Spowolnione ruchy, niedziałający klawisz

**Posty:** 1 · przez **super_user** 10 Lis 2008, 11:42

komputer wiesza się co kilka minut na kilka sekund, nie działa klawisz enter - proszę o pomoc

ComboFix

Kod: Zaznacz wszystko: ComboFix 08-08-01.05 - User 2008-11-10 10:12:12.2 - NTFSx86 Running from: C:\Documents and Settings\User\Pulpit\Combo-Fix.exe [color=red][b]WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !![/b][/color] . - REDUCED FUNCTIONALITY MODE - . ((((((((((((((((((((((((( Files Created from 2008-10-10 to 2008-11-10 ))))))))))))))))))))))))))))))) . 2008-11-07 21:43 . 2008-11-07 21:43 <DIR> d-------- C:\WINDOWS\ERUNT 2008-11-07 21:43 . 2008-11-07 21:43 <DIR> d-------- C:\ERDNT 2008-11-07 21:43 . 2008-11-07 21:44 <DIR> d-------- C:\!FixIEDef 2008-11-05 21:30 . 2008-11-06 20:00 <DIR> d-------- C:\Program Files\MessageGroups 1.0 2008-11-05 19:21 . 2008-11-10 01:46 <DIR> d-------- C:\Documents and Settings\User\Dane aplikacji\skypePM 2008-11-05 19:21 . 2008-11-05 19:21 56 --ah----- C:\WINDOWS\system32\ezsidmv.dat 2008-11-04 21:40 . 2008-11-04 21:40 <DIR> d-------- C:\Program Files\Skype 2008-11-04 21:40 . 2008-11-06 20:00 <DIR> d-------- C:\Program Files\Common Files\Skype 2008-11-04 21:39 . 2008-11-04 21:40 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Skype 2008-11-02 00:56 . 2008-05-08 02:03 453,632 --a------ C:\WINDOWS\system32\SetACL.ocx 2008-10-31 18:07 . 2008-10-31 18:07 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Comodo 2008-10-31 18:07 . 2008-10-31 18:06 216,576 --a------ C:\WINDOWS\system32\monln.dll 2008-10-31 18:07 . 2008-10-31 18:06 102,400 --a------ C:\WINDOWS\system32\drivers\cavasm.sys 2008-10-31 18:07 . 2008-10-31 18:06 73,728 --a------ C:\WINDOWS\system32\CavEmLSP.dll 2008-10-31 18:06 . 2008-10-31 18:07 <DIR> d-------- C:\Program Files\Comodo 2008-10-28 20:29 . 2008-10-28 20:29 <DIR> d-------- C:\Program Files\Photo Story 3 for Windows 2008-10-25 19:42 . 2008-10-25 19:42 <DIR> d-------- C:\Program Files\Gazeta Wyborcza 2008-10-11 12:18 . 2008-10-11 12:18 <DIR> d-------- C:\Program Files\Transparent 2008-10-11 12:18 . 2008-10-11 12:18 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Transparent 2008-10-11 10:44 . 2008-10-11 12:21 <DIR> d--h----- C:\Documents and Settings\All Users\Dane aplikacji\{AFD61B9C-946C-4129-B53C-E1C5D51A536D} . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-11-10 08:48 --------- d-----w C:\Documents and Settings\User\Dane aplikacji\OpenOffice.org2 2008-11-10 08:48 --------- d-----w C:\Documents and Settings\User\Dane aplikacji\AVG7 2008-11-10 02:14 --------- d-----w C:\Documents and Settings\User\Dane aplikacji\Skype 2008-11-09 18:18 --------- d-----w C:\Program Files\Norton Security Scan 2008-11-09 18:17 --------- d-----w C:\Program Files\Common Files\Symantec Shared 2008-11-09 12:12 --------- d-----w C:\Documents and Settings\User\Dane aplikacji\GanymedeNet 2008-11-09 11:27 --------- d-----w C:\Program Files\Ganymede 2008-10-31 14:27 --------- d-----w C:\Program Files\EA GAMES 2008-10-26 16:26 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-10-12 08:41 --------- d---a-w C:\Documents and Settings\All Users\Dane aplikacji\TEMP 2008-10-10 18:50 --------- d-----w C:\Program Files\Spyware Doctor 2008-10-10 04:09 --------- d-----w C:\Program Files\ICQ6 2008-10-09 19:54 --------- d-----w C:\Documents and Settings\User\Dane aplikacji\ICQ 2008-10-09 19:53 --------- d-----w C:\Program Files\ICQ6Toolbar 2008-10-09 19:53 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\ICQ 2008-10-09 12:26 --------- d-----w C:\Documents and Settings\User\Dane aplikacji\Winamp 2008-09-21 15:05 --------- d--h--r C:\Documents and Settings\User\Dane aplikacji\SecuROM 2008-09-17 16:12 --------- d-----w C:\Documents and Settings\User\Dane aplikacji\Nokia 2008-09-10 11:49 --------- d-----w C:\Program Files\NAPI-PROJEKT . ((((((((((((((((((((((((((((( snapshot@2008-08-03_ 0.38.35.71 ))))))))))))))))))))))))))))))))))))))))) . + 2007-11-30 12:40:46 19,320 ----a-w C:\WINDOWS\$hf_mig$\KB938464\spmsg.dll + 2007-11-30 12:40:46 234,360 ----a-w C:\WINDOWS\$hf_mig$\KB938464\spuninst.exe + 2007-11-30 12:40:46 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB938464\update\spcustom.dll + 2007-11-30 11:21:29 763,256 ----a-w C:\WINDOWS\$hf_mig$\KB938464\update\update.exe + 2007-11-30 12:40:47 398,200 ----a-w C:\WINDOWS\$hf_mig$\KB938464\update\updspapi.dll + 2008-05-02 13:41:39 83,968 ----a-w C:\WINDOWS\$hf_mig$\KB946648\SP2QFE\msgsc.dll + 2008-05-02 14:05:59 83,968 ----a-w C:\WINDOWS\$hf_mig$\KB946648\SP3GDR\msgsc.dll + 2008-05-02 13:45:32 83,968 ----a-w C:\WINDOWS\$hf_mig$\KB946648\SP3QFE\msgsc.dll + 2007-11-30 12:40:46 19,320 ----a-w C:\WINDOWS\$hf_mig$\KB946648\spmsg.dll + 2007-11-30 12:40:46 234,360 ----a-w C:\WINDOWS\$hf_mig$\KB946648\spuninst.exe + 2007-11-30 12:40:46 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB946648\update\spcustom.dll + 2007-11-30 11:21:29 763,256 ----a-w C:\WINDOWS\$hf_mig$\KB946648\update\update.exe + 2007-11-30 12:40:47 398,200 ----a-w C:\WINDOWS\$hf_mig$\KB946648\update\updspapi.dll + 2008-07-07 20:19:06 253,952 ----a-w C:\WINDOWS\$hf_mig$\KB950974\SP2QFE\es.dll + 2008-07-07 20:29:10 253,952 ----a-w C:\WINDOWS\$hf_mig$\KB950974\SP3GDR\es.dll + 2008-07-07 20:25:43 253,952 ----a-w C:\WINDOWS\$hf_mig$\KB950974\SP3QFE\es.dll + 2007-11-30 12:40:46 19,320 ----a-w C:\WINDOWS\$hf_mig$\KB950974\spmsg.dll + 2007-11-30 12:40:46 234,360 ----a-w C:\WINDOWS\$hf_mig$\KB950974\spuninst.exe + 2007-11-30 12:40:46 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB950974\update\spcustom.dll + 2007-11-30 12:40:47 763,256 ----a-w C:\WINDOWS\$hf_mig$\KB950974\update\update.exe + 2007-11-30 12:40:48 398,200 ----a-w C:\WINDOWS\$hf_mig$\KB950974\update\updspapi.dll + 2008-04-11 18:41:09 683,520 ----a-w