nowy log
ComboFix 08-08-15.04 - larrie 2008-08-25 18:34:10.7 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1250.1.1045.18.605 [GMT 2:00]
Running from: C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Pulpit\ComboFix.exe
Command switches used :: C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Pulpit\CFScript.txt
* Created a new restore point
* Resident AV is active
[color="red"][b]WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED [img]http://www.forum.tweaks.pl/public/style_emoticons/default/excl.gif[/img][/b][/color]
FILE ::
C:\WINDOWS\is-G5EGC.exe
C:\WINDOWS\is-G5EGC.lst
C:\WINDOWS\is-G5EGC.msg
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\WINDOWS\is-G5EGC.exe
C:\WINDOWS\is-G5EGC.lst
C:\WINDOWS\is-G5EGC.msg
.
((((((((((((((((((((((((( Files Created from 2008-07-25 to 2008-08-25 )))))))))))))))))))))))))))))))
.
2008-08-25 16:48 . 2007-07-04 16:27 30,336 --a------ C:\WINDOWS\system32\drivers\fpd.sys
2008-08-25 16:47 . 2008-08-25 16:52 <DIR> d-------- C:\Program Files\DialNet
2008-08-25 16:47 . 2008-08-25 16:47 <DIR> d-------- C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\InstallShield
2008-08-24 09:30 . 2007-07-04 16:27 1,056,768 --a------ C:\WINDOWS\system32\ROBOEX32.DLL
2008-08-24 09:30 . 2007-07-04 16:27 65,604 --a------ C:\WINDOWS\system32\drivers\WrKPoETNic2000.sys
2008-08-24 09:30 . 2007-07-04 16:27 52,214 --a------ C:\WINDOWS\system32\drivers\WrKPoET2000.sys
2008-08-23 23:37 . 2008-08-23 23:37 <DIR> d-------- C:\Program Files\Hercules
2008-08-22 15:31 . 2002-07-11 11:13 135,168 --a------ C:\WINDOWS\cmuninst.dat
2008-08-21 13:40 . 2002-07-12 15:33 1,581,056 --a------ C:\WINDOWS\mixer.exe
2008-08-21 13:40 . 2004-01-24 00:18 765,952 --a------ C:\WINDOWS\system\crlds3d.dll
2008-08-21 13:40 . 2002-08-27 10:23 720,896 --a------ C:\WINDOWS\system32\Audio3D.dll
2008-08-21 13:40 . 2002-07-16 09:58 379,726 --a------ C:\WINDOWS\system32\drivers\cmaudio.sys
2008-08-21 13:40 . 2002-07-11 10:24 139,264 --a------ C:\WINDOWS\cmuninst.exe
2008-08-21 13:40 . 2004-01-22 04:24 32,768 --a------ C:\WINDOWS\system32\cmnprop.dll
2008-08-21 13:39 . 2004-04-26 09:49 381,056 --------- C:\WINDOWS\system32\drivers\MPUSens.sys
2008-08-21 13:39 . 2003-08-27 18:04 9,869 --------- C:\WINDOWS\system32\drivers\UAFilter.sys
2008-08-21 13:32 . 2002-08-14 14:34 24,576 --------- C:\WINDOWS\system32\UninstallXP.exe
2008-08-21 13:32 . 2002-06-11 13:34 24,576 --------- C:\WINDOWS\system32\FirstReboot.exe
2008-08-21 13:07 . 2002-08-27 10:23 720,896 --a------ C:\WINDOWS\system32\a3d.dll
2008-08-21 09:44 . 2002-02-21 14:16 28,672 --------- C:\WINDOWS\system32\DeleteCPL.exe
2008-08-21 09:37 . 2002-12-17 09:12 28,672 --------- C:\WINDOWS\system32\EndInstall.exe
2008-08-20 20:30 . 2006-11-17 05:40 18,804,736 --a------ C:\WINDOWS\system32\alsndmgr.cpl
2008-08-20 20:30 . 2006-12-08 15:20 10,528,768 --a------ C:\WINDOWS\system32\RTLCPL.exe
2008-08-20 20:30 . 2008-08-06 15:45 4,122,112 -ra------ C:\WINDOWS\system32\drivers\alcxwdm.sys
2008-08-20 20:30 . 2007-04-16 15:28 577,536 --a------ C:\WINDOWS\soundman.exe
2008-08-20 20:30 . 2006-07-31 11:19 315,392 --a------ C:\WINDOWS\alcupd.exe
2008-08-20 20:30 . 2006-07-31 11:27 217,088 --a------ C:\WINDOWS\Alcrmv.exe
2008-08-20 20:30 . 2006-10-18 02:53 147,456 --a------ C:\WINDOWS\system32\RtlCPAPI.dll
2008-08-20 20:30 . 2002-02-05 13:54 141,016 --a------ C:\WINDOWS\system32\alsndmgr.wav
2008-08-20 20:30 . 2006-08-01 15:02 49,152 --a------ C:\WINDOWS\system32\ChCfg.exe
2008-08-20 03:30 . 2008-08-20 03:30 <DIR> d-------- C:\WINDOWS\system32\svcdll
