Skocz do zawartości
pawelw111

Problemy Z Komputerem

Przez pawelw111, w Microsoft Windows

Rekomendowane odpowiedzi

pawelw111 Newbie

pawelw111

Opublikowano
Opublikowano

Witam, od jakiegoś czasu mam problemy z komputerem - strasznie się wiesza, zamula itp Dzisiaj mi się coś stało z internetem, włączam firefoxa i wyskakują cały czas nowe okna, lub karty. Kolejną rzeczą dosyc często rozłączanie internetu. Czym skanowac? Skanowałem Ad-aware, nod 32 i AVG Anti-Spyware, wykrywają coś, usuwają ale "efektu nie widac". Oto logi z HijackThis:

 

Logfile of Trend Micro HijackThis v2.0.2Scan saved at 15:12:14, on 2008-05-24Platform: Windows XP Dodatek SP. 1 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\System32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\WINDOWS\System32\CTsvcCDA.exeC:\WINDOWS\System32\gearsec.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\System32\HDDSvc.exeC:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXEC:\Program Files\Eset\nod32krn.exeC:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exeC:\Program Files\DAEMON Tools\daemon.exeC:\Program Files\Eset\nod32kui.exeC:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exeC:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXEC:\Program Files\Common Files\Real\Update_OB\realsched.exeC:\Program Files\Weather Alarm Clock\WeatherAlarmClock.exeC:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exeC:\Program Files\AutoConnect\AutoConnect.exeC:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exeC:\Program Files\Gadu-Gadu\gg.exeC:\Program Files\foobar2000\foobar2000.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\Program Files\Trend Micro\HijackThis\HijackThis.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ycomp/defaults/sb/*http://www.yahoo.com/search/ie.htmlR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ycomp/defaults/sp/*http://www.yahoo.comR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.comR0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.comR1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ycomp/defaults/su/*http://www.yahoo.comR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = ŁączaR3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - (no file)O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dllO2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dllO2 - BHO: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MegauploadToolbar\megauploadtoolbar.dllO2 - BHO: Expressivo - {85F685C3-20D9-4943-95E4-EB4224056C3F} - C:\Program Files\ivo\Expressivo\IH_iexplore.dllO2 - BHO: Catcher Class - {ADECBED6-0366-4377-A739-E69DFBA04663} - C:\Program Files\Moyea\FLV Downloader\MoyeaCth.dllO2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dllO2 - BHO: gFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\PROGRA~1\FlashGet\getflash.dllO3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocxO3 - Toolbar: Expressivo - {85F685C3-20D9-4943-95E4-EB4224056C3F} - C:\Program Files\ivo\Expressivo\IH_iexplore.dllO3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dllO3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - (no file)O3 - Toolbar: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MegauploadToolbar\megauploadtoolbar.dllO3 - Toolbar: &Tłumaczenie - {0D704FAD-66E9-4F0A-BFED-4F665770DDB3} - C:\Program Files\Techland\Common\InternetTranslator\InternetTranslator.dllO4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exeO4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICEO4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe /rO4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXEO4 - HKLM\..\Run: [errorkiller] "C:\Program Files\errorkiller\errorkiller.exe" -bootO4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -kO4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimizedO4 - HKLM\..\Run: [WooCnxMon] C:\PROGRA~1\Neostrada TP\CnxMon.exeO4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Neostrada TP\Watch.exeO4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Neostrada TP\TaskbarIcon.exeO4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osbootO4 - HKCU\..\Run: [WeatherAlarmClock] C:\Program Files\Weather Alarm Clock\WeatherAlarmClock.exeO4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\utorrent.exe"O4 - HKCU\..\Run: [zRain] C:\Program Files\Weather Alarm Clock\zRain.exeO4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'USŁUGA LOKALNA')O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'USŁUGA SIECIOWA')O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exeO4 - Startup: AutoConnect.lnk = C:\Program Files\AutoConnect\AutoConnect.exeO4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exeO8 - Extra context menu item: &Winamp Toolbar Search - C:\Documents and Settings\All Users\Dane aplikacji\Winamp Toolbar\ieToolbar\resources\en-US\local\search.htmlO8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000O8 - Extra context menu item: Ściągnij przy pomocy FlashGet'a - C:\Program Files\FlashGet\jc_link.htmO8 - Extra context menu item: Ściągnij wszystko przy pomocy FlashGet'a - C:\Program Files\FlashGet\jc_all.htmO9 - Extra button: Rapidown - {57E91B47-F40A-11D1-B792-444553540011} - C:\WINDOWS\System32\shdocvw.dllO9 - Extra 'Tools' menuitem: Rapidown - {57E91B47-F40A-11D1-B792-444553540011} - C:\WINDOWS\System32\shdocvw.dllO9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dllO9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLLO9 - Extra button: (no name) - {B46B0919-62BA-4D99-A5C4-916B57A6805C} - C:\Program Files\Techland\Common\InternetTranslator\InternetTranslator.dllO9 - Extra 'Tools' menuitem: @C:\Program Files\Techland\Common\InternetTranslator\InternetTranslator.dll,-103 - {B46B0919-62BA-4D99-A5C4-916B57A6805C} - C:\Program Files\Techland\Common\InternetTranslator\InternetTranslator.dllO9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dllO9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\flashget.exeO9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\flashget.exeO17 - HKLM\System\CCS\Services\Tcpip\..\{406780C9-1E60-480E-8159-72F26B067B53}: NameServer = 194.204.159.1 217.98.63.164O17 - HKLM\System\CS1\Services\Tcpip\..\{406780C9-1E60-480E-8159-72F26B067B53}: NameServer = 194.204.159.1 217.98.63.164O17 - HKLM\System\CS2\Services\Tcpip\..\{406780C9-1E60-480E-8159-72F26B067B53}: NameServer = 194.204.159.1 217.98.63.164O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLLO23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exeO23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exeO23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exeO23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exeO23 - Service: Bonjour Service - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exeO23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exeO23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exeO23 - Service: gearsec - GEAR Software - C:\WINDOWS\System32\gearsec.exeO23 - Service: HDD Information Service (HDDSvc) - AltrixSoft (http://www.altrixsoft.com/) - C:\WINDOWS\System32\HDDSvc.exeO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exeO23 - Service: MSSQL$SONY_MEDIAMGR - Unknown owner - C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe (file missing)O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset  - C:\Program Files\Eset\nod32krn.exeO23 - Service: SQLAgent$SONY_MEDIAMGR - Unknown owner - C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE (file missing)O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe--End of file - 10156 bytes

Proszę o pomoc, pozdrawiam!

