ComboFix 08-01-29.3 - roni 2008-01-29 18:04:33.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.1.1250.1.1045.18.550 [GMT 1:00]
Running from: D:\instalki\ComboFix.exe
Command switches used :: D:\Documents and Settings\roni\Pulpit\CFScript.txt
* Created a new restore point
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
FILE
D:\Documents and Settings\roni\Local Settings\Application Data\cftmon.exe
D:\Program Files\Helper\superfindout.dll
D:\WINDOWS\servicestub.exe
D:\WINDOWS\system32\drivers\spool.exe
D:\WINDOWS\System32\nvpoeggj.dll
D:\WINDOWS\TEMP\912E1E0F.exe
D:\WINDOWS\web\related.htm
D:\WINDOWS\wfdmgr.exe
D:\WINDOWS\wksmgr.exe
.
ADS - svchost.exe: deleted 28180 bytes in 1 streams.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
D:\Documents and Settings\LocalService\msftp.dll
D:\Documents and Settings\roni\Moje dokumenty\RACLE~1
D:\Documents and Settings\roni\Moje dokumenty\RACLE~1\?racle\
D:\Documents and Settings\roni\Moje dokumenty\RACLE~1\nopdb.exe
D:\Documents and Settings\roni\msftp.dll
D:\Program Files\Common Files\Yazzle1560OinAdmin.exe
D:\Program Files\Common Files\Yazzle1560OinUninstaller.exe
D:\Program Files\Helper
D:\Program Files\Helper\superfindout.dll
D:\Program Files\Router
D:\Program Files\Router\UnInstall.exe
D:\WINDOWS\b122.exe
D:\WINDOWS\b128.exe
D:\WINDOWS\b151.exe
D:\WINDOWS\crosof~1
D:\WINDOWS\mrofinu1148.exe
D:\WINDOWS\servicestub.exe
D:\WINDOWS\system32\drivers\Agm41.sys
D:\WINDOWS\system32\drivers\smtpdrv.sys
D:\WINDOWS\system32\drivers\spool.exe
D:\WINDOWS\system32\msftp.dll
D:\WINDOWS\system32\msvcrtd.exe
D:\WINDOWS\system32\ssembl~1
D:\WINDOWS\system32\ssembl~1\l?gonui.exe
D:\WINDOWS\system32\wnsapisu32.exe
D:\WINDOWS\Temp\00032073.exe
D:\WINDOWS\Temp\45593694.exe
D:\WINDOWS\Temp\54309715.exe
D:\WINDOWS\TEMP\912E1E0F.exe
D:\WINDOWS\W0034_jpg.zip
D:\WINDOWS\web\related.htm
D:\WINDOWS\wfdmgr.exe
D:\WINDOWS\wksmgr.exe
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\LEGACY_GENERIC_HOST_PROCESS_FOR_WIN-32_SERVICE
-------\LEGACY_SCHEDULE
-------\Generic Host Process for Win-32 Service
-------\Schedule
((((((((((((((((((((((((( Files Created from 2007-12-28 to 2008-01-29 )))))))))))))))))))))))))))))))
.
