wklejto.pl

Dodane przez: ~pawcio151 (2008-07-13 18:02) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
ComboFix 08-07-12.1 - Pawel 2008-07-13 17:57:00.5 - [color=red][b]FAT32[/b][/color]x86
Microsoft Windows XP Professional  5.1.2600.2.1250.1.1045.18.156 [GMT 2:00]
Running from: D:\\ComboFix.exe
Command switches used :: D:\\CFScript.txt
 * Created a new restore point
 
[color=red][b]WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !![/b][/color]
.
 
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
 
C:\\FOUND.009
C:\\FOUND.009\\FILE0000.CHK
C:\\FOUND.010
C:\\FOUND.010\\FILE0000.CHK
C:\\FOUND.010\\FILE0001.CHK
C:\\FOUND.010\\FILE0002.CHK
C:\\FOUND.010\\FILE0003.CHK
C:\\FOUND.010\\FILE0004.CHK
C:\\FOUND.011
C:\\FOUND.011\\FILE0000.CHK
C:\\FOUND.011\\FILE0001.CHK
C:\\FOUND.011\\FILE0002.CHK
C:\\FOUND.011\\FILE0003.CHK
C:\\FOUND.011\\FILE0004.CHK
C:\\FOUND.011\\FILE0005.CHK
C:\\FOUND.011\\FILE0006.CHK
C:\\FOUND.012
C:\\FOUND.012\\FILE0000.CHK
C:\\FOUND.012\\FILE0001.CHK
C:\\FOUND.012\\FILE0002.CHK
C:\\FOUND.012\\FILE0003.CHK
C:\\FOUND.013
C:\\FOUND.013\\FILE0000.CHK
C:\\FOUND.013\\FILE0001.CHK
C:\\FOUND.014
C:\\FOUND.014\\FILE0000.CHK
C:\\FOUND.014\\FILE0001.CHK
C:\\FOUND.014\\FILE0002.CHK
C:\\FOUND.014\\FILE0003.CHK
C:\\FOUND.014\\FILE0004.CHK
C:\\FOUND.014\\FILE0005.CHK
C:\\FOUND.014\\FILE0006.CHK
C:\\FOUND.014\\FILE0007.CHK
C:\\FOUND.014\\FILE0008.CHK
C:\\FOUND.014\\FILE0009.CHK
C:\\FOUND.014\\FILE0010.CHK
C:\\FOUND.014\\FILE0011.CHK
C:\\FOUND.014\\FILE0012.CHK
C:\\FOUND.014\\FILE0013.CHK
C:\\FOUND.014\\FILE0014.CHK
C:\\FOUND.014\\FILE0015.CHK
C:\\FOUND.014\\FILE0016.CHK
C:\\FOUND.014\\FILE0017.CHK
C:\\FOUND.014\\FILE0018.CHK
C:\\FOUND.014\\FILE0019.CHK
C:\\FOUND.014\\FILE0020.CHK
C:\\FOUND.014\\FILE0021.CHK
C:\\FOUND.014\\FILE0022.CHK
C:\\FOUND.014\\FILE0023.CHK
C:\\FOUND.014\\FILE0024.CHK
C:\\FOUND.014\\FILE0025.CHK
C:\\FOUND.014\\FILE0026.CHK
C:\\FOUND.014\\FILE0027.CHK
C:\\FOUND.014\\FILE0028.CHK
C:\\FOUND.014\\FILE0029.CHK
C:\\FOUND.014\\FILE0030.CHK
C:\\FOUND.014\\FILE0031.CHK
C:\\FOUND.014\\FILE0032.CHK
C:\\FOUND.014\\FILE0033.CHK
C:\\FOUND.014\\FILE0034.CHK
C:\\FOUND.014\\FILE0035.CHK
C:\\FOUND.014\\FILE0036.CHK
C:\\FOUND.014\\FILE0037.CHK
C:\\FOUND.014\\FILE0038.CHK
C:\\FOUND.014\\FILE0039.CHK
C:\\FOUND.014\\FILE0040.CHK
C:\\FOUND.014\\FILE0041.CHK
C:\\FOUND.015
C:\\FOUND.015\\FILE0000.CHK
C:\\FOUND.015\\FILE0001.CHK
C:\\FOUND.015\\FILE0002.CHK
C:\\FOUND.015\\FILE0003.CHK
C:\\FOUND.015\\FILE0004.CHK
C:\\FOUND.015\\FILE0005.CHK
 