C:\WINDOWS\$hf_mig$\KB951066\SP2QFE\inetcomm.dll + 2008-04-11 19:06:27 691,712 ----a-w C:\WINDOWS\$hf_mig$\KB951066\SP3GDR\inetcomm.dll + 2008-04-11 22:23:38 691,712 ----a-w C:\WINDOWS\$hf_mig$\KB951066\SP3QFE\inetcomm.dll + 2007-11-30 12:40:46 19,320 ----a-w C:\WINDOWS\$hf_mig$\KB951066\spmsg.dll + 2007-11-30 12:40:46 234,360 ----a-w C:\WINDOWS\$hf_mig$\KB951066\spuninst.exe + 2007-11-30 12:40:46 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB951066\update\spcustom.dll + 2007-12-03 15:26:56 763,256 ----a-w C:\WINDOWS\$hf_mig$\KB951066\update\update.exe + 2007-11-30 12:40:47 398,200 ----a-w C:\WINDOWS\$hf_mig$\KB951066\update\updspapi.dll + 2008-07-14 11:03:00 62,976 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\SP2QFE\tzchange.exe + 2008-07-11 12:42:28 62,976 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\SP3GDR\tzchange.exe + 2008-07-11 12:51:51 62,976 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\SP3QFE\tzchange.exe + 2007-11-30 11:21:28 19,320 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\spmsg.dll + 2007-11-30 11:21:28 234,360 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\spuninst.exe + 2007-11-30 11:21:28 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\update\spcustom.dll + 2007-11-30 12:40:47 763,256 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\update\update.exe + 2007-11-30 12:40:47 398,200 ----a-w C:\WINDOWS\$hf_mig$\KB951072-v2\update\updspapi.dll + 2008-05-01 15:05:37 331,776 ----a-w C:\WINDOWS\$hf_mig$\KB952287\SP2QFE\msadce.dll + 2008-05-01 14:37:00 331,776 ----a-w C:\WINDOWS\$hf_mig$\KB952287\SP3GDR\msadce.dll + 2008-05-01 14:40:00 331,776 ----a-w C:\WINDOWS\$hf_mig$\KB952287\SP3QFE\msadce.dll + 2007-11-30 11:21:28 19,320 ----a-w C:\WINDOWS\$hf_mig$\KB952287\spmsg.dll + 2007-11-30 11:21:28 234,360 ----a-w C:\WINDOWS\$hf_mig$\KB952287\spuninst.exe + 2007-11-30 11:21:28 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB952287\update\spcustom.dll + 2007-11-30 11:21:28 763,256 ----a-w C:\WINDOWS\$hf_mig$\KB952287\update\update.exe + 2007-11-30 11:21:29 398,200 ----a-w C:\WINDOWS\$hf_mig$\KB952287\update\updspapi.dll + 2008-06-24 16:30:57 74,240 ----a-w C:\WINDOWS\$hf_mig$\KB952954\SP2QFE\mscms.dll + 2008-06-24 16:46:33 74,240 ----a-w C:\WINDOWS\$hf_mig$\KB952954\SP3GDR\mscms.dll + 2008-06-24 16:54:28 74,240 ----a-w C:\WINDOWS\$hf_mig$\KB952954\SP3QFE\mscms.dll + 2007-11-30 12:40:46 19,320 ----a-w C:\WINDOWS\$hf_mig$\KB952954\spmsg.dll + 2007-11-30 12:40:46 234,360 ----a-w C:\WINDOWS\$hf_mig$\KB952954\spuninst.exe + 2007-11-30 12:40:46 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB952954\update\spcustom.dll + 2007-11-30 12:40:47 763,256 ----a-w C:\WINDOWS\$hf_mig$\KB952954\update\update.exe + 2007-11-30 12:40:47 398,200 ----a-w C:\WINDOWS\$hf_mig$\KB952954\update\updspapi.dll + 2008-06-23 16:16:52 1,024,000 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\browseui.dll + 2008-06-23 16:16:52 151,552 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\cdfview.dll + 2008-06-23 16:16:52 1,055,744 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\danim.dll + 2008-06-23 16:16:52 357,888 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\dxtmsft.dll + 2008-06-23 16:16:52 205,312 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\dxtrans.dll + 2008-06-23 16:16:52 55,808 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\extmgr.dll + 2008-06-23 09:53:58 18,432 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\iedw.exe + 2008-06-23 16:16:53 251,904 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\iepeers.dll + 2008-06-23 16:16:53 96,768 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\inseng.dll + 2008-06-23 16:16:53 16,384 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\jsproxy.dll + 2008-06-23 16:16:53 3,088,384 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\mshtml.dll + 2008-06-23 16:16:53 449,024 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\mshtmled.dll + 2008-06-23 16:16:53 146,432 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\msrating.dll + 2008-06-23 16:16:54 532,480 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\mstime.dll + 2008-06-23 16:16:54 39,424 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\pngfilt.dll + 2008-06-23 16:16:54 1,499,136 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\shdocvw.dll + 2008-06-23 16:16:54 474,112 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\shlwapi.dll + 2008-07-03 09:42:47 369,152 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\spru0415.dll + 2008-06-23 16:16:54 619,520 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\urlmon.dll + 2008-06-23 16:16:55 669,696 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\wininet.dll + 2008-06-23 15:13:22 3,088,384 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP3GDR\mshtml.dll + 2008-06-26 08:14:35 1,499,136 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP3GDR\shdocvw.dll + 2008-06-26 08:14:35 619,520 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP3GDR\urlmon.dll + 2008-06-23 15:13:22 668,672 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP3GDR\wininet.dll + 2008-06-25 04:27:42 3,088,896 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP3QFE\mshtml.dll + 2008-06-26 08:01:04 1,499,136 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP3QFE\shdocvw.dll + 2008-06-26 08:01:05 619,520 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP3QFE\urlmon.dll + 2008-06-23 14:57:40 669,184 ----a-w C:\WINDOWS\$hf_mig$\KB953838\SP3QFE\wininet.dll + 2007-11-30 12:40:46 19,320 ----a-w C:\WINDOWS\$hf_mig$\KB953838\spmsg.dll + 2007-11-30 12:40:46 234,360 ----a-w C:\WINDOWS\$hf_mig$\KB953838\spuninst.exe + 2007-11-30 12:40:46 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB953838\update\spcustom.dll + 2007-11-30 