ComboFix 11-11-02.03 - Bartek 2011-11-02  22:56:49.4.1 - x86
Microsoft Windows XP Professional  5.1.2600.3.1250.48.1045.18.1014.642 [GMT 1:00]
Uruchomiony z: c:\documents and settings\Bartek\Pulpit\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
AV: Norton AntiVirus *Enabled/Updated* {E10A9785-9598-4754-B552-92431C1C35F8}
.
UWAGA - TEN KOMPUTER NIE MA ZAINSTALOWANEJ KONSOLI ODZYSKIWANIA !!
.
.
(((((((((((((((((((((((((   Pliki utworzone od 2011-10-02 do 2011-11-02  )))))))))))))))))))))))))))))))
.
.
2011-11-02 20:39 . 2011-11-02 20:39	--------	d-----w-	c:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files
2011-11-02 19:10 . 2011-11-02 19:13	23624	----a-w-	c:\windows\system32\drivers\hitmanpro35.sys
2011-11-02 19:10 . 2011-11-02 19:10	--------	d-----w-	c:\program files\Hitman Pro 3.5
2011-11-02 19:09 . 2011-11-02 19:09	--------	d-----w-	c:\documents and settings\All Users\Dane aplikacji\Hitman Pro
2011-11-02 16:59 . 2011-11-02 16:59	--------	d-----w-	c:\program files\ESET
2011-10-29 16:23 . 2011-10-29 16:23	--------	d-----w-	c:\documents and settings\NetworkService\Ustawienia lokalne\Dane aplikacji\SFT_Polska
2011-10-29 13:32 . 2011-10-29 13:32	504404	----a-w-	c:\windows\Found Screensaver 2Uninst.exe
2011-10-29 13:32 . 2011-10-29 13:32	690267	----a-w-	c:\windows\Found Screensaver 2.scr
2011-10-29 11:59 . 2011-09-06 20:37	320856	----a-w-	c:\windows\system32\drivers\aswSP.sys
2011-10-29 11:59 . 2011-09-06 20:36	20568	----a-w-	c:\windows\system32\drivers\aswFsBlk.sys
2011-10-29 11:59 . 2011-09-06 20:36	34392	----a-w-	c:\windows\system32\drivers\aswRdr.sys
2011-10-29 11:59 . 2011-09-06 20:38	442200	----a-w-	c:\windows\system32\drivers\aswSnx.sys
2011-10-29 11:59 . 2011-09-06 20:36	52568	----a-w-	c:\windows\system32\drivers\aswTdi.sys
2011-10-29 11:59 . 2011-09-06 20:36	110552	----a-w-	c:\windows\system32\drivers\aswmon2.sys
2011-10-29 11:59 . 2011-09-06 20:36	104536	----a-w-	c:\windows\system32\drivers\aswmon.sys
2011-10-29 11:59 . 2011-09-06 20:33	30808	----a-w-	c:\windows\system32\drivers\aavmker4.sys
2011-10-29 11:59 . 2011-09-06 20:45	41184	----a-w-	c:\windows\avastSS.scr
2011-10-29 11:59 . 2011-09-06 20:45	199304	----a-w-	c:\windows\system32\aswBoot.exe
2011-10-27 20:18 . 2011-10-27 19:45	133208	----a-w-	c:\windows\system32\drivers\73203391.sys
2011-10-27 18:06 . 2011-10-27 18:06	--------	d-----w-	c:\program files\Windows Sidebar
2011-10-27 18:05 . 2011-10-27 19:36	--------	d-----w-	c:\documents and settings\All Users\Dane aplikacji\Norton
2011-10-27 16:54 . 2011-10-27 16:54	--------	d-----w-	c:\documents and settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google
2011-10-27 16:49 . 2011-10-27 16:49	--------	d-----w-	c:\documents and settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google
2011-10-27 16:48 . 2011-10-29 11:59	--------	d-----w-	c:\documents and settings\All Users\Dane aplikacji\AVAST Software
