Skocz do zawartości

BlueScreen c000021a

Junioreczek

dodany przez Junioreczek,
w Diagnostyka błędów i awarii

 Udostępnij Obserwujący 0

Recommended Posts

Junioreczek

Junioreczek 0

Napisano
Napisano

Logi z Combofix : ComboFix 13-09-28.02 - KUBAandDANKA 2013-09-29  10:21:16.1.2 - x86
Microsoft Windows 7 Ultimate   6.1.7601.1.1250.48.1045.18.2047.754 [GMT 2:00]
Uruchomiony z: c:\users\KUBAandDANKA\Downloads\ComboFix.exe
AV: avast! Internet Security *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
FW: avast! Internet Security *Enabled* {131692B0-0864-D491-4E21-3A3A1D8BBB47}
SP: avast! Internet Security *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Usunięto   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\autorun.inf
c:\users\KUBAandDANKA\AppData\Local\lollipop
c:\users\KUBAandDANKA\AppData\Local\lollipop\Lollipop.exe
c:\users\KUBAandDANKA\AppData\Roaming\KUBAANDDANKA-PC
c:\users\KUBAandDANKA\AppData\Roaming\KUBAANDDANKA-PC\LOGS\2013-08-30.log
c:\users\KUBAandDANKA\AppData\Roaming\KUBAANDDANKA-PC\LOGS\2013-09-22.log
c:\windows\security\Database\tmp.edb
c:\windows\system32\tmp796A.tmp
.
.
(((((((((((((((((((((((((   Pliki utworzone od 2013-08-28 do 2013-09-29  )))))))))))))))))))))))))))))))
.
.
2013-09-29 08:51 . 2013-09-29 08:51    --------    d-----w-    c:\users\Default\AppData\Local\temp
2013-09-28 18:41 . 2013-09-29 08:05    --------    d-----w-    c:\users\KUBAandDANKA\AppData\Local\LogMeIn Hamachi
2013-09-28 18:40 . 2013-09-28 18:40    --------    d-----w-    c:\program files\LogMeIn Hamachi
2013-09-28 07:31 . 2013-09-28 07:31    --------    d-----w-    c:\users\KUBAandDANKA\AppData\Local\TechSmith
2013-09-27 17:18 . 2013-09-27 17:18    --------    d-----w-    c:\programdata\TechSmith
2013-09-27 17:07 . 2009-08-19 03:18    107864    ----a-w-    c:\windows\system32\tsccvid.dll
2013-09-27 17:07 . 2013-09-27 17:07    --------    d-----w-    c:\windows\system32\QuickTime
2013-09-27 17:07 . 2013-09-27 17:07    --------    d-----w-    c:\program files\QuickTime
2013-09-27 17:07 . 2013-09-27 17:07    --------    d-----w-    c:\program files\Common Files\TechSmith Shared
2013-09-27 17:07 . 2013-09-27 17:07    --------    d-----w-    c:\program files\TechSmith
2013-09-27 16:20 . 2013-09-27 16:20    --------    d-----w-    c:\program files\Bandicam
2013-09-27 16:20 . 2013-09-27 16:20    --------    d-----w-    c:\program files\BandiMPEG1
2013-09-27 12:36 . 2013-09-27 12:36    --------    d-----w-    c:\windows\system32\wbem\MOF\good
2013-09-27 12:36 . 2013-09-27 12:36    --------    d-----w-    c:\windows\system32\wbem\MOF\bad
2013-09-27 12:18 . 2013-09-27 12:18    --------    d-----w-    c:\windows\system32\wbem\Logs
2013-09-27 12:18 . 2013-08-30 07:48    29816    ----a-w-    c:\windows\system32\drivers\aswFsBlk.sys
2013-09-27 12:18 . 2013-08-30 07:48    369584    ----a-w-    c:\windows\system32\drivers\aswSP.sys
2013-09-27 12:17 . 2013-08-30 07:48    204784    ----a-w-    c:\windows\system32\drivers\aswNdis2.sys
2013-09-27 12:17 . 2013-08-30 07:48    104752    ----a-w-    c:\windows\system32\drivers\aswFW.sys
2013-09-27 12:17 . 2013-08-30 07:48    56080    ----a-w-    c:\windows\system32\drivers\aswTdi.sys
