Tam gdzie usunięto sam ponumerowałem , więc tak :
Pierwsze 4 - są od internet download menager - raczej clear.
nr 5 - Jest to od ESL WIre - taki program - 100% clear
nr 6 - program do znajdywania licencji nod - 100% clear
Nr 7 i 8 , Własnie co to może być ? Na jakimś forze widzaiłem , że to nie wirusy , ale tu mam do was pytanie co o tym sądzicie ? czy usuwać to.
Dodam , żę ESET nood nic nie wykrył mi (chociaż pierwsze 6 nie wiem dlaczego combofix mi usuną ... dlaczego on tak dziwnie działa?)
Z góry dziękuję za info!.
ComboFix 12-01-23.02 - Phantom 2012-01-25 21:15:25.9.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1250.48.1045.18.2037.1331 [GMT 1:00]
Uruchomiony z: c:\documents and settings\Phantom\Pulpit\ComboFix.exe
AV: ESET Smart Security 5.0 *Enabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: AVG Firewall *Disabled* {8decf618-9569-4340-b34a-d78d28969b66}
FW: Zapora osobista *Enabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
* Rezydentny antywirus jest aktywny
.
.
.
((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
1 c:\documents and settings\All Users\Dane aplikacji\TEMP
2 c:\documents and settings\Phantom\Dane aplikacji\IDM\idmmzcc3
3 c:\documents and settings\Phantom\Dane aplikacji\IDM\idmmzcc3\chrome.manifest
4 c:\documents and settings\Phantom\Dane aplikacji\IDM\idmmzcc3\components\idmmzcc.dll
5 c:\program files\Common Files\WireHelpSvc.exe
6 c:\program files\TNod User & Password Finder\TNODUP.exe
7 c:\windows\COM+.log
8 c:\windows\XSxS
.
.
((((((((((((((((((((((((((((((((((((((( Sterowniki/Usługi )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_WireHelpSvc
-------\Service_WireHelpSvc
.
.
((((((((((((((((((((((((( Pliki utworzone od 2011-12-25 do 2012-01-25 )))))))))))))))))))))))))))))))
.
.
2012-01-25 12:15 . 2012-01-25 12:15 -------- d-----w- c:\program files\Xenocode
2012-01-25 12:12 . 2012-01-25 12:12 -------- d-----w- c:\windows\system32\wbem\Repository
2012-01-25 12:12 . 2012-01-25 12:12 -------- d-----w- c:\documents and settings\Phantom\Dane aplikacji\IDM
2012-01-23 22:47 . 2012-01-23 22:54 -------- d-----w- c:\program files\20Dollars2Surf
2012-01-23 22:47 . 2004-08-05 12:00 59904 ----a-w- c:\windows\system32\wbemdisp.tlb
2012-01-23 11:20 . 2012-01-23 11:20 -------- d-----w- c:\documents and settings\Phantom\Dane aplikacji\FastStone
2012-01-18 18:56 . 2012-01-18 18:56 108144 ----a-w- c:\windows\system32\CmdLineExt.dll
2012-01-16 12:50 . 2012-01-16 12:50 -------- d-----w- c:\program files\Avanquest update
2012-01-15 22:02 . 2012-01-15 22:02 -------- d-----w- c:\program files\18 Wheels of Steel Pedal to the Metal
2012-01-13 21:15 . 2012-01-13 21:15 1 ----a-w- c:\windows\system32\SI.bin
2012-01-13 15:16 . 2012-01-13 15:16 -------- d-----w- c:\windows\system32\URTTEMP
2012-01-13 14:37 . 2012-01-13 14:37 -------- d-----w- c:\windows\direct 2010
2012-01-12 11:37 . 2009-09-09 08:43 210352 ----a-w- c:\windows\system32\idmmbc.dll
2012-01-10 14:41 . 2012-01-10 14:41 -------- d-----w- c:\program files\Common Files\Invictus
2012-01-09 16:41 . 2000-10-25 16:09 139264 ----a-w- c:\windows\system32\fsgscom.dll
2012-01-07 14:59 . 2012-01-07 14:59 -------- d-----w- c:\program files\FastStone Image Viewer
2012-01-05 21:59 . 2012-01-25 20:17 -------- d-----w- c:\program files\TNod User & Password Finder
