Witamy na forum PC Format Zapraszamy do REJESTRACJI


Użytkownicy przeglądający ten wątek: 1 gości

WAŻNE! Mam wirusa!

#1
Scared  WAŻNE! Mam wirusa!
Cześć wszystkim!
Mam sprawę, otóż jestem przekonany że mam wirusa.
w procesach mam plik .exe z moim imieniem (kuba.exe)
utworzony 19 maja tego roku,
a w c:\documents & settings\kuba\ jest plik o nazwie oashdihasidhasuidhiasdhiashdiuasdhasd utworzony 22 maja.
Od wczoraj nie chce mi się włączyć program antywirusowy a w jego folderze jest folder o nazwie failsave.
usunąłem pliki z folderu kuba ale na wszelki wypadek dodałem je do archiwum.
Co powinienem zrobić aby się pozbyć wirusa ew. wirusów?
Myślicie że to dobry pomyśł żeby zainstalować antywirusa na nowo i później przeskanować system?

Z góry dzięki za pomoc.
 System operacyjny: windows_xp_2003 Przeglądarka: firefox
#2
RE: WAŻNE! Mam wirusa!
~Anonim napisał(a):WAŻNE! Mam wirusa!
Świńska grypa! Chytry


Czekamy na loga z RSIT.
 System operacyjny: windows_xp_2003 Przeglądarka: firefox
#3
RE: WAŻNE! Mam wirusa!
Już sobie poradziłem ale dzięki za chęci.
Jednak mi się nie udałoPłacze
Raz zresetowałem kompa i było wszystko dobrze ale jak go włączyłem ponownie to znów to samo to zn. antywirus ma mnie w głębokim poważaniu. Nie włącza się z autostartu i jak klikam w ikonkę to się nic nei dzieje.
LOG:
Logfile of random's system information tool 1.06 (written by random/random)
Run by Kuba at 2009-05-23 14:02:06
Microsoft Windows XP Home Edition Dodatek Service Pack 3
System drive C: has 52 GB (72%) free of 73 GB
Total RAM: 1014 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:02:12, on 2009-05-23
Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\vmnat.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\vmnetdhcp.exe
D:\Program Files\VMware\VMware Player\vmware-authd.exe
C:\Program Files\Java\jre1.5.0\bin\jusched.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Samsung\Samsung Update Plus\SUPBackGround.exe
C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
D:\Program Files\VMware\VMware Player\hqtray.exe
C:\WINDOWS\system32\ctfmon.exe
D:\Program Files\Microsoft ActiveSync\Wcescomm.exe
C:\Program Files\SAMSUNG\MagicKBD\PerformanceManager.exe
C:\WINDOWS\system32\igfxext.exe
D:\PROGRA~1\MICROS~1\rapimgr.exe
C:\WINDOWS\system32\wuauclt.exe
D:\TEMP\avira_antivir_personal_en.exe
C:\DOCUME~1\Kuba\USTAWI~1\Temp\RarSFX0\basic\presetup.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\DOCUME~1\Kuba\USTAWI~1\Temp\RarSFX0\basic\setup.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
D:\TEMP\Instalki\RSIT.exe
C:\Program Files\trend micro\Kuba.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.speedbit.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
R3 - URLSearchHook: SrchHook Class - {F4F10C1D-87C7-404A-B4B3-000000000000} - C:\PROGRA~1\DAP\SBSearch.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: DAPIELoader Class - {FF6C3CF0-4B15-11D1-ABED-709549C10000} - C:\PROGRA~1\DAP\DAPIEL~1.DLL
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0\bin\jusched.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [EDS] C:\Program Files\Samsung\Samsung EDS\EDSAgent.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [DMHotKey] C:\Program Files\Samsung\Easy Display Manager\DMLoader.exe
O4 - HKLM\..\Run: [BatteryManager] C:\Program Files\Samsung\Samsung Battery Manager\BatteryManager.exe
O4 - HKLM\..\Run: [MagicKeyboard] C:\Program Files\SAMSUNG\MagicKBD\PreMKBD.exe
O4 - HKLM\..\Run: [SUPBackGround] C:\Program Files\Samsung\Samsung Update Plus\SUPBackGround.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [VMware hqtray] "D:\Program Files\VMware\VMware Player\hqtray.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "D:\Program Files\Microsoft ActiveSync\Wcescomm.exe"
O4 - HKCU\..\Run: [Kuba] C:\Documents and Settings\Kuba\Kuba.exe /i
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: Wyślij do interfejsu Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Wyślij do urządzenia &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - D:\PROGRA~1\MICROS~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - D:\PROGRA~1\MICROS~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - D:\PROGRA~1\MICROS~1\INetRepl.dll
O9 - Extra button: Atbtrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Atbtrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: Atxpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: d:\program files\vmware\vmware player\vsocklib.dll
O10 - Unknown file in Winsock LSP: d:\program files\vmware\vmware player\vsocklib.dll
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Usługa Google Update (gupdate1c9c17b7ba3f290) (gupdate1c9c17b7ba3f290) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: NetMeeting Remote Desktop Sharing mnmsrvcRSVP (mnmsrvcRSVP) - Unknown owner - C:\WINDOWS\system32\12520850y.exe
O23 - Service: VMware Agent Service (ufad-ws60) - VMware, Inc. - D:\Program Files\VMware\VMware Player\vmware-ufad.exe
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - D:\Program Files\VMware\VMware Player\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\WINDOWS\system32\vmnetdhcp.exe
O23 - Service: VMware NAT Service - VMware, Inc. - C:\WINDOWS\system32\vmnat.exe
O23 - Service: Marvell Yukon Service (yksvc) - Unknown owner - RUNDLL32.EXE (file missing)