2013-09-27 12:17 . 2013-08-30 07:48    61680    ----a-w-    c:\windows\system32\drivers\aswRdr2.sys
2013-09-27 12:17 . 2013-08-30 07:48    21576    ----a-w-    c:\windows\system32\drivers\aswKbd.sys
2013-09-27 12:17 . 2013-08-30 07:48    770344    ----a-w-    c:\windows\system32\drivers\aswSnx.sys
2013-09-27 12:17 . 2013-08-30 07:48    177864    ----a-w-    c:\windows\system32\drivers\aswVmm.sys
2013-09-27 12:17 . 2013-08-30 07:48    49376    ----a-w-    c:\windows\system32\drivers\aswRvrt.sys
2013-09-27 12:17 . 2013-08-30 07:48    66336    ----a-w-    c:\windows\system32\drivers\aswMonFlt.sys
2013-09-27 12:17 . 2013-08-30 07:47    229648    ----a-w-    c:\windows\system32\aswBoot.exe
2013-09-27 12:16 . 2013-08-30 07:47    41664    ----a-w-    c:\windows\avastSS.scr
2013-09-27 12:16 . 2013-07-17 09:17    12112    ----a-w-    c:\windows\system32\drivers\aswNdis.sys
2013-09-27 12:15 . 2013-09-27 12:15    --------    d-----w-    c:\program files\AVAST Software
2013-09-27 12:10 . 2013-09-27 12:15    --------    d-----w-    c:\programdata\AVAST Software
2013-09-27 10:33 . 2013-09-27 10:33    16048    ----a-w-    c:\windows\system32\drivers\GdPhyMem.sys
2013-09-27 10:33 . 2013-09-27 10:33    --------    d-----w-    c:\users\KUBAandDANKA\AppData\Local\G DATA
2013-09-27 10:10 . 2013-09-27 12:35    --------    d-----w-    c:\program files\G Data
2013-09-27 10:05 . 2013-09-27 10:47    --------    d-----w-    c:\programdata\G Data
2013-09-22 07:33 . 2013-09-22 07:33    409600    ----a-w-    c:\windows\system32\wrap_oal.dll
2013-09-22 07:33 . 2013-09-22 07:33    114688    ----a-w-    c:\windows\system32\OpenAL32.dll
2013-09-22 07:33 . 2013-09-22 07:33    --------    d-----w-    c:\program files\OpenAL
2013-09-22 07:30 . 2013-09-22 07:30    --------    d-----w-    c:\program files\Paradox Interactive
2013-09-21 13:59 . 2013-09-22 10:34    --------    d-----w-    c:\users\KUBAandDANKA\.gstreamer-0.10
2013-09-21 13:59 . 2013-09-22 10:44    --------    d-----w-    c:\users\KUBAandDANKA\AppData\Local\ChomikBox
2013-09-20 16:52 . 2013-09-20 17:36    --------    d-----w-    c:\users\KUBAandDANKA\AppData\Local\Roblox
2013-09-19 15:31 . 2013-09-19 15:31    --------    d-----w-    c:\programdata\VideoMach
2013-09-13 16:56 . 2005-05-26 13:34    2297552    ----a-w-    c:\windows\system32\d3dx9_26.dll
2013-09-13 16:39 . 2013-09-13 16:39    --------    d-----w-    c:\program files\Eidos
2013-09-10 17:33 . 2013-09-10 17:39    --------    d-----w-    C:\dsj
2013-09-10 17:33 . 2013-09-10 17:33    --------    d-----w-    C:\Nowy folder
2013-09-08 15:28 . 2013-09-28 19:36    --------    d-----w-    c:\users\KUBAandDANKA\AppData\Roaming\.minecraft
2013-09-08 15:27 . 2013-09-08 15:27    --------    d-----w-    c:\program files\Common Files\Java
2013-09-08 15:27 . 2013-09-08 15:27    867240    ----a-w-    c:\windows\system32\npDeployJava1.dll
2013-09-08 15:27 . 2013-09-08 15:27    789416    ----a-w-    c:\windows\system32\deployJava1.dll
2013-09-08 15:27 . 2013-09-08 15:27    94632    ----a-w-    c:\windows\system32\WindowsAccessBridge.dll
2013-09-08 15:27 . 2013-09-08 15:27    --------    d-----w-    c:\program files\Java
2013-09-07 15:32 . 2013-09-07 18:31    --------    d-----w-    c:\program files\Postal 2 STP
