ComboFix 10-11-21.02 - ksol 2010-11-22  16:29:29.1.2 - x86
Microsoft Windows XP Professional  5.1.2600.3.1250.48.1045.18.1791.1257 [GMT 1:00]
Uruchomiony z: c:\documents and settings\ksol\Pulpit\ComboFix.exe
AV: Kaspersky Internet Security *On-access scanning disabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}
FW: Kaspersky Internet Security *disabled* {2C4D4BC6-0793-4956-A9F9-E252435469C0}
.

(((((((((((((((((((((((((((((((((((((((   Usunięto   )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\ksol\Dane aplikacji\.#
c:\documents and settings\ksol\Dane aplikacji\chrtmp
c:\program files\Mozilla Firefox\Plugins\NPMyGlSh.dll
c:\program files\myglobalsearch
c:\program files\myglobalsearch\bar\1.bin\M9FFXTBR.JAR
c:\program files\myglobalsearch\bar\1.bin\M9FFXTBR.MANIFEST
c:\program files\myglobalsearch\bar\1.bin\M9NTSTBR.JAR
c:\program files\myglobalsearch\bar\1.bin\M9NTSTBR.MANIFEST
c:\program files\myglobalsearch\bar\1.bin\M9PLUGIN.DLL
c:\program files\myglobalsearch\bar\1.bin\MGSBAR.DLL
c:\program files\myglobalsearch\bar\1.bin\NPMYGLSH.DLL
c:\program files\myglobalsearch\bar\Cache\0002AADC
c:\program files\myglobalsearch\bar\Cache\0002AC63
c:\program files\myglobalsearch\bar\Cache\00030C46
c:\program files\myglobalsearch\bar\Cache\000358EF
c:\program files\myglobalsearch\bar\Cache\0003CB11
c:\program files\myglobalsearch\bar\Cache\0009C3F0
c:\program files\myglobalsearch\bar\Cache\0009EAA2
c:\program files\myglobalsearch\bar\Cache\00112A78
c:\program files\myglobalsearch\bar\Cache\0018AAB2
c:\program files\myglobalsearch\bar\Cache\003487E0
c:\program files\myglobalsearch\bar\Cache\008752D2.bin
c:\program files\myglobalsearch\bar\Cache\0087560E.bin
c:\program files\myglobalsearch\bar\Cache\00875802.bin
c:\program files\myglobalsearch\bar\Cache\00E04AB3
c:\program files\myglobalsearch\bar\Cache\0120742D
c:\program files\myglobalsearch\bar\Cache\0139BA06
c:\program files\myglobalsearch\bar\Cache\files.ini
c:\program files\myglobalsearch\bar\History\search
c:\program files\myglobalsearch\bar\Settings\prevcfg.htm
c:\windows\XSxS

.
(((((((((((((((((((((((((   Pliki utworzone od 2010-10-22 do 2010-11-22  )))))))))))))))))))))))))))))))
.