2011-10-27 16:42 . 2011-10-27 16:48	--------	d-----w-	c:\program files\AVAST Software
2011-10-27 16:30 . 2011-10-27 16:30	--------	d-----w-	c:\documents and settings\Bartek\Dane aplikacji\Ahead
2011-10-27 16:29 . 2003-09-15 12:56	57344	----a-w-	c:\windows\system32\ImageDrive.cpl
2011-10-27 16:29 . 2003-03-29 14:45	89184	----a-w-	c:\windows\system32\drivers\imagedrv.sys
2011-10-27 16:29 . 2011-10-27 16:29	--------	d-----w-	c:\program files\Common Files\Ahead
2011-10-27 16:29 . 2001-07-09 09:50	155648	----a-w-	c:\windows\system32\NeroCheck.exe
2011-10-27 16:29 . 2001-07-06 16:24	283920	----a-w-	c:\windows\system32\ImagXpr5.dll
2011-10-27 16:29 . 2001-07-06 12:41	569344	----a-w-	c:\windows\system32\imagr5.dll
2011-10-27 16:29 . 2001-07-06 10:44	544768	----a-w-	c:\windows\system32\imagx5.dll
2011-10-27 16:29 . 2001-06-26 06:15	38912	----a-w-	c:\windows\system32\picn20.dll
2011-10-27 16:29 . 2011-10-27 16:29	--------	d-----w-	c:\program files\Ahead
2011-10-27 01:27 . 2011-10-27 01:27	--------	d-----w-	c:\documents and settings\All Users\Dane aplikacji\Atheros
2011-10-27 01:26 . 2008-08-14 15:54	1318464	----a-w-	c:\windows\system32\drivers\athw.sys
2011-10-27 00:58 . 2005-06-21 11:32	28544	----a-w-	c:\windows\system32\drivers\callistx.sys
2011-10-25 03:37 . 2011-10-25 03:37	103424	----a-w-	c:\windows\system32\presenter_nat.dll
2011-10-25 03:37 . 2011-10-25 03:37	--------	d-----w-	c:\documents and settings\All Users\Dane aplikacji\Brontes Processing
2011-10-24 02:37 . 2011-10-24 02:37	--------	d-----w-	C:\449856cceae65aaa1cfdf6d23e
2011-10-24 01:02 . 2011-10-24 02:39	--------	d-----w-	c:\windows\SxsCaPendDel
2011-10-24 01:01 . 2011-10-24 01:01	--------	d-----w-	c:\program files\MSXML 4.0
2011-10-23 20:33 . 2011-10-27 01:29	--------	d-----w-	c:\program files\Atheros
2011-10-23 17:41 . 2011-10-23 17:46	--------	d-----w-	c:\program files\RadarSync
2011-10-23 11:18 . 2006-12-07 16:28	516224	----a-w-	c:\windows\system32\Mrvw243.sys
2011-10-23 11:18 . 2006-12-07 16:27	499456	----a-w-	c:\windows\system32\Mrvw245.sys
2011-10-23 11:17 . 2006-12-07 16:28	516224	----a-w-	c:\windows\system32\drivers\Mrvw243.sys
2011-10-23 11:17 . 2006-12-07 16:27	499456	----a-w-	c:\windows\system32\drivers\MRVW245.sys
2011-10-23 11:17 . 2003-10-13 13:30	94208	----a-w-	c:\windows\system32\GTW32N50.dll
2011-10-23 11:17 . 2003-09-25 21:28	31930	----a-w-	c:\windows\system32\GTNDIS3.VXD
2011-10-23 11:17 . 2003-09-25 20:15	15872	----a-w-	c:\windows\system32\GTNDIS5.sys
2011-10-23 11:17 . 2011-10-23 11:17	--------	d-----w-	c:\program files\Linksys
2011-10-19 00:42 . 2011-10-19 00:42	--------	d-sh--w-	c:\documents and settings\All Users\Dane aplikacji\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2011-10-16 20:41 . 2011-10-16 20:41	--------	d-----w-	c:\documents and settings\All Users\Dane aplikacji\n7-89-o9-3r-4t-r9
2011-10-16 20:41 . 2011-10-16 20:41	--------	d-----w-	c:\documents and settings\Bartek\Dane aplikacji\GameHouse
