ComboFix 10-10-05.01 - memek 2010-10-06 9:10.2.2 - x86 Microsoft Windows XP Professional 5.1.2600.2.1250.48.1045.18.2038.1579 [GMT 2:00] Uruchomiony z: c:\documents and settings\memek\Pulpit\ComboFix.exe Użyto następujących komend :: c:\documents and settings\memek\Pulpit\CFscript.txt.txt FILE :: "c:\documents and settings\memek\Dane aplikacji\yopgrf.dat" "c:\documents and settings\NetworkService\Dane aplikacji\yopgrf.dat" "c:\windows\system32\dllcache\changer.sys" "c:\windows\system32\dllcache\i2omgmt.sys" "c:\windows\system32\dllcache\lbrtfdc.sys" "c:\windows\system32\drivers\i2omgmt.sys" "c:\windows\system32\drivers\lbrtfdc.sys" "c:\windows\system32\myfdtdtp.dll" . ((((((((((((((((((((((((((((((((((((((( Usunięto ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\documents and settings\memek\Dane aplikacji\yopgrf.dat c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Conduit c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Conduit\Community Alerts\Feeds\http___alerts_conduit-services_com__aid=868510&fid=864310.xml c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Conduit\Community Alerts\Feeds\http___alerts_conduit-services_com__aid=874426&fid=870225.xml c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Conduit\Community Alerts\Feeds\http___alerts_conduit-services_com__aid=874430&fid=870228.xml c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Conduit\Community Alerts\Feeds\http___alerts_conduit-services_com__aid=874431&fid=870229.xml c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Conduit\Community Alerts\Feeds\http___alerts_conduit-services_com__aid=874435&fid=870233.xml c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Conduit\Community Alerts\Feeds\http___alerts_conduit-services_com__aid=874437&fid=870235.xml c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Conduit\Community Alerts\Feeds\http___alerts_conduit-services_com__aid=874438&fid=870236.xml c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Conduit\Community Alerts\Feeds\http___alerts_conduit-services_com__aid=874439&fid=870237.xml c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Conduit\Community Alerts\Feeds\http___alerts_conduit-services_com__aid=874440&fid=870238.xml c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Conduit\Community Alerts\Feeds\http___alerts_conduit-services_com__aid=874441&fid=870239.xml c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Conduit\Community Alerts\Feeds\http___alerts_conduit-services_com__aid=874443&fid=870241.xml c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Conduit\Community Alerts\LanguagePacks\en.xml c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Conduit\Toolbar\Facebook\http___facebook_conduit-services_com_Settings_ashx_locale=pl-pl&browserType=IE&toolbarVersion=5_3_4_2.xml c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Conduit\Toolbar\Facebook\http___facebook_conduit-services_com_Settings_ashx_locale=pl-pl&browserType=IE&toolbarVersion=5_7_3_1.xml c:\documents and settings\NetworkService\Dane aplikacji\yopgrf.dat c:\program files\Conduit c:\program files\Conduit\Community Alerts\Alert.dll c:\windows\system32\dllcache\changer.sys c:\windows\system32\dllcache\i2omgmt.sys c:\windows\system32\dllcache\lbrtfdc.sys . ((((((((((((((((((((((((((((((((((((((( Sterowniki/Usługi ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_NASDOPYIV -------\Legacy_QPYDE -------\Legacy_YESINUWB -------\Service_nasdopyiv -------\Service_qpyde -------\Service_yesinuwb ((((((((((((((((((((((((( Pliki utworzone od 2010-09-06 do 2010-10-06 ))))))))))))))))))))))))))))))) . 2010-10-05 17:16 . 