2008-08-20 03:29 . 2008-08-24 20:12 <DIR> d-------- C:\Program Files\XAC
2008-08-20 00:40 . 2008-08-20 20:30 <DIR> d-------- C:\Program Files\Realtek AC97
2008-08-18 17:26 . 2008-08-18 17:26 <DIR> d-------- C:\Program Files\Nowe Gadu-Gadu
2008-08-17 23:27 . 2008-08-17 23:27 <DIR> d-------- C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\GanymedeNet
2008-08-17 23:27 . 2008-08-17 23:27 4 --a------ C:\WINDOWS\system32\proc1395793746.bin
2008-08-17 20:01 . 2003-03-04 10:50 19,968 --a------ C:\WINDOWS\Logi_MwX.Exe
2008-08-17 14:14 . 2008-08-17 14:15 <DIR> d-------- C:\Król skorpion
2008-08-17 09:04 . 2008-08-17 09:04 <DIR> d-------- C:\Program Files\Network Stumbler
2008-08-17 03:24 . 2008-08-17 03:24 <DIR> d-------- C:\Program Files\PC Washer
2008-08-16 23:37 . 2008-08-16 23:37 <DIR> d-------- C:\Program Files\Common Files\Logitech
2008-08-16 03:42 . 2008-08-16 03:44 1,374 --a------ C:\WINDOWS\imsins.BAK
2008-08-15 03:06 . 2008-08-15 03:06 <DIR> d-------- C:\Program Files\Common Files\Adobe AIR
2008-08-15 03:05 . 2008-08-15 03:05 <DIR> d-------- C:\Program Files\Common Files\Adobe
2008-08-14 03:48 . 2008-08-14 03:53 <DIR> d-------- C:\Program Files\Windows Live Safety Center
2008-08-11 22:23 . 2008-08-11 22:23 <DIR> d-------- C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\Vso
2008-08-11 22:23 . 2008-08-11 22:23 47,360 --a------ C:\WINDOWS\system32\drivers\pcouffin.sys
2008-08-11 22:23 . 2008-08-11 22:23 47,360 --a------ C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\pcouffin.sys
2008-08-11 22:22 . 2008-08-11 22:23 <DIR> d-------- C:\Program Files\CloneDVD
2008-08-11 22:22 . 2008-08-11 22:22 <DIR> d-------- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\DVDXStudio
2008-08-11 22:17 . 2008-08-11 22:17 <DIR> d-------- C:\Program Files\Alcohol Soft
2008-08-11 22:11 . 2008-08-11 22:16 299 --a------ C:\WINDOWS\Clony2.ini
2008-08-10 11:34 . 2008-08-10 11:34 487,936 --a------ C:\WINDOWS\system32\madFlac.ax
2008-08-10 11:34 . 2008-08-10 11:34 258,048 --a------ C:\WINDOWS\system32\libFLAC.dll
2008-08-10 11:33 . 2008-08-10 11:33 2,486,272 --a------ C:\WINDOWS\system32\ffdshow.ax
2008-08-10 11:32 . 2008-08-10 11:32 3,598,336 --a------ C:\WINDOWS\system32\libavcodec.dll
2008-08-10 11:32 . 2008-08-10 11:32 455,680 --a------ C:\WINDOWS\system32\libmplayer.dll
2008-08-10 11:32 . 2008-08-10 11:32 397,312 --a------ C:\WINDOWS\system32\ff_libfaad2.dll
2008-08-10 11:32 . 2008-08-10 11:32 143,360 --a------ C:\WINDOWS\system32\ff_libmad.dll
2008-08-10 11:32 . 2008-08-10 11:32 135,168 --a------ C:\WINDOWS\system32\ff_samplerate.dll
2008-08-10 11:32 . 2008-08-10 11:32 126,976 --a------ C:\WINDOWS\system32\libmpeg2_ff.dll
2008-08-10 11:32 . 2008-08-10 11:32 118,784 --a------ C:\WINDOWS\system32\ff_realaac.dll
2008-08-10 11:32 . 2008-08-10 11:32 102,912 --a------ C:\WINDOWS\system32\ff_tremor.dll
2008-08-10 11:32 . 2008-08-10 11:32 56,832 --a------ C:\WINDOWS\system32\ff_unrar.dll
2008-08-10 11:32 . 2008-08-10 11:32 23,552 --a------ C:\WINDOWS\system32\ff_wmv9.dll
2008-08-10 11:31 . 2008-08-10 11:31 172,032 --a------ C:\WINDOWS\system32\ff_libdts.dll
2008-08-10 11:31 . 2008-08-10 11:31 41,472 --a------ C:\WINDOWS\system32\ff_liba52.dll
2008-08-10 11:30 . 2008-08-10 11:30 <DIR> d-------- C:\Program Files\Real Alternative
2008-08-10 11:30 . 2008-08-10 11:30 163,840 --a------ C:\WINDOWS\system32\ts.dll
2008-08-10 11:30 . 2008-08-10 11:30 159,744 --a------ C:\WINDOWS\system32\mmfinfo.dll
2008-08-10 11:30 . 2008-08-10 11:30 148,992 --a------ C:\WINDOWS\system32\mkx.dll
2008-08-10 11:30 . 2008-08-10 11:30 141,312 --a------ C:\WINDOWS\system32\mp4.dll
