Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663

Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663

Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663

Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663

Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663

Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663

Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663

Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 112

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 27

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 28

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 29

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 30

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 31

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 32

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 33

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 35

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 36

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 37

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 38

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 39

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 40

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 41

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 42

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 43

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 44

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 45

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 47

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 48

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 49

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 50

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 51

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 52

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 53

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 54

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 55

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 56

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 80

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 81

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 82

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 83

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 84

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 85

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 86

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 87

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 88

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 89

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 90

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 91

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 92

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 93

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 94

Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 27

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 28

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 29

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 30

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 31

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 32

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 33

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 35

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 36

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 37

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 38

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 39

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 40

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 41

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 42

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 43

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 44

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 45

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 47

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 48

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 49

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 50

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 51

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 52

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 53

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 54

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 55

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 56

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 80

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 81

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 82

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 83

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 84

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 85

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 86

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 87

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 88

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 89

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 90

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 91

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 92

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 93

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 94

Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 112

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 112

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 27

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 28

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 29

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 30

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 31

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 32

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 33

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 35

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 36

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 37

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 38

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 39

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 40

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 41

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 42

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 43

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 44

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 45

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 47

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 48

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 49

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 50

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 51

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 52

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 53

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 54

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 55

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 56

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 80

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 81

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 82

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 83

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 84

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 85

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 86

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 87

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 88

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 89

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 90

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 91

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 92

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 93

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 94

Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 112

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 27

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 28

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 29

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 30

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 31

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 32

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 33

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 35

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 36

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 37

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 38

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 39

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 40

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 41

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 42

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 43

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 44

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 45

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 47

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 48

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 49

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 50

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 51

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 52

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 53

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 54

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 55

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 56

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 80

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 81

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 82

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 83

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 84

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 85

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 86

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 87

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 88

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 89

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 90

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 91

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 92

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 93

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 94

Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663
[phpBB Debug] PHP Notice: in file /includes/functions.php on line 3900: Cannot modify header information - headers already sent by (output started at /includes/bbcode.php:483)
[phpBB Debug] PHP Notice: in file /includes/functions.php on line 3902: Cannot modify header information - headers already sent by (output started at /includes/bbcode.php:483)
[phpBB Debug] PHP Notice: in file /includes/functions.php on line 3903: Cannot modify header information - headers already sent by (output started at /includes/bbcode.php:483)
[phpBB Debug] PHP Notice: in file /includes/functions.php on line 3904: Cannot modify header information - headers already sent by (output started at /includes/bbcode.php:483)
Proszę o sprawdzenie loga (some dangerous viruses detected) • programosy.pl
Aktualizacje na programosy.pl: ChrisPC RAM Booster Inno SetupCopernic Desktop Search LiteGlary Utilities ProGlary Disk CleanerGlary Tracks EraserMixPadAgent RansackreaConverter Lite  

  • Ogłoszenie:

Proszę o sprawdzenie loga (some dangerous viruses detected)

Bezpieczeństwo systemów, usuwanie wirusów, dobieranie programów antywirusowych. Obowiązkowe logi w tym dziale: trzy z FRST + Gmer.
Wyślij odpowiedź

Proszę o sprawdzenie loga (some dangerous viruses detected)

Postprzez Quindy 30 Gru 2008, 22:46

reklama
Witam,

Mam dość często spotykany problem, ale nie potrafię sobie z nim poradzić. Szukałem na forum porad, ale wszystko co zrobiłem nie dało rezultatów. Podczas wchodzenia do C:\Documents and Setings\Artur\... pojawia się komunikat: 'Attention, some dangerous viruses detected in your system...' Później pyta się czy uruchomić jakiś program.

Ściągnąłem Windows Worms Doors Cleaner i wszystko ustawiłem na enabled (NetBios jest na żółto reszta na zielono). Zrobiłem logi programami:

SDFix:

Kod: Zaznacz wszystko
[b]SDFix: Version 1.240 [/b]
Run by Administrator on 08-12-30 at 21:14

Microsoft Windows XP [Wersja 5.1.2600]
Running From: C:\SDFix

[b]Checking Services [/b]:


Restoring Default Security Values
Restoring Default Hosts File

Rebooting


[b]Checking Files [/b]:

No Trojan Files Found






Removing Temp Files

[b]ADS Check [/b]:



                                 [b]Final Check [/b]:

catchme 0.3.1361.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-30 21:20:12
Windows 5.1.2600 Dodatek Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden services & system hive ...

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg]
"s1"=dword:2df9c43f
"s2"=dword:110480d0
"h0"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"p0"="e:\Alcohol Soft\Alcohol 120\"
"h0"=dword:00000000
"ujdew"=hex:08,88,3a,9e,2d,78,7f,fa,e4,fc,a1,74,55,72,d4,40,5c,97,c0,2b,7b,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"p0"="e:\Alcohol Soft\Alcohol 120\"
"h0"=dword:00000000
"ujdew"=hex:08,88,3a,9e,2d,78,7f,fa,e4,fc,a1,74,55,72,d4,40,5c,97,c0,2b,7b,..

scanning hidden registry entries ...