2013-09-07 14:39 . 2013-09-07 14:39    --------    d-----w-    c:\program files\CSR
2013-09-07 14:24 . 2013-09-07 14:24    --------    d-----w-    c:\users\KUBAandDANKA\AppData\Roaming\Ashampoo
2013-09-06 17:13 . 2013-09-06 17:13    --------    d-----w-    c:\programdata\Astroburn Lite
2013-09-06 16:37 . 2013-09-10 17:13    --------    d-----w-    C:\Disco-polo
2013-09-04 15:56 . 2013-09-04 15:56    --------    d-----w-    c:\program files\SHOUTcast
2013-09-01 12:41 . 2013-09-01 12:59    --------    d-----w-    c:\program files\Google
2013-09-01 12:40 . 2013-09-01 12:40    --------    d-----w-    c:\users\KUBAandDANKA\AppData\Local\Google
2013-09-01 10:18 . 2013-09-01 10:18    --------    d-----w-    c:\users\KUBAandDANKA\AppData\Local\SlimWare Utilities Inc
2013-09-01 10:17 . 2013-09-22 11:20    --------    d-----w-    c:\program files\SlimCleaner
2013-09-01 10:04 . 2013-09-01 10:04    --------    d-----w-    c:\programdata\BlueSprig
2013-09-01 10:04 . 2013-09-01 10:04    --------    d-----w-    c:\program files\BlueSprig
2013-08-31 18:24 . 2012-10-11 03:08    34432    ----a-w-    c:\windows\system32\drivers\mcvidrv.sys
2013-08-31 18:20 . 2013-09-22 10:57    --------    d-----w-    c:\program files\ManyCam
2013-08-31 16:45 . 2013-09-22 10:51    --------    d-----w-    c:\users\KUBAandDANKA\AppData\Local\Facebook
2013-08-31 12:56 . 2010-07-25 20:23    544768    ----a-w-    c:\windows\system32\wbocx.ocx
2013-08-31 12:56 . 2010-07-25 20:23    56496    ----a-w-    c:\windows\system32\wbhelp2.dll
2013-08-31 12:56 . 2010-07-25 20:23    33968    ----a-w-    c:\windows\system32\anim.dll
2013-08-31 12:56 . 2010-07-25 20:23    258352    ----a-w-    c:\windows\system32\unicows.dll
2013-08-31 12:56 . 2010-07-25 20:23    4608    ----a-w-    c:\windows\system32\W95INF32.DLL
2013-08-31 12:56 . 2010-07-25 20:23    2272    ----a-w-    c:\windows\system32\W95INF16.DLL
2013-08-31 12:56 . 2013-08-31 13:01    --------    d-----w-    c:\program files\WinUtilities
2013-08-31 11:07 . 2013-08-31 11:07    --------    d-----w-    c:\program files\Common Files\Skype
2013-08-31 11:07 . 2013-08-31 11:07    --------    d-----r-    c:\program files\Skype
2013-08-31 07:29 . 2013-08-31 07:29    --------    d--h--r-    c:\users\KUBAandDANKA\AppData\Roaming\SecuROM
2013-08-30 16:35 . 2013-08-30 16:35    1461992    ----a-w-    c:\windows\system32\WdfCoInstaller01009.dll
2013-08-30 16:35 . 2013-08-30 16:35    62624    ----a-w-    c:\windows\system32\drivers\AXMount.sys
2013-08-30 16:35 . 2013-09-22 10:28    --------    d-----w-    c:\program files\AXTM
.
.
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-09-29 08:05 . 2008-07-03 01:53    45056    ----a-w-    c:\windows\system32\acovcnt.exe
2013-09-22 09:58 . 2013-08-10 16:23    409088    ----a-w-    c:\windows\system32\systemcpl.dll
2013-09-22 09:58 . 2013-08-10 16:23    13824    ----a-w-    c:\windows\system32\slwga.dll
2013-09-22 09:58 . 2013-08-10 16:26    811520    ----a-w-    c:\windows\system32\user32.dll
2013-08-17 07:20 . 2013-08-17 07:20    745472    ----a-w-    c:\windows\system32\MsSpellCheckingFacility.exe
2013-08-17 07:20 . 2013-08-17 07:20    185344    ----a-w-    c:\windows\system32\elshyph.dll
2013-08-17 07:20 . 2013-08-17 07:20    71680    ----a-w-    c:\windows\system32\RegisterIEPKEYs.exe
2013-08-17 07:20 . 2013-08-17 07:20    158720    ----a-w-    c:\windows\system32\msls31.dll
2013-08-17 07:20 . 2013-08-17 07:20    1767936    ----a-w-    c:\windows\system32\wininet.dll
2013-08-17 07:20 . 2013-08-17 07:20    138752    ----a-w-    c:\windows\system32\wextract.exe
2013-08-17 07:20 . 2013-08-17 07:20    150528    ----a-w-    c:\windows\system32\iexpress.exe
2013-08-17 07:20 . 2013-08-17 07:20    523264    ----a-w-    c:\windows\system32\vbscript.dll
2013-08-17 07:20 . 2013-08-17 07:20    2706432    ----a-w-    c:\windows\system32\mshtml.tlb
2013-08-17 07:20 . 2013-08-17 07:20    137216    ----a-w-    c:\windows\system32\ieUnatt.exe
2013-08-17 07:19 . 2013-08-17 07:19    12800    ----a-w-    c:\windows\system32\mshta.exe
2013-08-17 07:19 . 2013-08-17 07:19    38400    ----a-w-    c:\windows\system32\imgutil.dll
2013-08-17 07:19 . 2013-08-17 07:19    73728    ----a-w-    c:\windows\system32\SetIEInstalledDate.exe
2013-08-17 07:19 . 2013-08-17 07:19    719360    ----a-w-    c:\windows\system32\mshtmlmedia.dll
2013-08-17 07:19 . 2013-08-17 07:19    61952    ----a-w-    c:\windows\system32\tdc.ocx
2013-08-17 07:19 . 2013-08-17 07:19    61440    ----a-w-    c:\windows\system32\iesetup.dll
2013-08-17 07:19 . 2013-08-17 07:19    48640    ----a-w-    c:\windows\system32\mshtmler.dll
2013-08-17 07:19 . 2013-08-17 07:19    361984    ----a-w-    c:\windows\system32\html.iec
2013-08-17 07:19 . 2013-08-17 07:19    2877440    ----a-w-    c:\windows\system32\jscript9.dll
2013-08-17 07:19 . 2013-08-17 07:19    23040    ----a-w-    c:\windows\system32\licmgr10.dll
2013-08-17 07:19 . 2013-08-17 07:19    1441280    ----a-w-    c:\windows\system32\inetcpl.cpl
2013-08-17 07:19 . 2013-08-17 07:19    110592    ----a-w-    c:\windows\system32\IEAdvpack.dll
2013-08-17 07:19 . 2013-08-17 07:19    109056    ----a-w-    c:\windows\system32\iesysprep.dll
2013-08-17 07:17 . 2013-08-17 07:17    49152    ----a-w-    c:\windows\system32\taskhost.exe
2013-08-17 07:14 . 2013-08-17 07:14    4096    ---ha-w-    c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-08-17 07:14 . 2013-08-17 07:14    3072    ---ha-w-    c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-08-17 07:14 . 2013-08-17 07:14    9728    ---ha-w-    c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-08-17 07:14 . 2013-08-17 07:14    5632    ---ha-w-    c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-08-17 07:14 . 2013-08-17 07:14    5632    ---ha-w-    c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-08-17 07:14 . 2013-08-17 07:14    3072    ---ha-w-    c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-08-17 07:14 . 2013-08-17 07:14    2560    ---ha-w-    c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-08-17 07:14 . 2013-08-17 07:14    3584    ---ha-w-    c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-08-17 07:14 . 2013-08-17 07:14    10752    ---ha-w-    c:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-08-17 07:14 . 2013-08-17 07:14    1158144    ----a-w-    c:\windows\system32\XpsPrint.dll
2013-08-17 07:14 . 2013-08-17 07:14    364544    ----a-w-    c:\windows\system32\XpsGdiConverter.dll
2013-08-17 07:14 . 2013-08-17 07:14    2284544    ----a-w-    c:\windows\system32\msmpeg2vdec.dll
2013-08-17 07:14 . 2013-08-17 07:14    417792    ----a-w-    c:\windows\system32\WMPhoto.dll
2013-08-17 07:14 . 2013-08-17 07:14    906240    ----a-w-    c:\windows\system32\FntCache.dll
2013-08-17 07:14 . 2013-08-17 07:14    604160    ----a-w-    c:\windows\system32\d3d10level9.dll
2013-08-17 07:14 . 2013-08-17 07:14    3419136    ----a-w-    c:\windows\system32\d2d1.dll
2013-08-17 07:14 . 2013-08-17 07:14    249856    ----a-w-    c:\windows\system32\d3d10_1core.dll
2013-08-17 07:14 . 2013-08-17 07:14    220160    ----a-w-    c:\windows\system32\d3d10core.dll
2013-08-17 07:14 . 2013-08-17 07:14    207872    ----a-w-    c:\windows\system32\WindowsCodecsExt.dll
2013-08-17 07:14 . 2013-08-17 07:14    161792    ----a-w-    c:\windows\system32\d3d10_1.dll
2013-08-17 07:14 . 2013-08-17 07:14    1230336    ----a-w-    c:\windows\system32\WindowsCodecs.dll
2013-08-17 07:14 . 2013-08-17 07:14    1080832    ----a-w-    c:\windows\system32\d3d10.dll
2013-08-17 07:14 . 2013-08-17 07:14    1988096    ----a-w-    c:\windows\system32\d3d10warp.dll
2013-08-17 07:14 . 2013-08-17 07:14    293376    ----a-w-    c:\windows\system32\dxgi.dll
2013-08-17 07:14 . 2013-08-17 07:14    187392    ----a-w-    c:\windows\system32\UIAnimation.dll
2013-08-17 07:04 . 2013-08-17 07:04    1505280    ----a-w-    c:\windows\system32\d3d11.dll
2013-08-16 06:52 . 2009-07-14 02:05    152576    ----a-w-    c:\windows\system32\msclmd.dll
2013-08-13 12:52 . 2013-08-13 12:25    151608    ----a-w-    c:\windows\UTP.exe
2013-08-13 12:20 . 2009-07-13 23:39    37376    ----a-w-    c:\windows\system32\themeservice.dll
2013-08-13 12:20 . 2009-07-13 23:40    249856    ----a-w-    c:\windows\system32\uxtheme.dll
2013-08-10 08:23 . 2013-08-13 12:25    1495040    ----a-w-    c:\windows\system32\ExplorerFrame_backup_wti.dll
2013-08-09 15:02 . 2013-08-09 15:02    466008    ----a-w-    c:\windows\system32\drivers\sptd.sys
2013-08-07 08:51 . 2013-08-07 08:51    249856    ------w-    c:\windows\Setup1.exe
2013-08-07 08:51 . 2013-08-07 08:51    73216    ----a-w-    c:\windows\ST6UNST.EXE
2013-08-05 08:21 . 2013-08-01 13:34    60872    ----a-w-    c:\programdata\Microsoft\Windows Defender\Definition Updates\{ACF715E3-800A-4FE5-BAD0-3618E90EEC37}\offreg.dll
2013-08-05 06:15 . 2013-08-05 06:15    66104    ----a-w-    c:\windows\system32\bdmpega.acm
2013-08-05 06:15 . 2013-08-05 06:15    66104    ----a-w-    c:\windows\system32\bdmpegv.dll
2013-08-05 06:15 . 2013-08-05 06:15    23080    ----a-w-    c:\windows\system32\bdmjpeg.dll
2013-07-25 12:53 . 2013-07-25 12:53    71048    ----a-w-    c:\windows\system32\FlashPlayerCPLApp.cpl
2013-07-25 12:53 . 2013-07-25 12:53    692104    ----a-w-    c:\windows\system32\FlashPlayerApp.exe
2013-07-25 08:57 . 2013-08-16 10:43    1620992    ----a-w-    c:\windows\system32\WMVDECOD.DLL
2013-07-19 01:41 . 2013-08-16 10:40    2048    ----a-w-    c:\windows\system32\tzres.dll
2013-07-15 01:34 . 2013-07-27 15:53    7143960    ----a-w-    c:\programdata\Microsoft\Windows Defender\Definition Updates\{ACF715E3-800A-4FE5-BAD0-3618E90EEC37}\mpengine.dll
2013-07-09 07:41 . 2013-07-09 07:41    80328    ----a-w-    c:\windows\xinstaller.dll
2013-07-09 07:41 . 2013-07-09 07:41    35272    ----a-w-    c:\windows\xinstaller.exe
2013-07-09 05:03 . 2013-08-16 10:46    3913664    ----a-w-    c:\windows\system32\ntoskrnl.exe
2013-07-09 05:03 . 2013-08-16 10:46    3968960    ----a-w-    c:\windows\system32\ntkrnlpa.exe
2013-07-09 04:53 . 2013-08-16 10:46    1289096    ----a-w-    c:\windows\system32\ntdll.dll
2013-07-09 04:52 . 2013-08-16 10:50    175104    ----a-w-    c:\windows\system32\wintrust.dll
2013-07-09 04:50 . 2013-08-16 10:50    652800    ----a-w-    c:\windows\system32\rpcrt4.dll
2013-07-09 04:46 . 2013-08-16 10:50    1166848    ----a-w-    c:\windows\system32\crypt32.dll
2013-07-09 04:46 . 2013-08-16 10:50    140288    ----a-w-    c:\windows\system32\cryptsvc.dll
2013-07-09 04:46 . 2013-08-16 10:50    103936    ----a-w-    c:\windows\system32\cryptnet.dll
2013-07-06 05:05 . 2013-08-18 07:28    1293760    ----a-w-    c:\windows\system32\drivers\tcpip.sys
2013-07-04 14:38 . 2013-08-20 10:08    188176    ----a-w-    c:\windows\system32\drivers\VBoxDrv.sys
2013-07-04 14:37 . 2013-08-20 10:08    94480    ----a-w-    c:\windows\system32\drivers\VBoxUSBMon.sys
2013-07-04 14:37 . 2013-07-04 14:37    104720    ----a-w-    c:\windows\system32\drivers\VBoxNetAdp.sys
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[-] 2013-09-22 . 7BD7F45FF37FA0669CD32CA0EF46E22C . 811520 . . [6.1.7601.17514] . . c:\windows\System32\user32.dll
[7] 2010-11-20 . F1DD3ACAEE5E6B4BBC69BC6DF75CEF66 . 811520 . . [6.1.7601.17514] . . c:\windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_cf3fd62ccb9e983d\user32.dll
[7] 2009-07-14 . 34B7E222E81FAFA885F0C5F2CFA56861 . 811520 . . [6.1.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_cd0ec264ceb014a3\user32.dll
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-08-30 07:47    121968    ----a-w-    c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AAADesktopTips]
@="{4562B511-62E9-4533-B7B2-56A8BB10B482}"
[HKEY_CLASSES_ROOT\CLSID\{4562B511-62E9-4533-B7B2-56A8BB10B482}]
2013-07-09 07:41    264648    ----a-w-    c:\users\Public\Thunder Network\KanKan\reghelper\xappex.1.1.1.73.(508).dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 00:08    143360    ----a-w-    c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2007-09-02 495616]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2013-07-25 20684656]
"Steam"="c:\program files\Steam\steam.exe" [2013-09-21 1814440]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-12-06 1029416]
"RtHDVCpl"="RtHDVCpl.exe" [2008-01-07 4853760]
"Skytel"="Skytel.exe" [2007-11-20 1826816]
"SMSERIAL"="c:\program files\Motorola\SMSERIAL\sm56hlpr.exe" [2007-09-03 630784]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
"ASUS Camera ScreenSaver"="c:\windows\ASScrProlog.exe" [2008-07-03 37232]
"ASUS Screen Saver Protector"="c:\windows\ASScrPro.exe" [2008-07-03 33136]
"ASUSTPE"="c:\windows\system32\ASUSTPE.exe" [2007-10-12 106496]
"ATKMEDIA"="c:\program files\ASUS\ATK Media\DMEDIA.EXE" [2006-11-02 61440]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-11-16 641704]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
"ApnTBMon"="c:\program files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" [2013-08-27 1601488]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-08-30 4858968]
"LogMeIn Hamachi Ui"="c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe" [2013-06-28 2255184]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="c:\windows\System32\SPReview\SPReview.exe" [2013-08-12 280576]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
2012-01-05 15:42    75624    ----a-w-    c:\program files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon]
2013-08-27 11:40    1601488    ----a-w-    c:\program files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
2008-03-18 00:59    2289664    ----a-w-    c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PowerForPhone]
2007-08-03 03:52    778240    ----a-w-    c:\program files\P4P\P4P.exe
.
R2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service;c:\program files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-07-25 162672]
R3 DCamUSBET;USB2.0 1.3M UVC WebCam;c:\windows\system32\DRIVERS\etDevice.sys [2007-09-06 474624]
R3 FiltUSBET;ET USB Device Lower Filter;c:\windows\system32\DRIVERS\etFilter.sys [2008-02-05 206464]
R3 ManyCam;ManyCam Virtual Webcam;c:\windows\system32\DRIVERS\mcvidrv.sys [2012-10-11 34432]
R3 mcaudrv_simple;ManyCam Virtual Microphone;c:\windows\system32\drivers\mcaudrv.sys [2013-01-31 22656]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 ScanUSBET;ET USB Still Image Capture Device;c:\windows\system32\DRIVERS\etScan.sys [2008-01-31 6528]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2013-07-04 104720]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;WatAdminSvc;c:\windows\system32\Wat\WatAdminSvc.exe [2013-08-10 1343400]
S0 aswNdis;avast! Firewall NDIS Filter Service;c:\windows\system32\DRIVERS\aswNdis.sys [2013-07-17 12112]
S0 aswNdis2;avast! Firewall Core Firewall Service;c:\windows\system32\drivers\aswNdis2.sys [2013-08-30 204784]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 aswFW;avast! TDI Firewall Driver;c:\windows\system32\drivers\aswFW.sys [2013-08-30 104752]
S1 aswKbd;aswKbd; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-11-16 217088]
S2 APNMCP;Ask Update Service;c:\program files\AskPartnerNetwork\Toolbar\apnmcp.exe [2013-08-27 164816]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-08-30 66336]
S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe [2013-08-30 137960]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2013-06-28 1440080]
S3 SiSGbeLH;Sterownik NDIS 6.0 urządzenia sieci Ethernet SiS191/SiS190;c:\windows\system32\DRIVERS\SiSGB6.sys [2009-07-13 48128]
.
.
Zawartość folderu 'Zaplanowane zadania'
.
2013-09-29 c:\windows\Tasks\AmiUpdXp.job
- c:\users\KUBAandDANKA\AppData\Local\SwvUpdater\Updater.exe [2013-07-25 14:06]
.
2013-09-29 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-09-01 12:41]
.
2013-09-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-09-01 12:41]
.
2013-09-25 c:\windows\Tasks\Wise Disk Cleaner Schedule Task.job
- c:\program files\Wise\Wise Disk Cleaner\WiseDiskCleaner.exe [2013-08-17 14:19]
.
.
------- Skan uzupełniający -------
.