2011-10-16 19:26 . 1999-12-17 08:13	86016	----a-w-	c:\windows\unvise32.exe
2011-10-16 19:25 . 2011-10-19 00:59	--------	d-----w-	c:\program files\Microsoft ActiveSync
2011-10-16 19:24 . 2011-10-16 19:24	--------	d-----w-	c:\documents and settings\Bartek\Ustawienia lokalne\Dane aplikacji\SFT_Polska
2011-10-16 19:24 . 2011-10-16 19:28	--------	d-----w-	c:\program files\SFT_Polska
2011-10-16 19:17 . 2011-10-16 19:17	--------	d-----w-	c:\program files\Handmark
2011-10-11 00:35 . 2005-05-18 09:52	1212416	----a-w-	c:\windows\system32\NCTAudioInformation2.dll
2011-10-11 00:35 . 2005-04-25 11:01	458752	----a-w-	c:\windows\system32\NCTAudioRecord2.dll
2011-10-11 00:35 . 2005-04-25 11:01	458752	----a-w-	c:\windows\system32\NCTAudioPlayer2.dll
2011-10-11 00:35 . 2005-04-04 15:21	602112	----a-w-	c:\windows\system32\NCTAudioTransform2.dll
2011-10-11 00:35 . 2005-03-28 13:54	479232	----a-w-	c:\windows\system32\NCTAudioVisualization2.dll
2011-10-11 00:35 . 2005-03-28 13:52	417792	----a-w-	c:\windows\system32\NCTTextToAudio2.dll
2011-10-11 00:35 . 2005-02-24 09:51	348160	----a-w-	c:\windows\system32\NCTWMAFile2.dll
2011-10-11 00:35 . 2011-10-11 00:35	--------	d-----w-	c:\program files\Free Sound Recorder
2011-10-11 00:35 . 2005-05-17 10:37	1986560	----a-w-	c:\windows\system32\NCTAudioFile2.dll
2011-10-11 00:35 . 2005-04-15 10:08	880640	----a-w-	c:\windows\system32\NCTAudioEditor2.dll
2011-10-11 00:35 . 2004-11-04 11:31	835584	----a-w-	c:\windows\system32\NCTAudioCDGrabber2.dll
2011-10-10 23:12 . 2008-04-14 20:51	221184	----a-w-	c:\windows\system32\wmpns.dll
2011-10-08 10:02 . 2011-10-08 11:32	--------	d-----w-	c:\program files\PokerTracker 3
2011-10-05 20:39 . 2011-10-05 20:39	--------	d-----w-	c:\documents and settings\Bartek\Ustawienia lokalne\Dane aplikacji\PokerStrategy
.
.
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-23 03:26 . 2010-08-20 03:55	135168	----a-w-	c:\windows\bcm29.tmp
2011-09-26 09:41 . 2008-07-29 18:59	614400	----a-w-	c:\windows\system32\uiautomationcore.dll
2011-09-26 09:41 . 2001-10-26 19:28	23040	----a-w-	c:\windows\system32\oleaccrc.dll
2011-09-26 09:41 . 2001-10-26 19:29	220160	----a-w-	c:\windows\system32\oleacc.dll
2011-09-09 09:12 . 2008-04-14 20:50	602624	----a-w-	c:\windows\system32\crypt32.dll
2011-09-06 14:10 . 2008-04-14 19:35	1859200	----a-w-	c:\windows\system32\win32k.sys
2011-09-05 13:56 . 2008-04-14 20:50	669696	----a-w-	c:\windows\system32\wininet.dll
2011-09-05 13:56 . 2008-04-14 20:50	81920	----a-w-	c:\windows\system32\ieencode.dll
2011-09-05 13:56 . 2008-04-14 20:48	61952	----a-w-	c:\windows\system32\tdc.ocx
2011-09-05 13:55 . 2008-04-14 19:41	370688	----a-w-	c:\windows\system32\html.iec
2011-08-17 13:49 . 2008-04-13 22:49	138496	----a-w-	c:\windows\system32\drivers\afd.sys
2011-08-12 11:51 . 2010-08-20 19:30	26488	----a-w-	c:\windows\system32\spupdsvc.exe
.
