ComboFix 12-07-11.03 - leszek 2012-07-11 18:41:00.1.2 - x86 MINIMAL Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1250.48.1045.18.2038.1364 [GMT 2:00] Uruchomiony z: c:\users\leszek\Desktop\ComboFix.exe AV: Doctor Web Anti-Virus *Enabled/Outdated* {6CC6AE29-BD86-6306-5444-113FA6A626D8} SP: Doctor Web Anti-Virus *Enabled/Outdated* {D7A74FCD-9BBC-6C88-6EF4-2A4DDD216C65} * Utworzono nowy punkt przywracania . . ((((((((((((((((((((((((((((((((((((((( Usunięto ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\program files\HPDJ1280_Vista_x64.exe c:\program files\iplus c:\program files\iplus\commanderFix.exe c:\program files\iplus\countries.eng c:\program files\iplus\countries.pl c:\program files\iplus\Drivers\difxapi.dll c:\program files\iplus\Drivers\driverInstallation.log c:\program files\iplus\Drivers\driverInstaller.exe c:\program files\iplus\Drivers\DriverVista\Comander\ComanderM.inf c:\program files\iplus\Drivers\DriverVista\Comander\FTBUSUI.dll c:\program files\iplus\Drivers\DriverVista\Comander\ftcserco.dll c:\program files\iplus\Drivers\DriverVista\Comander\FTD2XX.dll c:\program files\iplus\Drivers\DriverVista\Comander\FTD2XX.H c:\program files\iplus\Drivers\DriverVista\Comander\FTD2XX.lib c:\program files\iplus\Drivers\DriverVista\Comander\ftdibus.cat c:\program files\iplus\Drivers\DriverVista\Comander\FTDIBUS.INF c:\program files\iplus\Drivers\DriverVista\Comander\FTDIBUS.sys c:\program files\iplus\Drivers\DriverVista\Comander\ftdiport.cat c:\program files\iplus\Drivers\DriverVista\Comander\FTDIPORT.INF c:\program files\iplus\Drivers\DriverVista\Comander\FTDIUN2K.INI c:\program files\iplus\Drivers\DriverVista\Comander\FTDIUNIN.exe c:\program files\iplus\Drivers\DriverVista\Comander\FTLang.dll c:\program files\iplus\Drivers\DriverVista\Comander\ftser2k.sys c:\program files\iplus\Drivers\DriverVista\Comander\ftserui2.dll c:\program files\iplus\Drivers\DriverVista\ComanderEnfora\comander_ENF.inf c:\program files\iplus\Drivers\DriverVista\ComanderEnfora\ReleaseNotes.txt c:\program files\iplus\Drivers\DriverVista\ComanderEnfora\setup.ini c:\program files\iplus\Drivers\DriverVista\ComanderEnfora\slabbus.cat c:\program files\iplus\Drivers\DriverVista\ComanderEnfora\slabbus.inf c:\program files\iplus\Drivers\DriverVista\ComanderEnfora\slabser.cat c:\program files\iplus\Drivers\DriverVista\ComanderEnfora\slabw2k.inf c:\program files\iplus\Drivers\DriverVista\ComanderEnfora\x86\slabbus.sys c:\program files\iplus\Drivers\DriverVista\ComanderEnfora\x86\slabcmnt.sys c:\program files\iplus\Drivers\DriverVista\ComanderEnfora\x86\slabser.sys c:\program files\iplus\Drivers\DriverVista\ComanderEnfora\x86\slabwhnt.sys c:\program files\iplus\Drivers\DriverVista\globesurferIcon\Autorun.inf c:\program files\iplus\Drivers\DriverVista\globesurferIcon\defdata.reg c:\program files\iplus\Drivers\DriverVista\globesurferIcon\GenericNDISDriverInterfaceDescriptionDoc.doc c:\program files\iplus\Drivers\DriverVista\globesurferIcon\gtffbus.sys c:\program files\iplus\Drivers\DriverVista\globesurferIcon\Gtm50Irp.sys c:\program files\iplus\Drivers\DriverVista\globesurferIcon\Gtm51Irp.sys c:\program files\iplus\Drivers\DriverVista\globesurferIcon\gtmff.cat c:\program files\iplus\Drivers\DriverVista\globesurferIcon\gtmff.inf c:\program files\iplus\Drivers\DriverVista\globesurferIcon\gtmmdm.cat c:\program files\iplus\Drivers\DriverVista\globesurferIcon\gtmmdm.inf c:\program files\iplus\Drivers\DriverVista\globesurferIcon\Gtmmdmusb2k.sys c:\program files\iplus\Drivers\DriverVista\globesurferIcon\Gtmmdmusbxp.sys c:\program files\iplus\Drivers\DriverVista\globesurferIcon\gtmndis.cat c:\program files\iplus\Drivers\DriverVista\globesurferIcon\gtmndis.inf c:\program files\iplus\Drivers\DriverVista\globesurferIcon\GtmNicApp.cpl c:\program files\iplus\Drivers\DriverVista\globesurferIcon\gtmsc.cat c:\program files\iplus\Drivers\DriverVista\globesurferIcon\gtmsc.inf c:\program files\iplus\Drivers\DriverVista\globesurferIcon\gtmser.cat c:\program files\iplus\Drivers\DriverVista\globesurferIcon\gtmser.inf c:\program files\iplus\Drivers\DriverVista\globesurferIcon\Gtmserusb2k.sys c:\program files\iplus\Drivers\DriverVista\globesurferIcon\Gtmserusbxp.sys c:\program files\iplus\Drivers\DriverVista\globesurferIcon\GtNdisDeviceIo.h c:\program files\iplus\Drivers\DriverVista\globesurferIcon\gtptser.sys c:\program files\iplus\Drivers\DriverVista\globesurferIcon\gtscser.sys c:\program files\iplus\Drivers\DriverVista\GT3GPlus\defdata.reg c:\program files\iplus\Drivers\DriverVista\GT3GPlus\GenericNDISDriverInterfaceDescriptionDoc.doc c:\program files\iplus\Drivers\DriverVista\GT3GPlus\gtf32bus.sys c:\program files\iplus\Drivers\DriverVista\GT3GPlus\gtffbus.sys c:\program files\iplus\Drivers\DriverVista\GT3GPlus\GtmNicApp.cpl c:\program files\iplus\Drivers\DriverVista\GT3GPlus\Gtn50Irp.sys c:\program files\iplus\Drivers\DriverVista\GT3GPlus\Gtn51Irp.sys c:\program files\iplus\Drivers\DriverVista\GT3GPlus\gtnbus.cat c:\program files\iplus\Drivers\DriverVista\GT3GPlus\gtnbus.inf c:\program files\iplus\Drivers\DriverVista\GT3GPlus\GtNdisDeviceIo.h c:\program files\iplus\Drivers\DriverVista\GT3GPlus\gtnff.cat c:\program files\iplus\Drivers\DriverVista\GT3GPlus\gtnff.inf c:\program files\iplus\Drivers\DriverVista\GT3GPlus\gtnmdm.cat c:\program files\iplus\Drivers\DriverVista\GT3GPlus\gtnmdm.inf c:\program files\iplus\Drivers\DriverVista\GT3GPlus\gtnndis.cat c:\program files\iplus\Drivers\DriverVista\GT3GPlus\gtnndis.inf c:\program files\iplus\Drivers\DriverVista\GT3GPlus\gtnnull.cat c:\program files\iplus\Drivers\DriverVista\GT3GPlus\gtnnull.inf c:\program files\iplus\Drivers\DriverVista\GT3GPlus\gtnsc.cat c:\program files\iplus\Drivers\DriverVista\GT3GPlus\gtnsc.inf c:\program files\iplus\Drivers\DriverVista\GT3GPlus\gtnser.cat c:\program files\iplus\Drivers\DriverVista\GT3GPlus\gtnser.inf c:\program files\iplus\Drivers\DriverVista\GT3GPlus\gtnwlan.cat c:\program files\iplus\Drivers\DriverVista\GT3GPlus\gtnwlan.inf c:\program files\iplus\Drivers\DriverVista\GT3GPlus\gtptser.sys c:\program files\iplus\Drivers\DriverVista\GT3GPlus\gtscser.sys c:\program files\iplus\Drivers\DriverVista\GT3GPlus\mrvw123.sys c:\program files\iplus\Drivers\DriverVista\GT3GPlus\mrvw125.sys c:\program files\iplus\Drivers\DriverVista\GTEDGE\gtedg.cat c:\program files\iplus\Drivers\DriverVista\GTEDGE\GTEDG.inf c:\program files\iplus\Drivers\DriverVista\GTEDGE\GTEDG.sys c:\program files\iplus\Drivers\DriverVista\GTEDGE\gtedgnet.cat c:\program files\iplus\Drivers\DriverVista\GTEDGE\GTEDGNet.inf c:\program files\iplus\Drivers\DriverVista\GTEDGE\GTEDGNet.sys c:\program files\iplus\Drivers\DriverVista\GTMax3.6\defdata.reg c:\program files\iplus\Drivers\DriverVista\GTMax3.6\GenericNDISDriverInterfaceDescriptionDoc.doc c:\program files\iplus\Drivers\DriverVista\GTMax3.6\GtDetectSc.exe c:\program files\iplus\Drivers\DriverVista\GTMax3.6\gtffbus.sys c:\program files\iplus\Drivers\DriverVista\GTMax3.6\GtFlashSwitch.exe c:\program files\iplus\Drivers\DriverVista\GTMax3.6\gtfubus.cat c:\program files\iplus\Drivers\DriverVista\GTMax3.6\GtFubus.inf c:\program files\iplus\Drivers\DriverVista\GTMax3.6\Gtm50Irp.sys c:\program files\iplus\Drivers\DriverVista\GTMax3.6\Gtm51Irp.sys c:\program files\iplus\Drivers\DriverVista\GTMax3.6\gtmbus.cat c:\program files\iplus\Drivers\DriverVista\GTMax3.6\gtmbus.inf c:\program files\iplus\Drivers\DriverVista\GTMax3.6\gtmff.cat c:\program files\iplus\Drivers\DriverVista\GTMax3.6\gtmff.inf c:\program files\iplus\Drivers\DriverVista\GTMax3.6\gtmmdm.cat c:\program files\iplus\Drivers\DriverVista\GTMax3.6\gtmmdm.inf c:\program files\iplus\Drivers\DriverVista\GTMax3.6\gtmndis.cat c:\program files\iplus\Drivers\DriverVista\GTMax3.6\gtmndis.inf c:\program files\iplus\Drivers\DriverVista\GTMax3.6\GtmNicApp.cpl c:\program files\iplus\Drivers\DriverVista\GTMax3.6\gtmsc.cat c:\program files\iplus\Drivers\DriverVista\GTMax3.6\gtmsc.inf c:\program files\iplus\Drivers\DriverVista\GTMax3.6\gtmser.cat c:\program files\iplus\Drivers\DriverVista\GTMax3.6\gtmser.inf c:\program files\iplus\Drivers\DriverVista\GTMax3.6\GtNdisDeviceIo.h c:\program files\iplus\Drivers\DriverVista\GTMax3.6\gtptser.sys c:\program files\iplus\Drivers\DriverVista\GTMax3.6\gtscser.sys c:\program files\iplus\Drivers\DriverVista\GTMax3.6\gtuqbus.sys c:\program files\iplus\Drivers\DriverVista\GTMax3.6\gtuqbus2k.sys c:\program files\iplus\Drivers\DriverVista\GTMax3.6\NicCPApplet.zip c:\program files\iplus\Drivers\DriverVista\GTMax7.2\GT50Ip.sys c:\program files\iplus\Drivers\DriverVista\GTMax7.2\GT51Ip.sys c:\program files\iplus\Drivers\DriverVista\GTMax7.2\gt72mdm.cat c:\program files\iplus\Drivers\DriverVista\GTMax7.2\gt72mdm.inf c:\program files\iplus\Drivers\DriverVista\GTMax7.2\gt72ndis.cat c:\program files\iplus\Drivers\DriverVista\GTMax7.2\gt72ndis.inf c:\program files\iplus\Drivers\DriverVista\GTMax7.2\gt72sc.cat c:\program files\iplus\Drivers\DriverVista\GTMax7.2\gt72sc.inf c:\program files\iplus\Drivers\DriverVista\GTMax7.2\gt72ser.cat c:\program files\iplus\Drivers\DriverVista\GTMax7.2\gt72ser.inf c:\program files\iplus\Drivers\DriverVista\GTMax7.2\gt72ubus.cat c:\program files\iplus\Drivers\DriverVista\GTMax7.2\gt72ubus.inf c:\program files\iplus\Drivers\DriverVista\GTMax7.2\gt72ubus.sys c:\program files\iplus\Drivers\DriverVista\GTMax7.2\gt72ubus2k.sys c:\program files\iplus\Drivers\DriverVista\GTMax7.2\GtDetectSc.exe c:\program files\iplus\Drivers\DriverVista\GTMax7.2\gtfubus.cat c:\program files\iplus\Drivers\DriverVista\GTMax7.2\GtFubus.inf c:\program files\iplus\Drivers\DriverVista\GTMax7.2\gtptser.sys c:\program files\iplus\Drivers\DriverVista\GTMax7.2\gtscser.sys c:\program files\iplus\Drivers\DriverVista\Huawei\ewdcsc.cat c:\program files\iplus\Drivers\DriverVista\Huawei\ewdcsc.inf c:\program files\iplus\Drivers\DriverVista\Huawei\ewdcsc.sys c:\program files\iplus\Drivers\DriverVista\Huawei\ewmdm2k.cat c:\program files\iplus\Drivers\DriverVista\Huawei\ewmdm2k.inf c:\program files\iplus\Drivers\DriverVista\Huawei\ewser2k.cat c:\program files\iplus\Drivers\DriverVista\Huawei\ewser2k.inf c:\program files\iplus\Drivers\DriverVista\Huawei\ewusbmdm.sys c:\program files\iplus\Drivers\DriverVista\Netbox1\FTBUSUI.dll c:\program files\iplus\Drivers\DriverVista\Netbox1\ftcserco.dll c:\program files\iplus\Drivers\DriverVista\Netbox1\FTD2XX.dll c:\program files\iplus\Drivers\DriverVista\Netbox1\FTD2XX.H c:\program files\iplus\Drivers\DriverVista\Netbox1\FTD2XX.lib c:\program files\iplus\Drivers\DriverVista\Netbox1\ftdibus.cat c:\program files\iplus\Drivers\DriverVista\Netbox1\FTDIBUS.INF c:\program files\iplus\Drivers\DriverVista\Netbox1\FTDIBUS.sys c:\program files\iplus\Drivers\DriverVista\Netbox1\ftdiport.cat c:\program files\iplus\Drivers\DriverVista\Netbox1\FTDIPORT.INF c:\program files\iplus\Drivers\DriverVista\Netbox1\FTDIUN2K.INI c:\program files\iplus\Drivers\DriverVista\Netbox1\FTDIUNIN.exe c:\program files\iplus\Drivers\DriverVista\Netbox1\FTLang.dll c:\program files\iplus\Drivers\DriverVista\Netbox1\ftser2k.sys c:\program files\iplus\Drivers\DriverVista\Netbox1\ftserui2.dll c:\program files\iplus\Drivers\DriverVista\Netbox1\NetBox.inf c:\program files\iplus\Drivers\DriverVista\Netbox2\FTBUSUI.dll c:\program files\iplus\Drivers\DriverVista\Netbox2\ftcserco.dll c:\program files\iplus\Drivers\DriverVista\Netbox2\FTD2XX.dll c:\program files\iplus\Drivers\DriverVista\Netbox2\FTD2XX.H c:\program files\iplus\Drivers\DriverVista\Netbox2\FTD2XX.lib c:\program files\iplus\Drivers\DriverVista\Netbox2\ftdibus.cat c:\program files\iplus\Drivers\DriverVista\Netbox2\FTDIBUS.sys c:\program files\iplus\Drivers\DriverVista\Netbox2\FTDIBUS2.INF c:\program files\iplus\Drivers\DriverVista\Netbox2\ftdiport.cat c:\program files\iplus\Drivers\DriverVista\Netbox2\FTDIPORT2.INF c:\program files\iplus\Drivers\DriverVista\Netbox2\FTDIUN2K.INI c:\program files\iplus\Drivers\DriverVista\Netbox2\FTDIUNIN.exe c:\program files\iplus\Drivers\DriverVista\Netbox2\FTLang.dll c:\program files\iplus\Drivers\DriverVista\Netbox2\ftser2k.sys c:\program files\iplus\Drivers\DriverVista\Netbox2\ftserui2.dll c:\program files\iplus\Drivers\DriverVista\Netbox2\NetBox2.inf c:\program files\iplus\Drivers\DriverVista\Novatel\NW01VNDIS.inf c:\program files\iplus\Drivers\DriverVista\Novatel\nw01vscr.inf c:\program files\iplus\Drivers\DriverVista\Novatel\nwadi_bus.cat c:\program files\iplus\Drivers\DriverVista\Novatel\nwadi_x64.cat c:\program files\iplus\Drivers\DriverVista\Novatel\NWADIEnum.inf c:\program files\iplus\Drivers\DriverVista\Novatel\NWADIEnum.sys c:\program files\iplus\Drivers\DriverVista\Novatel\NWADIx64.sys c:\program files\iplus\Drivers\DriverVista\Novatel\nwusbmdm.cat c:\program files\iplus\Drivers\DriverVista\Novatel\nwusbmdm.inf c:\program files\iplus\Drivers\DriverVista\Novatel\nwusbmdm.sys c:\program files\iplus\Drivers\DriverVista\Novatel\nwusbser.inf c:\program files\iplus\Drivers\DriverVista\Novatel\nwusbsr2.inf c:\program files\iplus\Drivers\DriverVista\Novatel\nwusbx64.cat c:\program files\iplus\Drivers\DriverVista\Novatel\nwusbx64.sys c:\program files\iplus\Drivers\DriverVista\Novatel\NWVNdis.sys c:\program files\iplus\Drivers\DriverVista\Novatel\NWVNdis64.sys c:\program files\iplus\Drivers\DriverVista\Novatel\nwvscr.cat c:\program files\iplus\Drivers\DriverVista\Novatel\NWVSCR.sys c:\program files\iplus\Drivers\DriverVista\Novatel\UninstallGen.inf c:\program files\iplus\Drivers\DriverVista\Novatel\WinLogo.gif c:\program files\iplus\Drivers\DriverVista\ZTE\ztedatacard.cat c:\program files\iplus\Drivers\DriverVista\ZTE\ztediag_pcui2k.inf c:\program files\iplus\Drivers\DriverVista\ZTE\ztemdm2k.inf c:\program files\iplus\Drivers\DriverVista\ZTE\ZTEusbmdm6k.sys c:\program files\iplus\Drivers\DriverVista\ZTE\ZTEusbnmea.sys c:\program files\iplus\Drivers\DriverVista\ZTE\ZTEusbser6k.sys c:\program files\iplus\Drivers\GTMax7.2-drivers-list-vista.txt c:\program files\iplus\Drivers\option-drivers-list-vista.txt c:\program files\iplus\eng.lang c:\program files\iplus\help\IPlus_Manager_User_Manual.pdf c:\program files\iplus\help\Podrecznik_Uzytkownika_IPlus_Manager.pdf c:\program files\iplus\iPlusChecker.exe c:\program files\iplus\iPlusFlashSkin.exe c:\program files\iplus\iPlusManager.exe c:\program files\iplus\iPlusManager.ini c:\program files\iplus\license.rtf c:\program files\iplus\networks.dat c:\program files\iplus\pl.lang c:\program files\iplus\tools.exe c:\program files\iplus\unins000.dat c:\program files\iplus\unins000.exe c:\program files\iplus\uninstallTool.exe c:\program files\iplus\update.exe c:\program files\iplus\update\update.ini c:\program files\iplus\userPrefs.def c:\users\leszek\AppData\Roaming\Protector-pqbq.exe c:\windows\unin0415.exe . . ((((((((((((((((((((((((((((((((((((((( Sterowniki/Usługi ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Service_GtDetectSc -------\Service_GtFlashSwitch -------\Service_GtDetectSc -------\Service_GtFlashSwitch . . ((((((((((((((((((((((((( Pliki utworzone od 2012-06-11 do 2012-07-11 ))))))))))))))))))))))))))))))) . . 2012-07-11 16:50 . 2012-07-11 16:56 -------- d-----w- c:\users\leszek\AppData\Local\temp 2012-07-11 16:50 . 2012-07-11 16:50 -------- d-----w- c:\users\Gość\AppData\Local\temp 2012-07-11 16:50 . 2012-07-11 16:50 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-06-30 21:15 . 2012-06-30 21:16 -------- d-----w- c:\users\leszek\AppData\Roaming\hellomoto . . . (((((((((((((((((((((((((((((((((((((((( Sekcja Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))) . . . ((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-19 1233920] "TOSCDSPD"="c:\program files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe" [2006-11-13 413696] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2011-10-05 39408] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "HWSetup"="\HWSetup.exe hwSetUP" [X] "KeNotify"="c:\program files\TOSHIBA\Utilities\KeNotify.exe" [2006-11-06 34352] "SVPWUTIL"="c:\program files\TOSHIBA\Utilities\SVPWUTIL.exe" [2006-03-22 438272] "RtHDVCpl"="RtHDVCpl.exe" [2007-09-03 4702208] "TPwrMain"="c:\program files\TOSHIBA\Power Saver\TPwrMain.EXE" [2007-03-29 411192] "HSON"="c:\program files\TOSHIBA\TBS\HSON.exe" [2006-12-07 55416] "SmoothView"="c:\program files\Toshiba\SmoothView\SmoothView.exe" [2007-04-03 509496] "00TCrdMain"="c:\program files\TOSHIBA\FlashCards\TCrdMain.exe" [2007-05-22 538744] "NDSTray.exe"="NDSTray.exe" [BU] "topi"="c:\program files\TOSHIBA\Toshiba Online Product Information\topi.exe" [2007-07-10 581632] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-09-20 141848] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-09-20 154136] "Persistence"="c:\windows\system32\igfxpers.exe" [2007-09-20 129560] "Camera Assistant Software"="c:\program files\Camera Assistant Software for Toshiba\traybar.exe" [2007-04-10 413696] "Apoint"="c:\program files\Apoint2K\Apoint.exe" [2006-09-11 180224] "Toshiba Registration"="c:\program files\Toshiba\Registration\ToshibaRegistration.exe" [2007-02-19 571024] "IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2007-02-12 174872] "WinampAgent"="c:\program files\Winamp\winampa.exe" [2007-10-10 36352] "NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648] "Windows Mobile-based device management"="c:\windows\WindowsMobile\wmdSync.exe" [2006-11-02 215552] "SpIDerMail"="c:\program files\DrWeb\spiderml.exe" [2010-10-07 1561840] "SpIDerAgent"="c:\program files\DrWeb\SpIDerAgent.exe" [2010-10-06 1255664] "Samsung PanelMgr"="c:\windows\Samsung\PanelMgr\SSMMgr.exe" [2009-08-14 614400] "4623 Scan2PC"="c:\windows\twain_32\Samsung\SCX4623\Scan2Pc.exe" [2009-09-10 1968640] "SNTSearch"="c:\users\leszek\AppData\Local\Microsoft\Windows\2579\SNTSearch.exe" [2012-06-30 196609] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Bluetooth Monitor.lnk - c:\program files\TOSHIBA\Bluetooth Monitor\BtMon2.exe [2008-4-27 69632] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 . R3 adusbser;AnyDATA USB Device for Legacy Serial Communication;c:\windows\system32\DRIVERS\adusbser.sys [x] . . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] bthsvcs REG_MULTI_SZ BthServ WindowsMobile REG_MULTI_SZ wcescomm rapimgr LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr . Zawartość folderu 'Zaplanowane zadania' . 2011-02-08 c:\windows\Tasks\Dr.Web Daily scan.job - c:\program files\DrWeb\drweb32w.exe [2010-08-31 18:38] . 2012-07-11 c:\windows\Tasks\Dr.Web Update.job - c:\program files\DrWeb\DrWebUpW.exe [2010-10-08 18:21] . 2012-07-11 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-10-05 20:09] . 2012-07-11 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-10-05 20:09] . . ------- Skan uzupełniający ------- . uStart Page = hxxp://www.google.pl IE: E&ksport do programu Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000 IE: E&ksportuj do programu Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000 LSP: c:\program files\DrWeb\drwebsp.dll . . ------- Skojarzenia plików ------- . .scr=AutoCADScriptFile . - - - - USUNIĘTO PUSTE WPISY - - - - . HKLM-Run-iPlusManager - c:\program files\iPlus\iPlusChecker.exe AddRemove-AutoCAD 2000 - Polski - odinstalowanie - c:\windows\unin0415.exe AddRemove-iPlus Manager_is1 - c:\program files\iPlus\unins000.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2012-07-11 18:56 Windows 6.0.6001 Service Pack 1 NTFS . skanowanie ukrytych procesów ... . skanowanie ukrytych wpisów autostartu ... . HKCU\Software\Microsoft\Windows\CurrentVersion\Run TOSCDSPD = c:\program files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe?/i??????5| ????8?Y?`?Y???Y???Y?? . skanowanie ukrytych plików ... . skanowanie pomyślnie ukończone ukryte pliki: 0 . ************************************************************************** "ImagePath"="system32\drivers\dwprot.sys" "Name"="ImagePath" . --------------------- ZABLOKOWANE KLUCZE REJESTRU --------------------- . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 "MSCurrentCountry"=dword:000000b5 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . ------------------------ Pozostałe uruchomione procesy ------------------------ . c:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe c:\program files\Common Files\Doctor Web\Scanning Engine\dwengine.exe c:\windows\system32\agrsmsvc.exe c:\windows\system32\drivers\CDAC11BA.EXE c:\program files\TOSHIBA\ConfigFree\CFSvcs.exe c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE c:\windows\system32\spool\drivers\w32x86\3\NetFaxServer.exe c:\windows\system32\TODDSrv.exe c:\program files\TOSHIBA\Power Saver\TosCoSrv.exe c:\program files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe c:\program files\Common Files\Doctor Web\Scanning Engine\dwengine.exe c:\windows\RtHDVCpl.exe c:\program files\TOSHIBA\ConfigFree\NDSTray.exe c:\windows\system32\conime.exe c:\windows\system32\igfxsrvc.exe c:\program files\Apoint2K\ApMsgFwd.exe c:\program files\Camera Assistant Software for Toshiba\CEC_MAIN.exe c:\windows\ehome\ehmsas.exe c:\program files\Apoint2K\Apntex.exe c:\\?\c:\windows\system32\wbem\WMIADAP.EXE . ************************************************************************** . Czas ukończenia: 2012-07-11 19:03:02 - komputer został uruchomiony ponownie ComboFix-quarantined-files.txt 2012-07-11 17:02 . Przed: 38 057 357 312 bajtów wolnych Po: 36 472 631 296 bajtów wolnych . - - End Of File - - 226EDCF3FF0C9704B6D23D5267C1548F