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Prefetcher]
"TracesProcessed"=dword:000000ae

scanning hidden files ...

scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0


[b]Remaining Services [/b]:




Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\\Tlen\\tlen.exe"="E:\\Tlen\\tlen.exe:*:Enabled:Komunikator Tlen.pl"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[b]Remaining Files [/b]:



ComboFix:

Kod: Zaznacz wszystko
ComboFix 08-12-29.02 - Artur 2008-12-30 21:34:09.3 - NTFSx86
Uruchomiony z: e:\narzędzia\ComboFix.exe
.

(((((((((((((((((((((((((((((((((((((((   Usunięto   )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Artur\Dane aplikacji\.#

.
(((((((((((((((((((((((((   Pliki utworzone od 2008-11-28 do 2008-12-30  )))))))))))))))))))))))))))))))
.

2008-12-30 21:32 . 2008-12-30 21:32   <DIR>   d--------   C:\32788R22FWJFW
2008-12-30 21:13 . 2008-12-30 21:13   <DIR>   d--------   c:\windows\ERUNT
2008-12-30 21:12 . 2008-12-30 21:38   <DIR>   d--h-----   c:\documents and settings\Administrator.ARCIUCH\Ustawienia lokalne
2008-12-30 21:12 . 2008-08-14 13:29   <DIR>   d--------   c:\documents and settings\Administrator.ARCIUCH\Ulubione
2008-12-30 21:12 . 2008-08-25 15:40   <DIR>   d--h-----   c:\documents and settings\Administrator.ARCIUCH\Szablony
2008-12-30 21:12 . 2008-08-14 13:29   <DIR>   d--------   c:\documents and settings\Administrator.ARCIUCH\Pulpit
2008-12-30 21:12 . 2008-08-14 13:29   <DIR>   d--------   c:\documents and settings\Administrator.ARCIUCH\Moje dokumenty
2008-12-30 21:12 . 2008-08-14 13:29   <DIR>   dr-------   c:\documents and settings\Administrator.ARCIUCH\Menu Start
2008-12-30 21:12 . 2008-08-14 13:29   <DIR>   dr-h-----   c:\documents and settings\Administrator.ARCIUCH\Dane aplikacji
2008-12-30 21:12 . 2008-12-30 21:13   <DIR>   d--------   c:\documents and settings\Administrator.ARCIUCH
2008-12-30 21:10 . 2008-12-30 21:21   <DIR>   d--------   C:\SDFix
2008-12-30 16:30 . 2008-12-30 16:30   <DIR>   d--------   c:\documents and settings\Artur\Dane aplikacji\Grisoft
2008-12-30 16:29 . 2008-12-30 16:29   <DIR>   d--------   c:\documents and settings\All Users\Dane aplikacji\Grisoft
2008-12-30 16:29 . 2007-05-30 13:10   10,872   --a------   c:\windows\system32\drivers\AvgAsCln.sys
2008-12-30 15:50 . 2008-12-30 15:50   167,936   --a------   c:\windows\system32\dhofozr.dll
2008-12-30 15:50 . 2008-12-30 15:50   72,192   --a------   c:\windows\system32\opnnoomL.dll
2008-12-30 15:50 . 2008-12-30 15:50   21,446   --a------   c:\windows\system32\sf.ico
2008-12-30 15:50 . 2008-12-30 15:50   13,942   --a------   c:\windows\system32\m3.ico
2008-12-30 15:50 . 2008-12-30 15:50   3,097   --a------   c:\windows\ios.dat
2008-12-30 15:10 . 2008-12-30 15:52   <DIR>   d--------   c:\windows\SxsCaPendDel
2008-12-29 13:07 . 2008-12-29 13:07   806   --a------   c:\windows\hpinfo.lnk
2008-12-29 13:06 . 2001-09-12 19:20   114,744   --a------   c:\windows\system32\hpzlnt04.dll
2008-12-29 13:06 . 2008-12-29 13:06   376   --a------   c:\windows\mozregistry.dat
2008-12-29 13:05 . 2008-12-29 13:07   <DIR>   d--------   c:\program files\hp deskjet 920c series
2008-12-29 13:05 . 2008-12-29 13:05   <DIR>   d--------   c:\program files\Hewlett-Packard
2008-12-29 13:02 . 2004-08-03 23:01   25,856   --a------   c:\windows\system32\drivers\usbprint.sys
2008-12-29 13:02 . 2004-08-03 23:01   25,856   --a--c---   c:\windows\system32\dllcache\usbprint.sys
2008-12-29 11:05 . 2008-12-29 11:22   737,280   --a------   c:\windows\iun6002.exe
2008-12-26 14:56 . 2008-12-26 15:11   <DIR>   d--------   c:\documents and settings\Artur\Dane aplikacji\Intermedia Software
2008-12-26 14:56 . 2002-02-04 01:52   1,230,336   --a------   c:\windows\system32\msxml4.dll
2008-12-26 14:56 . 2002-02-04 01:43   82,432   --a------   c:\windows\system32\msxml4r.dll
2008-12-26 14:56 . 2003-04-18 15:29   44,544   --a------   c:\windows\system32\msxml4a.dll
2008-12-25 23:11 . 2008-12-25 23:11   <DIR>   d--------   c:\windows\Sun
2008-12-25 23:11 . 2008-12-25 23:10   73,728   --a------   c:\windows\system32\javacpl.cpl
2008-12-25 23:10 . 2008-12-25 23:10   <DIR>   d--------   c:\program files\Java
2008-12-25 23:10 . 2008-12-25 23:10   410,984   --a------   c:\windows\system32\deploytk.dll
2008-12-25 21:32 . 2008-12-25 21:32   <DIR>   d--h-----   c:\windows\system32\GroupPolicy
2008-12-25 20:25 . 2008-08-14 13:29   <DIR>   d--h-----   c:\documents and settings\Administrator\Ustawienia lokalne
2008-12-25 20:25 . 2008-08-14 13:29   <DIR>   d--------   c:\documents and settings\Administrator\Ulubione
2008-12-25 20:25 . 2008-08-25 15:40   <DIR>   d--h-----   c:\documents and settings\Administrator\Szablony
2008-12-25 20:25 . 2008-08-14 13:29   <DIR>   d--------   c:\documents and settings\Administrator\Pulpit
2008-12-25 20:25 . 2008-08-14 13:29   <DIR>   d--------   c:\documents and settings\Administrator\Moje dokumenty
2008-12-25 20:25 . 2008-08-14 13:29   <DIR>   dr-------   c:\documents and settings\Administrator\Menu Start
2008-12-25 20:25 . 2008-08-14 13:29   <DIR>   dr-h-----   c:\documents and settings\Administrator\Dane aplikacji
2008-12-25 20:25 . 2008-12-25 20:25   <DIR>   d--------   c:\documents and settings\Administrator
2008-12-25 17:41 . 2005-06-15 03:00   102,400   --a------   c:\windows\system32\tsccvid.dll
2008-12-25 17:40 . 2000-05-22 00:00   1,009,336   --a------   c:\windows\system32\Mschrt20.ocx
2008-12-25 16:00 . 2008-12-25 16:00   <DIR>   d--------   c:\program files\Common Files\PC Tools
2008-12-25 16:00 . 2008-12-25 16:00   <DIR>   d--------   c:\documents and settings\Artur\Dane aplikacji\PC Tools
2008-12-25 16:00 . 2008-12-30 21:32   <DIR>   d-a------   c:\documents and settings\All Users\Dane aplikacji\TEMP
2008-12-25 16:00 . 2008-12-25 16:00   <DIR>   d--------   c:\documents and settings\All Users\Dane aplikacji\PC Tools
2008-12-25 16:00 . 2007-12-06 16:51   28,568   --a------   c:\windows\system32\drivers\AVHook.sys
2008-12-25 16:00 . 2007-12-06 16:51   21,912   --a------   c:\windows\system32\drivers\AVRec.sys
2008-12-25 16:00 . 2008-02-12 11:44   21,904   --a------   c:\windows\system32\drivers\AVFilter.sys