2010-10-05 18:34 -------- d-----w- c:\windows\BDOSCAN8 2010-10-03 11:38 . 2004-08-03 20:59 34688 ----a-w- c:\windows\system32\drivers\lbrtfdc.sys 2010-10-03 11:38 . 2004-08-03 21:00 8192 ----a-w- c:\windows\system32\drivers\i2omgmt.sys 2010-09-27 13:16 . 2010-09-27 13:16 -------- d-----w- c:\documents and settings\memek\Dane aplikacji\Nokia Ovi Suite 2010-09-27 12:22 . 2010-09-27 12:22 -------- d-----w- c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Mozilla 2010-09-26 18:30 . 2010-09-26 18:29 36548656 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{7239A06F-235B-43B1-970D-7A411FD95683}\NokiaSoftwareUpdaterSetup_PL.exe 2010-09-26 17:58 . 2010-09-26 17:58 -------- d-----w- c:\program files\Common Files\PCSuite 2010-09-26 17:18 . 2010-09-26 17:17 36357376 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{7239A06F-235B-43B1-970D-7A411FD95683}\NokiaSoftwareUpdaterSetup_EN.exe 2010-09-26 13:55 . 2010-09-26 13:55 -------- d-----w- c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Help 2010-09-26 11:46 . 2010-10-05 11:06 -------- d-----w- c:\program files\Common Files\Nokia 2010-09-26 11:45 . 2009-05-05 09:38 65744984 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{7694EC32-CB0E-4B35-9088-7B320CB1F4FE}\Nokia_PC_Suite_7_1_26_0_ALL.exe 2010-09-26 11:45 . 2010-09-26 11:45 8192 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{7694EC32-CB0E-4B35-9088-7B320CB1F4FE}\Installer\CommonCustomActions\UninstCCD.exe 2010-09-26 11:45 . 2010-09-26 11:45 61440 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{7694EC32-CB0E-4B35-9088-7B320CB1F4FE}\Installer\CommonCustomActions\UninstPCSFEMsi.exe 2010-09-26 11:45 . 2010-09-26 11:45 10240 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{7694EC32-CB0E-4B35-9088-7B320CB1F4FE}\Installer\CommonCustomActions\UninstPCS.exe 2010-09-26 10:12 . 2010-09-26 10:12 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Nokia 2010-09-26 10:10 . 2008-08-26 08:26 18816 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys 2010-09-26 10:09 . 2010-09-26 10:10 -------- d-----w- c:\program files\PC Connectivity Solution 2010-09-26 10:08 . 2010-09-26 10:06 36548656 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{7239A06F-235B-43B1-970D-7A411FD95683}\NokiaSoftwareUpdaterSetup_PL[1].exe 2010-09-26 10:06 . 2010-09-26 10:06 36864 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{7239A06F-235B-43B1-970D-7A411FD95683}\Installer\CommonCustomActions\Sleep.exe 2010-09-26 10:06 . 2010-09-26 10:06 3351812 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{7239A06F-235B-43B1-970D-7A411FD95683}\Installer\CommonCustomActions\msxml6Exec.exe 2010-09-26 10:06 . 2010-09-26 10:06 3203453 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{7239A06F-235B-43B1-970D-7A411FD95683}\Installer\CommonCustomActions\vcredistExec.exe 2010-09-26 09:57 . 2006-08-29 14:56 32377 ----a-w- c:\windows\system32\drivers\prodigy.sys 2010-09-26 09:57 . 2010-09-26 12:06 -------- d-----w- c:\program files\NSS 2010-09-26 09:51 . 2010-10-03 17:09 -------- d-----w- c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\NokiaAccount 2010-09-26 09:51 . 2004-08-04 00:44 221184 ----a-w- c:\windows\system32\wmpns.dll 2010-09-26 09:49 . 2010-09-26 09:55 -------- d-----w- c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Nokia 2010-09-26 09:45 . 2010-02-26 12:21 8320 ----a-w- c:\windows\system32\drivers\nmwcdnsuc.sys 2010-09-26 09:45 . 2010-02-26 12:21 137344 ----a-w- c:\windows\system32\drivers\nmwcdnsu.sys 2010-09-26 09:45 . 2010-02-26 12:32 8192 ----a-w- c:\windows\system32\drivers\usbser_lowerfltj.sys 2010-09-26 09:45 . 