2012-01-05 21:56 . 2012-01-05 21:56 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\ESET
2012-01-05 13:08 . 2012-01-05 13:08 548864 ----a-w- c:\program files\Mozilla Firefox\msvcp80.dll
2012-01-05 13:08 . 2012-01-05 13:08 479232 ----a-w- c:\program files\Mozilla Firefox\msvcm80.dll
2012-01-05 13:08 . 2012-01-05 13:08 43992 ----a-w- c:\program files\Mozilla Firefox\mozutils.dll
2012-01-05 13:08 . 2012-01-05 13:08 626688 ----a-w- c:\program files\Mozilla Firefox\msvcr80.dll
2012-01-01 19:00 . 2012-01-01 19:00 -------- d-----w- c:\documents and settings\Phantom\Dane aplikacji\Systweak
2012-01-01 19:00 . 2012-01-01 19:00 -------- d-----w- c:\program files\RegClean Pro
2011-12-29 12:39 . 2011-12-29 12:39 -------- d-sh--w- c:\documents and settings\All Users\Dane aplikacji\KRSHistory
2011-12-27 20:26 . 2009-02-10 15:23 82320 ----a-w- c:\windows\system32\drivers\ISODrive.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-24 12:50 . 2011-09-12 08:16 836496 ----a-w- c:\windows\system32\drivers\ESLWireACD.sys
2012-01-07 23:31 . 2011-09-28 10:28 100111 ----a-w- c:\windows\MystikifyUninst.exe
2011-12-08 23:55 . 2011-09-11 20:49 16608 ----a-w- c:\windows\gdrv.sys
2011-11-04 21:21 . 2011-12-26 00:41 230920 ----a-w- c:\windows\system32\EPWZCmnCtrl.dll
2012-01-05 13:08 . 2011-10-25 12:44 121816 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DF925EF3-7A87-44E4-9CAF-8D7B280BF616}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2011-05-30 14:50 21864 ----a-w- c:\program files\Internet Download Manager\IDMShellExt.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ESL Wire"="c:\program files\EslWire\wire.exe" [2012-01-24 2029568]
"IDMan"="e:\różne\IDM.5.19.3.Portable\IDM.5.19.3.Portable [up.dla.Exsite.pl]\IDM.5.19.3.Portable [up.dla.Exsite.pl]\IDMan.exe" [2010-05-27 13:27 3220912]
"Gadu-Gadu"="c:\program files\Gadu-Gadu\gg.exe" [2008-03-20 2127296]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 3080264]
"OODefragTray"="c:\program files\OO Software\Defrag\oodtray.exe" [2011-01-25 2781000]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Menu Start\Programy\Autostart\
20Dollars2Surf.lnk - c:\program files\20Dollars2Surf\20dollars2surf.exe [2012-1-23 89088]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\EslWire\\wire.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\mIRC\\mirc.exe"=
"c:\\Program Files\\Garena\\Garena.exe"=
"c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
"e:\\Gry\\Diablo 2\\Diablo II.exe"=
"c:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe"=
"e:\\Gry\\Steam\\steamapps\\gangster816\\counter-strike\\hl.exe"=
"e:\\Gry\\S.T.A.L.K.E.R. - Shadow of Chernobyl\\S.T.A.L.K.E.R. - Shadow of Chernobyl\\bin\\XR_3DA.exe"=
"e:\\Gry\\S.T.A.L.K.E.R. - Shadow of Chernobyl\\S.T.A.L.K.E.R. - Shadow of Chernobyl\\bin\\dedicated\\XR_3DA.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)
"AllowInboundTimestampRequest"= 1 (0x1)
"AllowInboundMaskRequest"= 1 (0x1)
"AllowInboundRouterRequest"= 1 (0x1)
"AllowOutboundDestinationUnreachable"= 1 (0x1)
"AllowOutboundSourceQuench"= 1 (0x1)
"AllowOutboundParameterProblem"= 1 (0x1)
"AllowOutboundTimeExceeded"= 1 (0x1)
"AllowRedirect"= 1 (0x1)
"AllowOutboundPacketTooBig"= 1 (0x1)
.