.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-12-30 14:10   ---------   d-----w   c:\program files\Common Files\Adobe
2008-12-29 12:43   ---------   d-----w   c:\program files\ScannerU
2008-12-25 14:55   ---------   d-----w   c:\documents and settings\All Users\Dane aplikacji\Avira
2008-08-27 12:30   81,920   ----a-w   c:\documents and settings\Artur\Dane aplikacji\ezpinst.exe
2008-08-27 12:30   47,360   ----a-w   c:\documents and settings\Artur\Dane aplikacji\pcouffin.sys
.

(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DE2C5EF2-DFBF-49B0-BBF2-3B2805A52722}]
2008-12-30 15:50   167936   --a------   c:\windows\system32\dhofozr.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2004-08-03 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"="c:\program files\Analog Devices\SoundMAX\SMax4PNP.exe" [2004-07-27 1388544]
"igfxtray"="c:\windows\system32\igfxtray.exe" [2005-09-20 94208]
"igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2005-09-20 77824]
"igfxpers"="c:\windows\system32\igfxpers.exe" [2005-09-20 114688]
"PCTAVApp"="e:\pc tools antivirus\PCTAV.exe" [2008-09-25 1370000]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-12-25 136600]
"!AVG Anti-Spyware"="e:\avg anti-spyware 7.5\avgas.exe" [2007-06-11 6731312]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-03 15360]