IE: &ĘąÓĂ&ѸŔ×ĎÂÔŘ - c:\program files\Thunder Network\Thunder\BHO\geturl.htm
IE: &ĘąÓĂ&ѸŔ×ĎÂÔŘČ«˛żÁ´˝Ó - c:\program files\Thunder Network\Thunder\BHO\GetAllUrl.htm
IE: &ĘąÓĂ&ѸŔ×ŔëĎßĎÂÔŘ - c:\program files\Thunder Network\Thunder\BHO\OfflineDownload.htm
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.3.1
FF - ProfilePath - c:\users\KUBAandDANKA\AppData\Roaming\Mozilla\Firefox\Profiles\hxkczdii.default\

FF - ExtSQL: 2013-08-13 11:28; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\KUBAandDANKA\AppData\Roaming\Mozilla\Firefox\Profiles\hxkczdii.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2013-08-19 14:47; FasterFox_Lite@BigRedBrent; c:\users\KUBAandDANKA\AppData\Roaming\Mozilla\Firefox\Profiles\hxkczdii.default\extensions\FasterFox_Lite@BigRedBrent
FF - ExtSQL: 2013-08-21 09:39; {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}; c:\users\KUBAandDANKA\AppData\Roaming\Mozilla\Firefox\Profiles\hxkczdii.default\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi
FF - ExtSQL: 2013-09-27 14:16; [email protected]; c:\program files\AVAST Software\Avast\WebRep\FF
FF - user.js: browser.blink_allowed - true
FF - user.js: network.prefetch-next - true
FF - user.js: nglayout.initialpaint.delay - 10
FF - user.js: layout.spellcheckDefault - 1
FF - user.js: browser.search.openintab - false
FF - user.js: browser.tabs.closeButtons - 1
FF - user.js: browser.tabs.opentabfor.middleclick - true
FF - user.js: browser.tabs.tabMinWidth - 100
.
- - - - USUNIĘTO PUSTE WPISY - - - -
.
HKCU-Run-ChomikBox - c:\program files\ChomikBox\chomikbox.exe
HKLM-Run-G Data ASM - c:\program files\G Data\InternetSecurity\DelayLoader\AutorunDelayLoader.exe
MSConfigStartUp-DAEMON Tools Lite - c:\program files\DAEMON Tools Lite\DTLite.exe
MSConfigStartUp-PWRISOVM - c:\program files\PowerISO\PWRISOVM.EXE
MSConfigStartUp-uTorrent - c:\users\KUBAandDANKA\AppData\Roaming\uTorrent\uTorrent.exe
.
.
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------
.
- - - - - - - > 'explorer.exe'(4524)
c:\users\Public\Thunder Network\KanKan\reghelper\xappex.1.1.1.73.(508).dll
c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt.dll
c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll
c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
c:\program files\ASUS\ASUS Data Security Manager\AdsmendecExt.dll
.
Czas ukończenia: 2013-09-29  10:55:57
ComboFix-quarantined-files.txt  2013-09-29 08:55
.
Przed: 94 164 393 984 bajtów wolnych
Po: 94 119 141 376 bajtów wolnych
.
- - End Of File - - DDD778C2B65B25C3DD467F4F6B7BAD71
A36C5E4F47E84449FF07ED3517B43A31

Link to post
Share on other sites

Dołącz do dyskusji

Możesz dodać zawartość już teraz a zarejestrować się później. Jeśli posiadasz już konto, zaloguj się aby dodać zawartość za jego pomocą.

Gość
Odpowiedz w tym wątku...

×   Wklejono zawartość z formatowaniem.   Usuń formatowanie

  Dozwolonych jest tylko 75 emoji.

×   Odnośnik został automatycznie osadzony.   Przywróć wyświetlanie jako odnośnik

×   Przywrócono poprzednią zawartość.   Wyczyść edytor

×   Nie możesz bezpośrednio wkleić grafiki. Dodaj lub załącz grafiki z adresu URL.

×
 Udostępnij
Obserwujący 0
Wróć do listy tematów

  • Ostatnio przeglądający   0 użytkowników

    Brak zarejestrowanych użytkowników przeglądających tę stronę.

×
×
  • Dodaj nową pozycję...