2010-02-26 12:32 8192 ----a-w- c:\windows\system32\drivers\usbser_lowerflt.sys 2010-09-26 09:45 . 2010-02-26 12:32 22528 ----a-w- c:\windows\system32\drivers\ccdcmbo.sys 2010-09-26 09:45 . 2010-02-26 12:32 662016 ----a-w- c:\windows\system32\nmwcdcocls.dll 2010-09-26 09:45 . 2010-02-26 12:32 18176 ----a-w- c:\windows\system32\drivers\ccdcmb.sys 2010-09-26 09:45 . 2010-02-26 12:19 1461992 ----a-w- c:\windows\system32\wdfcoinstaller01009.dll 2010-09-26 09:43 . 2010-09-26 09:43 -------- d-----w- c:\program files\MSXML 6.0 2010-09-26 09:42 . 2010-09-26 09:52 -------- d-----w- c:\windows\system32\drivers\UMDF 2010-09-26 09:41 . 2010-09-27 12:28 12212040 ----a-w- c:\documents and settings\All Users\Dane aplikacji\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\WMFDist11-WindowsXP-X86-ENU.exe 2010-09-26 09:41 . 2010-09-27 12:28 13930312 ----a-w- c:\documents and settings\All Users\Dane aplikacji\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\WMFDist11-WindowsXP-X64-ENU.exe 2010-09-26 09:41 . 2010-09-27 12:28 77824 ----a-w- c:\documents and settings\All Users\Dane aplikacji\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\Run_XML6_SP1.exe 2010-09-26 09:41 . 2010-09-27 12:28 50000 ----a-w- c:\documents and settings\All Users\Dane aplikacji\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\pcswpc.exe 2010-09-26 09:41 . 2010-09-27 12:28 38912 ----a-w- c:\documents and settings\All Users\Dane aplikacji\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\WMF11Runx86.exe 2010-09-26 09:41 . 2010-09-27 12:28 38912 ----a-w- c:\documents and settings\All Users\Dane aplikacji\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\WMF11Runx64.exe 2010-09-26 09:41 . 2010-09-27 12:27 102913480 ----a-w- c:\documents and settings\All Users\Dane aplikacji\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer.exe 2010-09-26 09:41 . 2010-09-26 09:41 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\NokiaInstallerCache 2010-09-26 09:30 . 2004-08-03 21:08 25600 -c--a-w- c:\windows\system32\dllcache\usbser.sys 2010-09-26 09:30 . 2004-08-03 21:08 25600 ----a-w- c:\windows\system32\drivers\usbser.sys 2010-09-26 09:30 . 2008-11-07 16:55 16928 ------w- c:\windows\system32\spmsgXP_2k3.dll 2010-09-26 09:29 . 2010-09-27 13:16 -------- d-----w- c:\documents and settings\memek\Dane aplikacji\Nokia 2010-09-26 09:29 . 2010-09-27 12:33 -------- d-----w- c:\documents and settings\memek\Dane aplikacji\PC Suite 2010-09-26 09:29 . 2010-09-26 09:29 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\PC Suite 2010-09-26 09:28 . 2010-09-26 09:29 -------- d-----w- c:\program files\DIFX 2010-09-26 09:28 . 2008-02-01 14:17 90624 ----a-w- c:\windows\system32\nmwcdcls.dll 2010-09-26 09:28 . 2010-10-05 11:00 -------- d-----w- c:\program files\Nokia 2010-09-26 09:27 . 2010-09-26 09:27 36747456 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Nokia_PC_Suite_pol_web[1].exe 2010-09-26 09:27 . 2010-09-26 09:27 95232 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\pcswpcsi.exe 2010-09-26 09:27 . 2010-09-26 09:27 8192 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\UninstCCD.exe 2010-09-26 09:27 . 2010-09-26 09:27 61440 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\UninstPCSFEMsi.exe 2010-09-26 09:27 . 2010-09-26 09:27 10240 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\UninstPCS.exe 2010-09-26 09:27 . 2010-09-26 11:44 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Installations 2010-09-22 10:19 . 2010-09-22 10:19 54272 ----a-w- c:\documents and settings\memek\Dane aplikacji\GanymedeNet\Online Games\Common\ielauncher.exe 2010-09-22 10:19 . 2010-09-22 10:19 4 ----a-w- c:\windows\system32\proc1794749374.bin 2010-09-15 18:17 . 