Udostępnij tę odpowiedź

Odnośnik do odpowiedzi
Udostępnij na innych stronach
pawelw111 Newbie

pawelw111

Opublikowano
Opublikowano (edytowane)

COMBOFIX

 

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!

.

 

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))

.

 

C:\Documents and Settings\Pawel\Ustawienia lokalne\Dane aplikacji\Microsoft\Windows Media\10.0\WMSDKNSD.XML

C:\WINDOWS\system32\MSINET.oca

 

.

((((((((((((((((((((((((( Files Created from 2008-04-26 to 2008-05-26 )))))))))))))))))))))))))))))))

.

 

2008-05-24 15:11 . 2008-05-24 15:11 <DIR> d-------- C:\Program Files\Trend Micro

2008-05-22 20:16 . 2008-05-22 20:18 <DIR> d-------- C:\Program Files\SetEditOctagon

2008-05-21 17:14 . 2008-05-26 13:01 54,156 --ah----- C:\WINDOWS\QTFont.qfn

2008-05-21 17:14 . 2008-05-21 17:14 1,409 --a------ C:\WINDOWS\QTFont.for

2008-05-19 19:51 . 2008-05-19 19:51 <DIR> d-------- C:\Program Files\AMR Converter Pro

2008-05-19 19:51 . 2008-05-19 19:51 <DIR> d--h----- C:\Documents and Settings\All Users\Dane aplikacji\{061E873A-35D1-410D-ACBA-06598D2409C9}

2008-05-14 21:53 . 2008-05-14 21:53 <DIR> d-------- C:\Program Files\Techland

2008-05-13 16:49 . 2008-05-13 16:49 1,122,304 --a------ C:\WINDOWS\system32\AdjMmsEng.dll

2008-05-12 21:40 . 2008-05-12 21:40 544,768 --a------ C:\WINDOWS\system32\AudioConverter.dll

2008-05-12 13:19 . 2008-05-12 13:19 <DIR> d-------- C:\Program Files\AnalogX

2008-05-10 21:29 . 2008-05-10 21:29 <DIR> d-------- C:\Program Files\TVAnts

2008-05-10 13:55 . 2008-05-10 22:31 <DIR> d-------- C:\Program Files\Mozilla Thunderbird

2008-05-10 13:55 . 2008-05-10 13:55 <DIR> d-------- C:\Documents and Settings\Pawel\Dane aplikacji\Thunderbird

2008-05-10 13:32 . 2008-05-10 13:38 <DIR> d-------- C:\Program Files\AnoMail

2008-05-10 12:47 . 2008-05-10 13:50 <DIR> d-------- C:\Program Files\Mailing List Deluxe

2008-05-10 12:41 . 2008-05-10 12:41 <DIR> d-------- C:\Program Files\Common Files\Macromedia

2008-05-06 15:04 . 2008-05-08 15:20 10 --a------ C:\WINDOWS\popcinfo.dat

2008-05-05 08:26 . 2008-05-05 08:26 <DIR> d--hs---- C:\found.000

2008-04-27 20:06 . 2008-04-27 20:06 <DIR> d-------- C:\Program Files\Easy Email Sender

2008-04-27 20:06 . 2001-04-01 00:34 327,680 --a------ C:\WINDOWS\system32\sortsol.dll

2008-04-27 20:06 . 2001-04-01 01:34 94,208 --a------ C:\WINDOWS\system32\SortSolX.ocx

 

.

(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2008-05-26 11:09 --------- d-----w C:\Documents and Settings\Pawel\Dane aplikacji\uTorrent

2008-05-26 10:52 --------- d-----w C:\Program Files\AutoConnect

2008-05-25 21:08 --------- d-----w C:\Program Files\foobar2000

2008-05-25 18:47 --------- d-----w C:\Documents and Settings\Pawel\Dane aplikacji\The Bat!

2008-05-24 12:50 --------- d---a-w C:\Documents and Settings\All Users\Dane aplikacji\TEMP

2008-05-23 19:59 --------- d-----w C:\Program Files\FlashGet

2008-05-23 14:44 --------- d-----w C:\Program Files\eMule

2008-05-23 11:25 107,888 ----a-w C:\WINDOWS\system32\CmdLineExt.dll

2008-05-21 16:06 --------- d--h--w C:\Program Files\InstallShield Installation Information

2008-05-16 21:05 737,280 ----a-w C:\WINDOWS\iun6002.exe

2008-05-14 15:03 --------- d-----w C:\Program Files\Edgard

2008-04-21 15:23 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard

2008-04-20 21:23 --------- d-----w C:\Documents and Settings\Pawel\Dane aplikacji\Skype

2008-04-12 19:22 --------- d-----w C:\Program Files\Motorola

2008-04-12 19:15 --------- d-----w C:\Program Files\Motorola Tools

2008-04-12 17:04 --------- d-----w C:\Documents and Settings\Pawel\Dane aplikacji\GanymedeNet

2008-04-12 16:15 --------- d-----w C:\Program Files\Ganymede

2008-03-31 16:01 --------- d-----w C:\Program Files\Neostrada TP

2008-03-31 15:41 338 ----a-w C:\Program Files\Neostrada

2008-03-27 18:29 --------- d-----w C:\Documents and Settings\Pawel\Dane aplikacji\MegauploadToolbar

2008-03-07 11:24 164,352 ----a-w C:\WINDOWS\system32\SpoonUninstall.exe

2008-02-27 18:38 1,419,232 ----a-w C:\WINDOWS\system32\wdfcoinstaller01005.dll

2007-08-06 14:47 8 -c--a-w C:\Program Files\VData.ndb

2007-01-06 22:44 774,144 ----a-w C:\Program Files\RngInterstitial.dll

.

