pastebin - collaborative debugging

pastebin is a collaborative debugging tool allowing you to share and modify code snippets while chatting on IRC, IM or a message board.

This site is developed to XHTML and CSS2 W3C standards. If you see this paragraph, your browser does not support those standards and you need to upgrade. Visit WaSP for a variety of options.

Wysłany przez smoterek dnia 2008-05-7 o 20:44
pobierz | nowy post

  1. ComboFix 08-05-01.3 - Artur 2008-05-07 20:27:30.1 - NTFSx86
  2. Microsoft Windows XP Professional  5.1.2600.2.1250.1.1045.18.753 [GMT 2:00]
  3. Running from: C:\Documents and Settings\Artur\Pulpit\ComboFix.exe
  4.  * Created a new restore point
  5.  * Resident AV is active
  6.  
  7.  
  8. [color=red][b]WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !![/b][/color]
  9. .
  10.  
  11. (((((((((((((((((((((((((   Files Created from 2008-04-07 to 2008-05-07  )))))))))))))))))))))))))))))))
  12. .
  13.  
  14. 2008-05-06 14:55 . 2008-05-07 08:39     36   --a------  C:\WINDOWS\plugSpk.INI
  15. 2008-05-03 23:26 . 2008-05-03 23:26     <DIR>        d--------       C:\Documents and Settings\LocalService\Pulpit
  16. 2008-05-03 15:09 . 2008-05-03 15:09     <DIR>        d--------       C:\Program Files\Trend Micro
  17. 2008-04-23 21:48 . 2005-01-28 13:44     5,525,504    --a------   C:\WINDOWS\system32\setb6.tmp
  18. 2008-04-23 21:47 . 2005-01-28 13:44     258,296      --a------     C:\WINDOWS\system32\setb0.tmp
  19. 2008-04-16 21:53 . 2008-04-16 21:53     <DIR>        d--------       C:\Documents and Settings\Artur\Dane aplikacji\vlc
  20. 2008-04-10 22:01 . 2008-04-10 22:01     20   --a------  C:\WINDOWS\powerlist.ini
  21. 2008-04-10 22:00 . 2008-04-10 22:02     611  --a------ C:\WINDOWS\psnetwork.ini
  22. 2008-04-10 22:00 . 2008-04-10 22:01     155  --a------ C:\WINDOWS\powerplayer.ini
  23. 2008-04-10 21:59 . 2008-04-10 21:59     <DIR>        d--------       C:\Documents and Settings\Artur\Dane aplikacji\ppStream
  24.  
  25. .
  26. ((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
  27. .
  28. 2008-05-07 18:13        ---------       d-----w        C:\Program Files\foobar2000
  29. 2008-05-07 18:05        ---------       d-----w        C:\Documents and Settings\Artur\Dane aplikacji\uTorrent
  30. 2008-05-07 16:50        ---------       d-----w        C:\Documents and Settings\Artur\Dane aplikacji\OpenOffice.org2
  31. 2008-05-06 17:52        85,768  ----a-w   C:\WINDOWS\Internet Logs\vsmon_2nd_2008_05_06_19_49_04_small.dmp.zip
  32. 2008-05-06 11:46        ---------       d-----w        C:\Program Files\SkanerOnline
  33. 2008-05-04 14:47        2,830,848       ----a-w        C:\WINDOWS\Internet Logs\xDBCE.tmp
  34. 2008-05-04 14:47        1,573,376       ----a-w        C:\WINDOWS\Internet Logs\xDBCF.tmp
  35. 2008-05-03 13:05        121,344 ----a-w  C:\WINDOWS\Internet Logs\xDBCD.tmp
  36. 2008-05-03 12:59        3,997,696       ----a-w        C:\WINDOWS\Internet Logs\xDBCC.tmp
  37. 2008-05-03 09:23        87,861  ----a-w   C:\WINDOWS\Internet Logs\vsmon_2nd_2008_05_03_11_13_42_small.dmp.zip
  38. 2008-05-03 09:07        85,212  ----a-w   C:\WINDOWS\Internet Logs\vsmon_2nd_2008_05_03_11_00_10_small.dmp.zip
  39. 2008-05-03 08:59        60,732  ----a-w   C:\WINDOWS\Internet Logs\zlclient_2nd_2008_05_03_10_56_14_small.dmp.zip
  40. 2008-05-03 08:59        52,431  ----a-w   C:\WINDOWS\Internet Logs\zlclient_2nd_2008_05_03_10_56_44_small.dmp.zip
  41. 2008-04-27 18:03        87,942  ----a-w   C:\WINDOWS\Internet Logs\vsmon_2nd_2008_04_26_19_25_38_small.dmp.zip
  42. 2008-04-25 17:13        90,865  ----a-w   C:\WINDOWS\Internet Logs\vsmon_2nd_2008_04_25_19_10_07_small.dmp.zip
  43. 2008-04-25 17:13        79,691  ----a-w   C:\WINDOWS\Internet Logs\vsmon_2nd_2008_04_25_19_08_35_small.dmp.zip
  44. 2008-04-21 19:39        66,048  ----a-w   C:\WINDOWS\Internet Logs\xDBCB.tmp
  45. 2008-04-21 19:34        18,944  ----a-w   C:\WINDOWS\Internet Logs\xDBCA.tmp
  46. 2008-04-21 19:31        2,950,656       ----a-w        C:\WINDOWS\Internet Logs\xDBC9.tmp
  47. 2008-04-19 16:20        16,963,762      ----a-w       C:\WINDOWS\Internet Logs\vsmon_2nd_2008_04_19_13_09_45_full.dmp.zip
  48. 2008-04-16 20:08        3,239,424       ----a-w        C:\WINDOWS\Internet Logs\xDBC8.tmp
  49. 2008-04-13 09:43        ---------       d--h--w        C:\Program Files\InstallShield Installation Information
  50. 2008-04-13 07:33        83,243  ----a-w   C:\WINDOWS\Internet Logs\vsmon_2nd_2008_04_12_12_42_48_small.dmp.zip
  51. 2008-04-05 05:40        13,701,528      ----a-w       C:\WINDOWS\Internet Logs\tvDebug.zip
  52. 2008-03-31 05:24        1,521,664       ----a-w        C:\WINDOWS\Internet Logs\xDBC7.tmp
  53. 2008-03-31 05:24        1,140,736       ----a-w        C:\WINDOWS\Internet Logs\xDBC6.tmp
  54. 2008-03-30 20:20        3,511,808       ----a-w        C:\WINDOWS\Internet Logs\xDBC5.tmp
  55. 2008-03-27 12:43        3,641,856       ----a-w        C:\WINDOWS\Internet Logs\xDBC4.tmp
  56. 2008-03-26 13:03        ---------       d-----w        C:\Documents and Settings\Artur\Dane aplikacji\eSkiMoS R2
  57. 2008-03-24 20:11        ---------       d-----w        C:\Documents and Settings\Artur\Dane aplikacji\InstallShield
  58. 2008-03-24 19:50        ---------       d-----w        C:\Documents and Settings\Artur\Dane aplikacji\Microsoft Games
  59. 2008-03-20 08:09        1,845,504       ----a-w        C:\WINDOWS\system32\win32k.sys
  60. 2008-03-11 04:48        2,878,976       ----a-w        C:\WINDOWS\Internet Logs\xDBC2.tmp
  61. 2008-03-11 04:48        1,502,208       ----a-w        C:\WINDOWS\Internet Logs\xDBC3.tmp
  62. 2008-03-10 01:08        4,088,832       ----a-w        C:\WINDOWS\Internet Logs\xDBC0.tmp
  63. 2008-03-10 01:08        1,502,208       ----a-w        C:\WINDOWS\Internet Logs\xDBC1.tmp
  64. 2008-03-09 13:09        ---------       d-----w        C:\Program Files\Macrogaming
  65. 2008-03-01 13:02        826,368 ----a-w  C:\WINDOWS\system32\wininet.dll
  66. 2008-02-28 07:52        2,908,672       ----a-w        C:\WINDOWS\Internet Logs\xDBBF.tmp
  67. 2008-02-26 08:37        3,443,712       ----a-w        C:\WINDOWS\Internet Logs\xDBBD.tmp
  68. 2008-02-26 08:36        1,493,504       ----a-w        C:\WINDOWS\Internet Logs\xDBBE.tmp
  69. 2008-02-20 06:51        282,624 ----a-w  C:\WINDOWS\system32\gdi32.dll
  70. 2008-02-20 05:38        45,568  ----a-w   C:\WINDOWS\system32\dnsrslvr.dll
  71. 2008-02-19 14:14        3,084,288       ----a-w        C:\WINDOWS\Internet Logs\xDBBB.tmp
  72. 2008-02-19 14:14        1,488,384       ----a-w        C:\WINDOWS\Internet Logs\xDBBC.tmp
  73. 2008-02-11 19:55        2,145,280       ----a-w        C:\WINDOWS\Internet Logs\xDBB9.tmp
  74. 2008-02-11 19:55        1,480,192       ----a-w        C:\WINDOWS\Internet Logs\xDBBA.tmp
  75. 2008-02-11 14:30        3,402,752       ----a-w        C:\WINDOWS\Internet Logs\xDBB7.tmp
  76. 2008-02-11 14:30        1,480,192       ----a-w        C:\WINDOWS\Internet Logs\xDBB8.tmp
  77. 2008-02-08 08:37        3,316,224       ----a-w        C:\WINDOWS\Internet Logs\xDBB5.tmp
  78. 2008-02-08 08:37        1,473,024       ----a-w        C:\WINDOWS\Internet Logs\xDBB6.tmp
  79. 2007-12-20 17:37        50,945,134      ------w       C:\Program Files\matura biologia.rar
  80. 2007-05-27 10:31        370     ----a-w      C:\Program Files\INSTALL.LOG
  81. 2007-04-18 17:05        1,690,954       ----a-w        C:\Documents and Settings\Artur\Dane aplikacji\przemek.dat
  82. 2007-03-19 18:13        6,422,611       ----a-w        C:\Program Files\frostwire-4.13.1.6.windows.exe
  83. 2003-06-03 15:49        448,256 ----a-w  C:\WINDOWS\inf\EL2K_N64.sys
  84. 2003-06-03 15:48        147,328 ----a-w  C:\WINDOWS\inf\EL2K_XP.sys
  85. 2003-06-03 15:47        147,328 ----a-w  C:\WINDOWS\inf\EL2K_2K.sys
  86. .
  87.  
  88. (((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
  89. .
  90. .
  91. *Note* empty entries & legit default entries are not shown
  92. REGEDIT4
  93.  
  94. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  95. "AQQ"="E:\PROGRA~1\WapSter\AQQ\AQQ.exe" [2007-04-07 23:42 2151160]
  96. "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 00:44 15360]
  97.  
  98. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  99. "Zone Labs Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [2005-11-15 01:51 755472]
  100. "nod32kui"="C:\Program Files\Eset\nod32kui.exe" [2007-02-10 12:55 921600]
  101. "cFosSpeed"="E:\Program Files\cFosSpeed\cFosSpeed.exe" [2005-12-09 19:22 712704]
  102. "Disc Detector"="C:\Program Files\Creative\ShareDLL\CtNotify.exe" [1999-08-30 02:55 189952]
  103. "TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2007-03-23 23:12 180269]
  104.  
  105. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
  106. "NCInstallQueue"="netman.dll" [2005-08-22 20:36 197632 C:\WINDOWS\system32\netman.dll]
  107.  
  108. [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
  109. "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 00:44 15360]
  110. "PcSync"="E:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2006-11-09 18:15 1634304]
  111.  
  112. [hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
  113. "{35B2861B-2B26-4691-9FF0-09083722C736}"= C:\WINDOWS\system32\RadExe.dll [2005-04-28 01:30 188416]
  114.  
  115. [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\MCPClient]
  116. C:\PROGRA~1\COMMON~1\Stardock\mcpstub.dll 2005-01-31 15:13 49152 C:\PROGRA~1\COMMON~1\Stardock\MCPStub.dll
  117.  
  118. [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
  119. "msacm.ctmp3"= C:\WINDOWS\system32\ctmp3.acm
  120. "aux"= ctwdm32.dll
  121.  
  122. [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Adobe Reader Speed Launch.lnk]
  123. path=C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Reader Speed Launch.lnk
  124. backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup
  125.  
  126. [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Status Monitor.lnk]
  127. path=C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Status Monitor.lnk
  128. backup=C:\WINDOWS\pss\Status Monitor.lnkCommon Startup
  129.  
  130. [HKLM\~\startupfolder\C:^Documents and Settings^Artur^Menu Start^Programy^Autostart^Budzik.lnk]
  131. path=C:\Documents and Settings\Artur\Menu Start\Programy\Autostart\Budzik.lnk
  132. backup=C:\WINDOWS\pss\Budzik.lnkStartup
  133.  
  134. [HKLM\~\startupfolder\C:^Documents and Settings^Artur^Menu Start^Programy^Autostart^Mobiola Web Camera 2 for S60 3rd Edition.lnk]
  135. path=C:\Documents and Settings\Artur\Menu Start\Programy\Autostart\Mobiola Web Camera 2 for S60 3rd Edition.lnk
  136. backup=C:\WINDOWS\pss\Mobiola Web Camera 2 for S60 3rd Edition.lnkStartup
  137.  
  138. [HKLM\~\startupfolder\C:^Documents and Settings^Artur^Menu Start^Programy^Autostart^Registration The Settlers II - Dziesięciolecie.LNK]
  139. path=C:\Documents and Settings\Artur\Menu Start\Programy\Autostart\Registration The Settlers II - Dziesięciolecie.LNK
  140. backup=C:\WINDOWS\pss\Registration The Settlers II - Dziesięciolecie.LNKStartup
  141.  
  142. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AHQInit]
  143. --a------ 2001-05-10 18:49 102400 E:\Program Files\Creative\SBLive\Program\AHQInit.exe
  144.  
  145. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtiPTA]
  146. --a------ 2005-03-23 03:05 339968 C:\WINDOWS\SYSTEM32\ATIPTAXX.EXE
  147.  
  148. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AudioHQ]
  149. --a------ 2001-08-17 18:01 180224 E:\Program Files\Creative\SBLive\AudioHQ\AHQTB.EXE
  150.  
  151. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ControlCenter2.0]
  152. --------- 2005-05-17 18:42 933888 C:\Program Files\Brother\ControlCenter2\brctrcen.exe
  153.  
  154. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
  155. --a------ 2004-08-04 00:44 15360 C:\WINDOWS\system32\ctfmon.exe
  156.  
  157. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Flashget]
  158. --a------ 2007-08-02 08:36 1994800 E:\Program Files\FlashGet\flashget.exe
  159.  
  160. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gadu-Gadu]
  161. --a------ 2007-11-14 12:54 2131392 E:\Program Files\Gadu-Gadu\gg.exe
  162.  
  163. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndexSearch]
  164. --a------ 2005-03-17 15:45 40960 C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
  165.  
  166. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Konnekt]
  167. --a------ 2005-05-24 23:41 503808 C:\Program Files\Konnekt\konnekt.exe
  168.  
  169. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Mobipocket Reader Notifications]
  170. --a------ 2006-06-20 17:54 57344 E:\Program Files\Mobipocket.com\Mobipocket Reader\readernotify.exe
  171.  
  172. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
  173. --------- 2004-10-13 18:24 1694208 C:\Program Files\Messenger\msmsgs.exe
  174.  
  175. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
  176. --a------ 2001-07-09 12:50 155648 C:\WINDOWS\system32\NeroCheck.exe
  177.  
  178. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Octoshape Streaming Services]
  179. C:\Program Files\Octoshape Streaming Services\Artur\OctoshapeClient.exe
  180.  
  181. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PaperPort PTD]
  182. --a------ 2005-03-17 15:25 57393 C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
  183.  
  184. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCSuiteTrayApplication]
  185. --a------ 2006-11-08 14:27 222208 E:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
  186.  
  187. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
  188. --a------ 2007-11-05 16:51 282624 C:\Program Files\QuickTime\qttask.exe
  189.  
  190. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SetDefPrt]
  191. --------- 2005-01-26 19:02 49152 E:\Program Files\Brother\Brmfl05a\BrStDvPt.exe
  192.  
  193. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartSync - ScheduleSync]
  194. --a------ 2005-10-21 16:20 45056 E:\PROGRA~1\MOBILE~1\SMARTS~1\SCHEDU~1.EXE
  195.  
  196. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAX]
  197. --a------ 2003-05-30 10:42 585728 C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
  198.  
  199. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
  200. --a------ 2003-05-29 17:28 790528 C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
  201.  
  202. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpeedTouch USB Diagnostics]
  203. --a------ 2004-01-26 12:38 866816 C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
  204.  
  205. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate]
  206. -ra------ 2003-10-14 11:22 155648 C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe
  207.  
  208. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Stefan]
  209. --a------ 2007-08-29 15:30 685056 E:\Program Files\Stefan\Stefan.exe
  210.  
  211. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
  212. --a------ 2006-12-15 04:23 75520 C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
  213.  
  214. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM]
  215. -ra------ 2008-01-02 21:15 103712 C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
  216.  
  217. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
  218. --a------ 2007-03-23 23:12 180269 C:\Program Files\Common Files\Real\Update_OB\realsched.exe
  219.  
  220. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdReg]
  221. --a------ 2000-05-11 02:00 90112 C:\WINDOWS\Updreg.exe
  222.  
  223. [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall]
  224. "DisableMonitoring"=dword:00000001
  225.  
  226. [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
  227. "EnableFirewall"= 0 (0x0)
  228.  
  229. [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
  230. "%windir%\\system32\\sessmgr.exe"=
  231. "E:\\Program Files\\WapSter\\AQQ\\AQQ.exe"=
  232. "E:\\PROGRA~1\\WapSter\\AQQ\\AQQ.exe"=
  233. "E:\\Program Files\\emule0.47a-Xtreme5.2.2\\emule.exe"=
  234. "E:\\Program Files\\Gadu-Gadu\\gg.exe"=
  235. "E:\\Program Files\\uTorrent\\utorrent.exe"=
  236. "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
  237. "E:\\Program Files\\FlashGet\\FlashGet.exe"=
  238.  
  239. R3 BrScnUsb;Brother USB Still Image driver;C:\WINDOWS\system32\Drivers\BrScnUsb.sys [2004-10-15 13:50]
  240. R3 Ma730Pt;MA730 Bluetooth VCOM Driver;C:\WINDOWS\system32\DRIVERS\Ma730Pt.sys [2007-03-05 10:42]
  241. R3 Ma730VaA;MA730 Bluetooth Advanced Audio;C:\WINDOWS\system32\DRIVERS\Ma730VaA.sys [2007-01-26 17:32]
  242. R3 Ma730Vad;MA730 Bluetooth Audio;C:\WINDOWS\system32\DRIVERS\Ma730Vad.sys [2007-01-26 18:48]
  243. S3 EverestDriver;Lavalys EVEREST Kernel Driver;C:\Documents and Settings\Artur\Pulpit\everestultimate420\kerneld.wnt [2007-10-17 00:00]
  244. S3 siusbmod;siusbmod;C:\WINDOWS\system32\DRIVERS\siusbmod.sys [2006-01-23 08:15]
  245. S3 w200bus;Sony Ericsson W200 driver (WDM);C:\WINDOWS\system32\DRIVERS\w200bus.sys [2006-11-07 10:42]
  246.  
  247. *Newly Created Service* - CATCHME
  248. .
  249. **************************************************************************
  250.  
  251. catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
  252. Rootkit scan 2008-05-07 20:30:15
  253. Windows 5.1.2600 Dodatek Service Pack 2 NTFS
  254.  
  255. scanning hidden processes ...
  256.  
  257. scanning hidden autostart entries ...
  258.  
  259. HKLM\Software\Microsoft\Windows\CurrentVersion\Run
  260.   Disc Detector = C:\Program Files\Creative\ShareDLL\CtNotify.exe?X???~???????????? C?????Disc Detector?B???A???????A?? ????B???@?$?@?? C?????U?@?????????@?B???A???????A???????B???@?????P???$?@?? ????????6~??????????@???????????????????B???????????????????????????????????B
  261.  
  262. scanning hidden files ...
  263.  
  264. scan completed successfully
  265. hidden files: 0
  266.  
  267. **************************************************************************
  268.  
  269. [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\EverestDriver]
  270. "ImagePath"="\??\C:\Documents and Settings\Artur\Pulpit\everestultimate420\kerneld.wnt"
  271. .
  272. --------------------- DLLs Loaded Under Running Processes ---------------------
  273.  
  274. PROCESS: C:\WINDOWS\system32\lsass.exe
  275. -> C:\Program Files\Eset\pr_imon.dll
  276.  
  277. PROCESS: C:\WINDOWS\explorer.exe
  278. -> E:\Program Files\Stardock\ObjectDock\DockShellHook.dll
  279. .
  280. Completion time: 2008-05-07 20:31:14
  281. ComboFix-quarantined-files.txt  2008-05-07 18:31:07
  282.  
  283. Pre-Run: 108,892,160 bajtów wolnych
  284. Post-Run: 579,432,448 bajtów wolnych
  285.  
  286. 223     --- E O F ---        2008-04-24 01:06:12

Wyślij poprawioną bądź nową wersję poniżej lub utwórz nowy post.
Po wysłaniu poprawki, będziesz mógł/mogła w łatwy sposób porównać obydwie wersje.

Składnia

Aby zaznaczyć konkretną linię poprzedź ją znakami "@@"


Zapamiętaj ustawienia