.
(((((((((((((((((((((((((   Files Created from 2008-06-13 to 2008-07-13  )))))))))))))))))))))))))))))))
.
 
2008-07-11 17:47 . 2008-07-11 22:19     54,156  --ah-----       C:\\WINDOWS\\QTFont.qfn
2008-07-11 17:47 . 2008-07-11 17:47     1,409   --a------       C:\\WINDOWS\\QTFont.for
2008-07-05 00:51 . 2008-07-05 00:51     <DIR>   d--h-----       C:\\WINDOWS\\system32\\GroupPolicy
2008-06-28 23:06 . 2008-06-28 23:06     <DIR>   d--------       C:\\Documents and Settings\\Michal & Asia\\Dane aplikacji\\vlc
2008-06-26 01:53 . 2008-06-26 01:53     <DIR>   d--------       C:\\Documents and Settings\\Pawel\\Dane aplikacji\\vlc
2008-06-26 01:52 . 2008-06-26 01:52     <DIR>   d--------       C:\\Program Files\\VideoLAN
2008-06-24 16:32 . 2008-06-24 16:32     <DIR>   d--------       C:\\Documents and Settings\\All Users\\Dane aplikacji\\TrackMania
2008-06-17 22:43 . 2008-06-17 22:43     <DIR>   d--------       C:\\Mama
2008-06-15 19:29 . 2008-06-14 20:01     273,024 ---------       C:\\WINDOWS\\system32\\dllcache\\bthport.sys
 
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-07-13 15:06        32      --sha-w C:\\WINDOWS\\system32\\drivers\\fidbox2.idx
2008-07-13 15:06        32      --sha-w C:\\WINDOWS\\system32\\drivers\\fidbox2.dat
2008-07-13 15:06        32      --sha-w C:\\WINDOWS\\system32\\drivers\\fidbox.idx
2008-07-13 15:06        32      --sha-w C:\\WINDOWS\\system32\\drivers\\fidbox.dat
2008-07-07 20:51        23,352  ----a-w C:\\WINDOWS\\system32\\drivers\\PnkBstrK.sys
2008-07-07 20:51        107,832 ----a-w C:\\WINDOWS\\system32\\PnkBstrB.exe
2008-06-16 18:11        96,966  ----a-w C:\\WINDOWS\\system32\\drivers\\klin.dat
2008-06-16 18:11        88,774  ----a-w C:\\WINDOWS\\system32\\drivers\\klick.dat
2008-06-16 18:11        112,144 ----a-w C:\\WINDOWS\\system32\\drivers\\kl1.sys
2008-06-14 18:01        273,024 ------w C:\\WINDOWS\\system32\\drivers\\bthport.sys
2008-06-05 23:21        ---------       d-----w C:\\Documents and Settings\\All Users\\Dane aplikacji\\MSScanAppDataDir
2008-05-08 12:28        202,752 ----a-w C:\\WINDOWS\\system32\\dllcache\\rmcast.sys
2008-05-07 05:16        1,291,264       ----a-w C:\\WINDOWS\\system32\\quartz.dll
2008-05-07 05:16        1,291,264       ------w C:\\WINDOWS\\system32\\dllcache\\quartz.dll
2008-04-23 23:20        3,591,680       ------w C:\\WINDOWS\\system32\\dllcache\\mshtml.dll
2008-04-22 07:43        70,656  ------w C:\\WINDOWS\\system32\\dllcache\\ie4uinit.exe
2008-04-22 07:43        625,664 ------w C:\\WINDOWS\\system32\\dllcache\\iexplore.exe
2008-04-22 07:39        13,824  ------w C:\\WINDOWS\\system32\\dllcache\\ieudinit.exe
2008-04-20 05:07        161,792 ------w C:\\WINDOWS\\system32\\dllcache\\ieakui.dll
.
 
