Skocz do zawartości

  • 👋 Witaj na MPCForum!

    Przeglądasz forum jako gość, co oznacza, że wiele świetnych funkcji jest jeszcze przed Tobą! 😎

    • Pełny dostęp do działów i ukrytych treści
    • Możliwość pisania i odpowiadania w tematach
    • System prywatnych wiadomości
    • Zbieranie reputacji i rozwijanie swojego profilu
    • Członkostwo w jednej z największych społeczności graczy

    👉 Dołączenie zajmie Ci mniej niż minutę – a zyskasz znacznie więcej!

    Zarejestruj się teraz

Problem Z Warrockiem

pl4tffus

Przez pl4tffus
w Kosz

Rekomendowane odpowiedzi

pl4tffus Bywalec

pl4tffus

Opublikowano
Bywalec

pl4tffus

Opublikowano

Proszę o pomoc!

 

Moim problemem jest to ze włączam warrocka jest ok loguje sie jest ok wlaczam rooma i startuje sie gra po jakis 10-60 sek gra sie laguje i pisze brak odpowiedzi albo wywala mnie do pulpitu Proszę o wszelka pomoc nie znalazlem odpowiedzi w innych tematach wiec zakladam swoj.Dodam jeszcze ze warrock mi wczesniej dzialal normalnie!

 

 

 

Jakby komus byl potrzebny to dodam log z combofixa:

 

ComboFix 10-11-23.04 - Mateusz 2010-11-24 16:38:17.1.2 - x86

Microsoft Windows XP Professional 5.1.2600.3.1250.48.1045.18.3582.3064 [GMT 1:00]

Uruchomiony z: c:\documents and settings\Mateusz\Pulpit\ComboFix.exe

AV: Kaspersky Anti-Virus *On-access scanning disabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}

.

 

((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))

.

 