 

------- Sigcheck -------

 

.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* empty entries & legit default entries are not shown

REGEDIT4

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"WeatherAlarmClock"="C:\Program Files\Weather Alarm Clock\WeatherAlarmClock.exe" [2007-03-31 16:52 733184]

"uTorrent"="C:\Program Files\uTorrent\utorrent.exe" [2008-02-27 09:09 219952]

"zRain"="C:\Program Files\Weather Alarm Clock\zRain.exe" [ ]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2004-03-23 22:10 335872]

"DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [2005-12-10 16:57 133016]

"nod32kui"="C:\Program Files\Eset\nod32kui.exe" [2006-12-22 15:03 950664]

"CTSysVol"="C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe" [2005-10-31 11:51 57344]

"UpdReg"="C:\WINDOWS\UpdReg.EXE" [2000-05-11 02:00 90112]

"errorkiller"="C:\Program Files\errorkiller\errorkiller.exe" [2006-07-11 16:54 6475776]

"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 13:35 90112]

"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 11:25 6731312]

"WooCnxMon"="C:\PROGRA~1\Neostrada TP\CnxMon.exe" [2003-10-16 19:07 24576]

"WOOWATCH"="C:\PROGRA~1\Neostrada TP\Watch.exe" [2003-10-16 19:07 20480]

"WOOTASKBARICON"="C:\PROGRA~1\Neostrada TP\TaskbarIcon.exe" [2003-10-16 19:07 53248]

"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2008-02-18 18:33 185896]

 

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2002-09-20 19:05 13312]

 

C:\Documents and Settings\Pawel\Menu Start\Programy\Akcesoria\Autostart\

Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-03-16 20:16:50 113664]

AutoConnect.lnk - C:\Program Files\AutoConnect\AutoConnect.exe [2006-12-03 01:14:03 310784]

 

C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\

DSLMON.lnk - C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe [2006-12-22 17:24:19 962661]

 

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks]

"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 13:55 77824]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]

C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL 2007-03-29 06:59 282624 C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"msacm.fraunhoferacm"= l3codecp.acm

"vidc.yv12"= yv12vfw.dll

"VIDC.X264"= x264vfw.dll

"VIDC.HFYU"= huffyuv.dll

"vidc.i263"= i263_32.drv

"msacm.l3fhg"= mp3fhg.acm

"msacm.divxa32"= divxa32.acm

"msacm.imc"= imc32.acm

"VIDC.CSCD"= camcodec.dll

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]

"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]

"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" -atboottime

"HP Software Update"="C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"

"HP Component Manager"="C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"

"HPDJ Taskbar Utility"=C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb10.exe

"HDInspector.exe"=C:\Program Files\Hard Drive Inspector\HDInspector.exe

"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized

"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"C:\\Program Files\\FlashFXP\\FlashFXP.exe"=

 

R0 hotcore;hotcore;C:\WINDOWS\System32\drivers\hotcore.sys [2005-07-22 13:07]

R0 sfsync03;StarForce Protection Synchronization Driver (version 3.x);C:\WINDOWS\System32\drivers\sfsync03.sys [2005-10-13 15:46]

R1 sdpiosys;sdpiosys;C:\WINDOWS\System32\drivers\sdpiosys.sys [2004-11-30 12:10]

R2 gearsec;gearsec;C:\WINDOWS\System32\gearsec.exe [2005-11-30 11:43]

R2 Vcs;Vcs support;C:\WINDOWS\System32\Drivers\Vcs.sys [2004-11-14 13:01]

R3 gameport;FM801 PCI Joystick;C:\WINDOWS\System32\DRIVERS\fmjoy.sys [2001-11-02 04:49]

R3 wdm_fm801;FM801 PCI Audio (WDM);C:\WINDOWS\System32\drivers\fm801.sys [2001-11-02 08:33]

S3 ggflt;SEMC USB Flash Driver Filter;C:\WINDOWS\System32\DRIVERS\ggflt.sys [2008-02-27 20:38]

S3 SER120;OTI Serial port driver;C:\WINDOWS\System32\DRIVERS\SER120.sys [2004-12-08 19:24]

S3 StMp3Rec;Player Recovery Device Control Driver;C:\WINDOWS\System32\Drivers\StMp3Rec.sys [2005-08-16 12:23]

 

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs

UxTuneUp

 

*Newly Created Service* - CATCHME

.

Contents of the 'Scheduled Tasks' folder

"2008-05-23 15:21:26 C:\WINDOWS\Tasks\1-Click Maintenance.job"

- C:\Program Files\TuneUp Utilities 2007\SystemOptimizer.exe

"2008-05-05 08:13:11 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"

- C:\Program Files\Apple Software Update\SoftwareUpdate.exe

.

**************************************************************************

 

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2008-05-26 13:24:30

Windows 5.1.2600 Dodatek Service Pack. 1 NTFS

 

scanning hidden processes ...

 

scanning hidden autostart entries ...

 

scanning hidden files ...

 

 

folder error: C:\DOCUME~1\Pawel\USTAWI~1\Temp\

 

scan completed successfully

hidden files: 0

 

**************************************************************************

.

Completion time: 2008-05-26 13:26:44

ComboFix-quarantined-files.txt 2008-05-26 11:26:29

 

Pre-Run: 763,727,872 bajtów wolnych

Post-Run: 760,832,000 bajtów wolnych

 

154

 

 

SDfix

 

 

SDFix: Version 1.185

Run by Pawel on 2008-05-26 at 13:40

 

Microsoft Windows XP [Wersja 5.1.2600]

Running From: C:\SDFix

 

Checking Services :

 

 

Restoring Windows Registry Values

Restoring Windows Default Hosts File

 

Rebooting

 

 

Checking Files :

 

No Trojan Files Found

 

 

 

 

 

 

Removing Temp Files

 

ADS Check :

 

 

 

Final Check :

 

catchme 0.3.1361.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2008-05-26 13:53:48

Windows 5.1.2600 Dodatek Service Pack. 1 NTFS

 

scanning hidden processes ...

 

scanning hidden services & system hive ...

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg]

"s1"=dword:04d0bb96

"s2"=dword:50ea67bd

"h0"=dword:00000002

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]

"p0"="C:\Program Files\Alcohol Soft\Alcohol 120\"

"h0"=dword:00000001

"ujdew"=hex:b4,32,57,22,c1,57,96,bc,7a,7a,84,c8,33,79,48,60,44,20,87,5e,2f,..

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]

"p0"="C:\Program Files\DAEMON Tools\"

"h0"=dword:00000000

"khjeh"=hex:c3,30,87,4f,9a,e3,07,71,da,df,d9,d3,8c,07,bd,d2,33,3a,49,b7,4c,..

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]

"a0"=hex:20,01,00,00,9c,27,1c,9d,3d,ae,15,9b,2c,a0,54,36,c0,38,b7,b9,f2,..

"khjeh"=hex:ce,26,d2,e8,24,22,11,b1,db,27,f0,d2,f1,37,d5,ca,4e,f7,3f,5f,76,..