--
End of file - 7941 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachine.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-05-02 312928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FF6C3CF0-4B15-11D1-ABED-709549C10000}]
DAPIELoader Class - C:\PROGRA~1\DAP\DAPIEL~1.DLL [2009-04-20 140880]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.5.0\bin\jusched.exe [2008-12-31 36972]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-08-26 16851456]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2008-06-20 57344]
""= []
"EDS"=C:\Program Files\Samsung\Samsung EDS\EDSAgent.exe [2007-12-20 659456]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-02-29 141848]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-02-29 166424]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-02-29 137752]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-08-28 1044480]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"DMHotKey"=C:\Program Files\Samsung\Easy Display Manager\DMLoader.exe [2006-12-27 466944]
"BatteryManager"=C:\Program Files\Samsung\Samsung Battery Manager\BatteryManager.exe [2008-10-20 2768896]
"MagicKeyboard"=C:\Program Files\SAMSUNG\MagicKBD\PreMKBD.exe [2006-05-14 151552]
"SUPBackGround"=C:\Program Files\Samsung\Samsung Update Plus\SUPBackGround.exe [2008-10-27 298664]
"IMJPMIG8.1"=C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2008-04-15 208952]
"MSPY2002"=C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe [2008-04-15 59392]
"PHIME2002ASync"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2008-04-15 455168]
"PHIME2002A"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2008-04-15 455168]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2009-05-02 198160]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-01-05 413696]
"VMware hqtray"=D:\Program Files\VMware\VMware Player\hqtray.exe [2009-03-26 64048]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-15 15360]
"H/PC Connection Agent"=D:\Program Files\Microsoft ActiveSync\Wcescomm.exe [2006-11-13 1289000]
"Kuba"=C:\Documents and Settings\Kuba\Kuba.exe /i []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-02-15 208896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-15 239616]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveTypeAutoRun"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*Szczerbolnabled:Atxpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:Atxpsp2res.dll,-22019"
"C:\Program Files\Internet Explorer\IEXPLORE.EXE"="C:\Program Files\Internet Explorer\IEXPLORE.EXE:*SzczerbolnabledZawstydzonynternet Explorer"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*Szczerbolnabled:Microsoft DirectPlay Voice Test"
"C:\Program Files\Gadu-Gadu\gg.exe"="C:\Program Files\Gadu-Gadu\gg.exe:*Szczerbolnabled:Gadu-Gadu - program glowny"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*Szczerbolnabled:Skype"
"C:\Program Files\Java\jre1.5.0\launch4j-tmp\JDownloader.exe"="C:\Program Files\Java\jre1.5.0\launch4j-tmp\JDownloader.exe:*Szczerbolnabled:Java™ 2 Platform Standard Edition binary"
"C:\WINDOWS\system32\java.exe"="C:\WINDOWS\system32\java.exe:*Szczerbolnabled:Java™ 2 Platform Standard Edition binary"
"D:\Program Files\VMware\VMware Player\vmware-authd.exe"="D:\Program Files\VMware\VMware Player\vmware-authd.exe:*Szczerbolnabled:VMware Authd"
"D:\Program Files\Microsoft ActiveSync\rapimgr.exe"="D:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0Szczerbolnabled:ActiveSync RAPI Manager"
"D:\Program Files\Microsoft ActiveSync\wcescomm.exe"="D:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0Szczerbolnabled:ActiveSync Connection Manager"
"D:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="D:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0Szczerbolnabled:ActiveSync Application"
"C:\Program Files\DAP\DAP.exe"="C:\Program Files\DAP\DAP.exe:*Szczerbolnabled:Download Accelerator Plus (DAP)"
"C:\WINDOWS\system32\userinit.exe"="C:\WINDOWS\system32\userinit.exe:*SzczerbolnabledSzczerbolNABLE"
"C:\WINDOWS\Explorer.EXE"="C:\WINDOWS\Explorer.EXE:*SzczerbolnabledSzczerbolNABLE"
"C:\Program Files\Nowe Gadu-Gadu\gg.exe"="C:\Program Files\Nowe Gadu-Gadu\gg.exe:*Szczerbolnabled:Nowe Gadu-Gadu"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*Szczerbolnabled:Atxpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:Atxpsp2res.dll,-22019"
"D:\Program Files\Microsoft ActiveSync\rapimgr.exe"="D:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0Szczerbolnabled:ActiveSync RAPI Manager"
"D:\Program Files\Microsoft ActiveSync\wcescomm.exe"="D:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0Szczerbolnabled:ActiveSync Connection Manager"
"D:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="D:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0Szczerbolnabled:ActiveSync Application"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\##DPEX#D]
shell\AutoRun\command - V:\RunGame.exe