2008-08-10 11:30 . 2008-08-10 11:30 120,832 --a------ C:\WINDOWS\system32\ogm.dll
2008-08-10 11:30 . 2008-08-10 11:30 108,032 --a------ C:\WINDOWS\system32\avi.dll
2008-08-10 11:30 . 2008-08-10 11:30 79,360 --a------ C:\WINDOWS\system32\mkzlib.dll
2008-08-10 11:30 . 2008-08-10 11:30 23,552 --a------ C:\WINDOWS\system32\mkunicode.dll
2008-08-09 13:30 . 2008-08-09 13:30 <DIR> d-------- C:\Program Files\YAWn.NET
2008-08-07 17:00 . 2008-08-21 09:26 724,992 --a------ C:\WINDOWS\iun6002.exe
2008-08-07 16:59 . 2008-08-07 17:12 <DIR> d-------- C:\Program Files\Tweak-XP Pro 4
2008-08-06 16:23 . 2000-03-29 16:17 5,824 --a------ C:\WINDOWS\system32\drivers\ASUSHWIO.SYS
2008-08-06 16:23 . 2008-08-06 16:23 3,968 --a------ C:\WINDOWS\Ascd_tmp.ini
2008-08-05 14:13 . 2008-08-05 14:13 <DIR> d-------- C:\Program Files\NETPLUS
2008-08-05 12:50 . 2008-08-05 12:52 <DIR> d-------- C:\Program Files\Common Files\Autodesk Shared
2008-08-05 12:50 . 2008-08-05 12:50 <DIR> d-------- C:\Program Files\Autodesk
2008-08-05 11:07 . 2004-02-26 11:46 446,464 --a------ C:\WINDOWS\system32\HHActiveX.dll
2008-08-04 16:58 . 2008-08-04 16:58 <DIR> d-------- C:\nVidia Forceware
2008-08-04 16:58 . 2008-04-26 13:00 13,529,088 --a------ C:\WINDOWS\system32\nvcpl.dll
2008-08-04 16:58 . 2008-04-26 13:00 425,984 --a------ C:\WINDOWS\system32\nvapi.dll
2008-08-04 16:58 . 2008-04-26 13:00 41,984 --a------ C:\WINDOWS\system32\nvcodins.dll
2008-08-04 16:58 . 2008-04-26 13:00 41,984 --a------ C:\WINDOWS\system32\nvcod.dll
2008-08-04 16:52 . 2008-04-26 13:00 290,816 --a------ C:\WINDOWS\system32\nvwrsth.dll
2008-08-03 22:52 . 2008-08-03 22:52 <DIR> d-------- C:\Program Files\GameSpy Arcade
2008-08-03 20:13 . 2008-08-03 20:13 <DIR> d-------- C:\Program Files\DAEMON Tools Lite
2008-08-02 12:48 . 2008-08-02 12:48 <DIR> d-------- C:\WINDOWS\SETUP533
2008-08-02 12:48 . 2008-08-02 12:48 <DIR> d-------- C:\Program Files\MD 40820
2008-08-02 12:48 . 2002-10-21 11:37 515,803 --------- C:\WINDOWS\system32\drivers\Ca533av.sys
2008-08-02 12:48 . 2002-01-19 15:33 131,072 --------- C:\WINDOWS\system32\SP5X_32.DLL
2008-08-02 12:48 . 2002-01-19 15:33 131,072 --a------ C:\WINDOWS\system\SP5X_32.DLL
2008-08-02 12:48 . 2003-03-25 16:54 16,384 --------- C:\WINDOWS\system32\dext533.ax
2008-08-02 12:48 . 2002-12-30 15:24 14,606 --------- C:\WINDOWS\USB_CAM.ini
2008-08-02 12:48 . 2002-12-04 14:38 11,144 --------- C:\WINDOWS\system32\drivers\Bulk533.sys
2008-08-02 12:48 . 2003-04-08 08:51 1,833 --------- C:\WINDOWS\ca533a.ini
2008-08-02 12:48 . 1998-04-24 00:00 1,078 --------- C:\WINDOWS\system32\WASTE.ICO
2008-08-02 12:48 . 2003-04-09 11:54 163 --------- C:\WINDOWS\Setup533.ini
2008-08-02 12:48 . 2003-06-16 16:00 147 --------- C:\WINDOWS\Setup2k.ini
2008-07-31 23:25 . 2008-07-31 23:25 4,096 --a------ C:\WINDOWS\d3dx.dat
2008-07-30 21:21 . 2008-08-25 16:09 <DIR> d-------- C:\Program Files\sXe Injected
2008-07-30 14:16 . 2008-08-18 10:39 <DIR> d-------- C:\Program Files\Deutsch Translator 2
2008-07-29 23:09 . 2008-07-29 23:09 <DIR> dr-h----- C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\SecuROM
2008-07-29 23:09 . 2008-07-29 23:10 <DIR> d-------- C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\Bioshock
2008-07-29 18:15 . 2008-07-29 22:56 <DIR> d-------- C:\WINDOWS\BioShock
2008-07-29 17:40 . 2008-07-29 17:40 <DIR> d-------- C:\Program Files\Real
2008-07-29 17:40 . 2008-07-29 17:40 <DIR> d-------- C:\Program Files\Common Files\xing shared
2008-07-29 17:40 . 2008-07-29 17:40 <DIR> d-------- C:\Program Files\Common Files\Real