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]

"khjeh"=hex:51,10,cb,bf,3e,a8,bb,c5,21,95,6c,8c,ad,27,c7,1d,af,4e,12,79,e3,..

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41]

"khjeh"=hex:db,0a,9c,aa,31,1b,29,cc,55,52,b5,37,cb,41,14,e7,83,d6,5d,44,b9,..

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42]

"khjeh"=hex:54,96,3b,a7,71,4f,09,e9,ff,29,53,22,aa,35,7d,67,cf,3e,fe,bb,67,..

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf43]

"khjeh"=hex:42,73,9e,ae,1d,5a,da,f5,02,29,2a,d4,79,99,f9,f7,9f,c8,bb,f9,51,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]

"p0"="C:\Program Files\Alcohol Soft\Alcohol 120\"

"h0"=dword:00000001

"ujdew"=hex:b4,32,57,22,c1,57,96,bc,7a,7a,84,c8,33,79,48,60,44,20,87,5e,2f,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]

"p0"="C:\Program Files\DAEMON Tools\"

"h0"=dword:00000000

"khjeh"=hex:c3,30,87,4f,9a,e3,07,71,da,df,d9,d3,8c,07,bd,d2,33,3a,49,b7,4c,..

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]

"a0"=hex:20,01,00,00,9c,27,1c,9d,3d,ae,15,9b,2c,a0,54,36,c0,38,b7,b9,f2,..

"khjeh"=hex:ce,26,d2,e8,24,22,11,b1,db,27,f0,d2,f1,37,d5,ca,4e,f7,3f,5f,76,..

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]

"khjeh"=hex:51,10,cb,bf,3e,a8,bb,c5,21,95,6c,8c,ad,27,c7,1d,af,4e,12,79,e3,..

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41]

"khjeh"=hex:db,0a,9c,aa,31,1b,29,cc,55,52,b5,37,cb,41,14,e7,83,d6,5d,44,b9,..

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42]

"khjeh"=hex:54,96,3b,a7,71,4f,09,e9,ff,29,53,22,aa,35,7d,67,cf,3e,fe,bb,67,..

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf43]

"khjeh"=hex:42,73,9e,ae,1d,5a,da,f5,02,29,2a,d4,79,99,f9,f7,9f,c8,bb,f9,51,..

 

scanning hidden registry entries ...

 

scanning hidden files ...

 

scan completed successfully

hidden processes: 0

hidden services: 0

hidden files: 0

 

 

Remaining Services :

 

 

 

 

Authorized Application Key Export:

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"C:\\Program Files\\FlashFXP\\FlashFXP.exe"="C:\\Program Files\\FlashFXP\\FlashFXP.exe:*:Enabled:FlashFXP v3"

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

"C:\\Program Files\\FlashFXP\\FlashFXP.exe"="C:\\Program Files\\FlashFXP\\FlashFXP.exe:*:Enabled:FlashFXP v3"

 

Remaining Files :

 

 

File Backups: - C:\SDFix\backups\backups.zip

 

Files with Hidden Attributes :

 

Tue 30 Oct 2007 0 A..H. --- "C:\WINDOWS\~memsys.tmp"

Fri 27 Feb 2004 233,472 A..H. --- "C:\Program Files\Image-Line\FL Studio 7\REX Shared Library.dll"

 

Finished!

Edytowane przez pawelw111

Udostępnij tę odpowiedź

Odnośnik do odpowiedzi
Udostępnij na innych stronach
pawelw111 Newbie

pawelw111

Opublikowano
Opublikowano

Sophos Anti-Virus

Version 4.29.0 [Win32/Intel]

Virus data version 4.29E, May 2008

Includes detection for 402300 viruses, trojans and worms

Copyright © 1989-2008 Sophos Plc, www.sophos.com

 

System time 14:50:33, System date 26 May 2008

Command line qualifiers are: -f -remove -nc -nb -dn --stop-scan -idedir=C:\SDFix\IDE -p=C:\SDFix\SophosReport.txt

 

IDE directory is: C:\SDFix\IDE

 