(((((((((((((((((((((((((((((   snapshot@2008-07-13_16.54.54.35   )))))))))))))))))))))))))))))))))))))))))
.
- 2008-07-13 09:54:26   2,048   --s-a-w C:\\WINDOWS\\bootstat.dat
+ 2008-07-13 15:49:52   2,048   --s-a-w C:\\WINDOWS\\bootstat.dat
+ 2007-03-22 16:07:56   91,488  ----a-r C:\\WINDOWS\\Installer\\$PatchCache$\\Managed\\5140110900063D11C8EF10054038389C\\11.0.8173\\ADDRPARS.DLL
+ 2007-04-19 10:53:52   127,328 ----a-r C:\\WINDOWS\\Installer\\$PatchCache$\\Managed\\5140110900063D11C8EF10054038389C\\11.0.8173\\IMPMAIL.DLL
+ 2007-04-19 10:53:44   106,336 ----a-r C:\\WINDOWS\\Installer\\$PatchCache$\\Managed\\5140110900063D11C8EF10054038389C\\11.0.8173\\OUTLMIME.DLL
+ 2007-03-22 16:07:10   41,824  ----a-r C:\\WINDOWS\\Installer\\$PatchCache$\\Managed\\5140110900063D11C8EF10054038389C\\11.0.8173\\RECALL.DLL
+ 2007-03-22 16:07:54   78,168  ----a-r C:\\WINDOWS\\Installer\\$PatchCache$\\Managed\\5140110900063D11C8EF10054038389C\\11.0.8173\\RM.DLL
+ 2007-03-22 16:22:02   103,264 ----a-r C:\\WINDOWS\\Installer\\$PatchCache$\\Managed\\5140110900063D11C8EF10054038389C\\11.0.8173\\TRANSMGR.DLL
- 2008-06-24 12:27:08   593,920 ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\accicons.exe
+ 2008-07-13 15:06:20   593,920 ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\accicons.exe
- 2008-06-24 12:27:08   12,288  ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\cagicon.exe
+ 2008-07-13 15:06:20   12,288  ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\cagicon.exe
- 2008-06-24 12:27:08   86,016  ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\inficon.exe
+ 2008-07-13 15:06:20   86,016  ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\inficon.exe
- 2008-06-24 12:27:08   135,168 ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\misc.exe
+ 2008-07-13 15:06:20   135,168 ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\misc.exe
- 2008-06-24 12:27:08   11,264  ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\mspicons.exe
+ 2008-07-13 15:06:20   11,264  ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\mspicons.exe
- 2008-06-24 12:27:08   27,136  ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\oisicon.exe
+ 2008-07-13 15:06:20   27,136  ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\oisicon.exe
- 2008-06-24 12:27:08   4,096   ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\opwicon.exe
+ 2008-07-13 15:06:20   4,096   ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\opwicon.exe
- 2008-06-24 12:27:08   794,624 ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\outicon.exe
+ 2008-07-13 15:06:20   794,624 ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\outicon.exe
- 2008-06-24 12:27:08   249,856 ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\pptico.exe
+ 2008-07-13 15:06:20   249,856 ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\pptico.exe
- 2008-06-24 12:27:08   61,440  ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\pubs.exe
+ 2008-07-13 15:06:20   61,440  ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\pubs.exe
- 2008-06-24 12:27:08   23,040  ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\unbndico.exe
+ 2008-07-13 15:06:20   23,040  ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\unbndico.exe
- 2008-06-24 12:27:08   286,720 ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\wordicon.exe
+ 2008-07-13 15:06:20   286,720 ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\wordicon.exe
- 2008-06-24 12:27:06   409,600 ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\xlicons.exe
+ 2008-07-13 15:06:20   409,600 ----a-r C:\\WINDOWS\\Installer\\{90110415-6000-11D3-8CFE-0150048383C9}\\xlicons.exe
.
-- Snapshot reset to current date --
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown 
REGEDIT4
 