2008-07-27 22:01 . 2008-07-27 22:26 <DIR> d-------- C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\GetRightToGo
2008-07-25 07:03 . 2008-07-25 07:03 <DIR> d-------- C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\Apple Computer
2008-07-25 04:16 . 2008-07-29 15:58 <DIR> d-------- C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\skypePM
2008-07-25 04:16 . 2008-07-25 04:16 56 --ah----- C:\WINDOWS\system32\ezsidmv.dat
2008-07-25 04:10 . 2008-07-25 04:37 <DIR> d-------- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Skype
2008-07-25 03:49 . 2008-07-25 03:49 <DIR> d-------- C:\WINDOWS\Sun
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-08-25 16:36 --------- d-----w C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\mIRC
2008-08-25 16:34 --------- d-----w C:\Program Files\cFosSpeed
2008-08-25 11:59 137,472 -c--a-w C:\WINDOWS\system32\drivers\PnkBstrK.sys
2008-08-25 11:59 111,928 -c--a-w C:\WINDOWS\system32\PnkBstrB.exe
2008-08-22 11:25 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-08-19 18:53 --------- d-----w C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\Nowe Gadu-Gadu
2008-08-17 21:01 --------- d-----w C:\Program Files\Malwarebytes' Anti-Malware
2008-08-17 13:01 38,472 ----a-w C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2008-08-17 13:01 17,144 ----a-w C:\WINDOWS\system32\drivers\mbam.sys
2008-08-17 00:56 --------- d-----w C:\Program Files\NT Registry Optimizer
2008-08-10 09:33 892,928 ----a-w C:\WINDOWS\system32\iconv.dll
2008-08-10 09:31 921,600 ----a-w C:\WINDOWS\system32\vorbisenc.dll
2008-08-10 09:31 9,216 ----a-w C:\WINDOWS\system32\cpuinf32.dll
2008-08-10 09:31 524,288 ----a-w C:\WINDOWS\system32\DivXsm.exe
2008-08-10 09:31 45,056 ----a-w C:\WINDOWS\system32\ogg.dll
2008-08-10 09:31 245,760 ----a-w C:\WINDOWS\system32\mplvpx.dll
2008-08-10 09:31 237,568 ----a-w C:\WINDOWS\system32\OggDS.dll
2008-08-10 09:31 188,416 ----a-w C:\WINDOWS\system32\vorbis.dll
2008-08-10 09:30 755,027 ----a-w C:\WINDOWS\system32\xvidcore.dll
2008-08-10 09:30 159,839 ----a-w C:\WINDOWS\system32\xvidvfw.dll
2008-08-03 12:58 717,296 ----a-w C:\WINDOWS\system32\drivers\sptd.sys
2008-07-29 21:09 107,888 ----a-w C:\WINDOWS\system32\CmdLineExt.dll
2008-07-29 15:40 499,712 ----a-w C:\WINDOWS\system32\msvcp71.dll
2008-07-23 21:07 --------- d-----w C:\Program Files\Reference Assemblies
2008-07-23 03:45 --------- d-----w C:\Program Files\HyCam2
2008-07-23 03:34 --------- d-----w C:\Program Files\SpeedFan
2008-07-23 03:23 --------- d-----w C:\Program Files\Sony Setup
2008-07-22 19:18 --------- d-----w C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\teamspeak2
2008-07-22 18:57 --------- d-----w C:\Program Files\mIRC
2008-07-22 17:57 --------- d-----w C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\Malwarebytes
2008-07-22 17:57 --------- d-----w C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Malwarebytes
2008-07-22 17:56 --------- d-----w C:\Program Files\Common Files\Download Manager
2008-07-22 15:52 1,415,680 ----a-w C:\WINDOWS\system32\WMV9VCM.dll
2008-07-22 15:51 755,200 ----a-w C:\WINDOWS\system32\ir50_32.dll
2008-07-22 15:50 391,168 ----a-w C:\WINDOWS\system32\i263_32.drv
2008-07-22 15:46 --------- d-----w C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\DivX
2008-07-22 02:30 --------- d-----w C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Trophy Bass 2007
2008-07-21 23:46 --------- d-----w C:\Program Files\<a href="http://www.download.net.pl/105/K-Lite-Codec-Pack/">K-Lite Codec Pack</a>
2008-07-21 14:32 --------- d-----w C:\Program Files\Trend Micro