File tvido-a.ide is older than 90 days

File chir-b.ide is older than 90 days

File tiny-dc.ide is older than 90 days

File autor-bd.ide is older than 90 days

File autor-be.ide is older than 90 days

File sdbo-djz.ide is older than 90 days

File cimuz-cv.ide is older than 90 days

File gampas-q.ide is older than 90 days

File virut-x.ide is older than 90 days

File he4hoo-e.ide is older than 90 days

File daymay-a.ide is older than 90 days

File injec-cb.ide is older than 90 days

File keylo-jz.ide is older than 90 days

File ntroo-cv.ide is older than 90 days

File dwnl-hav.ide is older than 90 days

File silly-bu.ide is older than 90 days

File agen-gpc.ide is older than 90 days

File bankd-dg.ide is older than 90 days

File pushu-h.ide is older than 90 days

File psw-es.ide is older than 90 days

File psw-et.ide is older than 90 days

File rexplo-b.ide is older than 90 days

File looke-ec.ide is older than 90 days

File ldpin-ro.ide is older than 90 days

File dorf-aw.ide is older than 90 days

File agen-gph.ide is older than 90 days

File banlo-ex.ide is older than 90 days

File rieve-a.ide is older than 90 days

File vb-dyr.ide is older than 90 days

File mailb-ck.ide is older than 90 days

File cyberl-a.ide is older than 90 days

File spwa-gen.ide is older than 90 days

File psyme-hm.ide is older than 90 days

File dwnl-hba.ide is older than 90 days

File zbot-d.ide is older than 90 days

File dload-bl.ide is older than 90 days

File injec-cc.ide is older than 90 days

File alman-e.ide is older than 90 days

File autor-bg.ide is older than 90 days

File autom-d.ide is older than 90 days

File dref-b.ide is older than 90 days

File agen-gpp.ide is older than 90 days

File zbot-e.ide is older than 90 days

File defusx-a.ide is older than 90 days

File agen-gpr.ide is older than 90 days

File tinydl-r.ide is older than 90 days

File downld-p.ide is older than 90 days

File agen-gpv.ide is older than 90 days

File zonie-a.ide is older than 90 days

File vb-dys.ide is older than 90 days

File silly-bw.ide is older than 90 days

File pushdo-h.ide is older than 90 days

File sheldo-a.ide is older than 90 days

File smal-eld.ide is older than 90 days

File agen-gpx.ide is older than 90 days

File bifro-vn.ide is older than 90 days

File looke-ed.ide is older than 90 days

File autor-bk.ide is older than 90 days

File swizzo-c.ide is older than 90 days

File dloa-bim.ide is older than 90 days

File iespy-f.ide is older than 90 days

File cblade-h.ide is older than 90 days

File pasala-a.ide is older than 90 days

File dloa-bio.ide is older than 90 days

File messy-a.ide is older than 90 days

File msnemy-a.ide is older than 90 days

File otakbo-a.ide is older than 90 days

File forbo-gv.ide is older than 90 days

File bckd-qlw.ide is older than 90 days

File smal-ele.ide is older than 90 days

File braban-h.ide is older than 90 days

File cabat-d.ide is older than 90 days

File ntroo-cz.ide is older than 90 days

File dropp-tv.ide is older than 90 days

File agen-gmy.ide is older than 90 days

File autor-bo.ide is older than 90 days

File pushin-a.ide is older than 90 days

File spy-aj.ide is older than 90 days

File agen-gpz.ide is older than 90 days

File bront-ds.ide is older than 90 days

File bobax-eh.ide is older than 90 days

File grumbl-a.ide is older than 90 days

File tibs-ub.ide is older than 90 days

File joom-a.ide is older than 90 days

File pccli-lj.ide is older than 90 days

File autor-bp.ide is older than 90 days

File rbot-gwj.ide is older than 90 days

File bront-dt.ide is older than 90 days

File onlin-an.ide is older than 90 days

File fakev-ar.ide is older than 90 days

File baload-a.ide is older than 90 days

File cashgr-u.ide is older than 90 days

Using IDE file autome-a.ide

Using IDE file bront-du.ide

Using IDE file silly-by.ide

Using IDE file pccli-ll.ide

Using IDE file zapch-dz.ide

Using IDE file killfi-j.ide

Using IDE file ircb-aaq.ide

Using IDE file agen-gqo.ide

Using IDE file sohan-as.ide

Using IDE file meiti-a.ide

Using IDE file zlob-j.ide

Using IDE file dwnl-hbk.ide

Using IDE file looke-ee.ide

Using IDE file silly-bz.ide

Using IDE file proxy-ig.ide

Using IDE file sdbo-dkb.ide

Using IDE file dwnl-hbl.ide

Using IDE file banhos-i.ide

Using IDE file poison-r.ide

Using IDE file winsat-b.ide

Using IDE file ntroo-da.ide

Using IDE file bagle-tq.ide

Using IDE file downld-t.ide

Using IDE file dload-br.ide

Using IDE file bckd-qly.ide

Using IDE file wlload-a.ide

Using IDE file zbot-h.ide

Using IDE file agen-gqv.ide

Using IDE file vbsmai-a.ide

Using IDE file mdro-bqg.ide

Using IDE file looke-ef.ide

Using IDE file zlobdr-h.ide

Using IDE file anpir-a.ide

Using IDE file scrapk-a.ide

Using IDE file exepag-a.ide

Using IDE file sillyw-a.ide

Using IDE file gina-al.ide

Using IDE file alimik-a.ide

Using IDE file sdbo-dkd.ide

Using IDE file vb-dyv.ide

Using IDE file agen-grd.ide

Using IDE file agen-gre.ide

Using IDE file repet-a.ide

Using IDE file agen-grg.ide

Using IDE file renos-ap.ide

Using IDE file virfir-a.ide

Using IDE file agen-gri.ide

Using IDE file rjump-j.ide

Using IDE file autor-bc.ide

Using IDE file chmdro-b.ide

Using IDE file agen-grj.ide

Using IDE file pakabo-a.ide

Using IDE file agen-grk.ide

Using IDE file bho-ez.ide

Using IDE file zlob-ail.ide

Using IDE file agen-grl.ide

Using IDE file batsec-a.ide

Using IDE file bckd-qmd.ide

Using IDE file dloa-biz.ide

Using IDE file autor-by.ide

Using IDE file bckd-qme.ide

Using IDE file agen-grq.ide

Using IDE file agen-grr.ide

Using IDE file dload-bu.ide

Using IDE file injec-cd.ide

Using IDE file bagle-tm.ide

Using IDE file agen-grt.ide

Using IDE file anuir-a.ide

Using IDE file satin-a.ide

Using IDE file bdoo-ajn.ide

Using IDE file agent-e.ide

Using IDE file dloa-bjc.ide

Using IDE file obfjs-b.ide

Using IDE file tvido-b.ide

Using IDE file pws-aqf.ide

Using IDE file cheuko-d.ide

Using IDE file rbot-gwl.ide

Using IDE file agen-gsb.ide

Using IDE file click-es.ide

Using IDE file munfor-b.ide

Using IDE file tehni-a.ide

Using IDE file zlob-aiw.ide

Using IDE file dowadv-c.ide

Using IDE file bagz-j.ide

Using IDE file bronto-x.ide

Using IDE file autor-bz.ide

Using IDE file dnsch-mg.ide

Using IDE file slolan-a.ide

Using IDE file fomur-a.ide

Using IDE file agen-gsh.ide

Using IDE file agen-gsj.ide

Using IDE file tanto-i.ide

Using IDE file zlob-aiz.ide

Using IDE file push-gen.ide

Using IDE file mumawo-a.ide

Using IDE file popupp-a.ide

Using IDE file badsrc-a.ide

Using IDE file servu-fg.ide

Using IDE file rootk-cd.ide

Using IDE file agen-gst.ide

Using IDE file agen-gsv.ide

Using IDE file zlob-aja.ide

Using IDE file prora-do.ide

Using IDE file autor-ca.ide

Using IDE file rbot-gwn.ide

Using IDE file crypdr-a.ide

Using IDE file exchan-b.ide

Using IDE file shodi-i.ide

Using IDE file agen-gtb.ide

Using IDE file bagle-tr.ide

Using IDE file rkmail-a.ide

Using IDE file shutdo-h.ide

Using IDE file silly-cb.ide

Using IDE file ntroo-dd.ide

Using IDE file pws-aqp.ide

Using IDE file autor-cd.ide

Using IDE file zbot-j.ide

Using IDE file autor-ce.ide

Using IDE file banlo-b.ide

Using IDE file dloa-bjk.ide

Using IDE file swizz-nq.ide

Using IDE file fujac-at.ide

Using IDE file pccli-lx.ide

Using IDE file agen-gti.ide

Using IDE file grum-i.ide

Using IDE file pws-aqq.ide

Using IDE file drop-l.ide

Using IDE file dloa-bjm.ide

Using IDE file espole-a.ide

Using IDE file psyme-ht.ide

Using IDE file kobak-a.ide

Using IDE file dloa-bjo.ide

Using IDE file sanji-a.ide

Using IDE file silly-cc.ide

Using IDE file bckd-qmk.ide

Using IDE file zaap-a.ide

Using IDE file bckd-qml.ide

Using IDE file dwnl-hbu.ide

Using IDE file dnsch-mh.ide

Using IDE file pdfex-e.ide

Using IDE file agen-gtr.ide

Using IDE file autor-ch.ide

Using IDE file bank-ele.ide

Using IDE file aspshe-a.ide

Using IDE file bckd-qmo.ide

Using IDE file lowzo-ea.ide

Using IDE file banlo-fb.ide

Using IDE file bizv-zla.ide

Using IDE file vb-dyy.ide

Using IDE file prora-dq.ide

Using IDE file pushdo-i.ide

Using IDE file detna-ad.ide

Using IDE file sdbo-dkg.ide

Using IDE file vbbot-ao.ide

Using IDE file encpk-cy.ide

Using IDE file tibs-uc.ide

Using IDE file drop-n.ide

Using IDE file tibs-ud.ide

Using IDE file hupig-sz.ide

Using IDE file macswp-b.ide

Using IDE file bank-ekz.ide

Using IDE file oscor-m.ide

Using IDE file spywa-ax.ide

Using IDE file starte-h.ide

Using IDE file honk-g.ide

Using IDE file autor-cn.ide

Using IDE file vb-dyz.ide

Using IDE file flood-im.ide

Using IDE file nymod-a.ide

Using IDE file backdr-s.ide

Using IDE file ldpin-rq.ide

Using IDE file agen-gum.ide

Using IDE file bifro-vq.ide

Using IDE file silly-ce.ide

Using IDE file zlob-ajn.ide

Using IDE file agen-guo.ide

Using IDE file killa-el.ide

Using IDE file agen-gup.ide

Using IDE file graybi-p.ide

Using IDE file dorf-ba.ide

Using IDE file tileb-kt.ide

Using IDE file mdro-bre.ide

Using IDE file fakea-ax.ide

Using IDE file legm-ars.ide

Using IDE file agen-gus.ide

Using IDE file badmid-a.ide

Using IDE file psyme-hx.ide

Using IDE file silly-cf.ide

Using IDE file agen-guu.ide

Using IDE file agen-guv.ide

Using IDE file kapuce-c.ide

Using IDE file fakea-az.ide

Using IDE file fursto-a.ide

Using IDE file onlin-ar.ide

Using IDE file bckd-qmu.ide

Using IDE file dloa-bkf.ide

Using IDE file sysloc-a.ide

Using IDE file agen-gvf.ide

Using IDE file piltot-a.ide

Using IDE file vbdrop-f.ide

Using IDE file hupig-ta.ide

Using IDE file fakea-ba.ide

Using IDE file fakeav-j.ide

Using IDE file mdro-bri.ide

Using IDE file bckd-qmv.ide

Using IDE file spycor-a.ide

Using IDE file dorf-bc.ide

Using IDE file dorf-bd.ide

Using IDE file calif-a.ide

Using IDE file dwnl-hce.ide

Using IDE file lydra-ad.ide

Using IDE file dwnl-zll.ide

Using IDE file vb-dzc.ide

Using IDE file ircb-abi.ide

Using IDE file encloa-b.ide

Using IDE file delf-fad.ide

Using IDE file bifro-vt.ide

Using IDE file ircb-abb.ide

Using IDE file agen-gvl.ide

Using IDE file bakave-a.ide

Using IDE file ifram-aa.ide

Using IDE file agen-gvk.ide

Using IDE file smal-eli.ide

Using IDE file poison-t.ide

Using IDE file isetsp-c.ide

Using IDE file psyme-ib.ide

Using IDE file ircb-abc.ide

Using IDE file bifro-vu.ide

Using IDE file hupig-tb.ide

Using IDE file autoin-j.ide

Using IDE file autor-cw.ide

Using IDE file bank-elf.ide

Using IDE file psyme-id.ide

Using IDE file autor-cx.ide

Using IDE file bho-ff.ide

Using IDE file bkdoor-j.ide

Using IDE file vb-dze.ide

Using IDE file fakev-aw.ide

Using IDE file zlob-aka.ide

Using IDE file dorfht-c.ide

Using IDE file agen-gvw.ide

Using IDE file ircb-abj.ide

Using IDE file agen-gvx.ide

Using IDE file delf-fah.ide

Using IDE file agen-gwa.ide

Using IDE file pdfex-g.ide

Using IDE file autor-cz.ide

Using IDE file zlob-akd.ide

Using IDE file ircb-abk.ide

Using IDE file drop-zlb.ide

Using IDE file bifros-j.ide

Using IDE file rbot-gwt.ide

Using IDE file keylo-kc.ide

Using IDE file silly-cg.ide

Using IDE file dwnl-hck.ide

Using IDE file fakeav-n.ide

Using IDE file banlo-fe.ide

Using IDE file mdro-bro.ide

Using IDE file autor-de.ide

Using IDE file bank-c.ide

Using IDE file vb-dzh.ide

Using IDE file rbot-gwv.ide

Using IDE file netsk-bs.ide

Using IDE file xorer-d.ide

Using IDE file autor-dg.ide

Using IDE file adcli-et.ide

Using IDE file fakeav-p.ide

Using IDE file autor-dh.ide

Using IDE file tibs-uf.ide

Using IDE file autor-di.ide

Using IDE file autor-dj.ide

Using IDE file rbot-gww.ide

Using IDE file passte-a.ide

Using IDE file mdro-brq.ide

Using IDE file mdro-brr.ide

Using IDE file vb-dzi.ide

Using IDE file banc-bdy.ide

Using IDE file srizbi-a.ide

Using IDE file injec-ch.ide

Using IDE file dorf-be.ide

Using IDE file tiotua-p.ide

Using IDE file pws-aqz.ide

Using IDE file ambler-e.ide

Using IDE file petbot-a.ide

Using IDE file autor-dk.ide

Using IDE file mdro-brt.ide

Using IDE file looke-eg.ide

Using IDE file rootk-ck.ide

Using IDE file autor-dl.ide

Using IDE file dwnl-hcp.ide

Using IDE file rkagen-e.ide

Using IDE file fanbot-g.ide

Using IDE file mdro-brw.ide

Using IDE file malas-b.ide

Using IDE file spambo-b.ide

Using IDE file autor-do.ide

Using IDE file keylo-ke.ide

Using IDE file bank-eli.ide

Using IDE file gampas-r.ide

Using IDE file servu-fh.ide

Using IDE file dloa-bla.ide

Using IDE file mdro-bry.ide

Using IDE file mdro-brz.ide

Using IDE file zlob-ako.ide

Using IDE file xiao-a.ide

Using IDE file fakev-az.ide

Using IDE file vb-dzk.ide

Using IDE file banspy-e.ide

Using IDE file agen-gxf.ide

Using IDE file poison-v.ide

Using IDE file inja-gen.ide

Using IDE file agen-gxg.ide

Using IDE file ntroo-dg.ide

Using IDE file corefl-m.ide

Using IDE file farf-gen.ide

Using IDE file bckd-qnf.ide

Using IDE file ircb-abm.ide

Using IDE file linea-dl.ide

Using IDE file zlob-akp.ide

Using IDE file conho-am.ide

Using IDE file dwnl-hcq.ide

Using IDE file spy-am.ide

Using IDE file melt-gen.ide

Using IDE file buzus-a.ide

Using IDE file mats-gen.ide

Using IDE file ifram-ab.ide

Using IDE file liger-a.ide

Using IDE file agen-gxq.ide

Using IDE file goldu-gf.ide

Using IDE file merc-a.ide

Using IDE file porpup-a.ide

Using IDE file bckd-qnh.ide

Using IDE file dzan-e.ide

Using IDE file deltre-x.ide

Using IDE file rkdrop-a.ide

Using IDE file mdro-bsc.ide

Using IDE file dorf-bg.ide

Using IDE file codeba-a.ide

Using IDE file downld-y.ide

Using IDE file agen-gxz.ide

Using IDE file boost-a.ide

Using IDE file downld-z.ide

Using IDE file killa-ep.ide

Using IDE file killf-bt.ide

Using IDE file agen-gyd.ide

Using IDE file bagle-ts.ide

Using IDE file shahro-a.ide

Using IDE file dwnl-hcx.ide

Using IDE file dzan-f.ide

Using IDE file sdbo-dkk.ide

Using IDE file dloa-bli.ide

Using IDE file socks-d.ide

Using IDE file lingos-e.ide

Using IDE file pdfex-f.ide

Using IDE file kbot-a.ide

Using IDE file heular-a.ide

Using IDE file wimad-e.ide

Using IDE file killa-er.ide

Using IDE file jshell-a.ide

Using IDE file autoin-k.ide

Using IDE file bank-elo.ide

Using IDE file irrita-a.ide

Using IDE file banlo-fh.ide

Using IDE file agen-gyt.ide

Using IDE file ircb-abp.ide

Using IDE file salit-ao.ide

Using IDE file rootk-cn.ide

Using IDE file angel-c.ide

Using IDE file spyage-i.ide

Using IDE file maha-t.ide

Using IDE file agen-gyy.ide

Using IDE file shark-d.ide

Using IDE file pushdo-j.ide

Using IDE file thili-a.ide

Using IDE file socks-f.ide

Using IDE file autor-dw.ide

Using IDE file fakev-bb.ide

Using IDE file shlbac-a.ide

Using IDE file vb-dzo.ide

Using IDE file agen-glt.ide

Using IDE file zbot-n.ide

Using IDE file danmec-y.ide

Using IDE file salit-ap.ide

Using IDE file autoit-h.ide

Using IDE file sohan-av.ide

Using IDE file banhos-n.ide

Using IDE file banspy-f.ide

Using IDE file loxar-l.ide

Using IDE file iyus-v.ide

Using IDE file sohan-ax.ide

Using IDE file autor-dy.ide

Using IDE file vimes-a.ide

Using IDE file agen-gzj.ide

Using IDE file servu-fj.ide

Using IDE file zlobar-b.ide

Using IDE file autor-ea.ide

Using IDE file autor-eb.ide

Using IDE file sohan-ay.ide

Using IDE file psyme-iy.ide

Using IDE file zipwir-a.ide

Using IDE file jshlex-a.ide

Using IDE file mdro-brh.ide

Using IDE file zlob-akv.ide

Using IDE file mdro-bsj.ide

Using IDE file tileb-ku.ide

Using IDE file zapch-ea.ide

Using IDE file fakev-be.ide

Using IDE file traf-a.ide

Using IDE file namor-a.ide

Using IDE file dwnl-hdr.ide

Using IDE file dloa-blt.ide

Using IDE file mdro-bsk.ide

Using IDE file hupig-tc.ide

Using IDE file click-eu.ide

Using IDE file ntroo-di.ide

Using IDE file agen-gys.ide

Using IDE file agen-gzq.ide

Using IDE file tileb-kv.ide

Using IDE file dorf-bl.ide

Using IDE file zbot-q.ide

Using IDE file vb-dzq.ide

Using IDE file bdoo-alb.ide

Using IDE file banc-beb.ide

Using IDE file skintr-a.ide

Using IDE file mariof-a.ide

Using IDE file psws-gen.ide

Using IDE file autor-ee.ide

Using IDE file agen-gzv.ide

Using IDE file volume-a.ide

Using IDE file malas-e.ide

Using IDE file bckd-qnp.ide

Using IDE file ircb-abu.ide

Using IDE file glupzy-c.ide

Using IDE file nitfun-a.ide

Using IDE file ntroo-dn.ide

Using IDE file pws-aqb.ide

Using IDE file onlin-at.ide

Using IDE file dloa-blu.ide

Using IDE file agen-had.ide

Using IDE file mariof-b.ide

Using IDE file keylo-jn.ide

Using IDE file sohan-az.ide

Using IDE file bckd-qnq.ide

Using IDE file autor-eg.ide

Using IDE file ircb-abw.ide

Using IDE file poluma-a.ide

Using IDE file hoplit-a.ide

Using IDE file zbot-t.ide

Using IDE file vanbot-s.ide

 

Full Scanning

 

>>> Virus 'Mal/Packer' found in file C:\Program Files\MyPortal\Speed-X\SpeedX.exe

Removal successful

>>> Virus 'Mal/Behav-034' found in file C:\Program Files\SopCast\ActiveX\SopCore.ocx

Removal successful

>>> Virus 'Mal/Packer' found in file C:\System Volume Information\_restore{FB56F0AF-21A5-4ABD-9BEC-01B16934A36C}\RP1\A0000122.exe

Removal successful

>>> Virus 'Mal/Behav-034' found in file C:\System Volume Information\_restore{FB56F0AF-21A5-4ABD-9BEC-01B16934A36C}\RP1\A0000123.ocx

Removal successful

Could not open C:\WINDOWS\system32\drivers\dtscsi.sys

Could not open C:\WINDOWS\system32\drivers\sptd.sys

Could not open C:\WINDOWS\system32\drivers\vaxscsi.sys

>>> Virus 'Mal/EncPk-BW' found in file D:\DWN\WAR\Warblade_v1.2e_PLUS_10_TRAINER_(WWW.LOMALKA.ORG)\pztrain.exe

Removal successful

>>> Virus 'Mal/EncPk-BW' found in file D:\System Volume Information\_restore{FB56F0AF-21A5-4ABD-9BEC-01B16934A36C}\RP1\A0000130.exe

Removal successful

Could not check E:\Downloads\FSFA\KsiĄľki ZAKAZANE\Bestie Konca Czasow.doc (corrupt)

Could not check E:\Downloads\Paczuszka do szkoy\POLSKI\r˘ľne\Krajobraz.doc (corrupt)

Could not check E:\Downloads\Paczuszka do szkoy\POLSKI\r˘ľne\Nurt troski patriotyczne w tworczosci poetow i pisarzy staro.doc (corrupt)

>>> Virus 'Troj/Keygen-BE' found in file E:\Downloads\TuneUP 2007\keygen TuneUp Utilities 2007.exe

Removal successful

>>> Virus 'Mal/Packer' found in file E:\Downloads\TuneUP 2007\patch.exe

Removal failed

>>> Virus 'Mal/Packer' found in file E:\DWN\SpeedX 1.1.3\SpeedX.exe\FILE:0001

Removal successful

>>> Virus 'Mal/KeyGen-A' found in file E:\DWN\Telefon2\Aplikacje\WordMax\wm_keygen.exe

Removal successful

>>> Virus 'Mal/Packer' found in file E:\Programy\123 Flash Menu V1.5.1 + full templates + keygen\keygen\keygen.exe

Removal failed

>>> Virus 'Mal/KeyGen-A' found in file E:\Programy\Sony Media (Vegas 6, Sound Forge 8, Dvd Architect 3, Cd Architect 5, Acid Pro 5 Music Studio 5) Incl Keygen\Sony ACID Pro 5.0\PARADOX KeyGen\keygen.exe

Removal successful

>>> Virus 'Troj/Keygen-BE' found in file E:\System Volume Information\_restore{FB56F0AF-21A5-4ABD-9BEC-01B16934A36C}\RP1\A0000132.exe

Removal successful

>>> Virus 'Mal/Packer' found in file E:\System Volume Information\_restore{FB56F0AF-21A5-4ABD-9BEC-01B16934A36C}\RP1\A0000133.exe

Removal failed

>>> Virus 'Mal/Packer' found in file E:\System Volume Information\_restore{FB56F0AF-21A5-4ABD-9BEC-01B16934A36C}\RP1\A0000134.exe\FILE:0001

Removal successful

>>> Virus 'Mal/KeyGen-A' found in file E:\System Volume Information\_restore{FB56F0AF-21A5-4ABD-9BEC-01B16934A36C}\RP1\A0000135.exe

Removal successful

>>> Virus 'Mal/Packer' found in file E:\System Volume Information\_restore{FB56F0AF-21A5-4ABD-9BEC-01B16934A36C}\RP1\A0000136.exe

Removal failed

>>> Virus 'Mal/KeyGen-A' found in file E:\System Volume Information\_restore{FB56F0AF-21A5-4ABD-9BEC-01B16934A36C}\RP1\A0000155.exe

Removal successful

Could not check F:\Downloads\KsiĄľki ZAKAZANE\Bestie Konca Czasow.doc (corrupt)

>>> Virus 'Mal/Packer' found in file F:\Programy\Allegro Megapack\CruxUnlocker_v201_Setup.exe\FILE:0001

Removal successful

Could not check F:\Programy\Allegro Megapack\KsiĄľki ZAKAZANE\Bestie Konca Czasow.doc (corrupt)

>>> Virus 'Mal/KeyGen-A' found in file F:\Programy\Kerio_Personal_Firewall_v4.3\Keygen\keriokey.exe

Removal successful

>>> Virus 'Mal/Packer' found in file F:\System Volume Information\_restore{FB56F0AF-21A5-4ABD-9BEC-01B16934A36C}\RP1\A0000157.exe\FILE:0001

Removal successful

>>> Virus 'Mal/KeyGen-A' found in file F:\System Volume Information\_restore{FB56F0AF-21A5-4ABD-9BEC-01B16934A36C}\RP1\A0000158.exe

Removal successful

>>> Virus 'Mal/Packer' found in file K:\Pruduction Music\Inne\app\Yamaha.Vocaloid.LOLA.v1.0.WORKING.iSO-DELiRiUM + Update 1.1.2\keymaker.exe

Removal successful

>>> Virus 'Mal/Packer' found in file K:\System Volume Information\_restore{FB56F0AF-21A5-4ABD-9BEC-01B16934A36C}\RP1\A0000159.exe

Removal successful

 

7 boot sectors swept.

67805 files swept in 3 hours, 54 minutes and 45 seconds.

8 errors were encountered.

24 viruses were discovered.

24 files out of 67805 were infected.

Please send infected samples to Sophos for analysis.

For advice consult www.sophos.com, email support@sophos.com

or telephone +44 1235 559933

Ending Sophos Anti-Virus.

Udostępnij tę odpowiedź

Odnośnik do odpowiedzi
Udostępnij na innych stronach

Dołącz do dyskusji

Możesz dodać zawartość już teraz a zarejestrować się później. Jeśli posiadasz już konto, zaloguj się aby dodać zawartość za jego pomocą.

Gość
Dodaj odpowiedź do tematu...

×   Wklejono zawartość z formatowaniem.   Przywróć formatowanie

  Dozwolonych jest tylko 75 emoji.

×   Odnośnik został automatycznie osadzony.   Przywróć wyświetlanie jako odnośnik

×   Przywrócono poprzednią zawartość.   Wyczyść edytor

×   Nie możesz bezpośrednio wkleić grafiki. Dodaj lub załącz grafiki z adresu URL.

Ładowanie
×
Tematy
×
×
  • Dodaj nową pozycję...