\wininet.dll
2009-07-01 15:55 . 2009-07-01 15:55   78336   ----a-w-   c:\windows\system32\ieencode.dll
2009-07-01 15:55 . 2009-07-01 15:55   48128   ----a-w-   c:\windows\system32\mshtmler.dll
2009-07-01 15:55 . 2009-07-01 15:55   26624   ----a-w-   c:\windows\system32\ieUnatt.exe
2009-07-01 15:55 . 2009-07-01 15:55   56320   ----a-w-   c:\windows\system32\iesetup.dll
2009-06-30 20:36 . 2009-06-26 08:54   50296   ----a-w-   c:\users\FaB\AppData\Local\GDIPFONTCACHEV1.DAT
2009-06-30 00:26 . 2009-06-30 00:26   3494   ----a-w-   c:\windows\bcm43A4.tmp
2009-06-26 09:01 . 2009-06-26 09:01   --------   d-----w-   c:\users\FaB\AppData\Roaming\Media Player Classic
2009-06-26 09:01 . 2009-06-26 09:01   --------   d-----w-   c:\program files\K-Lite Codec Pack
2009-06-26 08:53 . 2009-06-26 08:53   --------   d-sh--we   c:\progra~2\Ulubione
2009-06-26 08:53 . 2009-06-26 08:53   --------   d-sh--we   c:\progra~2\Szablony
2009-06-26 08:53 . 2009-06-26 08:53   --------   d-sh--we   c:\progra~2\Pulpit
2009-06-26 08:53 . 2009-06-26 08:53   --------   d-sh--we   c:\progra~2\Menu Start
2009-06-26 08:53 . 2009-06-26 08:53   --------   d-sh--we   c:\progra~2\Dokumenty
2009-06-26 08:53 . 2009-06-26 08:53   --------   d-sh--we   c:\progra~2\Dane aplikacji
.

(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane 
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-01 1232896]
"CollaborationHost"="c:\windows\system32\p2phost.exe" [2006-11-02 191488]
"Gadu-Gadu"="c:\program files\Gadu-Gadu\gg.exe" [2008-03-20 2127296]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2009-04-23 691656]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 201728]
"IPLA!"="c:\program files\ipla\ipla.exe" [2009-05-12 3955096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2009-07-01 1006264]
"WinampAgent"="c:\program files\Winamp\winampa.exe" [2007-09-18 35328]
"hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2008-04-15 488752]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-01-30 13605408]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-01-30 92704]
"KBD"="c:\hp\KBD\KbdStub.EXE" [2006-12-08 65536]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-02-06 2021400]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"GrpConv"="grpconv -o" [X]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{20BF0098-74BC-4619-BAB7-8EB73C2643B6}"= UDP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe:BlueSoleilCS
"{BB470051-7B48-45DF-8DEB-449F229B74BC}"= TCP:c:\program files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe:BlueSoleilCS
"TCP Query User{13FA9AEC-13A9-4224-BA33-845E700BA810}c:\\program files\\ipla\\ipla.exe"= UDP:c:\program files\ipla\ipla.exe:ipla
"UDP Query User{EB211497-126D-4E07-BCD6-23C83825A537}c:\\program files\\ipla\\ipla.exe"= TCP:c:\program files\ipla\ipla.exe:ipla

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\RestrictedServices\Static\System]
"DFSR-1"= RPort=5722|UDP:%SystemRoot%\system32\svchost.exe|Svc=DFSR:Allow inbound TCP traffic|

S1 ehdrv;ehdrv;c:\windows\System32\drivers\ehdrv.sys [2/6/2009 2:23 PM 106208]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2/6/2009 2:23 PM 727720]
S2 epfwwfpr;epfwwfpr;c:\windows\System32\drivers\epfwwfpr.sys [2/6/2009 2:24 PM 92800]
S3 btnetBUs;Bluetooth PAN Bus Service;c:\windows\System32\drivers\btnetBus.sys [12/7/2008 12:44 PM 30088]

--- Inne Usługi/Sterowniki w Pamięci ---

*NewlyCreated* - ECACHE

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork   REG_MULTI_SZ      PLA DPS BFE mpssvc
.
- - - - USUNIĘTO PUSTE WPISY - - - -

HKLM-Run-MyWebSearch Plugin - c:\progra~1\MYWEBS~1\bar\1.bin\M3PLUGIN.DLL
HKLM-Run-My Web Search Bar Search Scope Monitor - c:\progra~1\MYWEBS~1\bar\1.bin\m3SrchMn.exe
HKLM-RunOnce-<NO NAME> - (no file)


.
------- Skan uzupełniający -------
.
uStart Page = hxxp://www.daemon-search.com/startpage
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-07-09 21:39
Windows 6.0.6000  NTFS

skanowanie ukrytych procesów ... 

skanowanie ukrytych wpisów autostartu ...

skanowanie ukrytych plików ... 

skanowanie pomyślnie ukończone
ukryte pliki: 0

**************************************************************************
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Czas ukończenia: 2009-07-10 21:40
ComboFix-quarantined-files.txt  2009-07-10 01:40

Przed: 28,072,710,144 bajtów wolnych
Po: 28,210,028,544 bajtów wolnych

491   --- E O F ---   2009-07-09 14:59


[wojtas]

opisz dokladnie problem...

[LiLFaB]

Skanowałem komputer antyvir NOD32 i wyskoczył komunikat usunełem Virusa od tamtej pory przy kazdym uruchamianiu wyskakuje błąd

c:\progra~1\mywebs\bar\1.bin\m3plugin.dll

a jak wejde w przeglądarke internetową lub gg po niecałej minucie resetuje mi sie komputer

[wojtas]

1.Uruchom OTL z opcji CleanUp
2. wykonaj optymalizację windowsa
3.Wyłącz przywracanie systemu ( właściwości mój komputer-zakładka przywracanie - wyłącz przywracanie na wszystkich dyskach). Po chwili włącz je powrotem
4. Wykonaj skan Dr. Web CureIt
5. Przeskanuj obszar mojego komputera http://www.kaspersky.pl/virusscanner.html (uruchom przez IE) Daj raport z niego na forum.

i tym (skasuj co znajdzie)

Malwarebytes Anti-Malware

Jeśli masz Adobe Reader to zaaktualizuj go do najnowszej wersji

[LiLFaB]

Nie Moge wykonać tych czynnoiści ponieważ na Viscie jest inaczej.. I pracuje tylko w trybie awaryjnym poneiwaz resetuje mi sie system jak wchodze normalnie..

[wojtas]

Prawym na ,,Mój komputer">właściwości>Zakładka "Zaawansowane" -> Uruchamianie i odzyskiwanie i klikamy "ustawienia">
w części "Awaria systemu" odznaczamy pole "Automatycznie uruchom ponownie"

teraz zamiast resetu pojawi sie bluescreen przepisz kod bledu z dolu strony bluescreena oraz daj loga z OTL