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{e8de9422-3b2c-4243-bf6f-235da84d8ef8}"= "c:\program files\Brothersoft\prxtbBro2.dll" [2011-01-17 175912]
"{32b29df0-2237-4370-9a29-37cebb730e9b}"= "c:\program files\FreeSoundRecorder\prxtbFree.dll" [2011-01-17 175912]
"{5c5b9468-d672-4eb7-b52f-b5afabf28c5b}"= "c:\program files\SFT_Polska\prxtbSFT0.dll" [2011-03-28 176936]
.
[HKEY_CLASSES_ROOT\clsid\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}]
.
[HKEY_CLASSES_ROOT\clsid\{32b29df0-2237-4370-9a29-37cebb730e9b}]
.
[HKEY_CLASSES_ROOT\clsid\{5c5b9468-d672-4eb7-b52f-b5afabf28c5b}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2011-01-17 14:54	175912	----a-w-	c:\program files\ConduitEngine\prxConduitEngine.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{32b29df0-2237-4370-9a29-37cebb730e9b}]
2011-01-17 14:54	175912	----a-w-	c:\program files\FreeSoundRecorder\prxtbFree.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5c5b9468-d672-4eb7-b52f-b5afabf28c5b}]
2011-03-28 16:22	176936	----a-w-	c:\program files\SFT_Polska\prxtbSFT0.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}]
2011-01-17 14:54	175912	----a-w-	c:\program files\Brothersoft\prxtbBro2.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{e8de9422-3b2c-4243-bf6f-235da84d8ef8}"= "c:\program files\Brothersoft\prxtbBro2.dll" [2011-01-17 175912]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\prxConduitEngine.dll" [2011-01-17 175912]
"{32b29df0-2237-4370-9a29-37cebb730e9b}"= "c:\program files\FreeSoundRecorder\prxtbFree.dll" [2011-01-17 175912]
"{5c5b9468-d672-4eb7-b52f-b5afabf28c5b}"= "c:\program files\SFT_Polska\prxtbSFT0.dll" [2011-03-28 176936]
.
[HKEY_CLASSES_ROOT\clsid\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}]
.
[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
.
[HKEY_CLASSES_ROOT\clsid\{32b29df0-2237-4370-9a29-37cebb730e9b}]
.
[HKEY_CLASSES_ROOT\clsid\{5c5b9468-d672-4eb7-b52f-b5afabf28c5b}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{E8DE9422-3B2C-4243-BF6F-235DA84D8EF8}"= "c:\program files\Brothersoft\prxtbBro2.dll" [2011-01-17 175912]
"{32B29DF0-2237-4370-9A29-37CEBB730E9B}"= "c:\program files\FreeSoundRecorder\prxtbFree.dll" [2011-01-17 175912]
"{5C5B9468-D672-4EB7-B52F-B5AFABF28C5B}"= "c:\program files\SFT_Polska\prxtbSFT0.dll" [2011-03-28 176936]
.
[HKEY_CLASSES_ROOT\clsid\{e8de9422-3b2c-4243-bf6f-235da84d8ef8}]
.
[HKEY_CLASSES_ROOT\clsid\{32b29df0-2237-4370-9a29-37cebb730e9b}]
.