c:\documents and settings\Artur\Menu Start\Programy\Autostart\
Tweak-xp Pro Updater.exe [2008-12-27 33982]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.avrn"= e:\kodeki\ACEMEG~1\SystemS\AVIDAV~1.DLL
"vidc.advj"= e:\kodeki\ACEMEG~1\SystemS\AVIDAV~1.DLL
"vidc.mszh"= e:\kodeki\ACEMEG~1\SystemS\avimszh.dll
"vidc.zlib"= e:\kodeki\ACEMEG~1\SystemS\avizlib.dll
"vidc.cscd"= e:\kodeki\ACEMEG~1\SystemS\camcodec.dll
"vidc.cvid"= e:\kodeki\ACEMEG~1\SystemS\iccvid.dll
"msacm.trspch"= e:\kodeki\ACEMEG~1\SystemS\tssoft32.acm
"vidc.em2v"= e:\kodeki\ACEMEG~1\SystemS\etxcodec.dll
"vidc.mkvc"= e:\kodeki\ACEMEG~1\SystemS\kmvidc32.dll
"vidc.hfyu"= e:\kodeki\ACEMEG~1\SystemS\huffyuv.dll
"msacm.lameacm"= e:\kodeki\ACEMEG~1\SystemS\lameacm.acm
"msacm.lhacm"= e:\kodeki\ACEMEG~1\SystemS\lhacm.acm
"msacm.l3acm"= e:\kodeki\ACEMEG~1\SystemS\l3codecp.acm
"vidc.sjpg"= e:\kodeki\ACEMEG~1\SystemS\pmjpeg32.dll
"vidc.dmb2"= e:\kodeki\ACEMEG~1\SystemS\pmjpeg32.dll
"vidc.gepj"= e:\kodeki\ACEMEG~1\SystemS\pmjpeg32.dll
"vidc.qpeg"= e:\kodeki\ACEMEG~1\SystemS\Qpeg32.dll
"vidc.q1.0"= e:\kodeki\ACEMEG~1\SystemS\Qpeg32.dll
"msacm.sl_anet"= e:\kodeki\ACEMEG~1\SystemS\sl_anet.acm
"vidc.vifp"= e:\kodeki\ACEMEG~1\SystemS\vfcodec.dll
"vidc.wrpr"= e:\kodeki\ACEMEG~1\SystemS\aviwrap.dll
"vidc.wnv1"= e:\kodeki\ACEMEG~1\SystemS\wnvplay1.dll
"vidc.advs"= e:\kodeki\ACEMEG~1\SystemS\Adaptec\Dvc.dll
"vidc.aflc"= e:\kodeki\ACEMEG~1\SystemS\Autodesk\FLCCOD~1.DLL
"vidc.afli"= e:\kodeki\ACEMEG~1\SystemS\Autodesk\FLCCOD~1.DLL
"vidc.aasc"= e:\kodeki\ACEMEG~1\SystemS\Autodesk\Aasc32.dll
"vidc.aas4"= e:\kodeki\ACEMEG~1\SystemS\Autodesk\Aasc32.dll
"vidc.asv1"= e:\kodeki\ACEMEG~1\SystemS\ASUS\asusasv1.dll
"vidc.asv2"= e:\kodeki\ACEMEG~1\SystemS\ASUS\asusasv2.dll
"vidc.asvx"= e:\kodeki\ACEMEG~1\SystemS\ASUS\asusasv2.dll
"vidc.vcr1"= e:\kodeki\ACEMEG~1\SystemS\ATI\ativcr1.dll
"vidc.vcr2"= e:\kodeki\ACEMEG~1\SystemS\ATI\ativcr2.dll
"vidc.yv12"= e:\kodeki\ACEMEG~1\SystemS\ATI\atiyuv12.DLL
"vidc.mwv1"= e:\kodeki\ACEMEG~1\SystemS\Aware\icmw_32.dll
"vidc.bt20"= e:\kodeki\ACEMEG~1\SystemS\BROOKT~1\btvvc32.drv
"vidc.y41p"= e:\kodeki\ACEMEG~1\SystemS\BROOKT~1\btvvc32.drv
"msacm.pcdv"= e:\kodeki\ACEMEG~1\SystemS\Canopus\pcdv.acm
"vidc.cdvc"= e:\kodeki\ACEMEG~1\SystemS\Canopus\CSCCDVC.DLL
"vidc.ddvc"= e:\kodeki\ACEMEG~1\SystemS\Canopus\CSCdvsd.DLL
"vidc.png1"= e:\kodeki\ACEMEG~1\SystemS\Core\COREPN~1.DLL
"msacm.CoreFLAC_ACM"= e:\kodeki\ACEMEG~1\SystemS\Core\COREFL~1.ACM
"vidc.davc"= e:\kodeki\ACEMEG~1\SystemS\dicas\davcvfw.dll
"vidc.div3"= e:\kodeki\ACEMEG~1\SystemS\DivX\DivXc32.dll
"vidc.div5"= e:\kodeki\ACEMEG~1\SystemS\DivX\DivXc32.dll
"vidc.mpg3"= e:\kodeki\ACEMEG~1\SystemS\DivX\DivXc32.dll
"vidc.div4"= e:\kodeki\ACEMEG~1\SystemS\DivX\DivXc32f.dll
"vidc.div6"= e:\kodeki\ACEMEG~1\SystemS\DivX\DivXc32f.dll
"vidc.ap41"= e:\kodeki\ACEMEG~1\SystemS\DivX\DivXc32f.dll
"vidc.dvx4"= e:\kodeki\ACEMEG~1\SystemS\DivX\divx4.dll
"vidc.divx"= e:\kodeki\ACEMEG~1\SystemS\DivX\DivX520.dll
"msacm.divxa32"= e:\kodeki\ACEMEG~1\SystemS\DivX\divxa32.acm
"vidc.frwd"= e:\kodeki\ACEMEG~1\SystemS\Forward\frwd.dll
"vidc.frwt"= e:\kodeki\ACEMEG~1\SystemS\Forward\frwd.dll
"vidc.frwa"= e:\kodeki\ACEMEG~1\SystemS\Forward\frwt.dll
"vidc.frwu"= e:\kodeki\ACEMEG~1\SystemS\Forward\frwu.dll
"vidc.glzw"= e:\kodeki\ACEMEG~1\SystemS\Gabest\GLZW.dll