======List of files/folders created in the last 1 months======

2009-05-23 13:59:42 ----SHD---- C:\Config.Msi
2009-05-23 10:30:20 ----D---- C:\Program Files\Avira
2009-05-23 10:30:20 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Avira
2009-05-23 09:48:46 ----D---- C:\Documents and Settings\Kuba\Dane aplikacji\Malwarebytes
2009-05-23 09:48:37 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-05-23 09:48:37 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
2009-05-20 18:24:40 ----A---- C:\Demux_sailor.txt
2009-05-19 21:09:25 ----RSH---- C:\WINDOWS\system32\12520850y.exe
2009-05-13 22:13:41 ----D---- C:\Documents and Settings\Kuba\Dane aplikacji\Help
2009-05-13 21:45:39 ----D---- C:\WINDOWS\Downloaded Installations
2009-05-11 20:55:58 ----D---- C:\Program Files\JAMDAT Mobile
2009-05-11 20:55:16 ----A---- C:\WINDOWS\unvise32.exe
2009-05-11 20:54:51 ----D---- C:\Program Files\Hexacto Games
2009-05-11 15:19:49 ----A---- C:\WINDOWS\ntbtlog.txt
2009-05-11 13:09:42 ----HD---- C:\WINDOWS\PIF
2009-05-10 19:29:48 ----A---- C:\flashnul.exe
2009-05-10 15:41:10 ----A---- C:\WINDOWS\QTW.ini
2009-05-10 15:38:51 ----D---- C:\Program Files\Riven
2009-05-10 14:18:47 ----D---- C:\Documents and Settings\Kuba\Dane aplikacji\VMware
2009-05-10 14:15:05 ----RA---- C:\WINDOWS\system32\vnetinst.dll
2009-05-10 14:14:58 ----A---- C:\WINDOWS\system32\vmnetdhcp.exe
2009-05-10 14:14:54 ----A---- C:\WINDOWS\system32\vmnat.exe
2009-05-10 14:14:49 ----RA---- C:\WINDOWS\system32\vmnetbridge.dll
2009-05-10 14:14:47 ----A---- C:\WINDOWS\system32\vnetlib.dll
2009-05-10 14:14:00 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\VMware
2009-05-09 18:30:59 ----A---- C:\bootpart.exe
2009-05-09 17:11:37 ----A---- C:\dd.exe
2009-05-09 17:03:25 ----A---- C:\WINDOWS\system32\AutoPartNt.exe
2009-05-09 17:03:23 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Acronis
2009-05-09 14:33:24 ----A---- C:\WINDOWS\system32\wnaspi32.dll
2009-05-06 18:08:07 ----D---- C:\Documents and Settings\Kuba\Dane aplikacji\OpenFM
2009-05-06 18:05:28 ----D---- C:\Documents and Settings\Kuba\Dane aplikacji\Nowe Gadu-Gadu
2009-05-06 18:01:54 ----D---- C:\Program Files\Nowe Gadu-Gadu
2009-05-06 17:09:27 ----D---- C:\Documents and Settings\Kuba\Dane aplikacji\DivX
2009-05-06 17:07:40 ----N---- C:\WINDOWS\system32\vxblock.dll
2009-05-06 17:07:40 ----N---- C:\WINDOWS\system32\pxwave.dll
2009-05-06 17:07:40 ----N---- C:\WINDOWS\system32\pxsfs.dll
2009-05-06 17:07:40 ----N---- C:\WINDOWS\system32\pxmas.dll
2009-05-06 17:07:40 ----N---- C:\WINDOWS\system32\pxinsi64.exe
2009-05-06 17:07:40 ----N---- C:\WINDOWS\system32\pxinsa64.exe
2009-05-06 17:07:40 ----N---- C:\WINDOWS\system32\pxhpinst.exe
2009-05-06 17:07:40 ----N---- C:\WINDOWS\system32\pxdrv.dll
2009-05-06 17:07:40 ----N---- C:\WINDOWS\system32\pxcpyi64.exe
2009-05-06 17:07:40 ----N---- C:\WINDOWS\system32\pxcpya64.exe
2009-05-06 17:07:40 ----N---- C:\WINDOWS\system32\pxafs.dll
