Code:
ComboFix 09-10-24.01 - Windows XP 2009-10-25 9:33.1.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1250.48.1045.18.1535.862 [GMT 1:00]
Uruchomiony z: D:\ComboFix.exe
AV: avast! antivirus 4.8.1356 [VPS 091024-0] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\Windows XP\Dane aplikacji\AD ON Multimedia
c:\documents and settings\Windows XP\Dane aplikacji\AD ON Multimedia\eBay Shortcuts\eBayShortcuts.exe
c:\program files\RelevantKnowledge
c:\program files\RelevantKnowledge\Desktop.ini
c:\program files\RelevantKnowledge\rlls.dll
c:\program files\RelevantKnowledge\rloci.bin
c:\program files\RelevantKnowledge\rlservice.exe
c:\program files\RelevantKnowledge\rlvknlg.exe
c:\windows\system32\tmp72.tmp
c:\windows\system32\tmp73.tmp
.
((((((((((((((((((((((((( Pliki utworzone od 2009-09-25 do 2009-10-25 )))))))))))))))))))))))))))))))
.
2009-10-24 19:19 . 2009-10-24 19:20 -------- d-s---w- c:\program files\ipla
2009-10-24 10:57 . 2009-10-24 10:57 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\DAEMON Tools Lite
2009-10-24 10:55 . 2009-10-24 10:55 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\BVRP Software
2009-10-24 10:55 . 2009-10-24 10:55 -------- d-----w- c:\documents and settings\Windows XP\Ustawienia lokalne\Dane aplikacji\Sony Ericsson
2009-10-21 20:45 . 2009-10-21 20:45 -------- d-----w- c:\program files\CCleaner
2009-10-20 19:47 . 2009-10-20 19:54 -------- d-----w- c:\documents and settings\Windows XP\Dane aplikacji\gtk-2.0
2009-10-20 19:47 . 2009-10-20 19:47 -------- d-----w- c:\documents and settings\Windows XP\.thumbnails
2009-10-20 19:39 . 2009-10-20 19:58 -------- d-----w- c:\documents and settings\Windows XP\.gimp-2.6
2009-10-18 14:16 . 2009-10-18 14:17 -------- d-s---w- c:\program files\JDownloader 0.9.059
2009-10-15 20:32 . 2009-09-15 10:55 114768 ----a-w- c:\windows\system32\drivers\aswSP.sys
2009-10-15 20:32 . 2009-09-15 10:55 20560 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2009-10-15 20:17 . 2009-09-15 10:54 52368 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2009-10-15 20:17 . 2009-09-15 10:54 23152 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2009-10-15 20:17 . 2009-09-15 10:53 27408 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2009-10-15 20:17 . 2009-09-15 10:56 93424 ----a-w- c:\windows\system32\drivers\aswmon.sys
2009-10-15 20:17 . 2009-09-15 10:56 94160 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2009-10-15 20:17 . 2009-09-15 10:59 1279968 ----a-w- c:\windows\system32\aswBoot.exe
2009-10-15 20:17 . 2009-09-15 10:53 97480 ----a-w- c:\windows\system32\AVASTSS.scr
2009-10-15 20:17 . 2009-10-15 20:36 -------- d-s---w- c:\program files\Alwil Software
2009-10-15 19:18 . 2009-10-15 19:18 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files
2009-10-13 19:02 . 2009-10-13 19:02 -------- d-----w- c:\documents and settings\NetworkService\Ustawienia lokalne\Dane aplikacji\cache
2009-10-13 15:55 . 2009-10-13 15:55 4096 ----a-w- c:\windows\d3dx.dat
2009-10-10 14:17 . 2009-10-10 14:33 -------- d-s---w- c:\program files\ALLPlayer 3.4.6.2
2009-10-09 19:48 . 2009-10-09 19:48 -------- d-----w- c:\documents and settings\Windows XP\Dane aplikacji\Talkback