2008-07-20 13:17 --------- d-----w C:\Program Files\BY TÜRK MOBILE WORLD-moto
2008-07-19 01:50 --------- d-----w C:\Program Files\Mplayer
2008-07-18 16:51 --------- d-----w C:\Program Files\Motorola Phone Tools
2008-07-18 16:51 --------- d-----w C:\Program Files\Avanquest update
2008-07-18 16:50 24,192 ----a-w C:\Documents and Settings\larrie.FRITZZ-372D3EA5\usbsermptxp.sys
2008-07-18 16:50 22,768 ----a-w C:\Documents and Settings\larrie.FRITZZ-372D3EA5\usbsermpt.sys
2008-07-18 16:46 --------- d-----w C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\BVRP Software
2008-07-16 11:41 --------- d-----w C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\LEAPS
2008-07-16 11:39 --------- d-----w C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\Pegasys Inc
2008-07-16 11:35 --------- d-----w C:\Program Files\Pegasys Inc
2008-07-16 11:34 56,976 ----a-w C:\WINDOWS\system32\GenSvcInst.exe
2008-07-16 11:34 33,408 ----a-w C:\WINDOWS\system32\drivers\CDRBSDRV.SYS
2008-07-16 11:34 122,512 ----a-w C:\WINDOWS\system32\bgsvcgen.exe
2008-07-16 11:34 --------- d-----w C:\Program Files\Common Files\InstallShield
2008-07-16 10:28 --------- d-----w C:\Program Files\QuickTime
2008-07-16 10:27 --------- d-----w C:\Program Files\Apple Software Update
2008-07-16 10:27 --------- d-----w C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Apple Computer
2008-07-16 10:27 --------- d-----w C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Apple
2008-07-16 07:11 --------- d-----w C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\Sony
2008-07-16 07:05 --------- d-----w C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\Sony Setup
2008-07-16 06:56 --------- d---a-w C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\TEMP
2008-07-16 06:54 --------- d-----w C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\Publish Providers
2008-07-15 01:58 --------- d-----w C:\Program Files\Java
2008-07-15 01:57 --------- d-----w C:\Program Files\Common Files\Java
2008-07-14 15:51 --------- d-----w C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\AdobeUM
2008-07-14 13:40 --------- d-----w C:\Program Files\Acclaim Entertainment
2008-07-11 18:18 --------- d-----w C:\Program Files\Sync Manager
2008-07-11 18:17 --------- d-----w C:\Program Files\PDM
2008-07-11 02:21 --------- d-----w C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\Winamp
2008-07-11 02:20 --------- d-----w C:\Program Files\Winamp
2008-07-07 20:29 253,952 ----a-w C:\WINDOWS\system32\es.dll
2008-07-06 22:21 --------- d-----w C:\Program Files\wlsc uploader
2008-07-06 13:51 --------- d-----w C:\Program Files\FlashGet
2008-07-03 21:22 --------- d-----w C:\Program Files\Kaspersky Lab
2008-07-03 21:22 --------- d-----w C:\Program Files\Common Files\Kaspersky Lab
2008-07-03 10:43 350,464 ----a-w C:\WINDOWS\inf\isprnt.exe
2008-07-02 11:25 --------- d-----w C:\Program Files\Conduit
2008-07-01 23:56 --------- d-----w C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\X-Setup Pro
2008-07-01 23:56 --------- d-----w C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\X-Setup Pro
2008-07-01 13:39 --------- d-----w C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\DAEMON Tools
2008-07-01 12:22 --------- d-----w C:\Program Files\MSXML 4.0
2008-07-01 07:04 71,688 ----a-w C:\WINDOWS\system32\drivers\epfw.sys
2008-07-01 07:04 54,280 ----a-w C:\WINDOWS\system32\drivers\epfwtdi.sys
2008-07-01 07:04 30,728 ----a-w C:\WINDOWS\system32\drivers\epfwndis.sys
2008-07-01 06:57 53,256 ----a-w C:\WINDOWS\system32\drivers\easdrv.sys
2008-07-01 06:56 39,944 ----a-w C:\WINDOWS\system32\drivers\eamon.sys