2009-05-06 17:07:40 ----N---- C:\WINDOWS\system32\px.dll
2009-05-06 17:07:09 ----D---- C:\Program Files\DivX
2009-05-06 17:07:09 ----D---- C:\Program Files\Common Files\DivX Shared
2009-05-05 19:37:22 ----D---- C:\Program Files\trend micro
2009-05-05 19:37:21 ----D---- C:\rsit
2009-05-04 20:06:43 ----D---- C:\Program Files\QuickTime
2009-05-04 20:06:42 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Apple Computer
2009-05-04 20:06:15 ----D---- C:\Program Files\Apple Software Update
2009-05-04 20:06:15 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Apple
2009-05-02 22:27:50 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2009-05-02 22:27:36 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2009-05-02 22:27:22 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2009-05-02 22:27:08 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2009-05-02 22:26:54 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
2009-05-02 22:26:40 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2009-05-02 22:26:27 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
2009-05-02 22:25:59 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2009-05-02 22:25:42 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2009-05-02 22:25:29 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2009-05-02 22:22:45 ----A---- C:\WINDOWS\system32\MRT.exe
2009-05-02 22:22:11 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2009-05-02 22:21:47 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
2009-05-02 22:21:30 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2009-05-02 22:21:13 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2009-05-02 22:20:57 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2009-05-02 22:20:44 ----HDC---- C:\WINDOWS\$NtUninstallKB960715$
2009-05-02 22:20:30 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2009-05-02 22:20:16 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2009-05-02 22:20:00 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2009-05-02 22:19:43 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2009-05-02 22:19:29 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2009-05-02 22:19:15 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
2009-05-02 22:18:58 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2009-05-02 22:18:41 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2009-05-02 22:18:26 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2009-05-02 22:18:10 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2009-05-02 22:17:57 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2009-05-02 22:17:43 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2009-05-02 22:17:28 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2009-05-02 22:15:43 ----HDC---- C:\WINDOWS\$NtUninstallKB963027$
2009-05-02 22:15:20 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2009-05-02 20:41:28 ----D---- C:\Program Files\Startup Manager