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2011-08-04 118104]
R1 IDMTDI;IDMTDI;c:\windows\system32\drivers\idmtdi.sys [2011-09-15 101616]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2011-09-22 974944]
R2 ESLWireAC;ESLWireAC;c:\windows\system32\drivers\ESLWireACD.sys [2011-09-12 836496]
R2 OODefragAgent;O&O Defrag Agent;c:\program files\OO Software\Defrag\oodag.exe [2011-01-25 2398536]
R2 Printer Control;Printer Control;c:\windows\system32\PrintCtrl.exe [2011-11-16 65536]
R3 ESLvnic1;ESLvnic Virtual Network 32 Bit;c:\windows\system32\drivers\ESLvnic.sys [2011-09-12 24504]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 GarenaPEngine;GarenaPEngine;\??\c:\docume~1\Phantom\USTAWI~1\Temp\JTN8358.tmp --> c:\docume~1\Phantom\USTAWI~1\Temp\JTN8358.tmp [?]
S3 GGSAFERDriver;GGSAFER Driver;\??\c:\program files\Garena\safedrv.sys --> c:\program files\Garena\safedrv.sys [?]
S3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\DRIVERS\klim5.sys --> c:\windows\system32\DRIVERS\klim5.sys [?]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des -service --> c:\windows\system32\GameMon.des -service [?]
S3 s1029bus;Sony Ericsson Device 1029 driver (WDM);c:\windows\system32\drivers\s1029bus.sys [2012-01-15 90280]
S3 s1029mdfl;Sony Ericsson Device 1029 USB WMC Modem Filter;c:\windows\system32\drivers\s1029mdfl.sys [2012-01-15 15016]
S3 s1029mdm;Sony Ericsson Device 1029 USB WMC Modem Driver;c:\windows\system32\drivers\s1029mdm.sys [2012-01-15 122280]
S3 s1029mgmt;Sony Ericsson Device 1029 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s1029mgmt.sys [2012-01-15 115880]
S3 s1029nd5;Sony Ericsson Device 1029 USB Ethernet Emulation (NDIS);c:\windows\system32\drivers\s1029nd5.sys [2012-01-15 26024]
S3 s1029obex;Sony Ericsson Device 1029 USB WMC OBEX Interface;c:\windows\system32\drivers\s1029obex.sys [2012-01-15 111912]
S3 s1029unic;Sony Ericsson Device 1029 USB Ethernet Emulation (WDM);c:\windows\system32\drivers\s1029unic.sys [2012-01-15 116904]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
.
--- Inne Usługi/Sterowniki w Pamięci ---
.
*NewlyCreated* - ESLWIREAC
.
Zawartość folderu 'Zaplanowane zadania'
.
2012-01-25 c:\windows\Tasks\WGASetup.job
- c:\windows\system32\KB905474\wgasetup.exe [2011-09-13 20:18]
.
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2475029
IE: Download all links with IDM - e:\różne\IDM.5.19.3.Portable\IDM.5.19.3.Portable [up.dla.Exsite.pl]\IDM.5.19.3.Portable [up.dla.Exsite.pl]\IEGetAll.htm
IE: Download FLV video content with IDM - e:\różne\IDM.5.19.3.Portable\IDM.5.19.3.Portable [up.dla.Exsite.pl]\IDM.5.19.3.Portable [up.dla.Exsite.pl]\IEGetVL.htm
IE: Download with IDM - e:\różne\IDM.5.19.3.Portable\IDM.5.19.3.Portable [up.dla.Exsite.pl]\IDM.5.19.3.Portable [up.dla.Exsite.pl]\IEExt.htm
IE: E&ksportuj do programu Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
LSP: c:\windows\system32\idmmbc.dll
TCP: DhcpNameServer = 192.168.88.1
FF - ProfilePath - c:\documents and settings\Phantom\Dane aplikacji\Mozilla\Firefox\Profiles\ugng74b9.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2481033&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.startup.homepage - hxxp://www.google.pl/
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2475029&q=
.