"vidc.gpeg"= e:\kodeki\ACEMEG~1\SystemS\Gabest\GPEG.dll
"vidc.i263"= e:\kodeki\ACEMEG~1\SystemS\Intel\i263_32.drv
"vidc.iv30"= e:\kodeki\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv31"= e:\kodeki\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv32"= e:\kodeki\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv33"= e:\kodeki\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv34"= e:\kodeki\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv35"= e:\kodeki\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv36"= e:\kodeki\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv37"= e:\kodeki\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv38"= e:\kodeki\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv39"= e:\kodeki\ACEMEG~1\SystemS\Intel\ir32_32.dll
"vidc.iv40"= e:\kodeki\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv41"= e:\kodeki\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv42"= e:\kodeki\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv43"= e:\kodeki\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv44"= e:\kodeki\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv45"= e:\kodeki\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv46"= e:\kodeki\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv47"= e:\kodeki\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv48"= e:\kodeki\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iv49"= e:\kodeki\ACEMEG~1\SystemS\Intel\ir41_32.dll
"vidc.iyuv"= e:\kodeki\ACEMEG~1\SystemS\Intel\iyuv_32.dll
"vidc.yvu9"= e:\kodeki\ACEMEG~1\SystemS\Intel\Iyvu9_32.dll
"vidc.ir21"= e:\kodeki\ACEMEG~1\SystemS\Intel\IR21_R.DLL
"vidc.rt21"= e:\kodeki\ACEMEG~1\SystemS\Intel\IR21_R.DLL
"msacm.imc"= e:\kodeki\ACEMEG~1\SystemS\Intel\IMC32.ACM
"vidc.lead"= e:\kodeki\ACEMEG~1\SystemS\LEAD\LCODCCMP.DLL
"vidc.dvsd"= e:\kodeki\ACEMEG~1\SystemS\MAINCO~1\MCDVD_32.DLL
"vidc.dvc"= e:\kodeki\ACEMEG~1\SystemS\MAINCO~1\MCDVD_32.DLL
"vidc.dvcs"= e:\kodeki\ACEMEG~1\SystemS\MAINCO~1\MCDVD_32.DLL
"vidc.dcmj"= e:\kodeki\ACEMEG~1\SystemS\MAINCO~1\MCMJPG32.DLL
"vidc.avi1"= e:\kodeki\ACEMEG~1\SystemS\MAINCO~1\MCMJPG32.DLL
"vidc.avi2"= e:\kodeki\ACEMEG~1\SystemS\MAINCO~1\MCMJPG32.DLL
"vidc.dv25"= e:\kodeki\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.dv50"= e:\kodeki\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.msmc"= e:\kodeki\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mmjp"= e:\kodeki\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx1"= e:\kodeki\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx2"= e:\kodeki\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx3"= e:\kodeki\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx4"= e:\kodeki\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx5"= e:\kodeki\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx6"= e:\kodeki\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx7"= e:\kodeki\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx8"= e:\kodeki\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx9"= e:\kodeki\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mmes"= e:\kodeki\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"msacm.msadpcm"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\msadp32.acm
"msacm.imaadpcm"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\imaadp32.acm