2009-10-09 19:48 . 2009-10-09 19:48 -------- d-----w- c:\documents and settings\Windows XP\Ustawienia lokalne\Dane aplikacji\Thunderbird
2009-10-09 19:48 . 2009-10-09 19:48 -------- d-----w- c:\documents and settings\Windows XP\Dane aplikacji\Thunderbird
2009-10-09 19:46 . 2009-10-25 07:29 -------- d-s---w- c:\program files\Mozilla Thunderbird
2009-10-07 19:47 . 2009-10-07 19:47 -------- d-----w- c:\windows\Easy Rapidshare Points
2009-10-04 15:39 . 2009-10-04 15:39 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Electronic Arts
2009-10-03 11:43 . 2009-10-10 13:32 258048 ----a-w- c:\windows\system32\libFLAC.dll
2009-10-03 11:42 . 2009-10-10 13:31 892928 ----a-w- c:\windows\system32\iconv.dll
2009-10-03 11:42 . 2009-10-10 13:31 79360 ----a-w- c:\windows\system32\mkzlib.dll
2009-10-03 10:58 . 2009-10-03 10:58 -------- d-----w- c:\windows\system32\wbem\Repository
2009-10-02 20:33 . 2009-10-03 11:03 -------- d-s---w- c:\program files\WinRAR 3.80 PL
2009-09-28 19:36 . 2009-09-28 19:38 -------- d-----w- c:\documents and settings\Windows XP\Dane aplikacji\ChomikBox
2009-09-26 20:56 . 2009-09-26 20:56 -------- d-----w- c:\documents and settings\Windows XP\Dane aplikacji\WindowsApplication1
.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-10-25 08:31 . 2001-10-26 14:15 89036 ----a-w- c:\windows\system32\perfc015.dat
2009-10-25 08:31 . 2001-10-26 14:15 499854 ----a-w- c:\windows\system32\perfh015.dat
2009-10-25 08:07 . 2009-07-23 19:24 -------- d-----w- c:\documents and settings\Windows XP\Dane aplikacji\ipla
2009-10-25 06:47 . 2009-07-23 19:24 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\ipla
2009-10-25 06:46 . 2009-05-17 17:49 -------- d-s---w- c:\program files\AutoConnect
2009-10-23 20:46 . 2009-10-23 20:44 -------- d-s---w- c:\program files\K-Lite Mega Codec Pack 5.2.0
2009-10-23 18:16 . 2009-05-22 16:21 -------- d---a-w- c:\documents and settings\All Users\Dane aplikacji\TEMP
2009-10-23 16:30 . 2009-05-19 17:34 -------- d-s---w- c:\program files\IrfanView
2009-10-23 16:30 . 2009-07-23 18:34 -------- d-s---w- c:\program files\NAPI-PROJEKT
2009-10-13 18:00 . 2009-10-23 20:44 85504 ----a-w- c:\windows\system32\ff_vfw.dll
2009-10-13 15:22 . 2009-05-17 08:57 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-10-10 13:31 . 2009-06-24 20:36 23552 ----a-w- c:\windows\system32\mkunicode.dll
2009-10-05 20:36 . 2009-05-22 16:19 -------- d-s---w- c:\program files\Microsoft Office 2007 Enterprise PL
2009-10-03 21:01 . 2009-08-16 20:29 -------- d-s---w- c:\program files\DAP
2009-10-03 20:58 . 2009-09-19 15:23 -------- d-s---w- c:\program files\Microsoft Silverlight
2009-10-03 20:58 . 2009-09-21 18:36 -------- d-s---w- c:\program files\Microsoft.NET
2009-10-03 20:58 . 2009-08-15 20:08 -------- d-s---w- c:\program files\MSBuild
2009-10-03 20:57 . 2009-09-21 18:37 -------- d-s---w- c:\program files\Microsoft Works
2009-10-03 20:53 . 2009-09-19 15:22 -------- d-s---w- c:\program files\Microsoft
2009-10-03 20:52 . 2009-09-21 18:36 -------- d-s---w- c:\program files\Microsoft Office 2003
2009-10-03 20:50 . 2009-08-15 20:07 -------- d-s---w- c:\program files\Reference Assemblies
2009-09-25 16:12 . 2009-05-17 09:04 70696 ----a-w- c:\documents and settings\Windows XP\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
2009-09-20 19:51 . 2009-09-20 19:13 -------- d-s---w- c:\program files\PowerDVD9
2009-09-20 19:16 . 2009-06-23 17:37 -------- d-s---w- c:\program files\Cyberlink
2009-09-19 15:22 . 2009-09-19 15:22 -------- d-----w- c:\documents and settings\Windows XP\Dane aplikacji\Windows Search
2009-09-19 15:19 . 2009-09-19 15:19 -------- d-----w- c:\program files\Common Files\Windows Live
2009-09-17 20:10 . 2009-09-17 20:10 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Microsoft Corporation
2009-09-14 16:56 . 2009-06-01 17:54 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\OpenFM
2009-09-12 19:53 . 2009-05-19 18:49 -------- d-s---w- c:\program files\DAEMON Tools Lite
2009-09-12 19:50 . 2009-09-12 19:45 -------- d-----w- c:\documents and settings\Windows XP\Dane aplikacji\DAEMON Tools Lite
2009-09-12 19:50 . 2009-05-19 18:50 -------- d-----w- c:\documents and settings\Windows XP\Dane aplikacji\DAEMON Tools
2009-09-12 19:45 . 2009-05-19 17:52 721904 ----a-w- c:\windows\system32\drivers\sptd.sys
2009-09-11 14:19 . 2004-08-03 22:44 136192 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-09 18:07 . 2009-09-09 18:07 -------- d-----w- c:\documents and settings\Windows XP\Dane aplikacji\InstallShield
2009-09-09 17:47 . 2009-09-09 17:47 33 ----a-w- c:\windows\system32\drivers\adidsl.cfg
2009-09-05 10:01 . 2009-05-17 17:52 -------- d-s---w- c:\program files\Java
2009-09-05 07:29 . 2009-05-17 18:01 -------- d-s---w- c:\program files\Gadu-Gadu 8.0
2009-09-04 21:05 . 2004-08-03 22:44 58880 ----a-w- c:\windows\system32\msasn1.dll
2009-08-29 07:58 . 2004-08-03 22:44 916480 ----a-w- c:\windows\system32\wininet.dll
2009-08-26 08:02 . 2004-08-03 22:44 247326 ----a-w- c:\windows\system32\strmdll.dll
2009-08-16 20:29 . 2009-08-16 20:29 50688 -c--a-w- c:\windows\system32\wbhelp2.dll
2009-08-16 20:22 . 2009-08-16 20:22 2368 ----a-w- c:\windows\system32\SVKP.sys
2009-08-16 15:08 . 2007-09-04 10:56 178176 ----a-w- c:\windows\system32\unrar.dll
2009-08-12 09:32 . 2009-08-10 18:48 413696 -c--a-w- c:\windows\system32\wrap_oal.dll
2009-08-12 09:32 . 2009-08-10 18:48 102400 -c--a-w- c:\windows\system32\OpenAL32.dll
2009-08-05 09:01 . 2004-08-03 22:44 205312 -c--a-w- c:\windows\system32\mswebdvd.dll
2009-08-04 20:59 . 2004-08-03 22:39 2190464 ----a-w- c:\windows\system32\ntoskrnl.exe
2009-08-04 17:52 . 2009-08-04 17:52 1193832 ----a-w- c:\windows\system32\FM20.DLL
2009-08-04 17:29 . 2004-08-04 00:38 2067328 ----a-w- c:\windows\system32\ntkrnlpa.exe
2009-08-02 19:06 . 2009-05-17 09:44 4851 -c--a-w- c:\windows\unins000.dat
2009-08-02 18:53 . 2009-08-02 18:50 4518 -c--a-w- c:\windows\BricoPackFoldersDelete.cmd
2009-08-02 18:53 . 2009-05-17 19:46 66266 -c--a-w- c:\windows\BricoPackUninst.cmd
2009-07-31 13:23 . 2009-05-17 17:52 411368 -c--a-w- c:\windows\system32\deploytk.dll
2009-07-29 06:35 . 2009-10-23 20:44 2378752 ----a-w- c:\windows\system32\x264vfw.dll
2009-07-27 14:25 . 2009-07-27 14:24 592 -c--a-w- c:\windows\chgkey.vbs
.
((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FF6C3CF0-4B15-11D1-ABED-709549C10000}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AutoConnect"="c:\program files\AutoConnect\AutoConnect.exe" [2006-12-02 310784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-09-15 81000]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-03 15360]
c:\documents and settings\Windows XP\Menu Start\Programy\Autostart\
AsusAudioCenter.lnk - c:\program files\ASUS Xonar DX Audio\CustomApp\Program\AsusAudioCenter.exe [2009-8-10 1220608]
TransBar.lnk - c:\windows\Vista Inspirat 2\TransBar\TransBar.exe [2005-6-1 65536]
UberIcon.lnk - c:\windows\Vista Inspirat 2\UberIcon\UberIcon Manager.exe [2006-5-21 180224]
c:\documents and settings\All Users\Menu Start\Programy\Autostart\
DSLMON.lnk - c:\program files\SAGEM\SAGEM F@st 800-840\dslmon.exe [2009-9-9 1205840]
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Java\\jre6\\launch4j-tmp\\JDownloader.exe"=
"c:\\WINDOWS\\system32\\java.exe"=
"c:\\Program Files\\Gadu-Gadu 8.0\\gg.exe"=
"c:\\Program Files\\Ares\\Ares.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\Sony Ericsson\\Sony Ericsson Media Manager\\MediaManager.exe"=
"c:\\Program Files\\Sony Ericsson\\Update Service\\Update Service.exe"=
"c:\\Program Files\\Nero\\Nero 7\\Nero MediaHome\\NeroMediaHome.exe"=
"d:\\GRY\\Settlers VI - Narodziny Imperium\\base\\bin\\Settlers6.exe"=
"e:\\ROZRYWKA\\POBRANE PLIKI\\PEGAZUS\\RockNESX.exe"=
"c:\\WINDOWS\\system32\\dpnsvr.exe"=
"c:\\Program Files\\PowerDVD9\\PowerDVD9\\PowerDVD9.exe"=
"d:\\GRY\\FIFA 2010\\EA Download Manager\\Core.exe"=
"d:\\GRY\\FIFA 2010\\FIFA10.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"15955:TCP"= 15955:TCP:BitComet 15955 TCP
"15955:UDP"= 15955:UDP:BitComet 15955 UDP
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2009-10-15 114768]
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2009/09/20 21:16];c:\program files\PowerDVD9\PowerDVD9\000.fcl [2009-08-28 11:57 87536]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009-10-15 20560]
R2 SVKP;SVKP;c:\windows\system32\SVKP.sys [2009-08-16 2368]
R3 cmudaxp;ASUS Xonar DX Audio Interface;c:\windows\system32\drivers\cmudaxp.sys [2009-08-10 2029888]
R3 e4usbaw;USB ADSL2 WAN Adapter;c:\windows\system32\drivers\e4usbaw.sys [2009-09-09 104344]
S2 E4LOADER;General Purpose USB Driver (e4ldr.sys);c:\windows\system32\drivers\e4ldr.sys [2009-09-09 69656]
S2 SeekService Service;SeekService Service;"c:\documents and settings\All Users\Dane aplikacji\SeekService\seekservice117.exe" "c:\program files\SeekService\seekservice.dll" Service --> c:\documents and settings\All Users\Dane aplikacji\SeekService\seekservice117.exe [?]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2009-06-08 1684736]
S3 h643331;h643331;c:\windows\system32\drivers\h643331.sys --> c:\windows\system32\drivers\h643331.sys [?]
S3 hid3331;hid3331;c:\windows\system32\drivers\Hid3331.sys [2009-07-06 41336]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\drivers\s0016bus.sys [2009-06-12 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter;c:\windows\system32\drivers\s0016mdfl.sys [2009-06-12 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver;c:\windows\system32\drivers\s0016mdm.sys [2009-06-12 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s0016mgmt.sys [2009-06-12 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS);c:\windows\system32\drivers\s0016nd5.sys [2009-06-12 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface;c:\windows\system32\drivers\s0016obex.sys [2009-06-12 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM);c:\windows\system32\drivers\s0016unic.sys [2009-06-12 115752]
.