2009-05-02 20:41:28 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Startup Manager
2009-05-02 20:36:54 ----D---- C:\Program Files\Common Files\xing shared
2009-05-02 20:36:35 ----A---- C:\WINDOWS\system32\rmoc3260.dll
2009-05-02 20:36:05 ----A---- C:\WINDOWS\system32\pndx5032.dll
2009-05-02 20:36:05 ----A---- C:\WINDOWS\system32\pndx5016.dll
2009-05-02 20:36:02 ----D---- C:\Program Files\Real
2009-05-02 20:36:01 ----A---- C:\WINDOWS\system32\pncrt.dll
2009-05-02 20:36:01 ----A---- C:\WINDOWS\system32\msvcr71.dll
2009-05-02 20:36:01 ----A---- C:\WINDOWS\system32\msvcp71.dll
2009-05-02 20:35:51 ----D---- C:\Program Files\Common Files\Real
2009-05-02 20:35:47 ----D---- C:\Documents and Settings\Kuba\Dane aplikacji\Real
2009-04-28 21:53:08 ----A---- C:\WINDOWS\system32\chtbrkr.dll
2009-04-28 21:53:08 ----A---- C:\WINDOWS\system32\chsbrkr.dll
2009-04-28 21:53:07 ----A---- C:\WINDOWS\system32\korwbrkr.dll
2009-04-28 21:53:06 ----A---- C:\WINDOWS\system32\msir3jp.dll
2009-04-28 21:52:57 ----A---- C:\WINDOWS\system32\kbd101a.dll
2009-04-28 21:52:51 ----A---- C:\WINDOWS\system32\kbdnecNT.dll
2009-04-28 21:52:51 ----A---- C:\WINDOWS\system32\kbdnecAT.dll
2009-04-28 21:52:51 ----A---- C:\WINDOWS\system32\kbdnec95.dll
2009-04-28 21:52:41 ----A---- C:\WINDOWS\system32\c_is2022.dll
2009-04-28 21:52:37 ----A---- C:\WINDOWS\system32\uniime.dll
2009-04-28 21:52:31 ----A---- C:\WINDOWS\system32\c_g18030.dll
2009-04-28 21:52:30 ----A---- C:\WINDOWS\system32\kbdlk41j.dll
2009-04-28 21:52:30 ----A---- C:\WINDOWS\system32\kbdlk41a.dll
2009-04-28 21:52:30 ----A---- C:\WINDOWS\system32\kbdibm02.dll
2009-04-28 21:52:30 ----A---- C:\WINDOWS\system32\kbdax2.dll
2009-04-28 21:52:30 ----A---- C:\WINDOWS\system32\kbd106n.dll
2009-04-28 21:52:30 ----A---- C:\WINDOWS\system32\kbd101.dll
2009-04-28 21:52:30 ----A---- C:\WINDOWS\system32\imjp81k.dll
2009-04-28 21:52:30 ----A---- C:\WINDOWS\system32\f3ahvoas.dll
2009-04-28 21:52:25 ----A---- C:\WINDOWS\system32\kbdkor.dll
2009-04-28 21:52:25 ----A---- C:\WINDOWS\system32\kbdjpn.dll
2009-04-28 21:52:25 ----A---- C:\WINDOWS\system32\kbd103.dll
2009-04-28 21:52:25 ----A---- C:\WINDOWS\system32\kbd101c.dll
2009-04-28 21:52:19 ----A---- C:\WINDOWS\system32\kbd101b.dll
2009-04-28 21:52:16 ----A---- C:\WINDOWS\system32\kbd106.dll
2009-04-28 21:52:15 ----A---- C:\WINDOWS\system32\Thawbrkr.dll
2009-04-28 21:52:13 ----A---- C:\WINDOWS\system32\c_iscii.dll
2009-04-28 21:52:11 ----A---- C:\WINDOWS\system32\kbdusa.dll
2009-04-28 21:52:04 ----A---- C:\WINDOWS\system32\ftlx041e.dll
2009-04-26 21:24:28 ----D---- C:\Program Files\InterVideo
2009-04-26 21:23:38 ----D---- C:\WINDOWS\crescentec
2009-04-26 19:37:09 ----D---- C:\WINDOWS\system32\PreInstall
2009-04-26 19:37:05 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2009-04-26 19:37:03 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$