[HKEY_CLASSES_ROOT\clsid\{5c5b9468-d672-4eb7-b52f-b5afabf28c5b}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-09-06 20:45	122512	----a-w-	c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"c:\program files\NetMeter\NetMeter.exe"="c:\program files\NetMeter\NetMeter.exe" [2004-03-04 266240]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-01-13 134656]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-01-13 166912]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-01-13 135680]
"SSBkgdUpdate"="c:\program files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2006-10-25 210472]
"PaperPort PTD"="c:\program files\ScanSoft\PaperPort\pptd40nt.exe" [2007-10-11 29984]
"IndexSearch"="c:\program files\ScanSoft\PaperPort\IndexSearch.exe" [2007-10-11 46368]
"BrMfcWnd"="c:\program files\Brother\Brmfcmon\BrMfcWnd.exe" [2008-02-19 1089536]
"ControlCenter3"="c:\program files\Brother\ControlCenter3\brctrcen.exe" [2007-12-21 86016]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2010-03-18 421888]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-01-07 253672]
"NeroCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-09-06 3722416]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\Bartek\Menu Start\Programy\Autostart\
_uninst_73203391.lnk - c:\documents and settings\Bartek\Ustawienia lokalne\temp\_uninst_73203391.bat [N/A]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"DriverMax"="c:\program files\Innovative Solutions\DriverMax\devices.exe" -agent
"DriverMax_RESTART"="c:\program files\Innovative Solutions\DriverMax\devices.exe" -RESTART
"IPLA!"=c:\program files\ipla\ipla.exe /autorun
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" -atboottime
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe"
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"PPort11reminder"="c:\program files\ScanSoft\PaperPort\Ereg\Ereg.exe" -r "c:\documents and settings\All Users\Dane aplikacji\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini"
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Gadu-Gadu 10\\gg.exe"=
"c:\\Program Files\\Google\\Update\\GoogleUpdate.exe"=
"c:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"=
.
R0 tffsport;M-Systems DiskOnChip 2000;c:\windows\system32\drivers\tffsport.sys [2011-01-26 149376]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-10-29 442200]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2011-10-29 320856]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2011-10-29 20568]
R2 pgsql-8.3;PostgreSQL Database Server 8.3;c:\program files\PostgreSQL\8.3\bin\pg_ctl.exe [2008-02-01 65536]
R3 CnxtHdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service;c:\windows\system32\drivers\CHDAud.sys [2007-10-04 651776]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Usługa Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2011-10-27 136176]
S3 gupdatem;Usługa Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2011-10-27 136176]
S3 kvnet;Kerio Virtual Network Adapter;c:\windows\system32\drivers\kvnet.sys [2009-03-23 29696]
S3 kwflower;Kerio WinRoute Firewall Driver - Lower Layer;c:\windows\system32\DRIVERS\kwflower.sys --> c:\windows\system32\DRIVERS\kwflower.sys [?]
S3 MEMSWEEP2;MEMSWEEP2;\??\c:\windows\system32\3F.tmp --> c:\windows\system32\3F.tmp [?]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
.
--- Inne Usługi/Sterowniki w Pamięci ---
.
*NewlyCreated* - 13854904
*Deregistered* - 13854904
.
Zawartość folderu 'Zaplanowane zadania'
.
2011-10-29 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2009-10-22 09:50]
.
2011-11-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-10-27 16:49]
.
2011-11-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-10-27 16:49]
.
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT3031817
uDefault_Search_URL = hxxp://www.google.com/ie
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
TCP: DhcpNameServer = 192.168.1.254
.
- - - - USUNIĘTO PUSTE WPISY - - - -
.
SafeBoot-13854904.sys
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-02 23:12
Windows 5.1.2600 Dodatek Service Pack 3 NTFS
.
skanowanie ukrytych procesów ...  
.
skanowanie ukrytych wpisów autostartu ... 
.
skanowanie ukrytych plików ...  
.
skanowanie pomyślnie ukończone
ukryte pliki: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\MEMSWEEP2]
"ImagePath"="\??\c:\windows\system32\3F.tmp"
.
--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------
.
- - - - - - - > 'explorer.exe'(1328)
c:\windows\system32\msi.dll
.
Czas ukończenia: 2011-11-02  23:16:47
ComboFix-quarantined-files.txt  2011-11-02 22:16
.
Przed: 17 440 919 552 bajtów wolnych
Po: 17 853 157 376 bajtów wolnych
.
- - End Of File - - 2A4E6A13C2F6A6E77C81415FB349A4A3