2008-06-30 22:27 --------- d-----w C:\Program Files\Nero
2008-06-30 22:27 --------- d-----w C:\Program Files\Common Files\Nero
2008-06-30 22:27 --------- d-----w C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Nero
2008-06-30 22:23 --------- d-----w C:\Program Files\Ahead
2008-06-30 19:38 --------- d-----w C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\Nero
2008-06-30 13:28 --------- d-----w C:\Program Files\Maxis
2008-06-30 10:29 --------- d-----w C:\Program Files\Gadu-Gadu
2008-06-30 06:42 --------- d-----w C:\Program Files\English Translator 3
2008-06-29 12:42 --------- d-----w C:\Program Files\AVI DivX MPEG to DVD Converter & Burner Pro
2008-06-29 07:49 --------- d-----w C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\Ahead
2008-06-29 06:59 --------- d-----w C:\Program Files\Ultra RM Converter
2008-06-29 06:49 --------- d-----w C:\Program Files\The FilmMachine
2008-06-29 01:39 --------- d-----w C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Dane aplikacji\Media Player Classic
2008-06-28 16:33 --------- d-----w C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Ahead
2008-06-27 16:06 --------- d-----w C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Office Genuine Advantage
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpeedX"="C:\PROGRA~1\MyPortal\Speed-X\SpeedX.exe" [2006-06-27 14:11 46718]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" [2008-02-28 18:07 1828136]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-15 00:51 15360]
"AlcoholAutomount"="C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" [2008-02-22 17:58 217544]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NBKeyScan"="C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-02-18 17:29 2221352]
"cFosSpeed"="C:\Program Files\cFosSpeed\cFosSpeed.exe" [2008-06-25 10:32 867544]
"IMJPMIG8.1"="C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" [2008-04-14 00:13 208952]
"MSPY2002"="C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe" [2008-04-14 00:13 59392]
"PHIME2002ASync"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-14 00:13 455168]
"PHIME2002A"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-14 00:13 455168]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2008-07-29 17:40 185896]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2008-04-26 13:00 13529088]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2008-04-26 13:00 86016]
"egui"="C:\Program Files\ESET\ESET Smart Security\egui.exe" [2008-07-01 09:01 1447168]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 02:38 34672]
"Rapget"="C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Pulpit\RapGet\rapget.exe" [2008-06-03 21:29 171008]
"HGTXPEI"="C:\WINDOWS\system32\FirstReboot.exe" [2002-06-11 13:34 24576]
"a-winpoet-service"="C:\Program Files\DialNet\winpppoverethernet.exe" [2007-07-06 08:40 405504]
"z-WrDialer"="C:\Program Files\DialNet\wrdialer.exe" [2007-07-11 17:11 561152]
"nwiz"="nwiz.exe" [2008-04-26 13:00 1630208 C:\WINDOWS\system32\nwiz.exe]
"Logitech Utility"="Logi_MwX.Exe" [2003-03-04 10:50 19968 C:\WINDOWS\Logi_MwX.Exe]
"SoundMan"="SOUNDMAN.EXE" [2007-04-16 15:28 577536 C:\WINDOWS\soundman.exe]
C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\Autostart\
Gamesurround Muse Pocket CPL.lnk - C:\Program Files\Hercules\Audio\Gamesurround Muse Pocket USB\SNXUACP.exe [2008-08-21 13:39:20 622592]
Kaspersky Anti-Hacker.lnk - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Hacker\KAVPF.exe [2006-05-11 16:05:33 2195583]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"SynchronousMachineGroupPolicy"= 0 (0x0)