======List of files/folders modified in the last 1 months======

2009-05-23 14:01:14 ----D---- C:\WINDOWS\Temp
2009-05-23 14:00:03 ----D---- C:\Program Files\Mozilla Firefox
2009-05-23 14:00:02 ----SHD---- C:\WINDOWS\Installer
2009-05-23 13:59:58 ----D---- C:\WINDOWS\WinSxS
2009-05-23 13:56:44 ----D---- C:\WINDOWS\system32\CatRoot2
2009-05-23 13:56:36 ----D---- C:\WINDOWS
2009-05-23 13:56:19 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-05-23 11:39:01 ----D---- C:\Program Files\PowerArchiver
2009-05-23 10:42:35 ----AD---- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
2009-05-23 10:30:29 ----HD---- C:\WINDOWS\inf
2009-05-23 10:30:29 ----D---- C:\WINDOWS\system32\drivers
2009-05-23 10:30:20 ----RD---- C:\Program Files
2009-05-23 10:25:47 ----D---- C:\WINDOWS\system32
2009-05-22 10:06:04 ----D---- C:\WINDOWS\Prefetch
2009-05-19 20:16:19 ----A---- C:\WINDOWS\system.ini
2009-05-19 19:41:27 ----D---- C:\Program Files\Google
2009-05-13 22:07:07 ----D---- C:\Program Files\Common Files
2009-05-12 21:23:34 ----ASH---- C:\boot.ini
2009-05-11 21:01:37 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-05-11 21:01:31 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-05-11 21:01:22 ----D---- C:\WINDOWS\Help
2009-05-11 21:01:21 ----D---- C:\Program Files\Common Files\Microsoft Shared
2009-05-11 15:20:20 ----D---- C:\Documents and Settings
2009-05-10 15:38:51 ----HD---- C:\Program Files\InstallShield Installation Information
2009-05-10 14:14:14 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-05-09 14:51:03 ----SD---- C:\Documents and Settings\Kuba\Dane aplikacji\Microsoft
2009-05-07 20:36:27 ----D---- C:\Program Files\DAEMON Tools Toolbar
2009-05-07 15:58:36 ----SD---- C:\WINDOWS\Tasks
2009-05-06 18:05:13 ----D---- C:\Program Files\Gadu-Gadu
2009-05-05 20:02:27 ----D---- C:\Program Files\Adobe
2009-05-05 19:57:49 ----D---- C:\Documents and Settings\Kuba\Dane aplikacji\Adobe
2009-05-04 20:07:32 ----D---- C:\Program Files\Internet Explorer
2009-05-03 10:59:55 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\McAfee
2009-05-03 10:51:23 ----D---- C:\WINDOWS\system32\wbem
2009-05-03 10:51:22 ----D---- C:\WINDOWS\AppPatch
2009-05-02 22:27:48 ----HD---- C:\WINDOWS\$hf_mig$
2009-05-02 22:27:42 ----A---- C:\WINDOWS\imsins.BAK
2009-05-02 22:27:11 ----D---- C:\Program Files\Messenger
2009-05-02 22:22:46 ----D---- C:\WINDOWS\Debug
2009-04-28 21:53:02 ----RSD---- C:\WINDOWS\Fonts
2009-04-26 21:35:01 ----A---- C:\WINDOWS\avertv.ini
2009-04-26 21:23:37 ----D---- C:\WINDOWS\twain_32