2010-11-22 15:35 . 2010-11-22 15:35	--------	d-----w-	c:\windows\system32\xircom
2010-11-22 15:35 . 2010-11-22 15:35	--------	d-----w-	c:\windows\system32\wbem\snmp
2010-11-22 15:35 . 2010-11-22 15:35	--------	d-----w-	c:\program files\microsoft frontpage
2010-11-21 16:30 . 2010-11-21 16:30	--------	d-----w-	c:\program files\Common Files\Skype
2010-11-21 16:30 . 2010-11-21 16:30	--------	d-----r-	c:\program files\Skype
2010-11-21 10:43 . 2010-11-21 10:43	--------	d-----w-	c:\documents and settings\ksol\Ustawienia lokalne\Dane aplikacji\BitTorrentBar
2010-11-18 09:44 . 2010-11-18 13:59	--------	d-----w-	c:\program files\Common Files\Symantec Shared
2010-11-11 12:02 . 2010-11-22 14:20	--------	d-----w-	c:\program files\Steam
2010-11-08 14:32 . 2010-11-08 19:30	--------	d-----w-	c:\documents and settings\ksol\Dane aplikacji\winamp
2010-11-07 11:38 . 2010-11-07 18:45	--------	d-----w-	c:\program files\ipla
2010-11-06 15:45 . 2010-11-06 15:45	--------	d-----w-	c:\documents and settings\ksol\Ustawienia lokalne\Dane aplikacji\PackageAware
2010-10-31 13:46 . 2010-10-31 13:46	--------	d-----w-	c:\windows\system32\LogFiles
2010-10-31 13:46 . 2008-04-13 23:15	26112	----a-w-	c:\windows\system32\drivers\usbser.sys
2010-10-31 13:45 . 2008-11-07 17:55	16928	------w-	c:\windows\system32\spmsgXP_2k3.dll
2010-10-31 13:45 . 2010-10-31 13:49	--------	d-----w-	c:\documents and settings\ksol\Dane aplikacji\Nokia
2010-10-31 13:45 . 2010-10-31 13:46	--------	d-----w-	c:\documents and settings\ksol\Dane aplikacji\PC Suite
2010-10-31 13:45 . 2010-10-31 13:46	--------	d-----w-	c:\documents and settings\All Users\Dane aplikacji\PC Suite
2010-10-31 13:44 . 2010-10-31 13:45	--------	d-----w-	c:\program files\DIFX
2010-10-31 13:44 . 2008-08-26 09:26	18816	----a-w-	c:\windows\system32\drivers\pccsmcfd.sys
2010-10-31 13:44 . 2010-10-31 13:44	--------	d-----w-	c:\program files\PC Connectivity Solution
2010-10-31 13:44 . 2010-02-26 13:32	8192	----a-w-	c:\windows\system32\drivers\usbser_lowerfltj.sys
2010-10-31 13:44 . 2010-02-26 13:32	8192	----a-w-	c:\windows\system32\drivers\usbser_lowerflt.sys
2010-10-31 13:44 . 2010-02-26 13:32	22528	----a-w-	c:\windows\system32\drivers\ccdcmbo.sys
2010-10-31 13:44 . 2010-02-26 13:32	662016	----a-w-	c:\windows\system32\nmwcdcocls.dll
2010-10-31 13:44 . 2010-02-26 13:32	18176	----a-w-	c:\windows\system32\drivers\ccdcmb.sys
2010-10-31 13:44 . 2010-02-26 13:19	1461992	----a-w-	c:\windows\system32\wdfcoinstaller01009.dll
2010-10-31 13:43 . 2010-02-26 13:32	92672	----a-w-	c:\windows\system32\nmwcdcls.dll
2010-10-31 13:43 . 2010-11-05 14:44	--------	d-----w-	c:\program files\Nokia
2010-10-31 13:42 . 2010-10-31 13:42	--------	d-----w-	c:\documents and settings\All Users\Dane aplikacji\Installations

.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-19 10:28 . 2010-05-25 10:17	790528	----a-w-	c:\windows\system32\xvidcore.dll
2010-09-19 10:24 . 2010-03-07 12:45	134144	----a-w-	c:\windows\system32\xvidvfw.dll
2010-09-18 10:23 . 2007-04-03 06:44	974848	----a-w-	c:\windows\system32\mfc42u.dll
2010-09-18 06:53 . 2008-04-14 20:50	974848	----a-w-	c:\windows\system32\mfc42.dll
2010-09-18 06:53 . 2008-04-14 20:50	953856	----a-w-	c:\windows\system32\mfc40u.dll
2010-09-18 06:53 . 2001-10-26 17:29	954368	----a-w-	c:\windows\system32\mfc40.dll
2010-09-15 02:50 . 2010-04-22 14:09	472808	----a-w-	c:\windows\system32\deployJava1.dll
2010-09-15 00:29 . 2010-04-22 14:09	73728	----a-w-	c:\windows\system32\javacpl.cpl
2010-09-09 13:34 . 2008-03-01 14:02	832512	----a-w-	c:\windows\system32\wininet.dll
2010-09-09 13:34 . 2008-03-01 14:02	1830912	----a-w-	c:\windows\system32\inetcpl.cpl
2010-09-09 13:34 . 2008-05-02 06:47	78336	----a-w-	c:\windows\system32\ieencode.dll
2010-09-09 13:34 . 2008-05-02 06:47	17408	----a-w-	c:\windows\system32\corpol.dll
2010-09-08 15:58 . 2008-05-02 06:47	389120	----a-w-	c:\windows\system32\html.iec
2010-09-08 09:17 . 2010-09-08 09:17	94208	----a-w-	c:\windows\system32\QuickTimeVR.qtx
2010-09-08 09:17 . 2010-09-08 09:17	69632	----a-w-	c:\windows\system32\QuickTime.qts
2010-09-01 11:52 . 2008-04-14 20:30	285824	----a-w-	c:\windows\system32\atmfd.dll
2010-09-01 07:57 . 2008-04-14 19:35	1853056	----a-w-	c:\windows\system32\win32k.sys
2010-08-30 12:39 . 2010-08-30 12:40	8192	----a-w-	c:\windows\system32\srvany.exe
2010-08-30 12:39 . 2010-08-30 12:40	151552	----a-w-	c:\windows\KMService.exe
2010-08-27 08:03 . 2008-04-14 20:50	119808	----a-w-	c:\windows\system32\t2embed.dll
2010-08-27 05:54 . 2008-04-14 20:50	99840	----a-w-	c:\windows\system32\srvsvc.dll
2010-08-27 01:43 . 2008-05-05 06:25	5632	----a-w-	c:\windows\system32\xpsp4res.dll
2010-08-26 13:39 . 2008-04-13 22:45	357248	----a-w-	c:\windows\system32\drivers\srv.sys
.

------- Sigcheck -------

[7] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\tcpip.sys
[-] 2008-06-20 . 4AFB3B0919649F95C1964AA1FAD27D73 . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys
[-] 2008-05-02 . 8E036EEC565910417EA020CE0962AA24 . 361344 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB951748$\tcpip.sys
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-10-11 14940040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-10-07 13574144]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-10-07 86016]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe" [2010-05-07 344736]
"hpqSRMon"="c:\program files\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-03-13 81920]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"QuickTime Task"="f:\quick time\QTTask.exe" [2010-09-08 421888]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-09-23 35760]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_2"="shell32" [X]
"nltide_3"="advpack.dll" [2010-09-09 124928]

c:\documents and settings\ksol\Menu Start\Programy\Autostart\
Adobe Gamma.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664]

c:\documents and settings\All Users\Menu Start\Programy\Autostart\
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\2.0.181\SSScheduler.exe [2010-1-15 255536]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^HP Digital Imaging Monitor.lnk]
path=c:\documents and settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk
backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ALLUpdate]
2010-03-23 23:23	1432064	----a-w-	f:\allplayer\ALLPlayer\ALLUpdate.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2008-03-25 19:27	49152	----a-w-	c:\program files\HP\HP Software Update\hpwuSchd2.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
2008-10-07 12:33	1630208	----a-w-	c:\windows\system32\nwiz.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpeedTouch USB Diagnostics]
2004-01-26 10:38	866816	----a-w-	c:\program files\Thomson\SpeedTouch USB\dragdiag.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
2010-11-17 12:26	1242448	----a-w-	c:\program files\Steam\Steam.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
2010-07-12 16:32	74752	----a-w-	f:\winamp\winampa.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"h:\\Gry\\Counter-Strike Source\\hl2.exe"=
"c:\\Program Files\\PhotoJoy\\Bin\\PjApp.exe"=
"c:\\Program Files\\PhotoJoy\\Bin\\PjImp.exe"=
"c:\\Program Files\\PhotoJoy\\Bin\\PhotoJoy.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"=
"c:\\Program Files\\Common Files\\HP\\Digital Imaging\\bin\\hpqPhotoCrm.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpsapp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpse.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqsudi.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"=
"c:\\Program Files\\Microsoft Office\\Office14\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE"=
"c:\\Program Files\\Steam\\Steam.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

R0 HFXP2;HFXP2;c:\windows\system32\drivers\hfxp2.sys [2010-02-14 17264]
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2010-03-07 691696]
R2 KMService;KMService;c:\windows\system32\srvany.exe [2010-08-30 8192]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [2009-09-14 32272]
R3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [2009-11-02 19472]
S?2 gupdate;Usługa Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-10-16 136176]
S1 kl2;Kl2;c:\windows\system32\drivers\kl2.sys [2010-05-06 132184]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12	REG_MULTI_SZ   	Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt	REG_MULTI_SZ   	hpqcxs08 hpqddsvc
.
Zawartość folderu 'Zaplanowane zadania'

2010-11-17 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]

2010-11-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-10-16 17:58]

2010-11-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-10-16 17:58]

2010-11-22 c:\windows\Tasks\WGASetup.job
- c:\windows\system32\KB905474\wgasetup.exe [2010-02-02 21:18]
.
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2790392
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = about:blank
uInternet Connection Wizard,ShellNext = iexplore
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Anti-Banner - c:\program files\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Block frame with Ad Muncher - http://www.admuncher.com/request_will_be_intercepted_by/Ad_Muncher/browserextensions.pl?exbrowser=ie&exversion=0.4&pass=7980LC6F&id=menu_ie_frame
IE: Block image with Ad Muncher - http://www.admuncher.com/request_will_be_intercepted_by/Ad_Muncher/browserextensions.pl?exbrowser=ie&exversion=0.4&pass=7980LC6F&id=menu_ie_image
IE: Block link with Ad Muncher - http://www.admuncher.com/request_will_be_intercepted_by/Ad_Muncher/browserextensions.pl?exbrowser=ie&exversion=0.4&pass=7980LC6F&id=menu_ie_link
IE: Don't filter page with Ad Muncher - http://www.admuncher.com/request_will_be_intercepted_by/Ad_Muncher/browserextensions.pl?exbrowser=ie&exversion=0.4&pass=7980LC6F&id=menu_ie_exclude
IE: E&ksportuj do programu Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Report page to the Ad Muncher developers - http://www.admuncher.com/request_will_be_intercepted_by/Ad_Muncher/browserextensions.pl?exbrowser=ie&exversion=0.4&pass=7980LC6F&id=menu_ie_report
IE: Wyślij &do programu OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: ????3?? - c:\documents and settings\ksol\Dane aplikacji\FlashGetBHO\GetUrl.htm
IE: ????3?????? - c:\documents and settings\ksol\Dane aplikacji\FlashGetBHO\GetAllUrl.htm
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
.
- - - - USUNIĘTO PUSTE WPISY - - - -

BHO-{0974BA1E-64EC-11DE-B2A5-E43756D89593} - f:\bearsh~1\BEARSH~1\BEARSH~1\MediaBar\ToolBar\BearshareMediabarDx.dll
Toolbar-{0974BA1E-64EC-11DE-B2A5-E43756D89593} - f:\bearsh~1\BEARSH~1\BEARSH~1\MediaBar\ToolBar\BearshareMediabarDx.dll
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
SafeBoot-WudfPf
SafeBoot-WudfRd
MSConfigStartUp-DAEMON Tools Pro Agent - f:\daemon\DAEMON Tools Pro\DTProAgent.exe
MSConfigStartUp-Expressivo - f:\expressivo 1.5\Expressivo\expressivo.exe
MSConfigStartUp-Fotkomat - c:\program files\Fotkomat\Fotkomat.exe
MSConfigStartUp-IVONA ControlCenter - c:\program files\IVONA\IVONA ControlCenter\IVONA ControlCenter.exe
MSConfigStartUp-IVONA Reader - c:\program files\IVONA\IVONA Reader\IVONA Reader.exe.exe
MSConfigStartUp-Nowe Gadu-Gadu - f:\gadu gadu\Nowe Gadu-Gadu\gg.exe
AddRemove-Mozilla Firefox (3.6.12) - c:\program files\Mozilla Firefox\uninstall\helper.exe
AddRemove-Nowe Gadu-Gadu - f:\gadu gadu\Nowe Gadu-Gadu\Uninstall.exe
AddRemove-Counter-Strike: Source 2010 - h:\gry\Counter-Strike Source\Uninstall Counter-Strike Source.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-11-22 16:37
Windows 5.1.2600 Dodatek Service Pack 3 NTFS

skanowanie ukrytych procesów ...  

skanowanie ukrytych wpisów autostartu ... 

skanowanie ukrytych plików ...  

skanowanie pomyślnie ukończone
ukryte pliki: 0

**************************************************************************
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------

[HKEY_USERS\S-1-5-21-682003330-329068152-1801674531-1003\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}Ź]
@="c:\\Documents and Settings\\ksol\\Dane aplikacji\\FlashGetBHO\\GetUrl.htm"
"contexts"=dword:00000022

[HKEY_USERS\S-1-5-21-682003330-329068152-1801674531-1003\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}ŹhQčţ”Ąc]
@="c:\\Documents and Settings\\ksol\\Dane aplikacji\\FlashGetBHO\\GetAllUrl.htm"
"contexts"=dword:000000f3
.
--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------

- - - - - - - > 'explorer.exe'(2220)
c:\windows\system32\WININET.dll
c:\progra~1\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf
c:\progra~1\MICROS~2\Office14\1045\GrooveIntlResource.dll
c:\windows\system32\wpdshserviceobj.dll
c:\windows\system32\portabledevicetypes.dll
c:\windows\system32\portabledeviceapi.dll
.
------------------------ Pozostałe uruchomione procesy ------------------------
.
c:\windows\system32\RUNDLL32.EXE
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\KMService.exe
c:\windows\system32\nvsvc32.exe
c:\program files\Skype\Plugin Manager\skypePM.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Czas ukończenia: 2010-11-22  16:38:50 - komputer został uruchomiony ponownie
ComboFix-quarantined-files.txt  2010-11-22 15:38

Przed: 25 396 670 464 bajtów wolnych
Po: 28 198 498 304 bajtów wolnych

WindowsXP-KB310994-SP2-Pro-BootDisk-PLK.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

- - End Of File - - C97DC1E90C283F681A97416547841D85