Nagrywanie 4,5 gb 50 minut ?!

**Posty:** 11 · przez **deadrat7** 11 Sty 2009, 16:44

Witam,
Dzisiaj chciałem sobie wypalic plytke 4,5 GB, wlaczylem nero i daje wypalaj predkoscia 8x, patrze a tu buffer skacze od 99-55% (jak pileczka kalczukowa by ktos rzucil) i nagrywalo mi plyte 50 minut ;o
wczesniej dalem ABORT i pozmienialem kable, ale dalej sie tak dzialo

kumpel powiedzial mi, ze mial tak kiedys i byla to wina wirusa
daje logi:

ComboFix

Kod: Zaznacz wszystko: ComboFix 09-01-10.03 - Ferson 2009-01-11 15:29:33.4 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.2.1250.1.1045.18.1023.315 [GMT 1:00] Uruchomiony z: c:\documents and settings\Ferson\Pulpit\ComboFix.exe * Utworzono nowy punkt przywracania . ((((((((((((((((((((((((( Pliki utworzone od 2008-12-11 do 2009-01-11 ))))))))))))))))))))))))))))))) . 2009-01-11 14:19 . 2009-01-11 14:19 <DIR> d-------- c:\program files\Common Files\Ahead 2009-01-11 14:19 . 2009-01-11 14:19 <DIR> d-------- c:\program files\Ahead 2009-01-11 14:19 . 2004-07-26 17:16 1,568,768 --------- c:\windows\system32\ImagX7.dll 2009-01-11 14:19 . 2004-07-26 17:16 476,320 --------- c:\windows\system32\ImagXpr7.dll 2009-01-11 14:19 . 2004-07-26 17:16 471,040 --------- c:\windows\system32\ImagXRA7.dll 2009-01-11 14:19 . 2004-07-26 17:16 262,144 --------- c:\windows\system32\ImagXR7.dll 2009-01-11 14:19 . 2001-07-09 11:50 155,648 --a------ c:\windows\system32\NeroCheck.exe 2009-01-11 14:19 . 2004-03-02 17:37 125,184 --------- c:\windows\system32\drivers\imagesrv.sys 2009-01-11 14:19 . 2000-06-26 11:45 106,496 --a------ c:\windows\system32\TwnLib20.dll 2009-01-11 14:19 . 2004-03-02 17:37 5,504 --------- c:\windows\system32\drivers\imagedrv.sys 2009-01-10 16:47 . 1999-11-10 11:05 86,016 --a------ c:\windows\unvise32qt.exe 2009-01-10 16:46 . 2009-01-10 20:33 <DIR> d-------- c:\windows\system32\QuickTime 2009-01-10 16:46 . 2009-01-10 20:33 <DIR> d-------- c:\program files\QuickTime 2009-01-10 16:46 . 2009-01-10 16:46 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\QuickTime 2009-01-10 16:46 . 2009-01-10 16:46 361 --a------ c:\windows\system32\QuickTime.qtp 2009-01-10 16:45 . 2009-01-10 16:45 <DIR> d-------- c:\program files\The Learning Company 2009-01-10 16:45 . 2009-01-10 16:45 0 --a------ c:\windows\SETUP32.INI 2009-01-07 20:03 . 2009-01-07 20:06 83,586,113 --a------ C:\Ferson - GlobalTrance DJ Competition 006.mp3 2009-01-07 17:06 . 2009-01-07 17:15 623,596,588 --a------ C:\Ferson - lovely set.wav 2008-12-29 23:12 . 2009-01-11 12:13 <DIR> d-------- c:\program files\mIRC 2008-12-29 13:33 . 2008-12-29 13:33 <DIR> d-------- C:\Ultimate Pkmn Explode 2008-12-27 12:26 . 2008-12-27 12:26 <DIR> d-------- c:\program files\Google Video 2008-12-26 09:26 . 2008-12-26 09:26 <DIR> d-------- C:\Games 2008-12-18 12:27 . 2001-08-17 22:02 9,600 --a------ c:\windows\system32\drivers\hidusb.sys 2008-12-18 12:27 . 2001-08-17 22:02 9,600 --a--c--- c:\windows\system32\dllcache\hidusb.sys 2008-12-16 15:32 . 2008-12-16 15:32 410,984 --a------ c:\windows\system32\deploytk.dll 2008-12-16 10:00 . 2008-12-16 10:00 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\FLEXnet 2008-12-16 09:55 . 2008-12-16 09:55 <DIR> d-------- c:\program files\Bonjour 2008-12-16 09:48 . 2008-12-16 09:48 <DIR> d-------- c:\program files\Common Files\Macrovision Shared 2008-12-11 15:41 . 2008-12-11 15:41 <DIR> d-------- c:\program files\Testy IQ . (((((((((((((((((((((((((((((((((((((((( Sekcja Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-01-11 14:33 786,464 --sha-w c:\windows\system32\drivers\fidbox2.dat 2009-01-11 14:33 6,912 --sha-w c:\windows\system32\drivers\fidbox2.idx 2009-01-11 14:33 40,312 --sha-w c:\windows\system32\drivers\fidbox.idx 2009-01-11 14:33 4,351,008 --sha-w c:\windows\system32\drivers\fidbox.dat 2009-01-11 14:32 --------- d-----w c:\documents and settings\Ferson\Dane aplikacji\uTorrent 2009-01-11 14:32 --------- d-----w c:\documents and settings\Ferson\Dane aplikacji\foobar2000 2009-01-11 13:15 --------- d-----w c:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab 2009-01-11 13:10 --------- d-----w c:\documents and settings\Ferson\Dane aplikacji\mIRC 2009-01-09 06:14 --------- d-----w c:\program files\Easy CD-DA Extractor 8 2008-12-27 16:38 --------- d-----w c:\documents and settings\Ferson\Dane aplikacji\Skype 2008-12-27 15:38 --------- d-----w c:\documents and settings\Ferson\Dane aplikacji\skypePM 2008-12-17 20:01 --------- d-----w c:\program files\mp3DirectCut 2008-12-16 14:32 --------- d-----w c:\program files\Java 2008-12-16 14:30 --------- d-----w c:\program files\Opera 2008-12-16 08:56 --------- d-----w c:\program files\Common Files\Adobe 2008-12-02 20:26 --------- d-----w c:\program files\NAPI-PROJEKT 2008-12-01 23:19 --------- d-----w c:\program files\Real Alternative 2008-12-01 23:18 --------- d-----w c:\program files\Common Files\Real 2008-12-01 23:12 --------- d-----w c:\program files\ALLPlayer 2008-12-01 23:10 --------- d-----w c:\program files\SubEdit-Player 2008-12-01 18:01 --------- d-----w c:\documents and settings\Ferson\Dane aplikacji\Hamachi 2008-12-01 17:43 --------- d-----w c:\program files\Hamachi 2008-12-01 17:42 25,280 ----a-w c:\windows\system32\drivers\hamachi.sys 2008-12-01 15:33 --------- d-----w c:\program files\DAEMON Tools Pro 2008-12-01 15:29 --------- d-----w c:\documents and settings\All Users\Dane aplikacji\DAEMON Tools Pro 2008-12-01 15:28 --------- d-----w c:\documents and settings\Ferson\Dane aplikacji\DAEMON Tools Pro 2008-12-01 14:37 --------- d-----w c:\documents and settings\Ferson\Dane aplikacji\Disney Interactive Studios 2008-11-30 21:12 138,184 ----a-w c:\windows\system32\drivers\PnkBstrK.sys 2008-11-30 18:19 --------- d-----w c:\program files\eMule 2008-11-22 09:30 --------- d-----w c:\program files\RealDrawPRO4 2008-11-19 16:10 --------- d-----w c:\documents and settings\Ferson\Dane aplikacji\Ahead 2008-11-18 21:02 --------- d--h--w c:\program files\InstallShield Installation Information 2008-11-18 21:02 --------- d-----w c:\program files\Common Files\Futuremark Shared 2008-11-18 14:46 --------- d-----w c:\documents and settings\Ferson\Dane aplikacji\Leadertech 2008-11-18 14:32 --------- d-----w c:\program files\EA Games 2008-11-16 21:23 --------- d-----w c:\program files\SIW 