12:40:47 763,256 ----a-w C:\WINDOWS\$hf_mig$\KB953838\update\update.exe + 2007-11-30 12:40:48 398,200 ----a-w C:\WINDOWS\$hf_mig$\KB953838\update\updspapi.dll + 2007-11-30 12:40:46 19,320 ----a-w C:\WINDOWS\$hf_mig$\KB953839\spmsg.dll + 2007-11-30 12:40:46 234,360 ----a-w C:\WINDOWS\$hf_mig$\KB953839\spuninst.exe + 2007-11-30 12:40:46 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB953839\update\spcustom.dll + 2007-11-30 12:40:47 763,256 ----a-w C:\WINDOWS\$hf_mig$\KB953839\update\update.exe + 2007-11-30 12:40:47 398,200 ----a-w C:\WINDOWS\$hf_mig$\KB953839\update\updspapi.dll + 2007-11-30 12:40:46 234,360 -c----w C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe + 2007-11-30 12:40:47 398,200 -c----w C:\WINDOWS\$NtUninstallKB938464$\spuninst\updspapi.dll + 2004-08-03 23:55:54 82,944 -c----w C:\WINDOWS\$NtUninstallKB946648$\msgsc.dll + 2007-11-30 12:40:46 234,360 -c----w C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe + 2007-11-30 12:40:47 398,200 -c----w C:\WINDOWS\$NtUninstallKB946648$\spuninst\updspapi.dll + 2005-07-26 04:42:34 243,200 -c----w C:\WINDOWS\$NtUninstallKB950974$\es.dll + 2007-11-30 12:40:46 234,360 -c----w C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe + 2007-11-30 12:40:48 398,200 -c----w C:\WINDOWS\$NtUninstallKB950974$\spuninst\updspapi.dll + 2007-08-21 06:18:06 683,520 -c----w C:\WINDOWS\$NtUninstallKB951066$\inetcomm.dll + 2007-11-30 12:40:46 234,360 -c----w C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe + 2007-11-30 12:40:47 398,200 -c----w C:\WINDOWS\$NtUninstallKB951066$\spuninst\updspapi.dll + 2007-11-30 11:21:28 234,360 -c----w C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe + 2007-11-30 12:40:47 398,200 -c----w C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\updspapi.dll + 2007-11-13 11:31:11 60,416 -c----w C:\WINDOWS\$NtUninstallKB951072-v2$\tzchange.exe + 2006-03-02 12:00:00 331,776 -c----w C:\WINDOWS\$NtUninstallKB952287$\msadce.dll + 2007-11-30 11:21:28 234,360 -c----w C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe + 2007-11-30 11:21:29 398,200 -c----w C:\WINDOWS\$NtUninstallKB952287$\spuninst\updspapi.dll + 2005-06-29 01:52:57 74,240 -c----w C:\WINDOWS\$NtUninstallKB952954$\mscms.dll + 2007-11-30 12:40:46 234,360 -c----w C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe + 2007-11-30 12:40:47 398,200 -c----w C:\WINDOWS\$NtUninstallKB952954$\spuninst\updspapi.dll + 2008-04-21 07:03:48 1,023,488 -c----w C:\WINDOWS\$NtUninstallKB953838$\browseui.dll + 2008-04-21 07:03:48 151,552 -c----w C:\WINDOWS\$NtUninstallKB953838$\cdfview.dll + 2008-04-21 07:03:50 1,055,744 -c----w C:\WINDOWS\$NtUninstallKB953838$\danim.dll + 2008-04-21 07:03:50 357,888 -c----w C:\WINDOWS\$NtUninstallKB953838$\dxtmsft.dll + 2008-04-21 07:03:50 205,312 -c----w C:\WINDOWS\$NtUninstallKB953838$\dxtrans.dll + 2008-04-21 07:03:50 55,808 -c----w C:\WINDOWS\$NtUninstallKB953838$\extmgr.dll + 2008-04-17 10:52:54 18,432 -c----w C:\WINDOWS\$NtUninstallKB953838$\iedw.exe + 2008-04-21 07:03:51 251,392 -c----w C:\WINDOWS\$NtUninstallKB953838$\iepeers.dll + 2008-04-21 07:03:51 96,768 -c----w C:\WINDOWS\$NtUninstallKB953838$\inseng.dll + 2008-04-21 07:03:51 16,384 -c----w C:\WINDOWS\$NtUninstallKB953838$\jsproxy.dll + 2008-04-21 07:03:55 3,080,704 -c----w C:\WINDOWS\$NtUninstallKB953838$\mshtml.dll + 2008-04-21 07:03:56 449,024 -c----w C:\WINDOWS\$NtUninstallKB953838$\mshtmled.dll + 2008-04-21 07:03:56 146,432 -c----w C:\WINDOWS\$NtUninstallKB953838$\msrating.dll + 2008-04-21 07:03:56 532,480 -c----w C:\WINDOWS\$NtUninstallKB953838$\mstime.dll + 2008-04-21 07:03:56 39,424 -c----w C:\WINDOWS\$NtUninstallKB953838$\pngfilt.dll + 2008-04-21 07:03:57 1,494,528 -c----w C:\WINDOWS\$NtUninstallKB953838$\shdocvw.dll + 2008-04-21 07:03:58 474,112 -c----w C:\WINDOWS\$NtUninstallKB953838$\shlwapi.dll + 2007-11-30 12:40:46 234,360 -c----w C:\WINDOWS\$NtUninstallKB953838$\spuninst\spuninst.exe + 2007-11-30 12:40:48 398,200 -c----w C:\WINDOWS\$NtUninstallKB953838$\spuninst\updspapi.dll + 2008-04-21 07:03:58 616,960 -c----w C:\WINDOWS\$NtUninstallKB953838$\urlmon.dll + 2008-04-21 07:03:59 662,016 -c----w C:\WINDOWS\$NtUninstallKB953838$\wininet.dll + 2008-04-17 11:03:57 369,152 -c----w C:\WINDOWS\$NtUninstallKB953838$\xpsp3res.dll + 2007-11-30 12:40:46 234,360 -c----w C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe + 2007-11-30 12:40:47 398,200 -c----w C:\WINDOWS\$NtUninstallKB953839$\spuninst\updspapi.dll + 2007-07-27 06:36:18 234,360 -c----w C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe + 2007-07-27 08:41:48 382,840 -c----w C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\updspapi.dll + 2006-10-18 20:47:20 295,936 -c----w C:\WINDOWS\$NtUninstallKB954154_WM11$\wmpeffects.dll + 2006-11-02 05:22:52 51,680 -c----w C:\WINDOWS\$NtUninstallWdf01005$\spuninst\Kmdfcustom.dll + 2006-10-08 19:51:14 221,488 -c----w C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe + 2006-10-08 19:51:14 379,184 -c----w C:\WINDOWS\$NtUninstallWdf01005$\spuninst\updspapi.dll + 2006-09-16 01:02:34 221,488 -c----w C:\WINDOWS\$NtUninstallWudf01005$\spuninst\spuninst.exe + 2006-09-16 01:02:36 379,184 -c----w C:\WINDOWS\$NtUninstallWudf01005$\spuninst\updspapi.dll + 2006-09-15 20:30:12 70,656 -c----w C:\WINDOWS\$NtUninstallWudf01005$\spuninst\WudfCustom.dll + 2006-09-28 19:13:26 95,344 -c----w C:\WINDOWS\$NtUninstallWudf01005$\wudfcoinstaller.dll + 2006-09-28 17:56:38 146,432 -c----w C:\WINDOWS\$NtUninstallWudf01005$\wudfhost.exe + 2006-09-28 17:55:50 77,568 -c----w C:\WINDOWS\$NtUninstallWudf01005$\wudfpf.sys + 2006-09-28 17:56:16 165,376 -c----w C:\WINDOWS\$NtUninstallWudf01005$\wudfplatform.dll + 2006-09-28 18:00:34 82,944 -c----w C:\WINDOWS\$NtUninstallWudf01005$\wudfrd.sys + 2006-09-28 17:56:14 55,808 -c----w C:\WINDOWS\$NtUninstallWudf01005$\wudfsvc.dll + 2006-09-28 17:56:38 316,416 -c----w C:\WINDOWS\$NtUninstallWudf01005$\wudfx.dll - 2007-02-28 16:04:45 2,137,600 ------w C:\WINDOWS\Driver Cache\i386\ntkrnlmp.exe + 2008-08-14 13:46:46 2,137,600 ------w C:\WINDOWS\Driver Cache\i386\ntkrnlmp.exe - 2007-02-28 16:04:56 2,058,880 ------w C:\WINDOWS\Driver Cache\i386\ntkrnlpa.exe + 2008-08-14 13:46:58 2,059,008 ------w C:\WINDOWS\Driver Cache\i386\ntkrnlpa.exe - 2007-02-28 16:04:47 2,017,280 ------w C:\WINDOWS\Driver Cache\i386\ntkrpamp.exe + 2008-08-14 13:46:44 2,017,280 ------w C:\WINDOWS\Driver Cache\i386\ntkrpamp.exe - 2007-02-28 16:04:58 2,181,632 ------w C:\WINDOWS\Driver Cache\i386\ntoskrnl.exe + 2008-08-14 13:46:56 2,181,632 ------w C:\WINDOWS\Driver Cache\i386\ntoskrnl.exe - 2005-10-20 18:02:28 163,328 ----a-w C:\WINDOWS\erdnt\Hiv-backup\ERDNT.EXE + 2005-10-20 19:02:28 163,328 ----a-w C:\WINDOWS\erdnt\Hiv-backup\ERDNT.EXE + 2005-10-20 16:00:28 157,696 ----a-w C:\WINDOWS\ERUNT\ERUNT.EXE + 2008-09-05 18:54:53 10,134 ----a-r C:\WINDOWS\Installer\{1A524CFE-DF85-4555-8BC2-0C89DBD8BC2C}\ARPPRODUCTICON.exe + 2008-11-09 18:18:06 29,184 ----a-r C:\WINDOWS\Installer\{3FADAA19-E595-44CA-A072-58B6B0851768}\Icon3FADAA191.exe - 2008-07-04 13:10:44 102,400 ----a-r C:\WINDOWS\Installer\{446DBFFA-4088-48E3-8932-74316BA4CAE4}\iTunesIco.exe + 2008-08-08 16:23:57 102,400 ----a-r C:\WINDOWS\Installer\{446DBFFA-4088-48E3-8932-74316BA4CAE4}\iTunesIco.exe + 2008-09-05 19:09:53 15,086 ----a-r C:\WINDOWS\Installer\{A8C3710A-0BCA-4F10-9EC3-A302A1F1FA82}\ARPPRODUCTICON.exe + 2008-09-05 18:25:23 3,262 ----a-r C:\WINDOWS\Installer\{C3F19A5F-35A8-4FDB-A6ED-0F4CE398DA48}\ARPPRODUCTICON.exe - 2000-08-31 06:00:00 28,672 ----a-w C:\WINDOWS\Nircmd.exe + 2000-08-31 07:00:00 28,672 ----a-w C:\WINDOWS\Nircmd.exe - 2000-08-31 06:00:00 161,792 ----a-w C:\WINDOWS\swreg.exe + 2000-08-31 07:00:00 161,792 ----a-w C:\WINDOWS\swreg.exe - 2008-04-21 07:03:48 1,023,488 ----a-w C:\WINDOWS\system32\browseui.dll + 2008-08-20 05:38:45 1,023,488 ----a-w C:\WINDOWS\system32\browseui.dll + 2007-03-29 21:00:40 203,264 ----a-r C:\WINDOWS\system32\CddbCdda.dll - 2008-04-21 07:03:48 151,552 ----a-w C:\WINDOWS\system32\cdfview.dll + 2008-08-20 05:38:38 151,552 ----a-w C:\WINDOWS\system32\cdfview.dll - 2007-07-30 17:19:20 92,504 ----a-w C:\WINDOWS\system32\cdm.dll + 2008-07-18 20:10:48 94,920 ----a-w C:\WINDOWS\system32\cdm.dll + 2008-09-21 15:04:57 107,888 ----a-w C:\WINDOWS\system32\CmdLineExt.dll - 2008-04-21 07:03:50 1,055,744 ----a-w C:\WINDOWS\system32\danim.dll + 2008-08-20 05:38:39 1,055,744 ----a-w C:\WINDOWS\system32\danim.dll - 2008-06-20 10:44:38 138,368 -c--a-w C:\WINDOWS\system32\dllcache\afd.sys + 2008-08-14 09:51:43 138,368 -c--a-w C:\WINDOWS\system32\dllcache\afd.sys - 2008-04-21 07:03:48 1,023,488 -c--a-w C:\WINDOWS\system32\dllcache\browseui.dll + 2008-08-20 05:38:45 1,023,488 -c--a-w C:\WINDOWS\system32\dllcache\browseui.dll - 2008-04-21 07:03:48 151,552 -c--a-w C:\WINDOWS\system32\dllcache\cdfview.dll + 2008-08-20 05:38:38 151,552 -c--a-w C:\WINDOWS\system32\dllcache\cdfview.dll - 2007-07-30 17:19:20 92,504 -c--a-w C:\WINDOWS\system32\dllcache\cdm.dll + 2008-07-18 20:10:48 94,920 -c--a-w C:\WINDOWS\system32\dllcache\cdm.dll - 2008-04-21 07:03:50 1,055,744 -c--a-w C:\WINDOWS\system32\dllcache\danim.dll + 2008-08-20 05:38:39 1,055,744 -c--a-w C:\WINDOWS\system32\dllcache\danim.dll - 2008-04-21 07:03:50 357,888 -c--a-w C:\WINDOWS\system32\dllcache\dxtmsft.dll + 2008-08-20 05:38:39 357,888 -c--a-w C:\WINDOWS\system32\dllcache\dxtmsft.dll - 2008-04-21 07:03:50 205,312 -c--a-w C:\WINDOWS\system32\dllcache\dxtrans.dll + 2008-08-20 05:38:39 205,312 -c--a-w C:\WINDOWS\system32\dllcache\dxtrans.dll - 2005-07-26 04:42:34 243,200 -c--a-w C:\WINDOWS\system32\dllcache\es.dll + 2008-07-07 20:33:22 253,952 -c--a-w C:\WINDOWS\system32\dllcache\es.dll - 2008-04-21 07:03:50 55,808 -c--a-w C:\WINDOWS\system32\dllcache\extmgr.dll + 2008-08-20 05:38:39 55,808 -c--a-w C:\WINDOWS\system32\dllcache\extmgr.dll - 2008-04-17 10:52:54 18,432 -c--a-w C:\WINDOWS\system32\dllcache\iedw.exe + 2008-08-19 09:30:39 18,432 -c--a-w C:\WINDOWS\system32\dllcache\iedw.exe - 2008-04-21 07:03:51 251,392 -c--a-w C:\WINDOWS\system32\dllcache\iepeers.dll + 2008-08-20 05:38:40 251,392 -c--a-w C:\WINDOWS\system32\dllcache\iepeers.dll - 2007-08-21 06:18:06 683,520 -c--a-w C:\WINDOWS\system32\dllcache\inetcomm.dll + 2008-04-11 18:51:52 683,520 -c--a-w C:\WINDOWS\system32\dllcache\inetcomm.dll - 2008-04-21 07:03:51 96,768 -c--a-w C:\WINDOWS\system32\dllcache\inseng.dll + 2008-08-20 05:38:40 96,768 -c--a-w C:\WINDOWS\system32\dllcache\inseng.dll - 2008-04-21 07:03:51 16,384 -c--a-w C:\WINDOWS\system32\dllcache\jsproxy.dll + 2008-08-20 05:38:43 16,384 -c--a-w C:\WINDOWS\system32\dllcache\jsproxy.dll - 2006-03-02 12:00:00 331,776 -c--a-w C:\WINDOWS\system32\dllcache\msadce.dll + 2008-05-01 14:33:01 331,776 -c--a-w C:\WINDOWS\system32\dllcache\msadce.dll - 2005-06-29 01:52:57 74,240 -c--a-w C:\WINDOWS\system32\dllcache\mscms.dll + 2008-06-24 16:24:26 74,240 -c--a-w C:\WINDOWS\system32\dllcache\mscms.dll - 2008-04-21 07:03:55 3,080,704 -c--a-w C:\WINDOWS\system32\dllcache\mshtml.dll + 2008-08-20 05:38:48 3,081,216 -c--a-w C:\WINDOWS\system32\dllcache\mshtml.dll - 2008-04-21 07:03:56 449,024 -c--a-w C:\WINDOWS\system32\dllcache\mshtmled.dll + 2008-08-20 05:38:43 449,024 -c--a-w C:\WINDOWS\system32\dllcache\mshtmled.dll - 2008-04-21 07:03:56 146,432 -c--a-w C:\WINDOWS\system32\dllcache\msrating.dll + 2008-08-20 05:38:40 146,432 -c--a-w C:\WINDOWS\system32\dllcache\msrating.dll - 2008-04-21 07:03:56 532,480 -c--a-w C:\WINDOWS\system32\dllcache\mstime.dll + 2008-08-20 05:38:41 532,480 -c--a-w C:\WINDOWS\system32\dllcache\mstime.dll - 2006-08-17 12:30:06 332,288 -c--a-w C:\WINDOWS\system32\dllcache\netapi32.dll + 2008-10-15 17:00:47 332,800 -c--a-w C:\WINDOWS\system32\dllcache\netapi32.dll - 2007-02-28 16:04:45 2,137,600 -c----w C:\WINDOWS\system32\dllcache\ntkrnlmp.exe + 2008-08-14 13:46:46 2,137,600 -c----w C:\WINDOWS\system32\dllcache\ntkrnlmp.exe - 2007-02-28 16:04:56 2,058,880 -c----w C:\WINDOWS\system32\dllcache\ntkrnlpa.exe + 2008-08-14 13:46:58 2,059,008 -c----w C:\WINDOWS\system32\dllcache\ntkrnlpa.exe - 2007-02-28 16:04:47 2,017,280 -c----w C:\WINDOWS\system32\dllcache\ntkrpamp.exe + 2008-08-14 13:46:44 2,017,280 -c----w C:\WINDOWS\system32\dllcache\ntkrpamp.exe - 2007-02-28 16:04:58 2,181,632 -c----w C:\WINDOWS\system32\dllcache\ntoskrnl.exe + 2008-08-14 13:46:56 2,181,632 -c----w C:\WINDOWS\system32\dllcache\ntoskrnl.exe - 2008-04-21 07:03:56 39,424 -c--a-w C:\WINDOWS\system32\dllcache\pngfilt.dll + 2008-08-20 05:38:41 39,424 -c--a-w C:\WINDOWS\system32\dllcache\pngfilt.dll - 2008-04-21 07:03:57 1,494,528 -c--a-w C:\WINDOWS\system32\dllcache\shdocvw.dll + 2008-08-20 05:38:42 1,494,528 -c--a-w C:\WINDOWS\system32\dllcache\shdocvw.dll - 2008-04-21 07:03:58 474,112 -c--a-w C:\WINDOWS\system32\dllcache\shlwapi.dll + 2008-08-20 05:38:44 474,112 -c--a-w C:\WINDOWS\system32\dllcache\shlwapi.dll - 2006-08-14 10:34:41 332,928 -c--a-w C:\WINDOWS\system32\dllcache\srv.sys + 2008-08-28 10:04:17 333,056 -c--a-w C:\WINDOWS\system32\dllcache\srv.sys - 2008-04-21 07:03:58 616,960 -c--a-w C:\WINDOWS\system32\dllcache\urlmon.dll + 2008-08-20 05:38:45 616,960 -c--a-w C:\WINDOWS\system32\dllcache\urlmon.dll - 2008-03-20 08:09:45 1,845,504 -c--a-w C:\WINDOWS\system32\dllcache\win32k.sys + 2008-09-15 15:40:58 1,846,272 -c--a-w C:\WINDOWS\system32\dllcache\win32k.sys - 2008-04-21 07:03:59 662,016 -c--a-w C:\WINDOWS\system32\dllcache\wininet.dll + 2008-08-20 05:38:43 662,016 -c--a-w C:\WINDOWS\system32\dllcache\wininet.dll - 2007-07-30 17:19:36 549,720 -c--a-w C:\WINDOWS\system32\dllcache\wuapi.dll + 2008-07-18 20:09:44 563,912 -c--a-w C:\WINDOWS\system32\dllcache\wuapi.dll - 2007-07-30 17:19:16 53,080 -c--a-w C:\WINDOWS\system32\dllcache\wuauclt.exe + 2008-07-18 20:10:42 53,448 -c--a-w C:\WINDOWS\system32\dllcache\wuauclt.exe - 2007-07-30 17:19:42 1,712,984 -c--a-w C:\WINDOWS\system32\dllcache\wuaueng.dll + 2008-07-18 20:09:42 1,811,656 -c--a-w C:\WINDOWS\system32\dllcache\wuaueng.dll - 2007-07-30 17:19:32 325,976 -c--a-w C:\WINDOWS\system32\dllcache\wucltui.dll + 2008-07-18 20:09:46 325,832 -c--a-w C:\WINDOWS\system32\dllcache\wucltui.dll - 2007-07-30 17:18:40 33,624 -c--a-w C:\WINDOWS\system32\dllcache\wups.dll + 2008-07-18 20:10:20 36,552 -c--a-w C:\WINDOWS\system32\dllcache\wups.dll - 2007-07-30 17:19:28 203,096 -c--a-w C:\WINDOWS\system32\dllcache\wuweb.dll + 2008-07-18 20:09:44 205,000 -c--a-w C:\WINDOWS\system32\dllcache\wuweb.dll - 2008-06-20 10:44:38 138,368 ----a-w C:\WINDOWS\system32\drivers\afd.sys + 2008-08-14 09:51:43 138,368 ----a-w C:\WINDOWS\system32\drivers\afd.sys + 2008-05-07 05:38:20 17,536 ----a-w C:\WINDOWS\system32\drivers\ccdcmb.sys + 2008-05-07 05:38:20 20,864 ----a-w C:\WINDOWS\system32\drivers\ccdcmbo.sys - 2008-06-02 13:19:12 42,376 ----a-w C:\WINDOWS\system32\drivers\ikfilesec.sys + 2008-09-09 06:13:43 40,840 ----a-w C:\WINDOWS\system32\drivers\ikfilesec.sys - 2008-06-02 13:19:16 66,952 ----a-w C:\WINDOWS\system32\drivers\iksysflt.sys + 2008-09-09 06:13:43 66,952 ----a-w C:\WINDOWS\system32\drivers\iksysflt.sys - 2008-06-10 19:22:52 81,288 ----a-w C:\WINDOWS\system32\drivers\iksyssec.sys + 2008-09-09 06:13:44 81,288 ----a-w C:\WINDOWS\system32\drivers\iksyssec.sys + 2007-09-17 13:53:26 21,632 ----a-w C:\WINDOWS\system32\drivers\pccsmcfd.sys - 2006-08-14 10:34:41 332,928 ----a-w C:\WINDOWS\system32\drivers\srv.sys + 2008-08-28 10:04:17 333,056 ----a-w C:\WINDOWS\system32\drivers\srv.sys + 2008-05-20 08:37:00 525,824 ----a-w C:\WINDOWS\system32\drivers\UMDF\PCCSWpdDriver.dll + 2004-08-03 21:08:44 25,600 ----a-w C:\WINDOWS\system32\drivers\usbser.sys + 2008-06-06 07:24:44 8,064 ----a-w C:\WINDOWS\system32\drivers\usbser_lowerflt.sys + 2008-05-07 05:38:36 8,064 ----a-w C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys + 2006-11-02 05:22:54 492,000 ------w C:\WINDOWS\system32\drivers\wdf01000.sys + 2006-11-02 05:22:52 32,224 ------w C:\WINDOWS\system32\drivers\wdfldr.sys - 2006-09-28 17:55:50 77,568 ------w C:\WINDOWS\system32\drivers\WudfPf.sys + 2006-09-15 20:29:52 76,544 ------w C:\WINDOWS\system32\drivers\WudfPf.sys - 2006-09-28 18:00:34 82,944 ------w C:\WINDOWS\system32\drivers\WudfRd.sys + 2006-09-15 20:30:10 82,688 ------w C:\WINDOWS\system32\drivers\WudfRd.sys + 2008-05-07 05:38:20 17,536 -c--a-w C:\WINDOWS\system32\DRVSTORE\ccdcmb_8BBEC91EFF51E4A1A9EC754A696F267BFDD220D5\ccdcmb.sys + 2008-05-07 05:38:24 90,624 -c--a-w C:\WINDOWS\system32\DRVSTORE\ccdcmb_8BBEC91EFF51E4A1A9EC754A696F267BFDD220D5\nmwcdcls.dll + 2008-05-07 05:38:34 659,968 -c--a-w C:\WINDOWS\system32\DRVSTORE\ccdcmb_8BBEC91EFF51E4A1A9EC754A696F267BFDD220D5\nmwcdcocls.dll + 2008-05-07 05:39:22 1,419,232 -c--a-w C:\WINDOWS\system32\DRVSTORE\ccdcmb_8BBEC91EFF51E4A1A9EC754A696F267BFDD220D5\wdfcoinstaller01005.dll + 2008-05-07 05:38:36 8,064 -c--a-w C:\WINDOWS\system32\DRVSTORE\ccdcmbcj_8BBEC91EFF51E4A1A9EC754A696F267BFDD220D5\usbser_lowerfltj.sys + 2008-06-06 07:24:44 8,064 -c--a-w C:\WINDOWS\system32\DRVSTORE\ccdcmbm_8BBEC91EFF51E4A1A9EC754A696F267BFDD220D5\usbser_lowerflt.sys + 2008-05-07 05:38:20 20,864 -c--a-w C:\WINDOWS\system32\DRVSTORE\ccdcmbo_8BBEC91EFF51E4A1A9EC754A696F267BFDD220D5\ccdcmbo.sys + 2007-09-17 13:53:26 21,632 -c--a-w C:\WINDOWS\system32\DRVSTORE\pccsmcfd_4A1E30386F4D0DEC8F5DF262CFBD8845EEBAB175\pccsmcfd.sys + 2008-05-20 08:37:00 525,824 -c--a-w C:\WINDOWS\system32\DRVSTORE\pccswpddri_66268C3E0C6968D7F539EAEAD801C68E0DB54FE9\PCCSWpdDriver.dll + 2008-05-20 08:32:30 831,048 -c--a-w C:\WINDOWS\system32\DRVSTORE\pccswpddri_66268C3E0C6968D7F539EAEAD801C68E0DB54FE9\WudfUpdate_01005.dll - 2008-04-21 07:03:50 357,888 ----a-w C:\WINDOWS\system32\dxtmsft.dll + 2008-08-20 05:38:39 357,888 ----a-w C:\WINDOWS\system32\dxtmsft.dll - 2008-04-21 07:03:50 205,312 ----a-w C:\WINDOWS\system32\dxtrans.dll + 2008-08-20 05:38:39 205,312 ----a-w C:\WINDOWS\system32\dxtrans.dll - 2005-07-26 04:42:34 243,200 ----a-w C:\WINDOWS\system32\es.dll + 2008-07-07 20:33:22 253,952 ----a-w C:\WINDOWS\system32\es.dll - 2008-04-21 07:03:50 55,808 ----a-w C:\WINDOWS\system32\extmgr.dll + 2008-08-20 05:38:39 55,808 ----a-w C:\WINDOWS\system32\extmgr.dll - 2008-06-20 11:24:04 108,600 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT + 2008-10-17 05:41:08 114,968 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT - 2008-04-21 07:03:51 251,392 ----a-w C:\WINDOWS\system32\iepeers.dll + 2008-08-20 05:38:40 251,392 ----a-w C:\WINDOWS\system32\iepeers.dll - 2007-08-21 06:18:06 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll + 2008-04-11 18:51:52 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll - 2008-04-21 07:03:51 96,768 ----a-w C:\WINDOWS\system32\inseng.dll + 2008-08-20 05:38:40 96,768 ----a-w C:\WINDOWS\system32\inseng.dll - 2008-04-21 07:03:51 16,384 ----a-w C:\WINDOWS\system32\jsproxy.dll + 2008-08-20 05:38:43 16,384 ----a-w C:\WINDOWS\system32\jsproxy.dll - 2008-05-27 20:31:30 3,350 --sha-w C:\WINDOWS\system32\KGyGaAvL.sys + 2008-10-18 08:23:38 3,350 --sha-w C:\WINDOWS\system32\KGyGaAvL.sys + 2003-05-01 19:06:38 36,864 ----a-r C:\WINDOWS\system32\lfbmp11n.dll + 2003-05-01 19:06:38 285,184 ----a-r C:\WINDOWS\system32\LFCMP11n.DLL + 2003-05-01 19:06:38 31,232 ----a-r C:\WINDOWS\system32\lfeps11n.dll + 2003-05-01 19:06:38 81,408 ----a-r C:\WINDOWS\system32\lffax11n.dll + 2003-05-01 19:06:38 41,472 ----a-r C:\WINDOWS\system32\lfgif11n.dll + 2003-05-01 19:06:38 26,112 ----a-r C:\WINDOWS\system32\lfpcd11n.dll + 2003-05-01 19:06:38 33,280 ----a-r C:\WINDOWS\system32\lfpcx11n.dll + 2003-05-01 19:06:38 172,032 ----a-r C:\WINDOWS\system32\Lfpng11n.dll + 2003-05-01 19:06:38 56,320 ----a-r C:\WINDOWS\system32\lfpsd11n.dll + 2003-05-01 19:06:38 27,648 ----a-r C:\WINDOWS\system32\lftga11n.dll + 2003-05-01 19:06:38 152,064 ----a-r C:\WINDOWS\system32\lftif11n.dll + 2003-05-01 19:06:38 59,392 ----a-r C:\WINDOWS\system32\lfwmf11n.dll + 2003-05-01 19:06:38 262,656 ----a-r C:\WINDOWS\system32\LTDIS11n.dll + 2003-05-01 19:06:38 118,784 ----a-r C:\WINDOWS\system32\ltfil11n.DLL + 2003-05-01 19:06:38 127,488 ----a-r C:\WINDOWS\system32\ltimg11n.dll + 2003-05-01 19:06:38 392,192 ----a-r C:\WINDOWS\system32\ltkrn11n.dll + 2003-05-01 19:06:40 716,288 ----a-r C:\WINDOWS\system32\Ltwvc11n.dll - 2003-03-18 19:20:00 1,060,864 ----a-w C:\WINDOWS\system32\mfc71.dll + 2008-10-31 17:06:56 1,060,864 ----a-w C:\WINDOWS\system32\MFC71.dll - 2008-06-25 16:15:46 17,972,344 ----a-w C:\WINDOWS\system32\MRT.exe + 2008-10-07 19:19:40 16,721,856 ----a-w C:\WINDOWS\system32\MRT.exe - 2005-06-29 01:52:57 74,240 ----a-w C:\WINDOWS\system32\mscms.dll + 2008-06-24 16:24:26 74,240 ----a-w C:\WINDOWS\system32\mscms.dll - 2008-04-21 07:03:55 3,080,704 ----a-w C:\WINDOWS\system32\mshtml.dll + 2008-08-20 05:38:48 3,081,216 ----a-w C:\WINDOWS\system32\mshtml.dll - 2008-04-21 07:03:56 449,024 ----a-w C:\WINDOWS\system32\mshtmled.dll + 2008-08-20 05:38:43 449,024 ----a-w C:\WINDOWS\system32\mshtmled.dll - 2008-04-21 07:03:56 146,432 ----a-w C:\WINDOWS\system32\msrating.dll + 2008-08-20 05:38:40 146,432 ----a-w C:\WINDOWS\system32\msrating.dll - 2008-04-21 07:03:56 532,480 ----a-w C:\WINDOWS\system32\mstime.dll + 2008-08-20 05:38:41 532,480 ----a-w C:\WINDOWS\system32\mstime.dll - 2003-03-18 18:14:52 499,712 ----a-w C:\WINDOWS\system32\msvcp71.dll + 2008-10-31 17:06:56 499,712 ----a-w C:\WINDOWS\system32\msvcp71.dll - 2003-02-21 02:42:22 348,160 ----a-w C:\WINDOWS\system32\msvcr71.dll + 2008-10-31 17:06:57 348,160 ----a-w C:\WINDOWS\system32\msvcr71.dll - 2000-07-14 22:00:00 434,252 ----a-w C:\WINDOWS\system32\Msvcrtd.dll + 2008-10-31 17:06:58 434,252 ----a-w C:\WINDOWS\system32\Msvcrtd.dll - 2006-08-17 12:30:06 332,288 ----a-w C:\WINDOWS\system32\netapi32.dll + 2008-10-15 17:00:47 332,800 ----a-w C:\WINDOWS\system32\netapi32.dll + 2008-05-07 05:38:24 90,624 ----a-w C:\WINDOWS\system32\nmwcdcls.dll + 2008-05-07 05:38:34 659,968 ----a-w C:\WINDOWS\system32\nmwcdcocls.dll - 2007-02-28 16:04:56 2,058,880 ----a-w C:\WINDOWS\system32\ntkrnlpa.exe + 2008-08-14 13:46:58 2,059,008 ----a-w C:\WINDOWS\system32\ntkrnlpa.exe - 2007-02-28 16:04:58 2,181,632 ----a-w C:\WINDOWS\system32\ntoskrnl.exe + 2008-08-14 13:46:56 2,181,632 ----a-w C:\WINDOWS\system32\ntoskrnl.exe + 2003-05-01 19:06:40 212,480 ----a-r C:\WINDOWS\system32\PCDLIB32.DLL - 2008-08-01 12:58:09 40,326 ----a-w C:\WINDOWS\system32\perfc009.dat + 2008-10-26 09:15:52 40,326 ----a-w C:\WINDOWS\system32\perfc009.dat - 2008-08-01 12:58:09 49,910 ----a-w C:\WINDOWS\system32\perfc015.dat + 2008-10-26 09:15:52 49,910 ----a-w C:\WINDOWS\system32\perfc015.dat - 2008-08-01 12:58:09 311,938 ----a-w C:\WINDOWS\system32\perfh009.dat + 2008-10-26 09:15:52 311,938 ----a-w C:\WINDOWS\system32\perfh009.dat - 2008-08-01 12:58:09 356,068 ----a-w C:\WINDOWS\system32\perfh015.dat + 2008-10-26 09:15:52 356,068 ----a-w C:\WINDOWS\system32\perfh015.dat - 2008-04-21 07:03:56 39,424 ----a-w C:\WINDOWS\system32\pngfilt.dll + 2008-08-20 05:38:41 39,424 ----a-w C:\WINDOWS\system32\pngfilt.dll - 2008-04-21 07:03:57 1,494,528 ----a-w C:\WINDOWS\system32\shdocvw.dll + 2008-08-20 05:38:42 1,494,528 ----a-w C:\WINDOWS\system32\shdocvw.dll - 2008-04-21 07:03:58 474,112 ----a-w C:\WINDOWS\system32\shlwapi.dll + 2008-08-20 05:38:44 474,112 ----a-w C:\WINDOWS\system32\shlwapi.dll + 2008-07-18 20:10:20 36,552 ----a-w C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\7.2.6001.784\wups.dll + 2008-07-18 20:10:40 45,768 ----a-w C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.2.6001.784\wups2.dll - 2007-11-30 12:40:46 19,320 ------w C:\WINDOWS\system32\spmsg.dll + 2007-11-30 11:21:28 19,320 ------w C:\WINDOWS\system32\spmsg.dll - 2006-09-25 16:58:48 23,856 ----a-w C:\WINDOWS\system32\spupdsvc.exe + 2006-10-08 19:51:14 23,856 ----a-w C:\WINDOWS\system32\spupdsvc.exe - 2007-11-13 11:31:11 60,416 ------w C:\WINDOWS\system32\tzchange.exe + 2008-07-14 11:09:18 62,976 ------w C:\WINDOWS\system32\tzchange.exe - 2008-04-21 07:03:58 616,960 ----a-w C:\WINDOWS\system32\urlmon.dll + 2008-08-20 05:38:45 616,960 ----a-w C:\WINDOWS\system32\urlmon.dll + 2008-05-07 05:39:22 1,419,232 ----a-w C:\WINDOWS\system32\wdfcoinstaller01005.dll - 2008-03-20 08:09:45 1,845,504 ----a-w C:\WINDOWS\system32\win32k.sys + 2008-09-15 15:40:58 1,846,272 ----a-w C:\WINDOWS\system32\win32k.sys - 2008-04-21 07:03:59 662,016 ----a-w C:\WINDOWS\system32\wininet.dll + 2008-08-20 05:38:43 662,016 ----a-w C:\WINDOWS\system32\wininet.dll - 2006-10-18 20:47:20 295,936 ------w C:\WINDOWS\system32\wmpeffects.dll + 2008-06-24 16:12:58 295,936 ------w C:\WINDOWS\system32\wmpeffects.dll - 2007-07-30 17:19:36 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll + 2008-07-18 20:09:44 563,912 ----a-w C:\WINDOWS\system32\wuapi.dll - 2007-07-30 17:19:16 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe + 2008-07-18 20:10:42 53,448 ----a-w C:\WINDOWS\system32\wuauclt.exe - 2007-07-30 17:19:42 1,712,984 ----a-w C:\WINDOWS\system32\wuaueng.dll + 2008-07-18 20:09:42 1,811,656 ----a-w C:\WINDOWS\system32\wuaueng.dll - 2007-07-30 17:19:32 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll + 2008-07-18 20:09:46 325,832 ----a-w C:\WINDOWS\system32\wucltui.dll - 2006-09-28 19:13:26 95,344 ------w C:\WINDOWS\system32\WUDFCoinstaller.dll + 2006-09-15 21:30:16 87,040 ------w C:\WINDOWS\system32\WUDFCoinstaller.dll - 2006-09-28 17:56:38 146,432 ------w C:\WINDOWS\system32\WudfHost.exe + 2006-09-15 21:30:06 142,848 ------w C:\WINDOWS\system32\WudfHost.exe - 2006-09-28 17:56:16 165,376 ------w C:\WINDOWS\system32\WudfPlatform.dll + 2006-09-15 20:29:54 163,840 ------w C:\WINDOWS\system32\WudfPlatform.dll - 2006-09-28 17:56:14 55,808 ------w C:\WINDOWS\system32\WudfSvc.dll + 2006-09-15 21:30:16 55,296 ------w C:\WINDOWS\system32\WudfSvc.dll + 2008-05-20 08:32:30 831,048 ----a-w C:\WINDOWS\system32\WudfUpdate_01005.dll - 2006-09-28 17:56:38 316,416 ------w C:\WINDOWS\system32\WUDFx.dll + 2006-09-15 21:30:16 308,224 ------w C:\WINDOWS\system32\WUDFx.dll - 2007-07-30 17:18:40 33,624 ----a-w C:\WINDOWS\system32\wups.dll + 2008-07-18 20:10:20 36,552 ----a-w C:\WINDOWS\system32\wups.dll - 2007-07-30 17:19:12 43,352 ----a-w C:\WINDOWS\system32\wups2.dll + 2008-07-18 20:10:40 45,768 ----a-w C:\WINDOWS\system32\wups2.dll - 2007-07-30 17:19:28 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll + 2008-07-18 20:09:44 205,000 ----a-w C:\WINDOWS\system32\wuweb.dll - 2008-04-17 11:03:57 369,152 ----a-w C:\WINDOWS\system32\xpsp3res.dll + 2008-08-19 09:51:53 369,152 ----a-w C:\WINDOWS\system32\xpsp3res.dll + 2008-10-30 06:37:44 16,384 ----atw C:\WINDOWS\Temp\Perflib_Perfdata_6b4.dat + 2008-04-15 18:01:31 1,724,416 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.3352_x-ww_81af8e88\GdiPlus.dll . -- Snapshot reset to current date -- . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] "{ecdee021-0d17-467f-a1ff-c7a115230949}"= "C:\Program Files\free-downloads.net\tbfree.dll" [2007-12-10 13:46 1510424] [HKEY_CLASSES_ROOT\clsid\{ecdee021-0d17-467f-a1ff-c7a115230949}] [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{ecdee021-0d17-467f-a1ff-c7a115230949}] 2007-12-10 13:46 1510424 --a------ C:\Program Files\free-downloads.net\tbfree.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{ecdee021-0d17-467f-a1ff-c7a115230949}"= "C:\Program Files\free-downloads.net\tbfree.dll" [2007-12-10 13:46 1510424] [HKEY_CLASSES_ROOT\clsid\{ecdee021-0d17-467f-a1ff-c7a115230949}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{ECDEE021-0D17-467F-A1FF-C7A115230949}"= "C:\Program Files\free-downloads.net\tbfree.dll" [2007-12-10 13:46 1510424] [HKEY_CLASSES_ROOT\clsid\{ecdee021-0d17-467f-a1ff-c7a115230949}] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 17:24 1694208] "Orb"="C:\Program Files\Winamp Remote\bin\OrbTray.exe" [2008-01-07 21:02 495616] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2006-03-02 13:00 15360] "DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\daemon.exe" [2008-07-24 16:02 490952] "Nokia.PCSync"="C:\Program Files\Nokia\Nokia PC Suite 7\PCSync2.exe" [2008-06-17 15:00 1249280] "PC Suite Tray"="C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2008-08-11 07:31 1124352] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2006-04-07 09:48 761946] "ESB"="C:\WINDOWS\system32\ESB.exe" [2006-05-29 06:40 266240] "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 03:27 144784] "SSBkgdUpdate"="C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2003-10-14 10:22 155648] "PaperPort PTD"="C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe" [2005-03-17 14:25 57393] "IndexSearch"="C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe" [2005-03-17 14:45 40960] "SetDefPrt"="C:\Program Files\Brother\Brmfl05a\BrStDvPt.exe" [2005-01-26 18:02 49152] "ControlCenter2.0"="C:\Program Files\Brother\ControlCenter2\brctrcen.exe" [2005-05-17 17:42 933888] "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2006-10-25 18:58 282624] "AVG7_CC"="C:\PROGRA~1\Grisoft\AVG7\avgcc.exe" [2008-04-15 13:11 579584] "WinampAgent"="C:\Program Files\Winamp\Winampa.exe" [2008-01-15 23:54 37376] "AS"="C:\Documents and Settings\User\Moje dokumenty\AS\as.exe" [2008-07-08 16:44 492032] "BDMCon"="C:\Program Files\Softwin\BitDefender10\bdmcon.exe" [2007-04-02 15:48 290816] "BDAgent"="C:\Program Files\Softwin\BitDefender10\bdagent.exe" [2007-03-26 14:49 69632] "RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" [2003-11-30 02:04 32768] "NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 11:50 155648] "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2006-10-30 09:36 256576] "BearFlix"="C:\Program Files\BearFlix\bearflix.exe" [2008-07-22 15:02 3969024] "cnfgCav"="C:\Program Files\Comodo\Comodo AntiVirus\CMain.exe" [2008-10-31 18:06 110592] "VTTimer"="VTTimer.exe" [2005-03-07 20:33 53248 C:\WINDOWS\system32\VTTimer.exe] "VTTrayp"="VTtrayp.exe" [2006-07-10 19:33 176128 C:\WINDOWS\system32\VTTrayp.exe] "Skrót do strony właściwości High Definition Audio"="HDAShCut.exe" [2005-01-07 17:07 61952 C:\WINDOWS\system32\HdAShCut.exe] "RTHDCPL"="RTHDCPL.EXE" [2006-06-28 07:54 16248320 C:\WINDOWS\RTHDCPL.exe] "SkyTel"="SkyTel.EXE" [2006-05-16 11:04 2879488 C:\WINDOWS\SkyTel.exe] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2006-03-02 13:00 15360] "AVG7_Run"="C:\PROGRA~1\Grisoft\AVG7\avgw.exe" [2007-10-26 07:15 219136] C:\Documents and Settings\User\Menu Start\Programy\Autostart\ Last.fm Helper.lnk - C:\Program Files\Last.fm\LastFMHelper.exe [2008-02-11 14:21:16 106496] OpenOffice.org 2.1.lnk - C:\Program Files\OpenOffice.org 2.1\program\quickstart.exe [2006-11-27 16:45:48 393216] C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\ Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2008-02-28 18:07:16 113664] Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2004-12-14 13:44:06 29696] Status Monitor.lnk - C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [2006-11-30 22:35:28 802816] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\monln] 2008-10-31 18:06 216576 C:\WINDOWS\system32\monln.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "vidc.3iv2"= 3ivxVfWCodec.dll "VIDC.VP31"= vp31vfw.dll [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "E:\\bear share\\BearShare.exe"= "C:\\Program Files\\Messenger\\msmsgs.exe"= "E:\\gadu-gadu\\gg.exe"= "E:\\bitcomet\\BitComet.exe"= "C:\\Program Files\\Grisoft\\AVG7\\avginet.exe"= "C:\\Program Files\\Grisoft\\AVG7\\avgamsvr.exe"= "C:\\Program Files\\Grisoft\\AVG7\\avgcc.exe"= "C:\\Program Files\\Grisoft\\AVG7\\avgemc.exe"= "C:\\Program Files\\Zapu\\Zapu\\wDivi.exe"= "C:\\Program Files\\Mozilla Firefox\\firefox.exe"= "C:\\Program Files\\Winamp Remote\\bin\\Orb.exe"= "C:\\Program Files\\Winamp Remote\\bin\\OrbTray.exe"= "C:\\Program Files\\Winamp Remote\\bin\\OrbStreamerClient.exe"= "C:\\Program Files\\iTunes\\iTunes.exe"= "C:\\Program Files\\ICQ6\\ICQ.exe"= "C:\\Program Files\\Skype\\Phone\\Skype.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "16650:TCP"= 16650:TCP:BitComet 16650 TCP "16650:UDP"= 16650:UDP:BitComet 16650 UDP "8461:TCP"= 8461:TCP:GoD High Port "8462:TCP"= 8462:TCP:GoD Low Port R0 ndisrd;ndisrd;C:\WINDOWS\system32\drivers\ndisrd.sys [2005-04-04 16:25] R1 aswSP;avast! Self Protection;C:\WINDOWS\system32\drivers\aswSP.sys [2008-07-19 15:35] R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-07-19 15:37] R2 ICQ Service;ICQ Service;C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2008-06-10 18:26] R3 MTC0001_ESB;ESB driver;C:\WINDOWS\system32\ntesb.sys [2005-08-25 08:00] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{20de35aa-e53f-11dc-8794-0040d09d843c}] \Shell\AutoRun\command - G:\EXPLORER.EXE \Shell\explore\Command - G:\EXPLORER.EXE \Shell\open\Command - G:\EXPLORER.EXE [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{38a6ed05-2568-11dc-842f-0040d09d843c}] \Shell\AutoRun\command - F:\EXPLORER.EXE \Shell\explore\Command - F:\EXPLORER.EXE \Shell\open\Command - F:\EXPLORER.EXE [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b743f01a-912f-11dd-8a94-0040d09d843c}] \Shell\AutoRun\command - G:\start.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ed65f296-4465-11dd-8965-0040d09d843c}] \Shell\AutoRun\command - G:\EXPLORER.EXE \Shell\explore\Command - G:\EXPLORER.EXE \Shell\open\Command - G:\EXPLORER.EXE . Contents of the 'Scheduled Tasks' folder 2008-11-01 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job - C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 14:57] 2008-11-10 C:\WINDOWS\Tasks\MP Scheduled Scan.job - C:\Program Files\Windows Defender\MpCmdRun.exe [2006-11-03 18:20] . . ------- Supplementary Scan ------- . FireFox -: Profile - C:\Documents and Settings\User\Dane aplikacji\Mozilla\Firefox\Profiles\z98kn5f8.default\ FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.google.pl/firefox?client=firefox-a&rls=org.mozilla:pl:official ************************************************************************** catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-11-10 10:14:50 Windows 5.1.2600 Dodatek Service Pack 2 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** . Completion time: 2008-11-10 10:24:02 ComboFix-quarantined-files.txt 2008-11-10 09:23:24 ComboFix2.txt 2008-08-02 22:42:37 Pre-Run: 1,202,012,160 bajtów wolnych Post-Run: 1,733,603,328 bajtów wolnych 606 --- E O F --- 2008-11-08 13:17:55

Dodano Dzisiaj, 10:54:
nie idzie tego inaczej wkleić jak na wklej.org

HiJackThis
http://wklej.org/id/16650/

**Posty:** 18165 · przez **wojtas** 10 Lis 2008, 15:17

Wykonaj to co jest podane w tym temacie

Zastosuj SDFix . Po pobraniu uruchom go a rozpakuje się do C:\SDFix. Uruchom komputer w trybie awaryjnym (F8 przy stracie systemu). Będąc w awaryjnym uruchom plik RunThis.bat z folderu SDFixa. Zatwierdź czyszczenie przez Y. Poczekaj aż ukończy i komputer zresetuje

Potem wejdz do folderu C:\SDFix wrzuc zawartość pliku Report.txt + log z combofixa oraz daj loga z hijacka