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-15 40448]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-02-13 28376]
R1 WS2IFSL;Środowisko wspomagające dostawcę usług innych niż IFS - Windows Socket 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2008-04-15 12032]
R2 DOSMEMIO;MEMIO; \??\C:\WINDOWS\system32\MEMIO.SYS []
R2 hcmon;VMware hcmon; \??\C:\WINDOWS\system32\drivers\hcmon.sys []
R2 vmci;VMware vmci; \??\C:\WINDOWS\system32\Drivers\vmci.sys []
R2 VMnetBridge;VMware Bridge Protocol; C:\WINDOWS\system32\DRIVERS\vmnetbridge.sys [2009-03-26 31280]
R2 VMnetuserif;VMware Network Application Interface; \??\C:\WINDOWS\system32\drivers\vmnetuserif.sys []
R2 vmx86;VMware vmx86; \??\C:\WINDOWS\system32\Drivers\vmx86.sys []
R2 vstor2-ws60;Vstor2 WS60 Virtual Storage Driver; \??\D:\Program Files\VMware\VMware Player\vstor2-ws60.sys []
R3 AR5416;Atheros AR5008 Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athw.sys [2008-10-08 1334432]
R3 btaudio;Urządzenie dźwiękowe Bluetooth; C:\WINDOWS\system32\drivers\btaudio.sys [2008-07-27 539640]
R3 BTDriver;Sterownik do komunikacji wirtualnej Bluetooth; C:\WINDOWS\system32\DRIVERS\btport.sys [2008-07-27 37424]
R3 BTKRNL;Licznik magistrali Bluetooth; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2008-07-29 879832]
R3 BTWDNDIS;Serwer dostępu do sieci LAN Bluetooth; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2008-07-29 156816]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2008-07-27 74688]
R3 CmBatt;Sterownik baterii Microsoft o metodzie kontroli ACPI; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-14 13952]
R3 DNSeFilter;DNSeFilter; C:\WINDOWS\system32\drivers\SamsungEDS.sys [2008-01-14 30208]
R3 HDAudBus;Sterownik magistrali Microsoft UAA dla High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-15 144384]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-15 5854752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-08-27 4753920]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2008-08-28 224736]
R3 usbehci;Sterownik Miniport rozszerzonego kontrolera hosta USB 2.0 Microsoft; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Standardowy sterownik koncentratora USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 VMC326;Vimicro Camera Service VMC326; C:\WINDOWS\System32\Drivers\VMC326.sys [2008-09-23 238464]
R3 vmkbd;VMware kbd; \??\C:\WINDOWS\system32\drivers\VMkbd.sys []
R3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\WINDOWS\system32\DRIVERS\vmnetadapter.sys [2009-03-26 16560]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2008-11-07 291328]
S2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-03-24 55640]
S3 a3v349l9;a3v349l9; C:\WINDOWS\system32\drivers\a3v349l9.sys []
S3 ADDMEM;ADDMEM; \??\C:\DOCUME~1\Kuba\USTAWI~1\Temp\__Samsung_Update\ADDMEM.SYS []
S3 AVCamUSB20;AVerTV USB 2.0; C:\WINDOWS\System32\Drivers\AVTVCsMini20.sys [2004-03-10 65616]
S3 CCDECODE;Dekoder napisów; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 HidUsb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160]
S3 MSTEE;Konwerter strumieni Tee/Sink-to-Sink Microsoft Streaming; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;Koder-dekoder NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Połączenie TV/wideo firmy Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 Usb20Scan;USB 2.0 Still Image; C:\WINDOWS\System32\Drivers\cresscan.sys [2002-11-05 12692]
S3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-15 32128]
S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 usbvideo;Urządzenie wideo USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-14 121984]
S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-11-06 28672]
S3 WSTCODEC;Kodery-dekodery teletekstu w standardzie światowym; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-04-01 108289]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2008-09-17 264800]
R2 VMAuthdService;VMware Authorization Service; D:\Program Files\VMware\VMware Player\vmware-authd.exe [2009-03-26 113200]
R2 VMnetDHCP;VMware DHCP Service; C:\WINDOWS\system32\vmnetdhcp.exe [2009-03-26 326192]
R2 VMware NAT Service;VMware NAT Service; C:\WINDOWS\system32\vmnat.exe [2009-03-26 399920]
R2 yksvc;Marvell Yukon Service; ykx32mpcoinst,serviceStartProc []
S2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-03-02 185089]
S2 gupdate1c9c17b7ba3f290;Usługa Google Update (gupdate1c9c17b7ba3f290); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-04-20 133104]
S2 mnmsrvcRSVP;NetMeeting Remote Desktop Sharing mnmsrvcRSVP; C:\WINDOWS\system32\12520850y.exe [2009-05-19 53248]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 ufad-ws60;VMware Agent Service; D:\Program Files\VMware\VMware Player\vmware-ufad.exe [2008-12-01 191024]