2008-11-16 20:19 --------- d-----w c:\program files\Creative 2008-11-16 14:32 --------- d-----w c:\program files\Real 2008-11-13 16:30 --------- d-----w c:\program files\Hide IP Platinum 2008-11-13 16:26 --------- d-----w c:\documents and settings\Ferson\Dane aplikacji\Hide IP NG 2008-11-13 16:15 --------- d-----w c:\program files\Skype 2008-11-13 16:15 --------- d-----w c:\program files\Common Files\Skype 2008-11-13 16:15 --------- d-----w c:\documents and settings\All Users\Dane aplikacji\Skype 2008-11-12 06:52 --------- d-----w c:\documents and settings\Gość\Dane aplikacji\Grisoft 2008-11-11 13:46 96,976 ----a-w c:\windows\system32\drivers\klin.dat 2008-11-10 15:23 22,328 ----a-w c:\documents and settings\Ferson\Dane aplikacji\PnkBstrK.sys 2008-11-02 21:55 0 ----a-r C:\logwmemory.bin 2008-09-07 19:39 32,768 --sha-w c:\windows\system32\config\systemprofile\Ustawienia lokalne\Historia\History.IE5\MSHist012008090720080908\index.dat . ((((((((((((((((((((((((((((( snapshot@2008-11-09_12.33.50.57 ))))))))))))))))))))))))))))))))))))))))) . + 2008-09-04 17:17:13 1,106,944 ----a-w c:\windows\$hf_mig$\KB955069\SP3GDR\msxml3.dll + 2008-09-04 17:13:36 1,106,944 ----a-w c:\windows\$hf_mig$\KB955069\SP3QFE\msxml3.dll + 2007-11-30 11:21:28 19,320 ----a-w c:\windows\$hf_mig$\KB955069\spmsg.dll + 2007-11-30 11:21:28 234,360 ----a-w c:\windows\$hf_mig$\KB955069\spuninst.exe + 2007-11-30 11:21:28 26,488 ----a-w c:\windows\$hf_mig$\KB955069\update\spcustom.dll + 2007-11-30 12:40:47 763,256 ----a-w c:\windows\$hf_mig$\KB955069\update\update.exe + 2008-07-09 12:27:24 398,200 ----a-w c:\windows\$hf_mig$\KB955069\update\updspapi.dll + 2008-10-24 11:21:09 455,296 ----a-w c:\windows\$hf_mig$\KB957097\SP3GDR\mrxsmb.sys + 2008-10-24 11:41:11 455,936 ----a-w c:\windows\$hf_mig$\KB957097\SP3QFE\mrxsmb.sys + 2008-07-08 13:20:04 19,320 ----a-w c:\windows\$hf_mig$\KB957097\spmsg.dll + 2008-07-08 13:20:05 234,360 ----a-w c:\windows\$hf_mig$\KB957097\spuninst.exe + 2008-07-08 13:20:04 26,488 ----a-w c:\windows\$hf_mig$\KB957097\update\spcustom.dll + 2008-07-08 13:20:08 763,256 ----a-w c:\windows\$hf_mig$\KB957097\update\update.exe + 2008-07-08 13:20:16 398,200 ----a-w c:\windows\$hf_mig$\KB957097\update\updspapi.dll + 2007-10-16 13:25:20 1,104,896 -c----w c:\windows\$NtUninstallKB955069$\msxml3.dll + 2007-11-30 11:21:28 234,360 -c----w c:\windows\$NtUninstallKB955069$\spuninst\spuninst.exe + 2008-07-09 12:27:24 398,200 -c----w c:\windows\$NtUninstallKB955069$\spuninst\updspapi.dll + 2007-10-16 13:23:15 454,400 -c----w c:\windows\$NtUninstallKB957097$\mrxsmb.sys + 2008-07-08 13:20:05 234,360 -c----w c:\windows\$NtUninstallKB957097$\spuninst\spuninst.exe + 2008-07-08 13:20:16 398,200 -c----w c:\windows\$NtUninstallKB957097$\spuninst\updspapi.dll + 2008-11-18 14:32:43 53,248 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll + 2008-11-18 14:32:43 12,800 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll + 2008-11-18 14:32:44 473,600 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll + 2008-11-18 14:32:33 2,676,224 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2008-11-18 14:32:35 2,846,720 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2008-11-18 14:32:36 563,712 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2008-11-18 14:32:37 567,296 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2008-11-18 14:32:38 576,000 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2008-11-18 14:32:38 577,024 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2008-11-18 14:32:39 577,536 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2008-11-18 14:32:40 577,536 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2008-11-18 14:32:40 578,560 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2008-11-18 14:32:44 578,560 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2008-11-18 14:32:44 145,920 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll + 2008-11-18 14:32:45 159,232 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll + 2008-11-18 14:32:45 364,544 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll + 2008-11-18 14:32:45 178,176 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll + 2008-11-18 14:32:43 223,232 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll + 2008-10-24 11:25:29 455,936 ------w c:\windows\Driver Cache\i386\mrxsmb.sys + 2008-08-07 14:27:04 163,328 ----a-w c:\windows\ERUNT\SDFIX\ERDNT.EXE + 2008-11-09 12:18:19 4,341,760 ----a-w c:\windows\ERUNT\SDFIX\Users\[u]0[/u]0000001\NTUSER.DAT + 2008-11-09 12:18:19 192,512 ----a-w c:\windows\ERUNT\SDFIX\Users\[u]0[/u]0000002\UsrClass.dat + 2008-08-07 14:27:04 163,328 ----a-w c:\windows\ERUNT\SDFIX_First_Run\ERDNT.EXE + 2008-11-09 12:18:10 4,341,760 ----a-w c:\windows\ERUNT\SDFIX_First_Run\Users\[u]0[/u]0000001\NTUSER.DAT + 2008-11-09 12:18:10 192,512 ----a-w c:\windows\ERUNT\SDFIX_First_Run\Users\[u]0[/u]0000002\UsrClass.dat + 2008-08-26 09:12:09 124,928 -c----w c:\windows\ie7updates\KB958215-IE7\advpack.dll + 2008-08-26 09:12:09 347,136 -c----w c:\windows\ie7updates\KB958215-IE7\dxtmsft.dll + 2008-08-26 09:12:09 214,528 -c----w c:\windows\ie7updates\KB958215-IE7\dxtrans.dll + 2008-08-26 09:12:09 132,608 -c----w c:\windows\ie7updates\KB958215-IE7\extmgr.dll + 2008-08-26 09:12:09 63,488 -c----w c:\windows\ie7updates\KB958215-IE7\icardie.dll + 2008-08-25 08:43:21 70,656 -c----w c:\windows\ie7updates\KB958215-IE7\ie4uinit.exe + 2008-08-26 09:12:09 153,088 -c----w c:\windows\ie7updates\KB958215-IE7\ieakeng.dll + 2008-08-26 09:12:09 230,400 -c----w c:\windows\ie7updates\KB958215-IE7\ieaksie.dll + 2008-08-23 05:54:50 161,792 -c----w c:\windows\ie7updates\KB958215-IE7\ieakui.dll + 2008-08-26 09:12:09 380,928 -c----w c:\windows\ie7updates\KB958215-IE7\ieapfltr.dll + 2008-08-26 09:12:09 388,608 -c----w c:\windows\ie7updates\KB958215-IE7\iedkcs32.dll + 2008-10-03 16:23:42 6,068,224 -c----w c:\windows\ie7updates\KB958215-IE7\ieframe.dll + 2008-08-26 09:12:10 44,544 -c----w c:\windows\ie7updates\KB958215-IE7\iernonce.dll + 2008-08-26 09:12:10 267,776 -c----w c:\windows\ie7updates\KB958215-IE7\iertutil.dll + 2008-08-25 08:43:21 13,824 -c----w c:\windows\ie7updates\KB958215-IE7\ieudinit.exe + 2008-08-23 05:56:16 635,848 -c----w c:\windows\ie7updates\KB958215-IE7\iexplore.exe + 2008-08-26 09:12:10 27,648 -c----w c:\windows\ie7updates\KB958215-IE7\jsproxy.dll + 2008-08-26 09:12:10 459,264 -c----w c:\windows\ie7updates\KB958215-IE7\msfeeds.dll + 2008-08-26 09:12:10 52,224 -c----w c:\windows\ie7updates\KB958215-IE7\msfeedsbs.dll + 2008-08-26 09:12:11 3,594,752 -c----w c:\windows\ie7updates\KB958215-IE7\mshtml.dll + 2008-08-26 09:12:11 477,696 -c----w c:\windows\ie7updates\KB958215-IE7\mshtmled.dll + 2008-08-26 09:12:11 193,024 -c----w c:\windows\ie7updates\KB958215-IE7\msrating.dll + 2008-08-26 09:12:11 671,232 -c----w c:\windows\ie7updates\KB958215-IE7\mstime.dll + 2008-08-26 09:12:11 102,912 -c----w c:\windows\ie7updates\KB958215-IE7\occache.dll + 2008-08-26 09:12:11 44,544 -c----w c:\windows\ie7updates\KB958215-IE7\pngfilt.dll + 2007-03-06 03:28:39 216,288 -c----w c:\windows\ie7updates\KB958215-IE7\spuninst\spuninst.exe + 2007-03-06 03:29:50 386,784 -c----w c:\windows\ie7updates\KB958215-IE7\spuninst\updspapi.dll + 2008-08-26 09:12:11 105,984 -c----w c:\windows\ie7updates\KB958215-IE7\url.dll + 2008-08-26 09:12:11 1,162,752 -c----w c:\windows\ie7updates\KB958215-IE7\urlmon.dll + 2008-08-26 09:12:11 233,472 -c----w c:\windows\ie7updates\KB958215-IE7\webcheck.dll + 2008-08-26 09:12:11 827,904 -c----w c:\windows\ie7updates\KB958215-IE7\wininet.dll + 2008-10-16 19:49:22 3,595,264 -c----w c:\windows\ie7updates\KB960714-IE7\mshtml.dll + 2007-03-06 03:28:39 216,288 -c----w c:\windows\ie7updates\KB960714-IE7\spuninst\spuninst.exe + 2007-03-06 03:29:49 386,784 -c----w c:\windows\ie7updates\KB960714-IE7\spuninst\updspapi.dll + 2008-11-13 02:00:50 32,768 ----a-r c:\windows\Installer\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}\icon.exe - 1998-10-07 12:54:38 327,168 ----a-w c:\windows\IsUn0415.exe + 1998-10-07 11:54:38 327,168 ----a-w c:\windows\IsUn0415.exe + 2005-03-18 15:23:10 53,248 ----a-w c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.AudioVideoPlayback.dll + 2005-03-18 15:23:10 12,800 ----a-w c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Diagnostics.dll + 2005-03-18 15:23:14 473,600 ----a-w c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Direct3D.dll + 2004-09-29 11:38:58 2,676,224 ----a-w c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Direct3DX.dll + 2005-03-18 15:23:10 145,920 ----a-w c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectDraw.dll + 2005-03-18 15:23:10 159,232 ----a-w c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectInput.dll + 2005-03-18 15:23:14 364,544 ----a-w c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectPlay.dll + 2005-03-18 15:23:12 178,176 ----a-w c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectSound.dll + 2005-03-18 15:23:14 223,232 ----a-w c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.dll + 2004-12-01 14:53:06 2,846,720 ----a-w c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2903.0\Microsoft.DirectX.Direct3DX.dll + 2005-02-05 18:32:54 563,712 ----a-w c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2904.0\Microsoft.DirectX.Direct3DX.dll + 2005-03-18 16:23:14 567,296 ----a-w c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2905.0\Microsoft.DirectX.Direct3DX.dll + 2005-05-26 14:15:56 576,000 ----a-w c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2906.0\Microsoft.DirectX.Direct3DX.dll + 2005-07-22 16:21:34 577,024 ----a-w c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2907.0\Microsoft.DirectX.Direct3DX.dll + 2005-09-28 13:11:52 577,536 ----a-w c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2908.0\Microsoft.DirectX.Direct3DX.dll + 2005-12-05 16:20:50 577,536 ----a-w c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2909.0\Microsoft.DirectX.Direct3DX.dll + 2006-02-03 06:40:48 578,560 ----a-w c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2910.0\Microsoft.DirectX.Direct3DX.dll + 2006-03-31 10:27:50 578,560 ----a-w c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2911.0\Microsoft.DirectX.Direct3DX.dll + 2008-11-04 09:15:38 114,688 ----a-w c:\windows\system32\Adobe\Director\np32dsw.dll + 2008-11-04 09:24:12 202,168 ----a-w c:\windows\system32\Adobe\Director\SwDir.dll + 2008-11-04 09:16:16 499,712 ----a-w c:\windows\system32\Adobe\Shockwave 11\Control.dll + 2008-11-04 08:56:40 1,798,144 ----a-w c:\windows\system32\Adobe\Shockwave 11\dirapi.dll + 2008-11-04 09:16:20 9,216 ----a-w c:\windows\system32\Adobe\Shockwave 11\DynaPlayer.dll + 2008-11-04 08:41:22 710,144 ----a-w c:\windows\system32\Adobe\Shockwave 11\gi.dll + 2008-11-04 08:41:24 1,145,896 ----a-w c:\windows\system32\Adobe\Shockwave 11\gt.exe + 2008-11-04 08:41:22 52,288 ----a-w c:\windows\system32\Adobe\Shockwave 11\gtapi.dll + 2008-11-04 08:52:10 892,928 ----a-w c:\windows\system32\Adobe\Shockwave 11\iml32.dll + 2008-11-04 08:41:22 54,656 ----a-w c:\windows\system32\Adobe\Shockwave 11\pccuapi.dll + 2008-11-04 09:14:58 266,240 ----a-w c:\windows\system32\Adobe\Shockwave 11\Plugin.dll + 2008-11-04 09:16:52 446,464 ----a-w c:\windows\system32\Adobe\Shockwave 11\Proj.dll + 2008-11-04 09:23:52 460,216 ----a-w c:\windows\system32\Adobe\Shockwave 11\SwHelper_1100470.exe + 2008-11-04 09:14:42 114,688 ----a-w c:\windows\system32\Adobe\Shockwave 11\SwInit.exe + 2008-11-04 09:14:40 94,208 ----a-w c:\windows\system32\Adobe\Shockwave 11\SwMenu.dll + 2008-11-04 08:41:22 58,736 ----a-w c:\windows\system32\Adobe\Shockwave 11\SYMCCHECKER.DLL + 1999-06-25 09:55:30 149,504 ----a-w c:\windows\system32\Adobe\Shockwave 11\UNWISE.EXE - 2008-08-26 09:12:09 124,928 ----a-w c:\windows\system32\advpack.dll + 2008-10-16 19:49:06 124,928 ----a-w c:\windows\system32\advpack.dll + 2008-12-01 15:27:30 9,728 ----a-w c:\windows\system32\BASSMOD.dll - 2008-07-18 20:10:48 94,920 ----a-w c:\windows\system32\cdm.dll + 2008-10-16 13:09:44 92,696 ----a-w c:\windows\system32\cdm.dll + 2008-12-01 14:31:24 107,888 ----a-w c:\windows\system32\CmdLineExt.dll + 2000-01-28 17:31:04 282,112 ----a-w c:\windows\system32\cncs232.dll - 2008-11-07 09:13:58 16,384 --sha-w c:\windows\system32\config\systemprofile\Cookies\index.dat + 2009-01-09 06:47:08 16,384 --sha-w c:\windows\system32\config\systemprofile\Cookies\index.dat - 2008-11-07 09:13:58 32,768 --sha-w c:\windows\system32\config\systemprofile\Ustawienia lokalne\Historia\History.IE5\index.dat + 2009-01-09 06:47:08 32,768 --sha-w c:\windows\system32\config\systemprofile\Ustawienia lokalne\Historia\History.IE5\index.dat - 2008-11-07 09:13:58 32,768 --sha-w c:\windows\system32\config\systemprofile\Ustawienia lokalne\Temporary Internet Files\Content.IE5\index.dat + 2009-01-09 06:47:08 32,768 --sha-w c:\windows\system32\config\systemprofile\Ustawienia lokalne\Temporary Internet Files\Content.IE5\index.dat + 2007-03-12 15:42:30 1,123,696 ----a-w c:\windows\system32\D3DCompiler_33.dll + 2007-05-16 15:45:16 1,124,720 ----a-w c:\windows\system32\D3DCompiler_34.dll + 2007-07-19 17:14:42 1,358,192 ----a-w c:\windows\system32\D3DCompiler_35.dll + 2007-10-12 14:14:00 1,374,232 ----a-w c:\windows\system32\D3DCompiler_36.dll + 2008-03-05 14:56:58 1,420,824 ----a-w c:\windows\system32\D3DCompiler_37.dll + 2008-05-30 13:11:46 1,491,992 ----a-w c:\windows\system32\D3DCompiler_38.dll + 2007-03-15 15:57:58 443,752 ----a-w c:\windows\system32\d3dx10_33.dll + 2007-05-16 15:45:16 443,752 ----a-w c:\windows\system32\d3dx10_34.dll + 2007-07-19 17:14:42 444,776 ----a-w c:\windows\system32\d3dx10_35.dll + 2007-10-02 08:56:34 444,776 ----a-w c:\windows\system32\d3dx10_36.dll + 2008-02-05 22:07:36 462,864 ----a-w c:\windows\system32\d3dx10_37.dll + 2008-05-30 13:11:46 467,984 ----a-w c:\windows\system32\d3dx10_38.dll + 2005-02-05 18:45:26 2,222,800 ----a-w c:\windows\system32\d3dx9_24.dll + 2005-03-18 16:19:58 2,337,488 ----a-w c:\windows\system32\d3dx9_25.dll + 2005-05-26 14:34:52 2,297,552 ----a-w c:\windows\system32\d3dx9_26.dll - 2005-07-22 17:59:04 2,319,568 ----a-w c:\windows\system32\d3dx9_27.dll + 2005-07-22 18:59:04 2,319,568 ----a-w c:\windows\system32\d3dx9_27.dll + 2005-12-05 17:09:18 2,323,664 ----a-w c:\windows\system32\d3dx9_28.dll + 2006-02-03 07:43:16 2,332,368 ----a-w c:\windows\system32\d3dx9_29.dll + 2006-03-31 11:40:58 2,388,176 ----a-w c:\windows\system32\d3dx9_30.dll + 2006-09-28 15:05:20 2,414,360 ----a-w c:\windows\system32\d3dx9_31.dll + 2006-11-29 12:06:18 3,426,072 ----a-w c:\windows\system32\d3dx9_32.dll + 2007-03-12 15:42:30 3,495,784 ----a-w c:\windows\system32\d3dx9_33.dll + 2007-05-16 15:45:16 3,497,832 ----a-w c:\windows\system32\d3dx9_34.dll + 2007-07-19 17:14:42 3,727,720 ----a-w c:\windows\system32\d3dx9_35.dll + 2007-10-12 14:14:00 3,734,536 ----a-w c:\windows\system32\d3dx9_36.dll + 2008-03-05 14:56:58 3,786,760 ----a-w c:\windows\system32\D3DX9_37.dll + 2008-05-30 13:11:46 3,850,760 ----a-w c:\windows\system32\D3DX9_38.dll - 2008-08-26 09:12:09 124,928 -c--a-w c:\windows\system32\dllcache\advpack.dll + 2008-10-16 19:49:06 124,928 -c--a-w c:\windows\system32\dllcache\advpack.dll - 2007-03-09 13:48:14 57,344 -c--a-w c:\windows\system32\dllcache\agentdpv.dll + 2007-03-09 14:00:46 57,344 -c--a-w c:\windows\system32\dllcache\agentdpv.dll - 2008-07-18 20:10:48 94,920 -c--a-w c:\windows\system32\dllcache\cdm.dll + 2008-10-16 13:09:44 92,696 -c--a-w c:\windows\system32\dllcache\cdm.dll - 2008-08-26 09:12:09 347,136 -c--a-w c:\windows\system32\dllcache\dxtmsft.dll + 2008-10-16 19:49:06 347,136 -c--a-w c:\windows\system32\dllcache\dxtmsft.dll - 2008-08-26 09:12:09 214,528 -c--a-w c:\windows\system32\dllcache\dxtrans.dll + 2008-10-16 19:49:06 214,528 -c--a-w c:\windows\system32\dllcache\dxtrans.dll - 2008-08-26 09:12:09 132,608 -c--a-w c:\windows\system32\dllcache\extmgr.dll + 2008-10-16 19:49:06 132,608 -c--a-w c:\windows\system32\dllcache\extmgr.dll - 2007-10-16 13:25:15 282,112 -c--a-w c:\windows\system32\dllcache\gdi32.dll + 2008-10-23 12:53:07 284,160 -c--a-w c:\windows\system32\dllcache\gdi32.dll - 2008-08-26 09:12:09 63,488 -c----w c:\windows\system32\dllcache\icardie.dll + 2008-10-16 19:49:06 63,488 -c----w c:\windows\system32\dllcache\icardie.dll - 2008-08-25 08:43:21 70,656 -c--a-w c:\windows\system32\dllcache\ie4uinit.exe + 2008-10-16 12:46:08 70,656 -c--a-w c:\windows\system32\dllcache\ie4uinit.exe - 2008-08-26 09:12:09 153,088 -c--a-w c:\windows\system32\dllcache\ieakeng.dll + 2008-10-16 19:49:06 153,088 -c--a-w c:\windows\system32\dllcache\ieakeng.dll - 2008-08-26 09:12:09 230,400 -c--a-w c:\windows\system32\dllcache\ieaksie.dll + 2008-10-16 19:49:07 230,400 -c--a-w c:\windows\system32\dllcache\ieaksie.dll - 2008-08-23 05:54:50 161,792 -c--a-w c:\windows\system32\dllcache\ieakui.dll + 2008-10-15 06:33:26 161,792 -c--a-w c:\windows\system32\dllcache\ieakui.dll - 2008-08-26 09:12:09 380,928 -c----w c:\windows\system32\dllcache\ieapfltr.dll + 2008-10-16 19:49:07 380,928 -c----w c:\windows\system32\dllcache\ieapfltr.dll - 2008-08-26 09:12:09 388,608 -c--a-w c:\windows\system32\dllcache\iedkcs32.dll + 2008-10-16 19:49:08 388,608 -c--a-w c:\windows\system32\dllcache\iedkcs32.dll - 2008-10-03 16:23:42 6,068,224 -c----w c:\windows\system32\dllcache\ieframe.dll + 2008-10-16 19:49:12 6,068,224 -c----w c:\windows\system32\dllcache\ieframe.dll - 2008-08-26 09:12:10 44,544 -c--a-w c:\windows\system32\dllcache\iernonce.dll + 2008-10-16 19:49:12 44,544 -c--a-w c:\windows\system32\dllcache\iernonce.dll - 2008-08-26 09:12:10 267,776 -c----w c:\windows\system32\dllcache\iertutil.dll + 2008-10-16 19:49:13 267,776 -c----w c:\windows\system32\dllcache\iertutil.dll - 2008-08-25 08:43:21 13,824 -c----w c:\windows\system32\dllcache\ieudinit.exe + 2008-10-16 12:46:08 13,824 -c----w c:\windows\system32\dllcache\ieudinit.exe - 2008-08-23 05:56:16 635,848 -c--a-w c:\windows\system32\dllcache\iexplore.exe + 2008-10-15 06:34:58 633,632 -c--a-w c:\windows\system32\dllcache\iexplore.exe - 2008-08-26 09:12:10 27,648 -c--a-w c:\windows\system32\dllcache\jsproxy.dll + 2008-10-16 19:49:14 27,648 -c--a-w c:\windows\system32\dllcache\jsproxy.dll - 2007-10-16 13:19:27 100,864 -c--a-w c:\windows\system32\dllcache\logagent.exe + 2008-06-18 00:09:22 100,864 -c--a-w c:\windows\system32\dllcache\logagent.exe + 2008-10-24 11:25:29 455,936 -c----w c:\windows\system32\dllcache\mrxsmb.sys - 2008-08-26 09:12:10 459,264 -c----w c:\windows\system32\dllcache\msfeeds.dll + 2008-10-16 19:49:15 459,264 -c----w c:\windows\system32\dllcache\msfeeds.dll - 2008-08-26 09:12:10 52,224 -c----w c:\windows\system32\dllcache\msfeedsbs.dll + 2008-10-16 19:49:15 52,224 -c----w c:\windows\system32\dllcache\msfeedsbs.dll - 2008-08-26 09:12:11 3,594,752 -c--a-w c:\windows\system32\dllcache\mshtml.dll + 2008-12-13 06:28:15 3,594,752 -c--a-w c:\windows\system32\dllcache\mshtml.dll - 2008-08-26 09:12:11 477,696 -c--a-w c:\windows\system32\dllcache\mshtmled.dll + 2008-10-16 19:49:23 477,696 -c--a-w c:\windows\system32\dllcache\mshtmled.dll - 2008-08-26 09:12:11 193,024 -c--a-w c:\windows\system32\dllcache\msrating.dll + 2008-10-16 19:49:23 193,024 -c--a-w c:\windows\system32\dllcache\msrating.dll - 2008-08-26 09:12:11 671,232 -c--a-w c:\windows\system32\dllcache\mstime.dll + 2008-10-16 19:49:24 671,232 -c--a-w c:\windows\system32\dllcache\mstime.dll - 2007-10-16 13:25:20 1,104,896 -c--a-w c:\windows\system32\dllcache\msxml3.dll + 2008-09-04 16:35:09 1,106,944 -c--a-w c:\windows\system32\dllcache\msxml3.dll - 2008-08-26 09:12:11 102,912 -c--a-w c:\windows\system32\dllcache\occache.dll + 2008-10-16 19:49:24 102,912 -c--a-w c:\windows\system32\dllcache\occache.dll - 2008-08-26 09:12:11 44,544 -c--a-w c:\windows\system32\dllcache\pngfilt.dll + 2008-10-16 19:49:24 44,544 -c--a-w c:\windows\system32\dllcache\pngfilt.dll - 2004-08-03 23:44:10 221,696 -c--a-w c:\windows\system32\dllcache\seo.dll + 2004-08-03 22:44:10 221,696 -c--a-w c:\windows\system32\dllcache\seo.dll - 2004-08-03 23:44:12 189,440 -c--a-w c:\windows\system32\dllcache\smtpadm.dll + 2004-08-03 22:44:12 189,440 -c--a-w c:\windows\system32\dllcache\smtpadm.dll - 2004-08-03 23:44:12 2,134,528 -c--a-w c:\windows\system32\dllcache\smtpsnap.dll + 2004-08-03 22:44:12 2,134,528 -c--a-w c:\windows\system32\dllcache\smtpsnap.dll - 2007-10-16 13:23:45 246,814 -c--a-w c:\windows\system32\dllcache\strmdll.dll + 2008-10-03 10:17:53 247,326 -c--a-w c:\windows\system32\dllcache\strmdll.dll - 2008-08-26 09:12:11 105,984 -c--a-w c:\windows\system32\dllcache\url.dll + 2008-10-16 19:49:24 105,984 -c--a-w c:\windows\system32\dllcache\url.dll - 2008-08-26 09:12:11 1,162,752 -c--a-w c:\windows\system32\dllcache\urlmon.dll + 2008-10-16 19:49:25 1,163,264 -c--a-w c:\windows\system32\dllcache\urlmon.dll - 2008-08-26 09:12:11 233,472 -c--a-w c:\windows\system32\dllcache\webcheck.dll + 2008-10-16 19:49:26 233,472 -c--a-w c:\windows\system32\dllcache\webcheck.dll - 2008-08-26 09:12:11 827,904 -c--a-w c:\windows\system32\dllcache\wininet.dll + 2008-10-16 19:49:27 827,904 -c--a-w c:\windows\system32\dllcache\wininet.dll - 2007-10-16 13:19:37 937,984 -c--a-w c:\windows\system32\dllcache\wmnetmgr.dll + 2008-06-18 04:03:08 938,496 -c--a-w c:\windows\system32\dllcache\WMNetmgr.dll - 2007-10-16 13:20:07 2,450,944 -c--a-w c:\windows\system32\dllcache\wmvcore.dll + 2008-06-18 04:03:14 2,458,112 -c--a-w c:\windows\system32\dllcache\WMVCore.dll - 2008-07-18 20:09:44 563,912 -c--a-w c:\windows\system32\dllcache\wuapi.dll + 2008-10-16 13:12:20 561,688 -c--a-w c:\windows\system32\dllcache\wuapi.dll - 2008-07-18 20:10:42 53,448 -c--a-w c:\windows\system32\dllcache\wuauclt.exe + 2008-10-16 13:09:44 51,224 -c--a-w c:\windows\system32\dllcache\wuauclt.exe - 2008-07-18 20:09:42 1,811,656 -c--a-w c:\windows\system32\dllcache\wuaueng.dll + 2008-10-16 13:13:40 1,809,944 -c--a-w c:\windows\system32\dllcache\wuaueng.dll - 2008-07-18 20:09:46 325,832 -c--a-w c:\windows\system32\dllcache\wucltui.dll + 2008-10-16 13:12:22 323,608 -c--a-w c:\windows\system32\dllcache\wucltui.dll - 2008-07-18 20:10:20 36,552 -c--a-w c:\windows\system32\dllcache\wups.dll + 2008-10-16 13:08:58 34,328 -c--a-w c:\windows\system32\dllcache\wups.dll - 2008-07-18 20:09:44 205,000 -c--a-w c:\windows\system32\dllcache\wuweb.dll + 2008-10-16 13:13:40 202,776 -c--a-w c:\windows\system32\dllcache\wuweb.dll + 2006-02-28 11:41:34 61,440 ----a-w c:\windows\system32\dns-sd.exe + 2006-02-28 11:41:22 53,248 ----a-w c:\windows\system32\dnssd.dll + 2007-05-30 12:10:42 10,872 ----a-w c:\windows\system32\drivers\AvgAsCln.sys + 2008-05-29 11:33:10 27,672 ----a-r c:\windows\system32\drivers\Entech.sys - 2008-07-21 16:34:36 121,872 ----a-w c:\windows\system32\drivers\kl1.sys + 2008-07-21 17:34:36 121,872 ----a-w c:\windows\system32\drivers\kl1.sys - 2008-01-29 16:29:38 32,784 ----a-w c:\windows\system32\drivers\klbg.sys + 2008-01-29 17:29:38 32,784 ----a-w c:\windows\system32\drivers\klbg.sys - 2008-09-08 05:09:58 213,008 ----a-w c:\windows\system32\drivers\klif.sys + 2008-07-18 16:39:18 213,008 ----a-w c:\windows\system32\drivers\klif.sys - 2008-04-30 16:06:48 24,592 ----a-w c:\windows\system32\drivers\klim5.sys + 2008-04-30 17:06:48 24,592 ----a-w c:\windows\system32\drivers\klim5.sys - 2008-07-29 18:20:00 24,774 ----a-w c:\windows\system32\drivers\klopp.dat + 2008-07-29 19:20:00 24,774 ----a-w c:\windows\system32\drivers\klopp.dat - 2007-10-16 13:23:15 454,400 ----a-w c:\windows\system32\drivers\mrxsmb.sys + 2008-10-24 11:25:29 455,936 ----a-w c:\windows\system32\drivers\mrxsmb.sys - 2008-08-26 09:12:09 347,136 ----a-w c:\windows\system32\dxtmsft.dll + 2008-10-16 19:49:06 347,136 ----a-w c:\windows\system32\dxtmsft.dll - 2008-08-26 09:12:09 214,528 ----a-w c:\windows\system32\dxtrans.dll + 2008-10-16 19:49:06 214,528 ----a-w c:\windows\system32\dxtrans.dll - 2008-08-26 09:12:09 132,608 ----a-w c:\windows\system32\extmgr.dll + 2008-10-16 19:49:06 132,608 ----a-w c:\windows\system32\extmgr.dll - 2008-11-08 09:19:45 95,864 ----a-w c:\windows\system32\FNTCACHE.DAT + 2008-12-16 14:25:32 1,394,448 ----a-w c:\windows\system32\FNTCACHE.DAT + 2008-05-29 11:33:10 70,392 ----a-r c:\windows\system32\Futuremark\MSC\Direcpll.dll - 2007-10-16 13:25:15 282,112 ----a-w c:\windows\system32\gdi32.dll + 2008-10-23 12:53:07 284,160 ----a-w c:\windows\system32\gdi32.dll - 2008-08-26 09:12:09 63,488 ----a-w c:\windows\system32\icardie.dll + 2008-10-16 19:49:06 63,488 ----a-w c:\windows\system32\icardie.dll - 2008-08-25 08:43:21 70,656 ----a-w c:\windows\system32\ie4uinit.exe + 2008-10-16 12:46:08 70,656 ----a-w c:\windows\system32\ie4uinit.exe - 2008-08-26 09:12:09 153,088 ----a-w c:\windows\system32\ieakeng.dll + 2008-10-16 19:49:06 153,088 ----a-w c:\windows\system32\ieakeng.dll - 2008-08-26 09:12:09 230,400 ----a-w c:\windows\system32\ieaksie.dll + 2008-10-16 19:49:07 230,400 ----a-w c:\windows\system32\ieaksie.dll - 2008-08-23 05:54:50 161,792 ----a-w c:\windows\system32\ieakui.dll + 2008-10-15 06:33:26 161,792 ----a-w c:\windows\system32\ieakui.dll - 2008-08-26 09:12:09 380,928 ----a-w c:\windows\system32\ieapfltr.dll + 2008-10-16 19:49:07 380,928 ----a-w c:\windows\system32\ieapfltr.dll - 2008-08-26 09:12:09 388,608 ----a-w c:\windows\system32\iedkcs32.dll + 2008-10-16 19:49:08 388,608 ----a-w c:\windows\system32\iedkcs32.dll - 2008-10-03 16:23:42 6,068,224 ----a-w c:\windows\system32\ieframe.dll + 2008-10-16 19:49:12 6,068,224 ----a-w c:\windows\system32\ieframe.dll - 2008-08-26 09:12:10 44,544 ----a-w c:\windows\system32\iernonce.dll + 2008-10-16 19:49:12 44,544 ----a-w c:\windows\system32\iernonce.dll - 2008-08-26 09:12:10 267,776 ----a-w c:\windows\system32\iertutil.dll + 2008-10-16 19:49:13 267,776 ----a-w c:\windows\system32\iertutil.dll - 2008-08-25 08:43:21 13,824 ----a-w c:\windows\system32\ieudinit.exe + 2008-10-16 12:46:08 13,824 ----a-w c:\windows\system32\ieudinit.exe - 2008-06-09 23:21:01 135,168 ----a-w c:\windows\system32\java.exe + 2008-12-16 14:32:07 144,792 ----a-w c:\windows\system32\java.exe - 2008-06-09 23:21:04 135,168 ----a-w c:\windows\system32\javaw.exe + 2008-12-16 14:32:07 144,792 ----a-w c:\windows\system32\javaw.exe - 2008-06-10 00:32:34 139,264 ----a-w c:\windows\system32\javaws.exe + 2008-12-16 14:32:07 148,888 ----a-w c:\windows\system32\javaws.exe - 2008-08-26 09:12:10 27,648 ----a-w c:\windows\system32\jsproxy.dll + 2008-10-16 19:49:14 27,648 ----a-w c:\windows\system32\jsproxy.dll - 2008-07-29 18:21:42 218,376 ----a-w c:\windows\system32\klogon.dll + 2008-07-29 19:21:42 218,376 ----a-w c:\windows\system32\klogon.dll - 2007-10-16 13:19:27 100,864 ----a-w c:\windows\system32\logagent.exe + 2008-06-18 00:09:22 100,864 ----a-w c:\windows\system32\logagent.exe + 2008-03-14 22:31:26 57,344 ----a-w c:\windows\system32\Macromed\Common\SwSupport.dll + 2008-03-14 22:29:22 581,632 ----a-w c:\windows\system32\Macromed\Shockwave 10\Control.dll + 2008-03-14 22:12:30 1,490,944 ----a-w c:\windows\system32\Macromed\Shockwave 10\dirapiX.dll + 2008-03-14 22:29:58 24,576 ----a-w c:\windows\system32\Macromed\Shockwave 10\DynaPlayer.dll + 2008-03-14 22:10:06 606,208 ----a-w c:\windows\system32\Macromed\Shockwave 10\iml32X.dll + 2008-03-14 22:28:48 339,968 ----a-w c:\windows\system32\Macromed\Shockwave 10\Plugin.dll + 2008-03-14 22:28:56 475,136 ----a-w c:\windows\system32\Macromed\Shockwave 10\PluginPing.dll + 2008-03-14 22:21:52 180,224 ----a-w c:\windows\system32\Macromed\Shockwave 10\Proj.dll + 2008-03-14 22:31:28 77,824 ----a-w c:\windows\system32\Macromed\Shockwave 10\SwInit.exe + 2008-03-15 10:38:08 86,016 ----a-w c:\windows\system32\Macromed\Shockwave 10\SwMenuX.dll + 2008-03-14 22:31:28 98,304 ----a-w c:\windows\system32\Macromed\Shockwave 10\SwOnce.dll - 2008-10-07 19:19:40 16,721,856 ----a-w c:\windows\system32\MRT.exe + 2008-12-09 23:24:37 17,593,280 ----a-w c:\windows\system32\MRT.exe - 2008-08-26 09:12:10 459,264 ----a-w c:\windows\system32\msfeeds.dll + 2008-10-16 19:49:15 459,264 ----a-w c:\windows\system32\msfeeds.dll - 2008-08-26 09:12:10 52,224 ----a-w c:\windows\system32\msfeedsbs.dll + 2008-10-16 19:49:15 52,224 ----a-w c:\windows\system32\msfeedsbs.dll - 2008-08-26 09:12:11 3,594,752 ----a-w c:\windows\system32\mshtml.dll + 2008-12-13 06:28:15 3,594,752 ----a-w c:\windows\system32\mshtml.dll - 2008-08-26 09:12:11 477,696 ----a-w c:\windows\system32\mshtmled.dll + 2008-10-16 19:49:23 477,696 ----a-w c:\windows\system32\mshtmled.dll - 2008-08-26 09:12:11 193,024 ----a-w c:\windows\system32\msrating.dll + 2008-10-16 19:49:23 193,024 ----a-w c:\windows\system32\msrating.dll - 2008-08-26 09:12:11 671,232 ----a-w c:\windows\system32\mstime.dll + 2008-10-16 19:49:24 671,232 ----a-w c:\windows\system32\mstime.dll - 2006-12-10 21:32:12 499,712 ----a-w c:\windows\system32\msvcp71.dll + 2008-11-16 14:32:23 499,712 ----a-w c:\windows\system32\msvcp71.dll - 2007-10-16 13:25:20 1,104,896 ----a-w c:\windows\system32\msxml3.dll + 2008-09-04 16:35:09 1,106,944 ----a-w c:\windows\system32\msxml3.dll - 2007-05-08 13:03:04 1,275,392 ----a-w c:\windows\system32\msxml4.dll + 2008-09-30 15:43:34 1,286,152 ----a-w c:\windows\system32\msxml4.dll - 2008-08-26 09:12:11 102,912 ----a-w c:\windows\system32\occache.dll + 2008-10-16 19:49:24 102,912 ----a-w c:\windows\system32\occache.dll + 2008-11-10 15:23:14 682,280 ----a-w c:\windows\system32\pbsvc.exe - 2001-06-22 23:31:20 278,528 ----a-w c:\windows\system32\pncrt.dll + 2007-12-21 02:00:00 278,528 ----a-w c:\windows\system32\pncrt.dll - 2004-03-24 16:29:38 6,656 ----a-w c:\windows\system32\pndx5016.dll + 2007-12-21 02:00:00 6,656 ----a-w c:\windows\system32\pndx5016.dll - 2004-03-24 16:29:38 5,632 ----a-w c:\windows\system32\pndx5032.dll + 2007-12-21 02:00:00 5,632 ----a-w c:\windows\system32\pndx5032.dll - 2008-08-26 09:12:11 44,544 ----a-w c:\windows\system32\pngfilt.dll + 2008-10-16 19:49:24 44,544 ----a-w c:\windows\system32\pngfilt.dll + 2008-11-19 19:55:05 66,872 ----a-w c:\windows\system32\PnkBstrA.exe + 2008-11-30 21:12:37 183,112 ----a-w c:\windows\system32\PnkBstrB.exe + 2001-04-10 16:06:07 69,632 ----a-w c:\windows\system32\QuickTime\QTUninst.dll + 2001-04-11 11:22:08 49,664 ----a-w c:\windows\system32\QuickTime\QuickTimeUpdateHelper.exe - 2004-04-27 12:13:48 176,167 ----a-w c:\windows\system32\rmoc3260.dll + 2007-12-21 02:00:00 185,688 ----a-w c:\windows\system32\rmoc3260.dll + 2008-10-16 13:08:58 34,328 ----a-w c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\7.2.6001.788\wups.dll + 2008-10-16 13:09:44 43,544 ----a-w c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.2.6001.788\wups2.dll - 2007-11-30 11:21:28 19,320 ------w c:\windows\system32\spmsg.dll + 2007-07-27 08:41:40 16,760 ------w c:\windows\system32\spmsg.dll - 2007-10-16 13:23:45 246,814 ----a-w c:\windows\system32\strmdll.dll + 2008-10-03 10:17:53 247,326 ----a-w c:\windows\system32\strmdll.dll + 2007-05-03 18:37:08 77,312 ----a-w c:\windows\system32\TWAIN_32.DLL + 2007-05-03 18:37:08 48,560 ----a-w c:\windows\system32\TWUNK_16.EXE + 2007-05-03 18:37:08 69,632 ----a-w c:\windows\system32\TWUNK_32.EXE - 2008-07-14 11:09:18 62,976 ------w c:\windows\system32\tzchange.exe + 2008-10-22 09:47:07 62,976 ------w c:\windows\system32\tzchange.exe - 2008-08-26 09:12:11 105,984 ----a-w c:\windows\system32\url.dll + 2008-10-16 19:49:24 105,984 ----a-w c:\windows\system32\url.dll - 2008-08-26 09:12:11 1,162,752 ----a-w c:\windows\system32\urlmon.dll + 2008-10-16 19:49:25 1,163,264 ----a-w c:\windows\system32\urlmon.dll - 2008-08-26 09:12:11 233,472 ----a-w c:\windows\system32\webcheck.dll + 2008-10-16 19:49:26 233,472 ----a-w c:\windows\system32\webcheck.dll - 2008-08-26 09:12:11 827,904 ----a-w c:\windows\system32\wininet.dll + 2008-10-16 19:49:27 827,904 ----a-w c:\windows\system32\wininet.dll - 2007-10-16 13:19:37 937,984 ----a-w c:\windows\system32\wmnetmgr.dll + 2008-06-18 04:03:08 938,496 ----a-w c:\windows\system32\WMNetmgr.dll - 2007-10-16 13:20:07 2,450,944 ----a-w c:\windows\system32\wmvcore.dll + 2008-06-18 04:03:14 2,458,112 ----a-w c:\windows\system32\WMVCore.dll - 2008-07-18 20:09:44 563,912 ----a-w c:\windows\system32\wuapi.dll + 2008-10-16 13:12:20 561,688 ----a-w c:\windows\system32\wuapi.dll - 2008-07-18 20:10:42 53,448 ----a-w c:\windows\system32\wuauclt.exe + 2008-10-16 13:09:44 51,224 ----a-w c:\windows\system32\wuauclt.exe - 2008-07-18 20:09:42 1,811,656 ----a-w c:\windows\system32\wuaueng.dll + 2008-10-16 13:13:40 1,809,944 ----a-w c:\windows\system32\wuaueng.dll - 2008-07-18 20:09:46 325,832 ----a-w c:\windows\system32\wucltui.dll + 2008-10-16 13:12:22 323,608 ----a-w c:\windows\system32\wucltui.dll - 2008-07-18 20:10:20 36,552 ----a-w c:\windows\system32\wups.dll + 2008-10-16 13:08:58 34,328 ----a-w c:\windows\system32\wups.dll - 2008-07-18 20:10:40 45,768 ----a-w c:\windows\system32\wups2.dll + 2008-10-16 13:09:44 43,544 ----a-w c:\windows\system32\wups2.dll - 2008-07-18 20:09:44 205,000 ----a-w c:\windows\system32\wuweb.dll + 2008-10-16 13:13:40 202,776 ----a-w c:\windows\system32\wuweb.dll + 2006-02-03 07:41:26 14,032 ----a-w c:\windows\system32\x3daudio1_0.dll + 2007-03-05 11:42:18 15,128 ----a-w c:\windows\system32\x3daudio1_1.dll + 2007-10-22 02:37:16 17,928 ----a-w c:\windows\system32\X3DAudio1_2.dll + 2008-03-05 15:00:06 25,608 ----a-w c:\windows\system32\X3DAudio1_3.dll + 2008-05-30 13:17:00 25,608 ----a-w c:\windows\system32\X3DAudio1_4.dll + 2006-02-03 07:42:06 230,096 ----a-w c:\windows\system32\xactengine2_0.dll + 2006-03-31 11:39:48 229,584 ----a-w c:\windows\system32\xactengine2_1.dll + 2007-10-22 02:39:54 267,272 ----a-w c:\windows\system32\xactengine2_10.dll + 2006-05-31 06:24:16 230,168 ----a-w c:\windows\system32\xactengine2_2.dll + 2006-07-28 08:30:32 236,824 ----a-w c:\windows\system32\xactengine2_3.dll + 2006-09-28 15:05:56 237,848 ----a-w c:\windows\system32\xactengine2_4.dll + 2006-12-08 11:02:00 251,672 ----a-w c:\windows\system32\xactengine2_5.dll + 2007-01-24 14:27:30 255,848 ----a-w c:\windows\system32\xactengine2_6.dll + 2007-04-04 17:55:00 261,480 ----a-w c:\windows\system32\xactengine2_7.dll + 2007-06-20 19:46:04 266,088 ----a-w c:\windows\system32\xactengine2_8.dll + 2007-07-19 23:57:12 267,112 ----a-w c:\windows\system32\xactengine2_9.dll + 2008-03-05 15:03:20 238,088 ----a-w c:\windows\system32\xactengine3_0.dll + 2008-05-30 13:18:52 238,088 ----a-w c:\windows\system32\xactengine3_1.dll + 2008-05-30 13:17:30 65,032 ----a-w c:\windows\system32\XAPOFX1_0.dll + 2008-03-05 15:03:54 479,752 ----a-w c:\windows\system32\XAudio2_0.dll + 2008-05-30 13:19:18 507,400 ----a-w c:\windows\system32\XAudio2_1.dll + 2006-03-31 11:39:24 62,672 ----a-w c:\windows\system32\xinput1_1.dll + 2006-07-28 08:30:14 62,744 ----a-w c:\windows\system32\xinput1_2.dll + 2007-04-04 17:53:42 81,768 ----a-w c:\windows\system32\xinput1_3.dll + 2005-12-05 17:07:30 61,136 ----a-w c:\windows\system32\xinput9_1_0.dll + 2009-01-11 14:34:52 16,384 ----atw c:\windows\temp\Perflib_Perfdata_1c8.dat + 2008-09-30 15:42:08 1,286,152 ----a-w c:\windows\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9870.0_x-ww_a32d74cf\msxml4.dll + 2008-09-30 15:45:12 91,656 ----a-w c:\windows\WinSxS\x86_Microsoft.MSXML2R_6bd6b9abf345378f_4.1.1.0_x-ww_2a41bceb\msxml4r.dll + 2006-12-01 21:56:00 96,256 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.dll + 2006-06-05 13:14:28 479,232 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcm80.dll + 2006-06-05 13:14:28 548,864 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcp80.dll + 2006-06-05 13:14:28 626,688 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcr80.dll + 2006-12-01 23:25:52 1,101,824 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll + 2006-12-01 23:25:56 1,093,120 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80u.dll + 2006-12-01 23:25:58 69,632 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80.dll + 2006-12-01 23:26:00 57,856 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80u.dll + 2006-12-01 23:08:00 40,960 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHS.dll + 2006-12-01 23:08:00 45,056 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHT.dll + 2006-12-01 23:08:00 65,536 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80DEU.dll + 2006-12-01 23:08:00 57,344 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ENU.dll + 2006-12-01 23:08:00 61,440 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ESP.dll + 2006-12-01 23:08:00 61,440 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80FRA.dll + 2006-12-01 23:08:00 61,440 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ITA.dll + 2006-12-01 23:08:00 49,152 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80JPN.dll + 2006-12-01 23:08:00 49,152 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80KOR.dll + 2006-12-01 23:46:44 65,536 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.OpenMP_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6c18549a\vcomp.dll . -- Migawka wyzerowana -- . ((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2004-08-04 15360] "Gadu-Gadu"="c:\program files\Gadu-Gadu\gg.exe" [2008-03-20 2127296] "Google Update"="c:\documents and settings\Ferson\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" [2008-10-08 133104] "AlcoholAutomount"="c:\program files\Alcohol Soft\Alcohol 120\axcmd.exe" [2007-07-02 220544] "DAEMON Tools Pro Agent"="c:\program files\DAEMON Tools Pro\DTProAgent.exe" [2007-09-06 136136] "ALLUpdate"="c:\program files\ALLPlayer\ALLUpdate.exe" [2008-11-24 869888] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112] "WinampAgent"="c:\program files\Winamp\winampa.exe" [2008-08-04 36352] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-12-16 136600] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672] "!AVG Anti-Spyware"="c:\program files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 6731312] "CTSysVol"="c:\program files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe" [2005-10-31 57344] "NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648] "AVP"="c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe" [2008-07-29 206088] "RTHDCPL"="RTHDCPL.EXE" [2005-05-25 c:\windows\RTHDCPL.EXE] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-04 15360] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AQQ] --a------ 2008-12-22 14:50 1656832 c:\progra~1\WapSter\WAPSTE~1\AQQ.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Hide IP Platinum] --a------ 2007-11-03 20:34 1548288 c:\program files\Hide IP Platinum\hideippla.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] -ra------ 2008-11-18 16:31 21633320 c:\program files\Skype\Phone\Skype.exe [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\WapSter\\AQQ\\AQQ.exe"= "c:\\Program Files\\uTorrent\\uTorrent.exe"= "c:\\Program Files\\Winamp Remote\\bin\\Orb.exe"= "c:\\Program Files\\Winamp Remote\\bin\\OrbTray.exe"= "c:\\Program Files\\Winamp Remote\\bin\\OrbStreamerClient.exe"= "c:\\WINDOWS\\system32\\PnkBstrA.exe"= "c:\\WINDOWS\\system32\\PnkBstrB.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [2008-01-29 32784] R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [2008-04-30 24592] . Zawartość folderu 'Zaplanowane zadania' 2009-01-11 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-343818398-152049171-725345543-1003.job - c:\documents and settings\Ferson\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2008-10-08 17:26] . - - - - USUNIĘTO PUSTE WPISY - - - - HKLM-Run-SkyTel - c:\documents and settings\Ferson\Pulpit\ALC88x_V51005286\32bit\2K_XP\WDM\SkyTel.exe . ------- Skan uzupełniający ------- . uInternet Connection Wizard,ShellNext = iexplore TCP: {BAA1D68C-62E9-434E-AEF9-A08C246E012C} = 217.30.129.149,217.30.137.200 FF - ProfilePath - c:\documents and settings\Ferson\Dane aplikacji\Mozilla\Firefox\Profiles\rt3a685b.default\ FF - component: c:\documents and settings\Ferson\Dane aplikacji\Mozilla\Firefox\Profiles\rt3a685b.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}\components\WinampTBPlayer.dll FF - plugin: c:\documents and settings\Ferson\Dane aplikacji\Mozilla\plugins\npoctoshape.dll FF - plugin: c:\documents and settings\Ferson\Ustawienia lokalne\Dane aplikacji\Google\Update\1.2.133.33\npGoogleOneClick7.dll FF - plugin: c:\program files\Opera\program\plugins\nppl3260.dll FF - plugin: c:\program files\Opera\program\plugins\nprpjplug.dll . ************************************************************************** catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-01-11 15:34:58 Windows 5.1.2600 Dodatek Service Pack 2 NTFS skanowanie ukrytych procesów ... skanowanie ukrytych wpisów autostartu ... skanowanie ukrytych plików ... skanowanie pomyślnie ukończone ukryte pliki: 0 ************************************************************************** . --------------------- Pliki DLL ładowane pod uruchomionymi procesami --------------------- - - - - - - - > 'winlogon.exe'(1264) c:\windows\system32\Ati2evxx.dll . ------------------------ Pozostałe uruchomione procesy ------------------------ . c:\windows\system32\ati2evxx.exe c:\windows\system32\ati2evxx.exe c:\program files\Grisoft\AVG Anti-Spyware 7.5\guard.exe c:\program files\Bonjour\mDNSResponder.exe c:\program files\Java\jre6\bin\jqs.exe c:\program files\Advanced Registry Doctor\RegManServ.exe c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe c:\program files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe c:\windows\system32\wscntfy.exe c:\program files\Mozilla Firefox\firefox.exe . ************************************************************************** . Czas ukończenia: 2009-01-11 15:37:49 - komputer został uruchomiony ponownie ComboFix-quarantined-files.txt 2009-01-11 14:37:45 ComboFix2.txt 2008-11-09 13:22:29 ComboFix3.txt 2008-11-09 12:42:45 ComboFix4.txt 2008-11-09 11:34:25 Przed: 1 398 128 640 bajtów wolnych Po: 1,582,235,648 bajtów wolnych 641 --- E O F --- 2008-12-18 13:34:40

hijackthis

Kod: Zaznacz wszystko: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 15:40:18, on 2009-01-11 Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.20935) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Winamp\winampa.exe C:\Program Files\Advanced Registry Doctor\RegManServ.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Gadu-Gadu\gg.exe C:\Documents and Settings\Ferson\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe C:\Program Files\DAEMON Tools Pro\DTProAgent.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\explorer.exe C:\WINDOWS\system32\notepad.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe /r O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\gg.exe" /tray O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Ferson\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTProAgent.exe" O4 - HKCU\..\Run: [ALLUpdate] "C:\Program Files\ALLPlayer\ALLUpdate.exe" "sleep" O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O17 - HKLM\System\CCS\Services\Tcpip\..\{BAA1D68C-62E9-434E-AEF9-A08C246E012C}: NameServer = 217.30.129.149,217.30.137.200 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Registry Management Service (RegManServ) - Unknown owner - C:\Program Files\Advanced Registry Doctor\RegManServ.exe O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- End of file - 6654 bytes

**Posty:** 18165 · przez **wojtas** 11 Sty 2009, 21:05

watpie zeby byly to wirusy ale:

1. Ściągnij OTMoveIt i go włacz i odpal go z opcji CleanUp

oraz skasuj folder C:\Qoobox
2. wykonaj optymalizację windowsa
3.sciagnij ATF_Cleaner
zaznacz
Windows Temp
All users Temp
Temporary internet files
Recycle Bin
i wcisnij EMPTY SELECTED
4.Wyłącz przywracanie systemu ( właściwości mój komputer-zakładka przywracanie - wyłącz przywracanie na wszystkich dyskach). Po chwili włącz je powrotem
5.Przeskanuj obszar mojego komputera http://www.kaspersky.pl/virusscanner.html (uruchom przez IE) Daj raport z niego na forum.

i tym:

FixIEDef.