"msacm.msg711"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\msg711.acm
"msacm.msg723"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\msg723.acm
"msacm.msgsm610"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\msgsm32.acm
"vidc.m261"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\msh261.drv
"vidc.m263"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\msh263.drv
"vidc.i420"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\msh263.drv
"vidc.mrle"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\msrle32.dll
"vidc.uyvy"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\msyuv.dll
"vidc.yuy2"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\msyuv.dll
"vidc.yvyu"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\msyuv.dll
"vidc.msvc"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\msvidc32.dll
"vidc.cram"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\msvidc32.dll
"vidc.mpg4"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\mpg4c32.dll
"vidc.mp41"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\mpg4c32.dll
"vidc.mp42"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\mpg4c32.dll
"vidc.mp43"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\mpg4c32.dll
"vidc.mp4s"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\mpg4c32.dll
"vidc.mp4v"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\mpg4c32.dll
"vidc.wmv3"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\WMV9VCM.dll
"msacm.msaudio1"= e:\kodeki\ACEMEG~1\SystemS\MICROS~1\msaud32.acm
"vidc.vixl"= e:\kodeki\ACEMEG~1\SystemS\Miro\miroxl32.dll
"vidc.nt00"= e:\kodeki\ACEMEG~1\SystemS\Newtek\ntcodec.dll
"msacm.vorbis"= e:\kodeki\ACEMEG~1\SystemS\OGG\vorbis.acm
"vidc.vp30"= e:\kodeki\ACEMEG~1\SystemS\ON2TEC~1\vp31vfw.dll
"vidc.vp31"= e:\kodeki\ACEMEG~1\SystemS\ON2TEC~1\vp31vfw.dll
"vidc.vp60"= e:\kodeki\ACEMEG~1\SystemS\ON2TEC~1\vp6vfw.dll
"vidc.vp61"= e:\kodeki\ACEMEG~1\SystemS\ON2TEC~1\vp6vfw.dll
"vidc.pdvc"= e:\kodeki\ACEMEG~1\SystemS\PANASO~1\idvcodec.dll
"vidc.ipdv"= e:\kodeki\ACEMEG~1\SystemS\PANASO~1\idvcodec.dll
"vidc.pvw2"= e:\kodeki\ACEMEG~1\SystemS\Pegasus\pvwv220.dll
"vidc.pimj"= e:\kodeki\ACEMEG~1\SystemS\Pegasus\pvljpg20.dll
"vidc.mjpx"= e:\kodeki\ACEMEG~1\SystemS\Pegasus\pvmjpg21.dll
"vidc.miro"= e:\kodeki\ACEMEG~1\SystemS\Pinnacle\MIRODV~1.DLL
"vidc.dcap"= e:\kodeki\ACEMEG~1\SystemS\Pinnacle\MIRODV~1.DLL
"vidc.mjpa"= e:\kodeki\ACEMEG~1\SystemS\Pinnacle\RTMJPG~1.DLL
"vidc.gpjm"= e:\kodeki\ACEMEG~1\SystemS\Pinnacle\RTMJPG~1.DLL
"vidc.pim1"= e:\kodeki\ACEMEG~1\SystemS\Pinnacle\pclepim1.dll
"msacm.qmpeg"= e:\kodeki\ACEMEG~1\SystemS\QDesign\qmpeg.acm
"vidc.rmp4"= e:\kodeki\ACEMEG~1\SystemS\REALMA~1\rmp4.dll
"vidc.rud0"= e:\kodeki\ACEMEG~1\SystemS\Rududu\rududu.dll
"msacm.at3"= e:\kodeki\ACEMEG~1\SystemS\SONY\atrac3.acm
"vidc.sony"= e:\kodeki\ACEMEG~1\SystemS\SONY\sonydv.dll
"vidc.dvcp"= e:\kodeki\ACEMEG~1\SystemS\SONY\sonydv.dll
"vidc.s422"= e:\kodeki\ACEMEG~1\SystemS\Tekram\tekyuv.dll
"vidc.t420"= e:\kodeki\ACEMEG~1\SystemS\Toshiba\tsbyuv.dll
"vidc.y411"= e:\kodeki\ACEMEG~1\SystemS\Toshiba\tsbyuv.dll
"vidc.vssv"= e:\kodeki\ACEMEG~1\SystemS\VANGUA~1\vsscodec.dll
"msacm.voxacm160"= e:\kodeki\ACEMEG~1\SystemS\VoxWare\vct3216.acm
"vidc.xvid"= e:\kodeki\ACEMEG~1\SystemS\XviD\xvidvfw.dll