-----------------EOF-----------------
 System operacyjny: windows_xp_2003 Przeglądarka: firefox
#4
RE: WAŻNE! Mam wirusa!
Przeczytaj dokładnie ten temat:
http://forum.pcformat.pl/thread-153714.html
a następnie wykonaj log z Combofix.

Cytat:Nie włącza się z autostartu i jak klikam w ikonkę to się nic nei dzieje
To może być Cutwail i masz nałożony debugging na niektóre programy...
Nie odpowiadam w tematach z działu 'Bezpieczeństwo', w których brakuje pełnego zestawu logów:
http://forum.pcformat.pl/WAZNE-Jak-zaloz...ec-WAZNE-t
Jeżeli prowadziłem wątek i w nim nie odpowiadam przez 3 dni-proszę o przypomnienie na PW.
Nie pomagam na PW.
Prośba o przetestowanie aplikacji: http://forum.pcformat.pl/Prosba-o-przete...L-OpenGL-t
 System operacyjny: linux Przeglądarka: firefox
#5
RE: WAŻNE! Mam wirusa!
Ja się najbardziej zastanawiam czy sobie nie sformatować partycji c tylko mam problemik nie mam napędu. Mam płytę z Samsunga do przywracania systemu tylko jak to póżniej zrobić?
 System operacyjny: windows_xp_2003 Przeglądarka: firefox
Programy: Polecane / Nowe / Inne



Użytkownicy forum szukali:
jak wlaczyc konwerter strumieni tee/sink-to-sink microsoft w menadzeze urzadzensupbackground.exe

Podobne wątki (WAŻNE! Mam wirusa!)
Wątek: Autor Odpowiedzi: Wyświetleń: Ostatni post
  usuwanie wirusa trojany ... maciomen201 13 19296 01.11.2016, 13:25
Ostatni post: morderca
  Laptop win 10 strasznie zwolnił pracę pewnie przez wirusa Vesiga 12 14913 10.09.2016, 20:20
Ostatni post: Vesiga
Sad problem z usuwaniem wirusa niciasty 9 2533 03.08.2016, 21:50
Ostatni post: niciasty

Skocz do: