ComboFix 12-10-18.03 - Damon 2012-10-18 15:02:32.1.2 - x86 MINIMAL Microsoft Windows 7 Ultimate 6.1.7601.1.1250.48.1033.18.2046.1645 [GMT 2:00] Uruchomiony z: F:\ComboFix.exe AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Utworzono nowy punkt przywracania ((((((((((((((((((((((((((((((((((((((( Usunięto ))))))))))))))))))))))))))))))))))))))))))))))))) C:\ProgramData\etadpuswodniw.pad C:\ProgramData\lsass.exe C:\Users\Damon\AppData\Roaming\Microsoft\~DFK1bf44f4.tmp C:\Users\Damon\AppData\Roaming\Microsoft\1eaadjc.dll C:\Users\Damon\AppData\Roaming\Microsoft\bass.dll C:\Users\Damon\AppData\Roaming\Microsoft\kfgresk.dll C:\Users\Damon\AppData\Roaming\Microsoft\mjcriu.dll C:\Users\Damon\AppData\Roaming\Microsoft\peaadje.dll C:\Users\Damon\AppData\Roaming\Microsoft\qwadjb.dll C:\Users\Damon\AppData\Roaming\Microsoft\rsaadjd.dll C:\Users\Damon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ctfmon.lnk C:\Users\Damon\Desktop\Setup.exe C:\Windows\system32\msstdfmt.dll C:\Windows\system32\tmp2313.tmp C:\Windows\system32\tmp2333.tmp C:\Windows\system32\URTTemp C:\Windows\system32\URTTemp\regtlib.exe ((((((((((((((((((((((((((((((((((((((( Sterowniki/Usługi ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Service_nvsvc ((((((((((((((((((((((((( Pliki utworzone od 2012-09-18 do 2012-10-18 ))))))))))))))))))))))))))))))) 2012-10-18 13:09:59 . 2012-10-18 13:09:59 8782 ----a-w- C:\ProgramData\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\BUTTON.JS 2012-10-18 13:09:59 . 2012-10-18 13:09:59 7271 ----a-w- C:\ProgramData\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\CHECKBOX.JS 2012-10-18 13:09:59 . 2012-10-18 13:09:59 51852 ----a-w- C:\ProgramData\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\EXTERNALWRAPPER.JS 2012-10-18 13:09:59 . 2012-10-18 13:09:59 23327 ----a-w- C:\ProgramData\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\COMBOBOX.JS 2012-10-18 13:09:59 . 2012-10-18 13:09:59 20719 ----a-w- C:\ProgramData\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\DIVWRAPPER.JS 2012-10-18 13:08:24 . 2012-10-18 13:12:09 -------- d-----w- C:\Users\Damon\AppData\Local\temp 2012-10-18 13:08:24 . 2012-10-18 13:08:24 -------- d-----w- C:\Users\UpdatusUser\AppData\Local\temp 2012-10-18 03:44:46 . 2012-10-12 05:56:01 6918632 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9C8C368B-3004-4858-B5D7-10708ACEFB49}\mpengine.dll 2012-10-10 12:21:06 . 2012-08-24 16:57:48 172544 ----a-w- C:\Windows\system32\wintrust.dll 2012-10-10 12:21:02 . 2012-09-14 18:28:53 2048 ----a-w- C:\Windows\system32\tzres.dll 2012-10-10 12:20:33 . 2012-06-02 04:36:29 140288 ----a-w- C:\Windows\system32\cryptsvc.dll 2012-10-10 12:20:33 . 2012-06-02 04:36:29 1159680 ----a-w- C:\Windows\system32\crypt32.dll 2012-10-10 12:20:33 . 2012-06-02 04:36:29 103936 ----a-w- C:\Windows\system32\cryptnet.dll 2012-10-10 12:19:58 . 2012-08-10 23:56:14 542208 ----a-w- C:\Windows\system32\kerberos.dll 2012-10-10 12:19:55 . 2012-08-30 17:12:02 3914096 ----a-w- C:\Windows\system32\ntoskrnl.exe 2012-10-10 12:19:54 . 2012-08-30 17:12:02 3968880 ----a-w- C:\Windows\system32\ntkrnlpa.exe 2012-10-06 01:23:06 . 2012-10-06 01:23:06 -------- d-----w- C:\Users\Damon\AppData\Local\APN 2012-09-27 04:17:22 . 2012-09-27 07:35:22 -------- d-----w- C:\Users\TEMP.Damon-PC . (((((((((((((((((((((((((((((((((((((((( Sekcja Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))) 2012-08-22 17:16:54 . 2012-09-12 13:03:28 1292144 ----a-w- C:\Windows\system32\drivers\tcpip.sys 2012-08-22 17:16:46 . 2012-09-12 13:03:27 240496 ----a-w- C:\Windows\system32\drivers\netio.sys 2012-08-22 17:16:36 . 2012-09-12 13:03:27 187760 ----a-w- C:\Windows\system32\drivers\FWPKCLNT.SYS 2012-08-21 19:32:16 . 2012-04-01 07:04:30 696520 ----a-w- C:\Windows\system32\FlashPlayerApp.exe 2012-08-21 19:32:15 . 2011-11-24 22:39:41 73416 ----a-w- C:\Windows\system32\FlashPlayerCPLApp.cpl 2012-08-23 00:51:17 . 2011-12-05 06:48:31 136672 ----a-w- C:\Program Files\mozilla firefox\components\browsercomps.dll