c:\progra~1\MYWEBS~1\bar\1.bin\mwsoemon.exe

c:\program files\FunWebProducts

c:\program files\FunWebProducts\Shared\Cache\CursorManiaBtn.html

c:\program files\FunWebProducts\Shared\Cache\SmileyCentralBtn.html

c:\program files\MyWebSearch

c:\program files\MyWebSearch\bar\1.bin\CHROME.MANIFEST

c:\program files\MyWebSearch\bar\1.bin\chrome\M3FFXTBR.JAR

c:\program files\MyWebSearch\bar\1.bin\F3BKGERR.JPG

c:\program files\MyWebSearch\bar\1.bin\F3CJPEG.DLL

c:\program files\MyWebSearch\bar\1.bin\F3DTactl.dll

c:\program files\MyWebSearch\bar\1.bin\F3HISTSW.DLL

c:\program files\MyWebSearch\bar\1.bin\F3HKSTUB.DLL

c:\program files\MyWebSearch\bar\1.bin\F3HTMLMU.DLL

c:\program files\MyWebSearch\bar\1.bin\F3HTtpct.dll

c:\program files\MyWebSearch\bar\1.bin\F3IMSTUB.DLL

c:\program files\MyWebSearch\bar\1.bin\F3POPSWT.DLL

c:\program files\MyWebSearch\bar\1.bin\F3PSSAVR.SCR

c:\program files\MyWebSearch\bar\1.bin\F3REGHK.DLL

c:\program files\MyWebSearch\bar\1.bin\F3REPROX.DLL

c:\program files\MyWebSearch\bar\1.bin\F3RESTUB.DLL

c:\program files\MyWebSearch\bar\1.bin\F3SCHMON.EXE

c:\program files\MyWebSearch\bar\1.bin\F3SCrctr.dll

c:\program files\MyWebSearch\bar\1.bin\F3SPACER.WMV

c:\program files\MyWebSearch\bar\1.bin\F3WALLPP.DAT

c:\program files\MyWebSearch\bar\1.bin\F3WPHOOK.DLL

c:\program files\MyWebSearch\bar\1.bin\FWPBUDDY.PNG

c:\program files\MyWebSearch\bar\1.bin\INSTALL.RDF

c:\program files\MyWebSearch\bar\1.bin\M3AUXSTB.DLL

c:\program files\MyWebSearch\bar\1.bin\M3DLGHK.DLL

c:\program files\MyWebSearch\bar\1.bin\M3HIGHIN.EXE

c:\program files\MyWebSearch\bar\1.bin\M3HTml.dll

c:\program files\MyWebSearch\bar\1.bin\M3IDLE.DLL

c:\program files\MyWebSearch\bar\1.bin\M3IMPIPE.EXE

c:\program files\MyWebSearch\bar\1.bin\M3MEDINT.EXE

c:\program files\MyWebSearch\bar\1.bin\M3MSg.dll

c:\program files\MyWebSearch\bar\1.bin\M3OUtlcn.dll

c:\program files\MyWebSearch\bar\1.bin\M3PLUGIN.DLL

c:\program files\MyWebSearch\bar\1.bin\M3SKIN.DLL

c:\program files\MyWebSearch\bar\1.bin\M3SKPLAY.EXE

c:\program files\MyWebSearch\bar\1.bin\M3SLSRCH.EXE

c:\program files\MyWebSearch\bar\1.bin\M3SRCHMN.EXE

c:\program files\MyWebSearch\bar\1.bin\MWSBAR.DLL

c:\program files\MyWebSearch\bar\1.bin\MWSMLBTN.DLL

c:\program files\MyWebSearch\bar\1.bin\MWSOEMON.EXE

c:\program files\MyWebSearch\bar\1.bin\MWSOEPLG.DLL

c:\program files\MyWebSearch\bar\1.bin\MWSOESTB.DLL

c:\program files\MyWebSearch\bar\1.bin\MWSSRCAS.DLL

c:\program files\MyWebSearch\bar\1.bin\MWSSVC.EXE

c:\program files\MyWebSearch\bar\1.bin\MWSUABTN.DLL

c:\program files\MyWebSearch\bar\1.bin\NPMYWEBS.DLL

c:\program files\MyWebSearch\bar\Avatar\COMMON.F3S

c:\program files\MyWebSearch\bar\Cache\01966C40

c:\program files\MyWebSearch\bar\Cache\01967B24.bin

c:\program files\MyWebSearch\bar\Cache\01967CAB.bin

c:\program files\MyWebSearch\bar\Cache\01967DB4.bin

c:\program files\MyWebSearch\bar\Cache\01967F6A.bin

c:\program files\MyWebSearch\bar\Cache\files.ini

c:\program files\MyWebSearch\bar\Game\CHECKERS.F3S

c:\program files\MyWebSearch\bar\Game\CHESS.F3S

c:\program files\MyWebSearch\bar\Game\REVERSI.F3S

c:\program files\MyWebSearch\bar\History\search3

c:\program files\MyWebSearch\bar\icons\CM.ICO

c:\program files\MyWebSearch\bar\icons\MFC.ICO

c:\program files\MyWebSearch\bar\icons\PSS.ICO

c:\program files\MyWebSearch\bar\icons\SMILEY.ICO

c:\program files\MyWebSearch\bar\icons\WB.ICO

c:\program files\MyWebSearch\bar\icons\ZWINKY.ICO

c:\program files\MyWebSearch\bar\Message\COMMON.F3S

c:\program files\MyWebSearch\bar\Notifier\COMMON.F3S

c:\program files\MyWebSearch\bar\Notifier\DOG.F3S

c:\program files\MyWebSearch\bar\Notifier\FISH.F3S

c:\program files\MyWebSearch\bar\Notifier\KUNGFU.F3S

c:\program files\MyWebSearch\bar\Notifier\LIFEGARD.F3S

c:\program files\MyWebSearch\bar\Notifier\MAID.F3S

c:\program files\MyWebSearch\bar\Notifier\MAILBOX.F3S

c:\program files\MyWebSearch\bar\Notifier\OPERA.F3S

c:\program files\MyWebSearch\bar\Notifier\ROBOT.F3S

c:\program files\MyWebSearch\bar\Notifier\SEDUCT.F3S

c:\program files\MyWebSearch\bar\Notifier\SURFER.F3S

c:\program files\MyWebSearch\bar\Overlay\COMMON.F3S

c:\program files\MyWebSearch\bar\Settings\prevcfg2.htm

c:\program files\MyWebSearch\bar\Settings\s_pid.dat

c:\windows\copyfstq.exe

c:\windows\dropcpyr.dll

c:\windows\system32\f3PSSavr.scr

c:\windows\system32\Install.bat

c:\windows\system32\lowsec

c:\windows\system32\lowsec\local.ds

c:\windows\system32\lowsec\user.ds

c:\windows\system32\lowsec\user.ds.lll

c:\windows\system32\msconfig.exe

c:\windows\system32\y.cmd

c:\windows\Uninstall.ini

D:\install.exe

 

.

((((((((((((((((((((((((((((((((((((((( Sterowniki/Usługi )))))))))))))))))))))))))))))))))))))))))))))))))

.

 

-------\Legacy_MYWEBSEARCHSERVICE

-------\Service_MyWebSearchService

 

 

((((((((((((((((((((((((( Pliki utworzone od 2010-10-24 do 2010-11-24 )))))))))))))))))))))))))))))))

.

 

2010-11-24 15:42 . 2010-11-24 15:42 -------- d-----w- c:\windows\system32\wbem\snmp

2010-11-24 15:42 . 2010-11-24 15:42 -------- d-----w- c:\windows\system32\xircom

2010-11-24 15:42 . 2010-11-24 15:42 -------- d-----w- c:\windows\system32\oobe

2010-11-24 15:42 . 2010-11-24 15:42 -------- d-----w- c:\windows\srchasst

2010-11-24 15:42 . 2010-11-24 15:42 -------- d-----w- c:\windows\msagent

2010-11-24 15:42 . 2010-11-24 15:42 -------- d-----w- c:\program files\microsoft frontpage

2010-11-23 19:32 . 2010-11-23 20:02 97545 ----a-w- c:\windows\system32\drivers\klick.dat

2010-11-23 19:32 . 2010-11-23 20:02 115465 ----a-w- c:\windows\system32\drivers\klin.dat

2010-11-23 19:31 . 2010-11-24 15:42 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab

2010-11-23 19:31 . 2010-11-23 19:31 -------- d-----w- c:\program files\Kaspersky Lab

2010-11-23 19:30 . 2010-11-23 19:30 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files

2010-11-23 18:09 . 2010-11-23 18:09 -------- d-----w- c:\documents and settings\Mateusz\Ustawienia lokalne\Dane aplikacji\ATI

2010-11-23 18:09 . 2010-11-23 18:09 -------- d-----w- c:\documents and settings\Mateusz\Dane aplikacji\ATI

2010-11-23 18:09 . 2010-11-23 18:09 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\ATI

2010-11-21 20:12 . 2010-06-15 17:27 282928 ----a-w- c:\windows\system32\HMIPCore.dll

2010-11-21 20:12 . 2010-11-21 20:15 -------- d-----w- c:\program files\Hide My IP

2010-11-21 15:50 . 2010-11-21 15:50 -------- d-----w- c:\program files\Common Files\xing shared

2010-11-21 15:49 . 2010-11-21 15:50 -------- d-----w- c:\program files\Real

2010-11-20 17:39 . 2010-11-20 17:39 -------- d-----w- c:\documents and settings\Mateusz\Dane aplikacji\Media Player Classic

2010-11-19 21:46 . 2010-11-19 21:46 -------- d-----w- c:\documents and settings\Mateusz\Dane aplikacji\Red Alert 3

2010-11-19 17:45 . 2010-11-19 17:45 -------- d-----w- c:\documents and settings\Mateusz\.gstreamer-0.10

2010-11-19 17:44 . 2010-11-19 17:47 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\OpenFM

2010-11-19 17:44 . 2010-11-19 17:44 -------- d-----w- c:\documents and settings\Mateusz\Dane aplikacji\OpenFM

2010-11-19 15:54 . 2010-11-19 15:54 -------- d-----w- c:\program files\Asprate

2010-11-19 15:54 . 2010-11-19 17:50 -------- d-----w- c:\program files\Tibia

2010-11-17 15:28 . 2010-11-17 15:28 -------- d-----w- c:\program files\Alwil Software

2010-11-17 15:28 . 2010-11-17 15:28 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Alwil Software

2010-11-16 19:52 . 2010-11-16 19:53 -------- d-----w- c:\documents and settings\Mateusz\Dane aplikacji\teamspeak2

2010-11-16 19:52 . 2010-11-16 19:52 34064 ----a-w- c:\windows\system32\lhacm.acm

2010-11-16 19:52 . 2010-11-16 19:52 -------- d-----w- c:\program files\Teamspeak2_RC2

2010-11-16 19:28 . 2010-11-16 19:28 1060864 ----a-w- c:\windows\system32\mfc71.dll

2010-11-16 19:26 . 2010-11-16 19:26 -------- d-----w- c:\documents and settings\Mateusz\Dane aplikacji\Gadu-Gadu 10

2010-11-16 19:26 . 2010-11-16 19:26 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Gadu-Gadu 10

2010-11-16 19:25 . 2010-11-16 19:25 -------- d-----w- c:\program files\Gadu-Gadu 10

2010-11-16 16:43 . 2006-10-26 18:56 33104 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\msonpppr.dll

2010-11-16 16:43 . 2006-10-26 18:56 32592 ----a-w- c:\windows\system32\msonpmon.dll

2010-11-16 16:42 . 2010-11-16 16:42 -------- d-----w- c:\program files\Microsoft Works

2010-11-16 16:42 . 2010-11-16 16:42 -------- d-----w- c:\program files\MSBuild

2010-11-16 16:42 . 2010-11-16 16:42 -------- d-----w- c:\program files\Microsoft.NET

2010-11-16 16:41 . 2010-11-16 16:41 -------- d-----w- c:\program files\Microsoft Visual Studio 8

2010-11-16 16:41 . 2010-11-16 16:42 -------- d-----w- c:\windows\SHELLNEW

2010-11-16 16:41 . 2010-11-16 16:41 -------- d-----w- c:\documents and settings\Mateusz\Ustawienia lokalne\Dane aplikacji\Microsoft Help

2010-11-16 16:40 . 2010-11-22 19:16 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Microsoft Help

2010-11-16 16:40 . 2010-11-16 16:40 -------- d-----r- C:\MSOCache

 

.

(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-11-21 15:49 . 2010-07-09 15:36 499712 ----a-w- c:\windows\system32\msvcp71.dll

.

 

------- Sigcheck -------

 

[-] 2009-11-27 . 1F39C7BDBA4C5F3F01C4EABF7EDBF4B3 . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys

 

[-] 2009-11-19 . 07CFE293CE37D0E558E3D4AC2FB70CED . 629760 . . [5.82] . . c:\windows\system32\comctl32.dll

[7] 2008-04-15 . AEF3D788DBF40C7C4D204EA45EB0C505 . 921088 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a\comctl32.dll

[7] 2008-04-15 . 737739FACEAD60683AA8D7FF7602FD14 . 1054208 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll

 

[-] 2009-06-23 . 150852B3EB5F0C3FB44D38D0375578BB . 8356864 . . [8.00.6001.22873] . . c:\windows\system32\mshtml.dll

 

[-] 2009-11-19 . 783CA6CEA7CA896716BC46E643C7BA76 . 2287104 . . [5.1.2600.5857] . . c:\windows\system32\ntoskrnl.exe

 

[-] 2009-11-19 . 3902506156DC2F68D85CFA797F12EBEE . 678400 . . [5.1.2600.5512] . . c:\windows\system32\user32.dll

 

[-] 2009-11-19 . E88010D761E8C3C54B6FD30E742F8C53 . 1592832 . . [6.00.2900.5512] . . c:\windows\explorer.exe

 

 

 

[-] 2009-11-19 . DB70347E0C6E1EAB77E759592CBC00B2 . 2165760 . . [5.1.2600.5857] . . c:\windows\system32\ntkrnlpa.exe

 

c:\windows\System32\ctfmon.exe ... - brak elementu !!

c:\windows\System32\regsvc.dll ... - brak elementu !!

.

((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane

REGEDIT4

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"LClock"="c:\program files\LClock\LClock.exe" [2004-09-19 65536]

"Google Update"="c:\documents and settings\Mateusz\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" [2010-07-09 136176]

"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]

"Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-10-11 14940040]

"Gadu-Gadu 10"="c:\program files\Gadu-Gadu 10\gg.exe" [2010-10-07 12661344]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RTHDCPL"="RTHDCPL.EXE" [2010-07-28 19557480]

"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2009-11-18 54576]

"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]

"TkBellExe"="c:\program files\Real\RealPlayer\update\realsched.exe" [2010-11-21 274608]

"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-10-26 98304]

"ATICustomerCare"="c:\program files\ATI\ATICustomerCare\ATICustomerCare.exe" [2010-05-04 311296]

"AVP"="c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 2011\avp.exe" [2010-09-07 352976]

 

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"LClock"="c:\program files\LClock\LClock.exe" [2004-09-19 65536]

 

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"_nltide_3"="advpack.dll" [2009-11-27 128512]

 

c:\documents and settings\Administrator\Menu Start\Programy\Autostart\

del.exe [2009-10-22 618289]

run.lnk - c:\program files\WindowZ\Kreator post-instalacyjny\run.bat [2010-7-9 966]

Transparent fx - lite.lnk - c:\program files\Fadebar\Fadebar.exe [2010-7-9 211333]

 

c:\documents and settings\Default User\Menu Start\Programy\Autostart\

Transparent fx - lite.lnk - c:\program files\Fadebar\Fadebar.exe [2010-7-9 211333]

z.cmd [2009-11-19 611]

 

c:\documents and settings\Mateusz\Menu Start\Programy\Autostart\

Transparent fx - lite.lnk - c:\program files\Fadebar\Fadebar.exe [2010-7-9 211333]

 

c:\documents and settings\All Users\Menu Start\Programy\Autostart\

Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2004-12-14 29696]

HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2009-11-18 275072]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"DisableStatusMessages"= 1 (0x1)

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]

"NoStartMenuEjectPC"= 1 (0x1)

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]

"NoSMHelp"= 1 (0x1)

"NoSMMyPictures"= 1 (0x1)

"NoSMConfigurePrograms"= 1 (0x1)

"NoResolveTrack"= 1 (0x1)

 

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]

"NoSMHelp"= 1 (0x1)

"ForceClassicControlPanel"= 1 (0x1)

"NoSMMyPictures"= 1 (0x1)

"NoSMConfigurePrograms"= 1 (0x1)

"NoResolveTrack"= 1 (0x1)

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]

"UIHost"="%windir%\\system32\\LogonuiZ.exe"

 

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]

"DisableMonitoring"=dword:00000001

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]

"EnableFirewall"= 0 (0x0)

"DisableUnicastResponsesToMulticastBroadcast"= 0 (0x0)

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"%windir%\\system32\\sessmgr.exe"=

"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=

 

R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2010-07-11 691696]

R1 kl2;kl2;c:\windows\system32\drivers\kl2.sys [2010-06-09 11352]

R3 HideMyIpSRV;HideMyIpSRV;c:\program files\Hide My IP\HideMyIpSrv.exe [2010-11-21 3039536]

R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [2010-05-07 32856]

R3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [2009-11-02 19472]

S0 Si3124;Si3124;c:\windows\system32\drivers\si3124.sys [2009-11-28 76208]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2010-07-09 1691480]

S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]

S4 FlashFolder;FlashFolder;c:\program files\FlashFolder\FlashFolder.exe [2008-03-20 71680]

S4 prio_svc;Prio Service;c:\program files\Prio\prio_svc.exe [2009-01-12 5120]

 

--- Inne Usługi/Sterowniki w Pamięci ---

 

*NewlyCreated* - HELPSVC

*NewlyCreated* - WUAUSERV

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12

HPService REG_MULTI_SZ HPSLPSVC

hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc

.

Zawartość folderu 'Zaplanowane zadania'

 

2010-11-23 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-682003330-1647877149-1801674531-1002Core.job

- c:\documents and settings\Mateusz\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2010-07-09 16:46]

 

2010-11-23 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-682003330-1647877149-1801674531-1002UA.job

- c:\documents and settings\Mateusz\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2010-07-09 16:46]

 

2010-11-24 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-682003330-1647877149-1801674531-1002.job

- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-11-05 10:33]

 

2010-11-23 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-682003330-1647877149-1801674531-1002.job

- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-11-05 10:33]

 

2010-11-23 c:\windows\Tasks\WebReg HP Deskjet F4500 series.job

- c:\program files\HP\Digital Imaging\bin\hpqwrg.exe [2009-11-17 22:29]

.

.

------- Skan uzupełniający -------

.

uStart Page = hxxp://home.mywebsearch.com/index.jhtml?n=77C09F4F&ptnrS=ZNman000&ptb=4SXOD4RGkUJlXcmvQf5rzQ

IE: E&ksportuj do programu Microsoft Excel - c:\progra~1\MICROS~1\Office12\EXCEL.EXE/3000

LSP: c:\windows\system32\HMIPCore.dll

.

- - - - USUNIĘTO PUSTE WPISY - - - -

 

HKLM-Run-Resume copy - copyfstq.exe

 

 

 

**************************************************************************

 

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2010-11-24 16:43

Windows 5.1.2600 Dodatek Service Pack 3 NTFS

 

skanowanie ukrytych procesów ...

 

skanowanie ukrytych wpisów autostartu ...

 

skanowanie ukrytych plików ...

 

skanowanie pomyślnie ukończone

ukryte pliki: 0

 

**************************************************************************

.

--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------

 

- - - - - - - > 'winlogon.exe'(1188)

c:\windows\system32\Ati2evxx.dll

c:\windows\system32\atiadlxx.dll

c:\windows\system32\cscui.dll

 

- - - - - - - > 'lsass.exe'(1268)

c:\windows\system32\scecli.dll

 

- - - - - - - > 'explorer.exe'(2204)

c:\windows\system32\WININET.dll

c:\windows\System32\cscui.dll

c:\windows\system32\wpdshserviceobj.dll

c:\windows\system32\portabledevicetypes.dll

c:\windows\system32\portabledeviceapi.dll

c:\program files\LClock\LC.dll

c:\windows\system32\NETSHELL.dll

c:\windows\assembly\NativeImages_v2.0.50727_32\QTTabBar\18ba27013a19564db989ada1a7f72b82\QTTabBar.ni.dll

c:\windows\assembly\NativeImages_v2.0.50727_32\QTPluginLib\2d77ce213dbb6547b439101b3b75eb91\QTPluginLib.ni.dll

c:\windows\assembly\NativeImages_v2.0.50727_32\Interop.SHDocVw\90f290fd70a71b4e8aadee4387a1521d\Interop.SHDocVw.ni.dll

c:\windows\assembly\NativeImages_v2.0.50727_32\QTAddressBar\57c9fc9297f41449ad224b1d31e5a1df\QTAddressBar.ni.dll

c:\program files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

c:\windows\assembly\GAC\CommandBar\1.1.0.0__f62fe54d9a592d72\CommandBar.dll

c:\windows\assembly\GAC\ZCommon\1.1.0.0__f62fe54d9a592d72\ZCommon.dll

c:\windows\assembly\GAC\BandObjects\1.1.0.0__f62fe54d9a592d72\BandObjects.dll

c:\windows\assembly\GAC\Interop.SHDocVw\1.1.0.0__f62fe54d9a592d72\Interop.SHDocVw.dll

c:\program files\Microsoft Office\Office12\1045\GrooveIntlResource.dll

c:\windows\system32\FindeXer.dll

c:\progra~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL

c:\program files\FolderSize\FolderSizeColumn.dll

c:\program files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll

.

------------------------ Pozostałe uruchomione procesy ------------------------

.

c:\windows\system32\Ati2evxx.exe

c:\windows\system32\Ati2evxx.exe

c:\windows\RTHDCPL.EXE

c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe

c:\windows\system32\WISPTIS.EXE

c:\windows\system32\wscntfy.exe

c:\program files\HP\Digital Imaging\bin\hpqSTE08.exe

c:\program files\HP\Digital Imaging\bin\hpqbam08.exe

c:\program files\HP\Digital Imaging\bin\hpqgpc01.exe

.

**************************************************************************

.

Czas ukończenia: 2010-11-24 16:45:58 - komputer został uruchomiony ponownie

ComboFix-quarantined-files.txt 2010-11-24 15:45

 

Przed: 34 895 912 960 bajtów wolnych

Po: 35 056 353 280 bajtów wolnych

 

WindowsXP-KB310994-SP2-Pro-BootDisk-PLK.exe

[boot loader]

timeout=2

default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS

[operating systems]

c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons

UnsupportedDebug="do not select this" /debug

multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

 

- - End Of File - - F71EEA52C3B5BA34095422D526ABFDF4

Kocham mpcforum.pl!!!

18706.png

matisek3211.png

Gość
Ten temat został zamknięty. Brak możliwości dodania odpowiedzi.
Tematy
×
×
  • Dodaj nową pozycję...