ComboFix 10-10-04.02 - memek 2010-10-05  19:40:11.1.2 - x86
Microsoft Windows XP Professional  5.1.2600.2.1250.48.1045.18.2038.1539 [GMT 2:00]
Uruchomiony z: c:\documents and settings\memek\Pulpit\ComboFix.exe
AV: avast! antivirus 4.8.1368 [VPS 101005-0] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

(((((((((((((((((((((((((((((((((((((((   Usunięto   )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\All Users\Dokumenty\Settings
c:\documents and settings\All Users\Dokumenty\Settings\cbss.dll
c:\documents and settings\memek\Dane aplikacji\.#
c:\documents and settings\memek\Dane aplikacji\avdrn.dat
c:\documents and settings\memek\Dane aplikacji\rmhzb.exe
c:\documents and settings\memek\Menu Start\Programy\Autostart\algkir32.exe
c:\documents and settings\memek\secupdat.dat
c:\program files\Antbar\Ant.com Toolbar\tbHElper.dll
c:\windows\system32\secupdat.dat

.
(((((((((((((((((((((((((((((((((((((((   Sterowniki/Usługi   )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_ICF


(((((((((((((((((((((((((   Pliki utworzone od 2010-09-05 do 2010-10-05  )))))))))))))))))))))))))))))))
.

2010-10-05 17:16 . 2010-10-05 17:16	--------	d-----w-	c:\windows\BDOSCAN8
2010-10-05 17:16 . 2010-10-05 17:16	--------	d-----w-	c:\windows\LastGood.Tmp
2010-10-03 11:38 . 2004-08-03 20:59	34688	-c--a-w-	c:\windows\system32\dllcache\lbrtfdc.sys
2010-10-03 11:38 . 2004-08-03 20:59	34688	----a-w-	c:\windows\system32\drivers\lbrtfdc.sys
2010-10-03 11:38 . 2004-08-03 21:00	8192	-c--a-w-	c:\windows\system32\dllcache\i2omgmt.sys
2010-10-03 11:38 . 2004-08-03 21:00	8192	----a-w-	c:\windows\system32\drivers\i2omgmt.sys
2010-10-03 11:36 . 2004-08-03 21:00	8192	-c--a-w-	c:\windows\system32\dllcache\changer.sys
2010-09-27 13:16 . 2010-09-27 13:16	--------	d-----w-	c:\documents and settings\memek\Dane aplikacji\Nokia Ovi Suite
2010-09-27 12:22 . 2010-09-27 12:22	--------	d-----w-	c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Mozilla
2010-09-26 18:30 . 2010-09-26 18:29	36548656	----a-w-	c:\documents and settings\All Users\Dane aplikacji\Installations\{7239A06F-235B-43B1-970D-7A411FD95683}\NokiaSoftwareUpdaterSetup_PL.exe
2010-09-26 17:58 . 2010-09-26 17:58	--------	d-----w-	c:\program files\Common Files\PCSuite
2010-09-26 17:18 . 2010-09-26 17:17	36357376	----a-w-	c:\documents and settings\All Users\Dane aplikacji\Installations\{7239A06F-235B-43B1-970D-7A411FD95683}\NokiaSoftwareUpdaterSetup_EN.exe
2010-09-26 13:55 . 2010-09-26 13:55	--------	d-----w-	c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Help
2010-09-26 11:46 . 2010-10-05 11:06	--------	d-----w-	c:\program files\Common Files\Nokia
2010-09-26 11:45 . 2009-05-05 09:38	65744984	----a-w-	c:\documents and settings\All Users\Dane aplikacji\Installations\{7694EC32-CB0E-4B35-9088-7B320CB1F4FE}\Nokia_PC_Suite_7_1_26_0_ALL.exe
2010-09-26 11:45 . 2010-09-26 11:45	8192	----a-w-	c:\documents and settings\All Users\Dane aplikacji\Installations\{7694EC32-CB0E-4B35-9088-7B320CB1F4FE}\Installer\CommonCustomActions\UninstCCD.exe
2010-09-26 11:45 . 2010-09-26 11:45	61440	----a-w-	c:\documents and settings\All Users\Dane aplikacji\Installations\{7694EC32-CB0E-4B35-9088-7B320CB1F4FE}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2010-09-26 11:45 . 2010-09-26 11:45	10240	----a-w-	c:\documents and settings\All Users\Dane aplikacji\Installations\{7694EC32-CB0E-4B35-9088-7B320CB1F4FE}\Installer\CommonCustomActions\UninstPCS.exe
2010-09-26 10:12 . 2010-09-26 10:12	--------	d-----w-	c:\documents and settings\All Users\Dane aplikacji\Nokia
2010-09-26 10:10 . 2008-08-26 08:26	18816	----a-w-	c:\windows\system32\drivers\pccsmcfd.sys
2010-09-26 10:09 . 2010-09-26 10:10	--------	d-----w-	c:\program files\PC Connectivity Solution
2010-09-26 10:08 . 2010-09-26 10:06	36548656	----a-w-	c:\documents and settings\All Users\Dane aplikacji\Installations\{7239A06F-235B-43B1-970D-7A411FD95683}\NokiaSoftwareUpdaterSetup_PL[1].exe
2010-09-26 10:06 . 2010-09-26 10:06	36864	----a-w-	c:\documents and settings\All Users\Dane aplikacji\Installations\{7239A06F-235B-43B1-970D-7A411FD95683}\Installer\CommonCustomActions\Sleep.exe
2010-09-26 10:06 . 2010-09-26 10:06	3351812	----a-w-	c:\documents and settings\All Users\Dane aplikacji\Installations\{7239A06F-235B-43B1-970D-7A411FD95683}\Installer\CommonCustomActions\msxml6Exec.exe
2010-09-26 10:06 . 2010-09-26 10:06	3203453	----a-w-	c:\documents and settings\All Users\Dane aplikacji\Installations\{7239A06F-235B-43B1-970D-7A411FD95683}\Installer\CommonCustomActions\vcredistExec.exe
2010-09-26 09:57 . 2006-08-29 14:56	32377	----a-w-	c:\windows\system32\drivers\prodigy.sys
2010-09-26 09:57 . 2010-09-26 12:06	--------	d-----w-	c:\program files\NSS
2010-09-26 09:51 . 2010-10-03 17:09	--------	d-----w-	c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\NokiaAccount
2010-09-26 09:51 . 2004-08-04 00:44	221184	----a-w-	c:\windows\system32\wmpns.dll
2010-09-26 09:49 . 2010-09-26 09:55	--------	d-----w-	c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Nokia
2010-09-26 09:45 . 2010-02-26 12:21	8320	----a-w-	c:\windows\system32\drivers\nmwcdnsuc.sys
2010-09-26 09:45 . 2010-02-26 12:21	137344	----a-w-	c:\windows\system32\drivers\nmwcdnsu.sys
2010-09-26 09:45 . 2010-02-26 12:32	8192	----a-w-	c:\windows\system32\drivers\usbser_lowerfltj.sys
2010-09-26 09:45 . 2010-02-26 12:32	8192	----a-w-	c:\windows\system32\drivers\usbser_lowerflt.sys