2010-09-24 16:44 -------- d-----w- c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\MyAshampoo 2010-09-15 18:17 . 2010-09-22 09:38 -------- d-----w- c:\program files\MyAshampoo . (((((((((((((((((((((((((((((((((((((((( Sekcja Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-10-06 07:10 . 2008-12-26 11:53 -------- d-----w- c:\program files\Winamp 2010-10-06 07:10 . 2009-04-11 13:27 -------- d-----w- c:\program files\Camera Assistant Software for Toshiba 2010-10-05 16:44 . 2010-08-03 17:24 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Norton 2010-10-05 16:42 . 2010-05-15 20:02 -------- d-----w- c:\program files\Styler 2010-10-05 16:41 . 2010-05-11 22:12 -------- d-----w- c:\program files\TextToPDF 2010-10-05 15:23 . 2008-12-26 10:29 42168 ----a-w- c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT 2010-10-05 12:59 . 2009-03-20 08:04 -------- d-----w- c:\documents and settings\memek\Dane aplikacji\GanymedeNet 2010-10-05 10:57 . 2008-12-26 11:11 -------- d--h--w- c:\program files\InstallShield Installation Information 2010-10-03 08:27 . 2009-01-03 17:54 -------- d-----w- c:\program files\DivX 2010-10-01 15:58 . 2010-05-11 22:08 -------- d-----w- c:\program files\Foxit Software 2010-10-01 15:53 . 2010-05-13 16:24 -------- d-----w- c:\program files\Ashampoo 2010-09-27 17:20 . 2008-12-26 12:07 -------- d-----w- c:\program files\Opera 2010-09-26 09:30 . 2010-09-26 09:30 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01009.Wdf 2010-09-26 09:30 . 2010-09-26 09:30 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf 2010-09-22 10:14 . 2009-09-24 17:20 -------- d-----w- c:\program files\Ganymede 2010-08-27 20:13 . 2010-07-13 18:16 -------- d-----w- c:\documents and settings\memek\Dane aplikacji\Audacity 2010-08-19 20:13 . 2008-12-26 11:58 -------- d-----w- c:\documents and settings\memek\Dane aplikacji\Skype 2010-08-19 10:43 . 2008-12-26 11:20 -------- d-----w- c:\program files\TOSHIBA 2010-08-15 11:19 . 2010-08-15 11:16 -------- d-----w- c:\documents and settings\memek\Dane aplikacji\TeamViewer 2010-08-15 11:16 . 2010-08-15 11:16 -------- d-----w- c:\program files\TeamViewer 2010-07-30 09:09 . 2001-10-26 21:15 68752 ----a-w- c:\windows\system32\perfc015.dat 2010-07-30 09:09 . 2001-10-26 21:15 439776 ----a-w- c:\windows\system32\perfh015.dat 2010-07-21 08:29 . 2010-07-21 08:29 369 ----a-w- c:\documents and settings\memek\chkdskdisable.reg 2010-04-19 18:33 . 2010-04-19 18:25 56 --sh--r- c:\windows\system32\0E6A4F59C3.sys 2010-04-07 16:20 . 2010-03-02 20:26 88 --sh--r- c:\windows\system32\6A2E88089F.sys 2010-04-19 19:10 . 2010-03-02 18:32 7308 --sha-w- c:\windows\system32\KGyGaAvL.sys . ------- Sigcheck ------- [7] 2004-08-03 . 9F4B36614A0FC234525BA224957DE55C . 359040 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\tcpip.sys [-] 2004-08-03 . 7399D854596BFEFEED6B60879F28CE07 . 359040 . . [5.1.2600.2180] . . c:\windows\system32\drivers\tcpip.sys . ((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane REGEDIT4 [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] "{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}"= "c:\program files\MyAshampoo\tbMyA1.dll" [2010-09-22 2735200] [HKEY_CLASSES_ROOT\clsid\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}] [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}] 2010-09-22 09:39 2735200 ----a-w- c:\program files\MyAshampoo\tbMyA1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}"= "c:\program files\MyAshampoo\tbMyA1.dll" [2010-09-22 2735200] [HKEY_CLASSES_ROOT\clsid\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{A1E75A0E-4397-4BA8-BB50-E19FB66890F4}"= "c:\program