Zawartość folderu 'Zaplanowane zadania'
2009-10-13 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]
2009-06-19 c:\windows\Tasks\NSSstub.job
- c:\windows\system32\Adobe\Shockwave 11\nssstub.exe [2009-06-17 19:16]
.
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT1750559
uInternet Connection Wizard,ShellNext = iexplore
IE: &Clean Traces - c:\program files\DAP\Privacy Package\dapcleanerie.htm
IE: &Download with &DAP - c:\program files\DAP\dapextie.htm
IE: Download &all with DAP - c:\program files\DAP\dapextie2.htm
IE: E&ksport do programu Microsoft Excel - c:\progra~1\MI699F~1\OFFICE11\EXCEL.EXE/3000
LSP: c:\progra~1\DAP9~1.1\SPEEDB~1\sblsp.dll
TCP: {4D5A095D-3CA9-40AD-AC70-44427CEB2407} = 213.241.79.37 83.238.255.76
FF - ProfilePath - c:\documents and settings\Windows XP\Dane aplikacji\Mozilla\Firefox\Profiles\5y5yd4gj.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.startup.homepage - hxxp://www.google.pl/firefox?client=firefox-a&rls=org.mozilla:pl:official
FF - plugin: c:\documents and settings\Windows XP\Dane aplikacji\Nowe Gadu-Gadu\_userdata\npgg.1.dll
FF - plugin: c:\documents and settings\Windows XP\Dane aplikacji\Nowe Gadu-Gadu\_userdata\nppl3260.dll
FF - plugin: c:\documents and settings\Windows XP\Dane aplikacji\Nowe Gadu-Gadu\_userdata\nprpjplug.dll
FF - plugin: c:\program files\Adobe Reader 9.1\Reader\browser\nppdf32.dll
FF - plugin: c:\program files\K-Lite Mega Codec Pack 5.2.0\Real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\K-Lite Mega Codec Pack 5.2.0\Real\browser\plugins\nprpjplug.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
.
- - - - USUNIĘTO PUSTE WPISY - - - -
URLSearchHooks-{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
BHO-{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - (no file)
BHO-{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
Toolbar-{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - (no file)
Toolbar-{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
AddRemove-{d08d9f98-1c78-4704-87e6-368b0023d831} - c:\program files\relevantknowledge\rlvknlg.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, **External links are only visible to Support Staff**
Rootkit scan 2009-10-25 09:39
Windows 5.1.2600 Dodatek Service Pack 3 NTFS
skanowanie ukrytych procesów ...
skanowanie ukrytych wpisów autostartu ...
skanowanie ukrytych plików ...
skanowanie pomyślnie ukończone
ukryte pliki: 0
**************************************************************************
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{B154377D-700F-42cc-9474-23858FBDF4BD}]
"ImagePath"="\??\c:\program files\PowerDVD9\PowerDVD9\000.fcl"
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
[HKEY_USERS\S-1-5-21-854245398-1454471165-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID]
@Denied: (Full) (LocalSystem)
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\WPAEvents]
@Denied: (Full) (LocalSystem)
"LastWPAEventLogged"=hex:d5,07,05,00,06,00,07,00,0f,00,38,00,24,00,fd,02
"OOBETime"=hex:66,66,2c,64,35,2c,37,31,2c,64,36,2c,38,62,2c,36,61,2c,38,64,2c,
36,66,2c,64,35,2c,33,33,2c,39,33,2c,66,64
.
--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------
- - - - - - - > 'winlogon.exe'(672)
c:\windows\system32\antiwpa.dll
c:\windows\system32\Ati2evxx.dll
- - - - - - - > 'lsass.exe'(728)
c:\progra~1\DAP9~1.1\SPEEDB~1\sblsp.dll
c:\program files\DAP 9.1\SpeedBit Video Accelerator\ConfigDB.dll
.
Czas ukończenia: 2009-10-25 9:41
ComboFix-quarantined-files.txt 2009-10-25 08:41
Przed: 4*066*643*968 bajtów wolnych
Po: 5*016*772*608 bajtów wolnych
WindowsXP-KB310994-SP2-Pro-BootDisk-PLK.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /fastdetect /NoExecute=OptOut
- - End Of File - - 3C5E4C060E64787CAC3840E2A7CCE057