[HKEY_CURRENT_USER\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run]
\"CTFMON.EXE\"=\"C:\\WINDOWS\\system32\\ctfmon.exe\" [2004-08-04 00:44 15360]
 
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run]
\"NVRaidService\"=\"C:\\WINDOWS\\System32\\nvraidservice.exe\" [2004-06-11 05:15 83968]
\"RemoteControl\"=\"C:\\Program Files\\CyberLink\\PowerDVD\\PDVDServ.exe\" [2006-11-23 15:10 56928]
\"LanguageShortcut\"=\"C:\\Program Files\\CyberLink\\PowerDVD\\Language\\Language.exe\" [2006-12-05 22:55 54832]
\"HP Software Update\"=\"C:\\Program Files\\HP\\HP Software Update\\HPWuSchd2.exe\" [2006-02-19 02:41 49152]
\"NeroFilterCheck\"=\"C:\\Program Files\\Common Files\\Ahead\\Lib\\NeroCheck.exe\" [2007-03-09 18:53 153136]
\"ISUSPM Startup\"=\"C:\\PROGRA~1\\COMMON~1\\INSTAL~1\\UPDATE~1\\ISUSPM.exe\" [2004-06-16 06:03 221184]
\"ISUSScheduler\"=\"C:\\Program Files\\Common Files\\InstallShield\\UpdateService\\issch.exe\" [2004-06-16 06:03 81920]
\"ATIPTA\"=\"C:\\Program Files\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe\" [2004-11-30 21:10 344064]
\"SoundMan\"=\"SOUNDMAN.EXE\" [2004-12-22 11:09 77824 C:\\WINDOWS\\SOUNDMAN.EXE]
 
[HKEY_USERS\\.DEFAULT\\Software\\Microsoft\\Windows\\CurrentVersion\\Run]
\"CTFMON.EXE\"=\"C:\\WINDOWS\\System32\\CTFMON.EXE\" [2004-08-04 00:44 15360]
 
C:\\Documents and Settings\\All Users\\Menu Start\\Programy\\Autostart\\
Kalendarz XP.lnk - C:\\Program Files\\Kalendarz XP\\Kalendarz.exe [2007-08-15 23:39:50 882176]
 
[HKEY_LOCAL_MACHINE\\software\\microsoft\\windows nt\\currentversion\\drivers32]
\"vidc.I420\"= i263_32.drv
 
[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\QuickTime Task]
--a------ 2007-11-11 19:35 155648 D:\\Program Files\\QuickTime\\qttask.exe
 
[HKEY_LOCAL_MACHINE\\software\\microsoft\\security center\\Monitoring\\KasperskyAntiVirus]
\"DisableMonitoring\"=dword:00000001
 
[HKLM\\~\\services\\sharedaccess\\parameters\\firewallpolicy\\standardprofile\\AuthorizedApplications\\List]
\"%windir%\\\\system32\\\\sessmgr.exe\"=
\"C:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpqtra08.exe\"=
\"C:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpqste08.exe\"=
\"C:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpofxm08.exe\"=
\"C:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hposfx08.exe\"=
\"C:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hposid01.exe\"=
\"C:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpqscnvw.exe\"=
\"C:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpqkygrp.exe\"=
\"C:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpqCopy.exe\"=
\"C:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpfccopy.exe\"=
\"C:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpzwiz01.exe\"=
\"C:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpoews01.exe\"=
\"C:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpqnrs08.exe\"=
\"C:\\\\Program Files\\\\Gadu-Gadu\\\\gg.exe\"=
\"C:\\\\Program Files\\\\Ares\\\\Ares.exe\"=
\"C:\\\\Program Files\\\\BitComet\\\\BitComet.exe\"=
\"C:\\\\Program Files\\\\Kaspersky Lab\\\\Kaspersky Anti-Virus 7.0\\\\AVP.EXE\"=
\"D:\\\\cs\\\\hl.exe\"=
\"C:\\\\Program Files\\\\Common Files\\\\Ahead\\\\Nero Web\\\\SetupX.exe\"=
\"D:\\\\FileZilla\\\\FileZilla.exe\"=
\"C:\\\\Program Files\\\\Winamp Remote\\\\bin\\\\Orb.exe\"=
\"C:\\\\Program Files\\\\Winamp Remote\\\\bin\\\\OrbTray.exe\"=
\"C:\\\\Program Files\\\\Winamp Remote\\\\bin\\\\OrbStreamerClient.exe\"=
\"C:\\\\Program Files\\\\Kodak\\\\Kodak EasyShare software\\\\bin\\\\EasyShare.exe\"=
\"%windir%\\\\Network Diagnostic\\\\xpnetdiag.exe\"=
\"D:\\\\Program Files\\\\Wolfenstein - Enemy Territory\\\\ET.exe\"=
\"C:\\\\Documents and Settings\\\\All Users\\\\Dane aplikacji\\\\Kaspersky Lab Setup Files\\\\Kaspersky Anti-Virus 7.0.1.321\\\\English\\\\setup.exe\"=
\"C:\\\\Program Files\\\\Bonjour\\\\mDNSResponder.exe\"=
\"D:\\\\Program Files\\\\Electronic Arts\\\\Need for Speed Carbon\\\\NFSC.exe\"=
\"C:\\\\Documents and Settings\\\\Michal & Asia\\\\Pulpit\\\\Skype.exe\"=
\"D:\\\\Program Files\\\\TmNationsForever\\\\TmForever.exe\"=
\"C:\\\\Program Files\\\\Skype\\\\Phone\\\\Skype.exe\"=
 
[HKLM\\~\\services\\sharedaccess\\parameters\\firewallpolicy\\standardprofile\\GloballyOpenPorts\\List]
\"23919:TCP\"= 23919:TCP:BitComet 23919 TCP
\"23919:UDP\"= 23919:UDP:BitComet 23919 UDP
\"21613:TCP\"= 21613:TCP:BitComet 21613 TCP
\"21613:UDP\"= 21613:UDP:BitComet 21613 UDP
\"9992:TCP\"= 9992:TCP:BitComet 9992 TCP
\"9992:UDP\"= 9992:UDP:BitComet 9992 UDP
 
R0 sfdrv01a;StarForce Protection Environment Driver (version 1.x.a);C:\\WINDOWS\\system32\\drivers\\sfdrv01a.sys [2006-07-05 14:46]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;C:\\WINDOWS\\system32\\DRIVERS\\klim5.sys [2007-12-13 13:28]
S3 atitray;atitray;C:\\Program Files\\DNA-drivers\\ATITrayTools\\atitray.sys [2004-10-25 21:12]
 
 
[HKEY_LOCAL_MACHINE\\software\\microsoft\\active setup\\installed components\\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
\"C:\\Program Files\\Common Files\\LightScribe\\LSRunOnce.exe\"
.
**************************************************************************
 
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-13 18:05:40
Windows 5.1.2600 Dodatek Service Pack 2 FAT NTAPI
 
scanning hidden processes ... 
 
scanning hidden autostart entries ...
 
scanning hidden files ... 
 
 
C:\\Documents and Settings\\All Users\\Dane aplikacji\\Kaspersky Lab\\AVP7\\PdmHist\\b28.F13F478601C8E38F.history\\
 
scan completed successfully
hidden files: 1
 
**************************************************************************
.
Completion time: 2008-07-13 18:07:54
ComboFix-quarantined-files.txt  2008-07-13 16:07:46
ComboFix2.txt  2008-07-13 14:55:22
 
Pre-Run: 5,695,963,136 bajtów wolnych
Post-Run: 5,656,117,248 bajtów wolnych
 
247     --- E O F ---   2008-07-13 15:06:20
 
Wygenerowano w 0.098s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!