2010-09-26 09:45 . 2010-02-26 12:32	22528	----a-w-	c:\windows\system32\drivers\ccdcmbo.sys
2010-09-26 09:45 . 2010-02-26 12:32	662016	----a-w-	c:\windows\system32\nmwcdcocls.dll
2010-09-26 09:45 . 2010-02-26 12:32	18176	----a-w-	c:\windows\system32\drivers\ccdcmb.sys
2010-09-26 09:45 . 2010-02-26 12:19	1461992	----a-w-	c:\windows\system32\wdfcoinstaller01009.dll
2010-09-26 09:43 . 2010-09-26 09:43	--------	d-----w-	c:\program files\MSXML 6.0
2010-09-26 09:42 . 2010-09-26 09:52	--------	d-----w-	c:\windows\system32\drivers\UMDF
2010-09-26 09:41 . 2010-09-27 12:28	12212040	----a-w-	c:\documents and settings\All Users\Dane aplikacji\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\WMFDist11-WindowsXP-X86-ENU.exe
2010-09-26 09:41 . 2010-09-27 12:28	13930312	----a-w-	c:\documents and settings\All Users\Dane aplikacji\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\WMFDist11-WindowsXP-X64-ENU.exe
2010-09-26 09:41 . 2010-09-27 12:28	77824	----a-w-	c:\documents and settings\All Users\Dane aplikacji\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\Run_XML6_SP1.exe
2010-09-26 09:41 . 2010-09-27 12:28	50000	----a-w-	c:\documents and settings\All Users\Dane aplikacji\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\pcswpc.exe
2010-09-26 09:41 . 2010-09-27 12:28	38912	----a-w-	c:\documents and settings\All Users\Dane aplikacji\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\WMF11Runx86.exe
2010-09-26 09:41 . 2010-09-27 12:28	38912	----a-w-	c:\documents and settings\All Users\Dane aplikacji\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\WMF11Runx64.exe
2010-09-26 09:41 . 2010-09-27 12:27	102913480	----a-w-	c:\documents and settings\All Users\Dane aplikacji\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer.exe
2010-09-26 09:41 . 2010-09-26 09:41	--------	d-----w-	c:\documents and settings\All Users\Dane aplikacji\NokiaInstallerCache
2010-09-26 09:30 . 2004-08-03 21:08	25600	-c--a-w-	c:\windows\system32\dllcache\usbser.sys
2010-09-26 09:30 . 2004-08-03 21:08	25600	----a-w-	c:\windows\system32\drivers\usbser.sys
2010-09-26 09:30 . 2008-11-07 16:55	16928	------w-	c:\windows\system32\spmsgXP_2k3.dll
2010-09-26 09:29 . 2010-09-27 13:16	--------	d-----w-	c:\documents and settings\memek\Dane aplikacji\Nokia
2010-09-26 09:29 . 2010-09-27 12:33	--------	d-----w-	c:\documents and settings\memek\Dane aplikacji\PC Suite
2010-09-26 09:29 . 2010-09-26 09:29	--------	d-----w-	c:\documents and settings\All Users\Dane aplikacji\PC Suite
2010-09-26 09:28 . 2010-09-26 09:29	--------	d-----w-	c:\program files\DIFX
2010-09-26 09:28 . 2008-02-01 14:17	90624	----a-w-	c:\windows\system32\nmwcdcls.dll
2010-09-26 09:28 . 2010-10-05 11:00	--------	d-----w-	c:\program files\Nokia
2010-09-26 09:27 . 2010-09-26 09:27	36747456	----a-w-	c:\documents and settings\All Users\Dane aplikacji\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Nokia_PC_Suite_pol_web[1].exe
2010-09-26 09:27 . 2010-09-26 09:27	95232	----a-w-	c:\documents and settings\All Users\Dane aplikacji\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\pcswpcsi.exe
2010-09-26 09:27 . 2010-09-26 09:27	8192	----a-w-	c:\documents and settings\All Users\Dane aplikacji\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\UninstCCD.exe
2010-09-26 09:27 . 2010-09-26 09:27	61440	----a-w-	c:\documents and settings\All Users\Dane aplikacji\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2010-09-26 09:27 . 2010-09-26 09:27	10240	----a-w-	c:\documents and settings\All Users\Dane aplikacji\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\UninstPCS.exe
2010-09-26 09:27 . 2010-09-26 11:44	--------	d-----w-	c:\documents and settings\All Users\Dane aplikacji\Installations
2010-09-22 10:19 . 2010-09-22 10:19	54272	----a-w-	c:\documents and settings\memek\Dane aplikacji\GanymedeNet\Online Games\Common\ielauncher.exe
2010-09-22 10:19 . 2010-09-22 10:19	4	----a-w-	c:\windows\system32\proc1794749374.bin
2010-09-15 18:17 . 2010-09-22 09:38	--------	d-----w-	c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\Conduit
2010-09-15 18:17 . 2010-09-24 16:44	--------	d-----w-	c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\MyAshampoo
2010-09-15 18:17 . 2010-09-15 18:17	--------	d-----w-	c:\program files\Conduit
2010-09-15 18:17 . 2010-09-22 09:38	--------	d-----w-	c:\program files\MyAshampoo