- - - - USUNIĘTO PUSTE WPISY - - - -
.
AddRemove-18 Wheels of Steel American Long Haul 1.00 - c:\18 wheels of steel american long haul\Uninstall.exe
AddRemove-Cross Racing Championship Extreme - c:\program files\Invictus Games\Cross Racing Championship Extreme\uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-01-25 21:21
Windows 5.1.2600 Dodatek Service Pack 3 NTFS
.
skanowanie ukrytych procesów ...
.
skanowanie ukrytych wpisów autostartu ...
.
skanowanie ukrytych plików ...
.
skanowanie pomyślnie ukończone
ukryte pliki: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\GarenaPEngine]
"ImagePath"="\??\c:\docume~1\Phantom\USTAWI~1\Temp\JTN8358.tmp"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1454471165-1993962763-839522115-1003\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{17f625e3-df58-49e8-9101-c001d5be7b47}]
@Denied: (Full) (Everyone)
"Model"=dword:00000161
"Therad"=dword:0000001b
"MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a,
1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):1b,8f,fd,1e,dc,95,fd,c6,df,96,bc,87,08,e2,15,b1,00,63,bb,92,34,
29,17,c0,be,40,eb,bc,38,b6,ad,4e,1d,f9,a4,40,6d,80,46,85,00,00,00,00,00,00,\
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
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
.
--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------
.
- - - - - - - > 'lsass.exe'(1304)
c:\windows\system32\idmmbc.dll
.
- - - - - - - > 'explorer.exe'(3444)
c:\program files\EslWire\inGame32.dll
c:\program files\Internet Download Manager\IDMShellExt.dll
c:\program files\Internet Download Manager\IDMNetMon.DLL
c:\program files\Gadu-Gadu\ggwhook.dll
c:\progra~1\ALLPLA~1\Iplex\IPLEXT~1.DLL
c:\program files\SubEdit-Player\codec\MatroskaSplitter\mmfinfo.dll
c:\program files\SubEdit-Player\codec\MatroskaSplitter\mkunicode.dll
c:\program files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.POL
c:\program files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll
.
------------------------ Pozostałe uruchomione procesy ------------------------
.
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\wdfmgr.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\wscntfy.exe
e:\róc:\Program Files\Gadu-Gadu\gg.exe
c:\program files\EslWire\inGame32.exe
c:\program files\EslWire\dbus-daemon.exe
.
**************************************************************************
.
Czas ukończenia: 2012-01-25 21:23:10 - komputer został uruchomiony ponownie
ComboFix-quarantined-files.txt 2012-01-25 20:23
.
Przed: 14 183 055 360 bajtów wolnych
Po: 14 187 778 048 bajtów wolnych
.
- - End Of File - - 4E0EF609693E90166A3EA02FA27A86E1
Logi - Niech ktoś oceni czy to wirusy
Rozpoczęty przez
phantomm
, 25 01 2012 22:37
-
Temat jest zamknięty
1 odpowiedź w tym temacie
#2
ordynat
-
-
- 804 postów
Zaawansowany użytkownik
Napisano 25 01 2012 - 23:37
W logu nie widzę nic podejrzanego.
Oczywiście przeinstaluj programy, które usunął pomyłkowo ComboFix.
.
Też nie wiem, co to było, więc może i dobrze, że to ComboFix usunął.7 c:\windows\COM+.log
8 c:\windows\XSxS
Oczywiście przeinstaluj programy, które usunął pomyłkowo ComboFix.
.
Użytkownicy przeglądający ten temat: 0
0 użytkowników, 0 gości, 0 anonimowych