files\MyAshampoo\tbMyA1.dll" [2010-09-22 2735200] [HKEY_CLASSES_ROOT\clsid\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2005-02-16 81920] "ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2005-02-16 221184] "TFncKy"="TFncKy.exe" [BU] "THotkey"="c:\program files\Toshiba\Toshiba Applet\thotkey.exe" [2008-03-04 360448] "MP10_EnsureFileVer"="c:\windows\inf\unregmp2.exe" [2004-08-04 208896] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-04 15360] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "NoFileAssociate"= 0 (0x0) "NoResolveTrack"= 1 (0x1) [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk /k:D * [HKEY_LOCAL_MACHINE\software\microsoft\security center] "FirewallOverride"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= R0 pe3apasb;Made Man Environment Driver (pe3apasb);c:\windows\system32\drivers\pe3apasb.sys [2007-11-13 65136] R0 ps7apasb;Made Man Synchronization Driver (ps7apasb);c:\windows\system32\drivers\ps7apasb.sys [2007-11-13 68728] R3 FwLnk;FwLnk Driver;c:\windows\system32\drivers\FwLnk.sys [2008-12-26 5888] R3 RTL8187B;Realtek RTL8187B bezprzewodowe 802.11b/g 54Mbps USB 2.0 karta sieciowa ;c:\windows\system32\drivers\RTL8187B.sys [2008-12-26 288000] S2 gupdate;Usługa Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-03-02 135664] S2 pr2apasb;Made Man Drivers Auto Removal (pr2apasb);c:\windows\system32\pr2apasb.exe svc --> c:\windows\system32\pr2apasb.exe svc [?] . Zawartość folderu 'Zaplanowane zadania' 2010-10-06 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-03-02 18:46] 2010-10-06 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-03-02 18:46] . . ------- Skan uzupełniający ------- . uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: &Winamp Search - c:\documents and settings\All Users\Dane aplikacji\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html IE: E&ksport do programu Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html . - - - - USUNIĘTO PUSTE WPISY - - - - HKCU-Run-Real Desktop - c:\program files\Real Desktop\Real Desktop.exe HKCU-Run-Active Desktop Calendar - c:\program files\XemiComputers\Active Desktop Calendar\ADC.exe [HKEY_LOCAL_MACHINE\System\ControlSet003\Services\{95808DC4-FA4A-4C74-92FE-5B863F82066B}] "ImagePath"="\??\c:\program files\CyberLink\PowerDVD\000.fcl" . --------------------- Pliki DLL ładowane pod uruchomionymi procesami --------------------- - - - - - - - > 'explorer.exe'(3352) c:\windows\system32\msi.dll c:\windows\system32\WPDShServiceObj.dll c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_pol.nlr c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll . ------------------------ Pozostałe uruchomione procesy ------------------------ . c:\windows\system32\agrsmsvc.exe c:\progra~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe c:\program files\Java\jre6\bin\jqs.exe c:\windows\system32\HPZipm12.exe c:\program files\Common Files\Protexis\License Service\PSIService.exe c:\program files\CyberLink\Shared files\RichVideo.exe c:\program files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe c:\windows\system32\wbem\wmiapsrv.exe c:\windows\system32\wscntfy.exe c:\program files\TOSHIBA\TOSHIBA Controls\TFncKy.exe . ************************************************************************** . Czas ukończenia: 2010-10-06 09:16:32 - komputer został uruchomiony ponownie ComboFix-quarantined-files.txt 2010-10-06 07:16 ComboFix2.txt 2010-10-05 17:45 Przed: 86 572 032 000 bajtów wolnych Po: 86 518 964 224 bajtów wolnych Current=3 Default=3 Failed=2 LastKnownGood=4 Sets=1,2,3,4 - - End Of File - - 4C51EDFCD5C0570529BBB5795ECDB50E