.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-10-05 16:44 . 2010-08-03 17:24	--------	d-----w-	c:\documents and settings\All Users\Dane aplikacji\Norton
2010-10-05 16:42 . 2010-05-15 20:02	--------	d-----w-	c:\program files\Styler
2010-10-05 16:41 . 2010-05-11 22:12	--------	d-----w-	c:\program files\TextToPDF
2010-10-05 15:23 . 2008-12-26 10:29	42168	----a-w-	c:\documents and settings\memek\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
2010-10-05 12:59 . 2009-03-20 08:04	--------	d-----w-	c:\documents and settings\memek\Dane aplikacji\GanymedeNet
2010-10-05 11:24 . 2010-10-05 11:24	12	----a-w-	c:\documents and settings\NetworkService\Dane aplikacji\yopgrf.dat
2010-10-05 10:57 . 2008-12-26 11:11	--------	d--h--w-	c:\program files\InstallShield Installation Information
2010-10-03 12:11 . 2009-04-11 13:27	--------	d-----w-	c:\program files\Camera Assistant Software for Toshiba
2010-10-03 11:36 . 2010-10-03 11:36	16	----a-w-	c:\documents and settings\memek\Dane aplikacji\yopgrf.dat
2010-10-03 08:27 . 2009-01-03 17:54	--------	d-----w-	c:\program files\DivX
2010-10-01 15:58 . 2010-05-11 22:08	--------	d-----w-	c:\program files\Foxit Software
2010-10-01 15:53 . 2010-05-13 16:24	--------	d-----w-	c:\program files\Ashampoo
2010-09-27 17:20 . 2008-12-26 12:07	--------	d-----w-	c:\program files\Opera
2010-09-26 09:30 . 2010-09-26 09:30	0	---ha-w-	c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01009.Wdf
2010-09-26 09:30 . 2010-09-26 09:30	0	---ha-w-	c:\windows\system32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
2010-09-22 10:14 . 2009-09-24 17:20	--------	d-----w-	c:\program files\Ganymede
2010-08-27 20:13 . 2010-07-13 18:16	--------	d-----w-	c:\documents and settings\memek\Dane aplikacji\Audacity
2010-08-19 20:13 . 2008-12-26 11:58	--------	d-----w-	c:\documents and settings\memek\Dane aplikacji\Skype
2010-08-19 10:43 . 2008-12-26 11:20	--------	d-----w-	c:\program files\TOSHIBA
2010-08-15 11:19 . 2010-08-15 11:16	--------	d-----w-	c:\documents and settings\memek\Dane aplikacji\TeamViewer
2010-08-15 11:16 . 2010-08-15 11:16	--------	d-----w-	c:\program files\TeamViewer
2010-07-30 09:09 . 2001-10-26 21:15	68752	----a-w-	c:\windows\system32\perfc015.dat
2010-07-30 09:09 . 2001-10-26 21:15	439776	----a-w-	c:\windows\system32\perfh015.dat
2010-07-21 08:29 . 2010-07-21 08:29	369	----a-w-	c:\documents and settings\memek\chkdskdisable.reg
2010-04-19 18:33 . 2010-04-19 18:25	56	--sh--r-	c:\windows\system32\0E6A4F59C3.sys
2010-04-07 16:20 . 2010-03-02 20:26	88	--sh--r-	c:\windows\system32\6A2E88089F.sys
2010-04-19 19:10 . 2010-03-02 18:32	7308	--sha-w-	c:\windows\system32\KGyGaAvL.sys
.
[code]<pre>
c:\program files\Camera Assistant Software for Toshiba\traybar .exe
c:\program files\CardDetector\HUAWEI160\carddetector .exe
c:\program files\Common Files\InstallShield\UpdateService\issch .exe
c:\program files\Common Files\InstallShield\UpdateService\isuspm .exe
c:\program files\CyberLink\PowerDVD\pdvdserv .exe
c:\program files\CyberLink\PowerDVD\Language\language .exe
c:\program files\CyberLink\Shared files\brs .exe
c:\program files\Google\GoogleToolbarNotifier\googletoolbarnotifier .exe
c:\program files\HP\HP Software Update\hpwuschd2 .exe
c:\program files\Java\jre6\bin\jusched .exe
c:\program files\OrangeBS\BEWInternet-PL-IEW\SessionManager\sessionmanager .exe
c:\program files\Synaptics\SynTP\syntpenh .exe
c:\program files\TOSHIBA\TOSHIBA Applet\thotkey .exe
c:\program files\Winamp\winampa .exe
c:\windows\system32\ctfmon .exe
c:\windows\system32\hkcmd .exe
c:\windows\system32\igfxpers .exe
c:\windows\system32\igfxtray .exe
c:\windows\system32\tpsmain .exe
</pre>[/code]

------- Sigcheck -------

[7] 2004-08-03 . 9F4B36614A0FC234525BA224957DE55C . 359040 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\tcpip.sys
[-] 2004-08-03 . 7399D854596BFEFEED6B60879F28CE07 . 359040 . . [5.1.2600.2180] . . c:\windows\system32\drivers\tcpip.sys
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}"= "c:\program files\MyAshampoo\tbMyA1.dll" [2010-09-22 2735200]

[HKEY_CLASSES_ROOT\clsid\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]
2010-09-22 09:39	2735200	----a-w-	c:\program files\MyAshampoo\tbMyA1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}"= "c:\program files\MyAshampoo\tbMyA1.dll" [2010-09-22 2735200]

[HKEY_CLASSES_ROOT\clsid\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{A1E75A0E-4397-4BA8-BB50-E19FB66890F4}"= "c:\program files\MyAshampoo\tbMyA1.dll" [2010-09-22 2735200]

[HKEY_CLASSES_ROOT\clsid\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Real Desktop"="c:\program files\Real Desktop\Real Desktop.exe" [N/A]
"Active Desktop Calendar"="c:\program files\XemiComputers\Active Desktop Calendar\ADC.exe" [N/A]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 81000]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2004-06-16 81920]
"ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2004-06-16 221184]
"TFncKy"="TFncKy.exe" [N/A]
"THotkey"="c:\program files\Toshiba\Toshiba Applet\thotkey.exe" [2008-03-04 360448]
"MP10_EnsureFileVer"="c:\windows\inf\unregmp2.exe" [2004-08-04 208896]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-04 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 0 (0x0)
"NoFileAssociate"= 0 (0x0)

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute	REG_MULTI_SZ   	autocheck autochk /k:D *

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=

R0 pe3apasb;Made Man Environment Driver (pe3apasb);c:\windows\system32\drivers\pe3apasb.sys [2007-11-13 65136]
R0 ps7apasb;Made Man Synchronization Driver (ps7apasb);c:\windows\system32\drivers\ps7apasb.sys [2007-11-13 68728]
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2009-12-07 114768]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009-12-07 20560]
R3 FwLnk;FwLnk Driver;c:\windows\system32\drivers\FwLnk.sys [2008-12-26 5888]
R3 RTL8187B;Realtek RTL8187B bezprzewodowe 802.11b/g 54Mbps USB 2.0 karta sieciowa ;c:\windows\system32\drivers\RTL8187B.sys [2008-12-26 288000]
S?2 gupdate;Usługa Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-03-02 135664]
S?2 nasdopyiv;Driver Support;c:\windows\system32\svchost.exe -k netsvcs [2004-08-04 14336]
S?2 pr2apasb;Made Man Drivers Auto Removal (pr2apasb);c:\windows\system32\pr2apasb.exe svc --> c:\windows\system32\pr2apasb.exe svc [?]
S?2 qpyde;Image Windows;c:\windows\system32\svchost.exe -k netsvcs [2004-08-04 14336]
S?2 yesinuwb;Helper Manager;c:\windows\system32\svchost.exe -k netsvcs [2004-08-04 14336]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - NetSvcs
yesinuwb
nasdopyiv
qpyde
.
Zawartość folderu 'Zaplanowane zadania'

2010-10-05 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-02 18:46]

2010-10-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-02 18:46]
.
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2475029
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: &Winamp Search - c:\documents and settings\All Users\Dane aplikacji\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
IE: E&ksport do programu Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
.
- - - - USUNIĘTO PUSTE WPISY - - - -

URLSearchHooks-{57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - (no file)
BHO-{DA3D342F-FF20-4E31-9E82-22334155730C} - (no file)
Toolbar-{6CD56C02-CB4D-41B5-A0FE-B479061CCB41} - (no file)
WebBrowser-{6CD56C02-CB4D-41B5-A0FE-B479061CCB41} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
SafeBoot-Wdf01000.sys



[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\{95808DC4-FA4A-4C74-92FE-5B863F82066B}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD\000.fcl"

[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\nasdopyiv]
"ServiceDll"="c:\program files\Internet Explorer\myfdtdtp.dll"
--

[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\qpyde]
"ServiceDll"="c:\windows\system32\myfdtdtp.dll"
--

[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\yesinuwb]
"ServiceDll"="c:\windows\system32\myfdtdtp.dll"
.
--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------

- - - - - - - > 'Explorer.EXE'(2096)
c:\windows\system32\msi.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Pozostałe uruchomione procesy ------------------------
.
c:\program files\Alwil Software\Avast4\aswUpdSv.exe
c:\program files\Alwil Software\Avast4\ashServ.exe
c:\windows\system32\agrsmsvc.exe
c:\progra~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\HPZipm12.exe
c:\program files\Common Files\Protexis\License Service\PSIService.exe
c:\program files\CyberLink\Shared files\RichVideo.exe
c:\program files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe
c:\program files\Alwil Software\Avast4\ashMaiSv.exe
c:\program files\Alwil Software\Avast4\ashWebSv.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\imapi.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Czas ukończenia: 2010-10-05  19:45:55 - komputer został uruchomiony ponownie
ComboFix-quarantined-files.txt  2010-10-05 17:45

Przed: 80 351 215 616 bajtów wolnych
Po: 80 326 881 280 bajtów wolnych

WindowsXP-KB310994-SP2-Pro-BootDisk-PLK.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

- - End Of File - - 212DACF0AAD1D052BD660C5426C76FE6