"SynchronousUserGroupPolicy"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoStrCmpLogical"= 1 (0x1)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMBalloonTip"= 1 (0x1)
"MemCheckBoxInRunDlg"= 0 (0x0)
"NoAutoTrayNotify"= 0 (0x0)
"NoResolveTrack"= 0 (0x0)
"NoResolveSearch"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)
"NoRecentDocsNetHood"= 1 (0x1)
"NoDesktopCleanupWizard"= 1 (0x1)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.YV12"= yv12vfw.dll
"VIDC.SP54"= SP5X_32.DLL
"VIDC.SP55"= SP5X_32.DLL
"VIDC.SP56"= SP5X_32.DLL
"VIDC.SP57"= SP5X_32.DLL
"VIDC.SP58"= SP5X_32.DLL
[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Start^Programy^Autostart^Adobe Reader Speed Launch.lnk]
backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^larrie.FRITZZ-372D3EA5^Menu Start^Programy^Autostart^YAWn!.NET.lnk]
backup=C:\WINDOWS\pss\YAWn!.NET.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
--a------ 2008-07-24 17:02 490952 C:\Program Files\DAEMON Tools Lite\daemon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--a--c--- 2008-04-28 17:14 570664 C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Rapget]
--a--c--- 2008-06-03 21:29 171008 C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Pulpit\RapGet\rapget.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RivaTunerStartupDaemon]
--a--c--- 2008-04-28 20:25 2707456 C:\Program Files\RivaTuner v2.09\RivaTuner.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TE_xp]
--a--c--- 2008-06-25 14:55 387601 C:\WINDOWS\system32\TE_xp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ULiRaid]
--a--c--- 2006-05-12 13:57 630784 C:\Program Files\ULiRaid\ULiRaid.exe
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiHacker]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Nowe Gadu-Gadu\\gg.exe"=
R0 JAHCI;JAHCI;C:\WINDOWS\system32\DRIVERS\JAHCI.sys [2005-10-25 11:35]
R0 Klpf;Klpf;C:\WINDOWS\system32\drivers\Klpf.sys [2006-05-11 16:05]
R0 Klpid;Klpid;C:\WINDOWS\system32\drivers\Klpid.sys [2006-05-11 16:06]
R0 m5289;m5289;C:\WINDOWS\system32\DRIVERS\m5289.sys [2005-07-04 14:21]
R0 uliagpkx;ULi AGP Bus Filter Driver;C:\WINDOWS\system32\DRIVERS\agpkx.sys [2005-05-03 17:31]
R2 MBAMDrvService;MBAMDrvService;C:\WINDOWS\system32\drivers\mbam.sys [2008-08-17 15:01]
R2 MBAMService;MBAMService;C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2008-08-17 15:01]
R2 TopWinPoETDriver;WinPoET PPPoE Optimized Driver;C:\WINDOWS\system32\DRIVERS\WrKPoET2000.sys [2007-07-04 16:27]
R3 FPD;Fine Point Packet Service;C:\WINDOWS\system32\drivers\fpd.sys [2007-07-04 16:27]
R3 ULI5261XP;ULi M526X Ethernet NT Driver;C:\WINDOWS\system32\DRIVERS\ULILAN51.SYS [2005-03-22 20:36]
R3 WrKPoET2000;WrKPoET2000;C:\Program Files\DialNet\WrKPoET2000.sys [2007-07-04 16:27]
R3 WRSWanDD;WinPoET PPPoE Adapter;C:\WINDOWS\system32\DRIVERS\WrKPoETNic2000.sys [2007-07-04 16:27]
S2 Ca533av;Cam 3200, WDM Video Capture;C:\WINDOWS\system32\Drivers\Ca533av.sys [2002-10-21 11:37]
S3 msloop;Sterownik karty Microsoft Loopback;C:\WINDOWS\system32\DRIVERS\loop.sys [2001-08-17 21:53]
S3 NSNDIS5;NSNDIS5 NDIS Protocol Driver;C:\WINDOWS\system32\NSNDIS5.SYS [2004-03-24 04:12]
S3 NTProcDrv;Process creation detector for NT.;E:\isrobot\NtProcDrv.sys []
S3 RT2400PCI;802.11b WLAN PCI;C:\WINDOWS\system32\DRIVERS\RT2400.sys []
S3 USBCamera;DSC Still Image Capture (CA100);C:\WINDOWS\system32\Drivers\Bulk533.sys [2002-12-04 14:38]
S3 USBSTOR;Sterownik magazynu masowego USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 00:15]
.