[HKLM\~\startupfolder\C:^Documents and Settings^Artur^Menu Start^Programy^Autostart^Tweak-xp Pro Updater.exe]
path=c:\documents and settings\Artur\Menu Start\Programy\Autostart\Tweak-xp Pro Updater.exe
backup=c:\windows\pss\Tweak-xp Pro Updater.exeStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a------ 2008-01-11 22:16 39792 e:\adobe reader\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPDJ Taskbar Utility]
--a------ 2001-09-12 19:20 196608 c:\windows\system32\spool\drivers\w32x86\3\hpztsb04.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--a------ 2006-01-12 14:40 155648 c:\program files\Common Files\Ahead\Lib\NeroCheck.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"e:\\Tlen\\tlen.exe"=

S2 BulkUsb;USB Scanner Driver;c:\windows\system32\DRIVERS\usbscan.sys [2008-08-25 15104]

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
"c:\program files\Common Files\LightScribe\LSRunOnce.exe"
.
Zawartość folderu 'Zaplanowane zadania'

2008-12-30 c:\windows\Tasks\wxinikkx.job
- c:\windows\system32\rundll32.exe [2004-08-03 23:44]
.
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://www.google.pl/
uDefault_Search_URL = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&ksport do programu Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
LSP: c:\program files\Common Files\PC Tools\Lsp\PCTLsp.dll
FF - ProfilePath - c:\documents and settings\Artur\Dane aplikacji\Mozilla\Firefox\Profiles\ektgr8aq.default\
FF - prefs.js: browser.startup.homepage - www.google.pl
FF - component: e:\mozilla firefox\components\iamfamous.dll
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-30 21:38:42
Windows 5.1.2600 Dodatek Service Pack 2 NTFS

skanowanie ukrytych procesów ...

skanowanie ukrytych wpisów autostartu ...

skanowanie ukrytych plików ...

skanowanie pomyślnie ukończone
ukryte pliki: 0

**************************************************************************
.
--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------

- - - - - - - > 'winlogon.exe'(464)
e:\pc tools antivirus\PCTAVHook.dll

- - - - - - - > 'lsass.exe'(520)
c:\program files\Common Files\PC Tools\Lsp\PCTLsp.dll
e:\pc tools antivirus\PCTAVHook.dll

- - - - - - - > 'csrss.exe'(440)
e:\pc tools antivirus\PCTAVHook.dll
.
Czas ukończenia: 2008-12-30 21:41:09
ComboFix-quarantined-files.txt  2008-12-30 20:41:04

Przed: 8 378 261 504 bajtów wolnych
Po: 8,371,150,848 bajtów wolnych

305


HiJackThis:

Kod: Zaznacz wszystko
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:26:25, on 2008-12-30
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
E:\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
E:\PC Tools AntiVirus\PCTAVSvc.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
e:\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
E:\PC Tools AntiVirus\PCTAV.exe
C:\Program Files\Java\jre6\bin\jusched.exe
E:\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Artur\Menu Start\Programy\Autostart\Tweak-xp Pro Updater.exe
E:\Opera\Opera.exe
C:\Documents and Settings\Artur\Pulpit\HiJackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: GigaNet.com - {DE2C5EF2-DFBF-49B0-BBF2-3B2805A52722} - C:\WINDOWS\system32\dhofozr.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [PCTAVApp] "E:\PC Tools AntiVirus\PCTAV.exe" /MONITORSCAN
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "E:\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Tweak-xp Pro Updater.exe
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - E:\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NBService - Nero AG - E:\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: PC Tools AntiVirus Engine (PCTAVSvc) - PC Tools Research Pty Ltd - E:\PC Tools AntiVirus\PCTAVSvc.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - e:\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 5206 bytes


Proszę o sprawdzenie logów i pomoc. Co mam zrobić aby nie mieć żadnych tego typu komunikatów/wirusów??
Quindy
~user
 
Posty: 3
Dołączenie: 30 Gru 2008, 22:27


Góra

Proszę o sprawdzenie loga (some dangerous viruses detected)

Postprzez wojtas 31 Gru 2008, 02:08

zastosuj:

smitfraudfix z opcji 2
(sciagasz -> uruchamiasz-> klikasz dowolny klawisz -> wpisujesz w programie 2 i enter potem czekasz chwile -> gdy wyskoczy pytanie w programie Do you want to clean the registry ? to wpisujesz literke Y i znowu enter i czekasz do wyskoczenia raportu (znak ze skan dobiegł konca)


potem wracasz z logami nowymi z hj i combofixa oraz Przeskanuj obszar mojego komputera http://www.kaspersky.pl/virusscanner.html (uruchom przez IE) Daj raport z niego na forum.
Image
Awatar użytkownika
wojtas
*mod
 
Posty: 18165
Dołączenie: 13 Sty 2006, 16:00
Miejscowość: Krzeszyce
Pochwały: 1656


Góra

Re: proszę o sprawdzenie loga (some dangerous viruses detected)

Postprzez Quindy 31 Gru 2008, 09:39

Na innym forum WCZEŚNIEJ polecono mi wykonać:

Paweł01 napisał(a):Zamknij wszystkie przeglądarki internetowe (Firefoxa też !) otwórz notatnik i wklej do niego, począwszy od frazy File::, bez tego kod:
Kod: Zaznacz wszystko
File::
C:\WINDOWS\system32\dhofozr.dll
c:\windows\system32\opnnoomL.dll
c:\windows\system32\sf.ico
c:\windows\system32\m3.ico
c:\windows\ios.dat
c:\windows\Tasks\wxinikkx.job
e:\mozilla firefox\components\iamfamous.dll

Registry::
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DE2C5EF2-DFBF-49B0-BBF2-3B2805A52722}]

DirLook::
C:\WINDOWS\SxsCaPendDel

Plik zapisz jako CFScript.txt
Ikonkę CFScript.txt przeciągnij na ikonkę Combofix.exe i upuść. Rozpocznie się usuwanie. Potem wrzuć log z usuwania. Dodatkowo pliki:
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\system32\wscntfy.exe
c:\windows\iun6002.exe
sprawdź na http://www.virustotal.com

Dodatkowo porównaj plik:
c:\windows\system32\advapi32.dll
c:\windows\system32\dllcache\advapi32.dll
z plikiem wypakowanym z płytki instalacyjnej.

Dla pewności możesz jeszcze zrobić log z RSIT.exe zaznaczając 3 miesiące wstecz (bo nie widzę daty utworzenia pliku e:\mozilla firefox\components\iamfamous.dll)

Wyczyść pliki tymczasowe

Dodatkowo wykonaj skanowanie za pomocą MBAM:
http://www.download.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html?part=dl-10804572&subj=dl&tag=button


Po wykonaniu tego przechodzę do Twojego sposobu. Zrobiłem log SmitfraudFix'em, rezultaty niżej. Teraz skanuję kasperskym...

Tu jest nowy log z ComboFixa:

http://www.wklej.org/id/33537/

Tylko nie wiedząc co robić najpierw przeczytałem na forach co się robi w takich wypadkach i wpisałem do notatnika wczoraj żeby usunęło ten plik: C:\WINDOWS\system32\dhofozr.dll

Działanie to pomogło i już ten komunikat mi się nie pokazuje. Byłbym w stanie zakończyć moje działania na tym ale chce mieć wszystko elegancko, dlatego usunąłem teraz te pliki które mi wskazałeś. Zaraz zrobię całą resztę.

P.S. Czy ktoś mógłby mi dać namiary na jakiś DOBRY tutorial jak zabezpieczać się przed wszelkimi rodzajami zanieczyszczeń komputerowych?? Wiem że jest tego w sieci pełno ale część albo jest wybrakowana albo pisana bardzo niezrozumiale. Z góry dziękuję

EDIT:

Plik wdfmgr.exe otrzymany 2008.12.31 08:01:28 (CET)
Obecny status: zakończono
Wynik: 0/39 (0%)

Plik wscntfy.exe otrzymany 2008.12.31 08:02:33 (CET)
Obecny status: zakończono
Wynik: 0/38 (0%)

Teraz tak: jak porównać plik z plikiem wypakowanym z płytki instalacyjnej??
Jak w ogóle wypakować ten plik z płytki??

Zaraz przeskanuje komputer jeszcze resztą sprzętu i dam logi

EDIT:

Logi z RSITA:

Log
Plik 'info' wygenerowany przez RSITA

Dodatkowo wyczyściłem system CCleanerem: i system i rejestr

Zaraz MBAM

EDIT:

Log z MBAM'a: (są zainfekowane klucze)

Log

Usunąłem te 3 infekcje MBAM'em

EDIT:

I dodatkowo jeszcze odpaliłem SmitFraudFix z opcji 2. Oto Log:

Log
Quindy
~user
 
Posty: 3
Dołączenie: 30 Gru 2008, 22:27


Góra

Proszę o sprawdzenie loga (some dangerous viruses detected)

Postprzez wojtas 31 Gru 2008, 15:58

-Otworz notatnik i wklej w nim to:

File::
C:\autorun.inf
D:\autorun.inf
E:\autorun.inf
F:\autorun.inf



>>Plik>>Zapisz jako... >>> CFScript
Przeciągnij i upuść plik CFScript.txt na plik ComboFix.exe
-->Image
Ma się rozpocząć usuwanie. (i powstanie log).Daj ten log, który powstanie w trakcie usuwania.
Image
Awatar użytkownika
wojtas
*mod
 
Posty: 18165
Dołączenie: 13 Sty 2006, 16:00
Miejscowość: Krzeszyce
Pochwały: 1656


Góra
Wyślij odpowiedź

Powróć do Bezpieczeństwo

Kto jest na forum

Użytkownicy przeglądający to forum: Brak zarejestrowanych użytkowników oraz 4 gości

Powered by phpBB © Group
Forum Programosy.pl