Contents of the 'Scheduled Tasks' folder
2008-07-16 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2008-04-11 17:57]
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, [url="http://www.gmer.net"]http://www.gmer.net[/url]
Rootkit scan 2008-08-25 18:36:42
Windows 5.1.2600 Dodatek Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2008-08-25 18:37:38
ComboFix-quarantined-files.txt 2008-08-25 16:37:35
ComboFix2.txt 2008-08-17 00:52:24
Pre-Run: 1,736,065,024 bajtów wolnych
Post-Run: 1,735,774,208 bajtów wolnych
364 --- E O F --- 2008-08-16 08:00:38Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:38, on 2008-08-25
Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\cFosSpeed\cFosSpeed.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\DialNet\winpppoverethernet.exe
C:\PROGRA~1\MyPortal\Speed-X\SpeedX.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Hercules\Audio\Gamesurround Muse Pocket USB\SNXUACP.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Hacker\KAVPF.exe
C:\WINDOWS\system32\bgsvcgen.exe
C:\Program Files\cFosSpeed\spd.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\DialNet\WrOS.EXE
C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamtrayctrl.exe
C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Pulpit\etmin.exe
E:\Program Files\mIRC\mirc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [url="http://go.microsoft.com/fwlink/?LinkId=69157"]http://go.microsoft.com/fwlink/?LinkId=69157[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft.com/fwlink/?LinkId=54896[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft.com/fwlink/?LinkId=54896[/url]
O1 - Hosts: 127.255.255.255 serial.alcohol-soft.com
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [cFosSpeed] C:\Program Files\cFosSpeed\cFosSpeed.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [Rapget] C:\Documents and Settings\larrie.FRITZZ-372D3EA5\Pulpit\RapGet\rapget.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [HGTXPEI] C:\WINDOWS\system32\FirstReboot.exe
O4 - HKLM\..\Run: [a-winpoet-service] "C:\Program Files\DialNet\winpppoverethernet.exe"
O4 - HKLM\..\Run: [z-WrDialer] "C:\Program Files\DialNet\wrdialer.exe"
O4 - HKCU\..\Run: [SpeedX] C:\PROGRA~1\MyPortal\Speed-X\SpeedX.exe
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA')
O4 - Global Startup: Gamesurround Muse Pocket CPL.lnk = C:\Program Files\Hercules\Audio\Gamesurround Muse Pocket USB\SNXUACP.exe
O4 - Global Startup: Kaspersky Anti-Hacker.lnk = C:\Program Files\Kaspersky Lab\Kaspersky Anti-Hacker\KAVPF.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - [url="http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase5036.cab"]http://cdn.scan.onecare.live.com/resource/...lscbase5036.cab[/url]
O17 - HKLM\System\CCS\Services\Tcpip\..\{2C0D6BAF-39D7-43D8-BF26-A114CC6CB1A4}: NameServer = 217.30.129.149 217.30.137.200
O17 - HKLM\System\CCS\Services\Tcpip\..\{40F6F058-8829-43CB-A0EA-A806B3510392}: NameServer = 174.138.200.1,194.204.152.34
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe
O23 - Service: cFosSpeed System Service (cFosSpeedS) - cFos Software GmbH - C:\Program Files\cFosSpeed\spd.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: WinPPPoverEthernet - Fine Point Technologies, Inc. - C:\Program Files\DialNet\WrOS.EXE
--
End of file - 7492 bytes
Temat jest zamknięty