2008-01-29 17:48 . 2008-01-29 17:48 <DIR> d-------- D:\Documents and Settings\roni\Dane aplikacji\skypePM
2008-01-29 17:48 . 2008-01-29 17:48 32 --a------ D:\Documents and Settings\All Users\Dane aplikacji\ezsid.dat
2008-01-29 17:46 . 2008-01-29 18:02 <DIR> d-------- D:\Documents and Settings\roni\Dane aplikacji\Skype
2008-01-29 17:36 . 2008-01-29 17:36 <DIR> d-------- D:\Program Files\Skype
2008-01-29 17:36 . 2008-01-29 17:36 <DIR> d-------- D:\Program Files\Common Files\Skype
2008-01-29 17:35 . 2008-01-29 17:36 <DIR> d-------- D:\Documents and Settings\All Users\Dane aplikacji\Skype
2008-01-28 16:33 . 2008-01-29 08:10 <DIR> d--h----- D:\WINDOWS\$hf_mig$
2008-01-28 10:45 . 2007-07-30 19:19 549,720 --a------ D:\WINDOWS\system32\wuapi.dll
2008-01-28 10:45 . 2007-07-30 19:19 325,976 --a------ D:\WINDOWS\system32\wucltui.dll
2008-01-28 10:45 . 2007-07-30 19:19 216,408 --a------ D:\WINDOWS\system32\wuaucpl.cpl
2008-01-28 10:45 . 2007-07-30 19:19 203,096 --a------ D:\WINDOWS\system32\wuweb.dll
2008-01-28 10:45 . 2004-08-03 14:04 187,160 --a------ D:\WINDOWS\system32\wuaueng1.dll
2008-01-28 10:45 . 2004-08-03 14:03 170,264 --a------ D:\WINDOWS\system32\wuauclt1.exe
2008-01-28 10:45 . 2007-07-30 19:18 33,624 --a------ D:\WINDOWS\system32\wups.dll
2008-01-28 10:39 . 2008-01-28 10:39 <DIR> d--h----- D:\Program Files\Common Files\Carlson
2008-01-26 19:37 . 2008-01-29 18:03 16 --a------ D:\WINDOWS\system32\coh.cache
2008-01-25 19:29 . 2007-10-24 18:31 3,478 --ahs---- D:\pagefile.sys.vbs
2008-01-25 19:29 . 2001-07-05 17:19 164 --a------ D:\WINDOWS\avrack.ini
2008-01-25 19:27 . 2008-01-25 19:29 <DIR> d--h----- D:\ErdUndoCache
2008-01-25 19:03 . 2008-01-25 20:42 10,740 --a------ D:\WINDOWS\system32\drivers\SYMEVENT.CAT
2008-01-25 19:03 . 2008-01-25 20:42 805 --a------ D:\WINDOWS\system32\drivers\SYMEVENT.INF
2008-01-25 18:46 . 2008-01-26 11:51 <DIR> d-------- D:\Program Files\Norton AntiVirus
2008-01-25 18:45 . 2008-01-25 20:42 <DIR> d-------- D:\Program Files\Symantec
2008-01-25 18:45 . 2008-01-25 19:04 <DIR> d-------- D:\Documents and Settings\All Users\Dane aplikacji\Symantec
2008-01-25 18:45 . 2008-01-25 20:42 123,952 --a------ D:\WINDOWS\system32\drivers\SYMEVENT.SYS
2008-01-25 18:45 . 2008-01-25 20:42 60,800 --a------ D:\WINDOWS\system32\S32EVNT1.DLL
2008-01-25 18:32 . 2008-01-25 20:43 <DIR> d-------- D:\Program Files\Common Files\Symantec Shared
2008-01-25 14:35 . 2008-01-25 16:22 <DIR> d-------- D:\WINDOWS\system32\ActiveScan
2008-01-25 14:35 . 2008-01-25 14:35 30,590 --a------ D:\WINDOWS\system32\pavas.ico
2008-01-25 14:35 . 2008-01-25 14:35 2,550 --a------ D:\WINDOWS\system32\Uninstall.ico
2008-01-25 14:35 . 2008-01-25 14:35 1,406 --a------ D:\WINDOWS\system32\Help.ico
2008-01-25 12:32 . 2008-01-25 12:32 <DIR> d-------- D:\WINDOWS\ERUNT
2008-01-24 18:34 . 2008-01-24 18:34 <DIR> d-------- D:\Program Files\HT NETWORKS
2008-01-23 11:21 . 2008-01-23 11:21 54,764 --a------ D:\WINDOWS\system32\fvelwow.sys
2008-01-23 09:25 . 2008-01-23 09:25 37,632 --a------ D:\WINDOWS\system32\drivers\ntio922.sys
2008-01-23 09:25 . 2008-01-23 09:25 7,040 --a------ D:\WINDOWS\system32\drivers\ndisaluo.sys
2008-01-22 18:08 . 2008-01-22 18:08 54,764 --a------ D:\WINDOWS\system32\ztx86.sys
2008-01-20 22:11 . 2008-01-26 19:37 <DIR> d-------- D:\Program Files\Dot1XCfg
2008-01-20 15:55 . 2008-01-20 19:01 48,512 --a------ D:\WINDOWS\system32\drivers\nkv2.sys
2008-01-19 22:19 . 2008-01-19 22:19 54,764 --a------ D:\WINDOWS\system32\drivers\sysldr
2008-01-18 11:25 . 2008-01-18 11:25 <DIR> d-------- D:\Program Files\Ares
2008-01-17 22:55 . 2008-01-17 22:55 <DIR> d---s---- D:\Documents and Settings\roni\UserData
2008-01-17 22:49 . 2008-01-17 22:49 <DIR> d-------- D:\Documents and Settings\All Users\Dane aplikacji\HP
2008-01-17 22:05 . 2008-01-17 22:05 <DIR> d-------- D:\Program Files\Common Files\HP
2008-01-17 22:03 . 2008-01-17 22:03 <DIR> d-------- D:\Program Files\Hewlett-Packard
2008-01-17 22:02 . 2008-01-17 22:02 <DIR> d-------- D:\Program Files\Common Files\Hewlett-Packard
2008-01-17 21:57 . 2005-03-08 05:43 51,120 -ra------ D:\WINDOWS\system32\drivers\HPZid412.sys
2008-01-17 21:57 . 2005-03-08 05:43 21,744 -ra------ D:\WINDOWS\system32\drivers\HPZius12.sys
2008-01-17 21:57 . 2005-03-08 05:43 16,496 -ra------ D:\WINDOWS\system32\drivers\HPZipr12.sys
2008-01-17 21:56 . 1998-10-29 16:45 306,688 --a------ D:\WINDOWS\IsUninst.exe
2008-01-17 21:56 . 2004-09-29 12:12 278,584 --a------ D:\WINDOWS\system32\HPZidr12.dll
2008-01-17 21:56 . 2004-09-29 12:15 204,800 --a------ D:\WINDOWS\system32\HPZipr12.dll
2008-01-17 21:56 . 2004-09-29 12:09 94,208 --a------ D:\WINDOWS\system32\HPZipt12.dll
2008-01-17 21:56 . 2004-09-29 12:14 69,632 --a------ D:\WINDOWS\system32\HPZipm12.exe
2008-01-17 21:56 . 2004-09-29 12:08 61,440 --a------ D:\WINDOWS\system32\HPZinw12.exe
2008-01-17 21:56 . 2004-09-29 12:09 57,344 --a------ D:\WINDOWS\system32\HPZisn12.dll
2008-01-17 21:56 . 2002-08-29 01:48 14,208 --a------ D:\WINDOWS\system32\drivers\usbscan.sys
2008-01-17 21:54 . 2003-07-03 17:49 138,752 --a------ D:\WINDOWS\system32\drivers\usbport.sys
2008-01-17 21:54 . 2003-07-03 17:52 53,120 --a------ D:\WINDOWS\system32\drivers\usbhub.sys
2008-01-17 21:54 . 2003-07-03 17:53 28,160 --a------ D:\WINDOWS\system32\drivers\usbccgp.sys
2008-01-17 21:54 . 2003-07-03 17:50 25,216 --a------ D:\WINDOWS\system32\drivers\usbehci.sys
2008-01-17 21:54 . 2003-07-03 17:51 16,000 --a------ D:\WINDOWS\system32\drivers\usbohci.sys
2008-01-17 21:54 . 2003-07-03 17:50 5,632 --a------ D:\WINDOWS\system32\hccoin.dll
2008-01-17 21:49 . 2008-01-17 22:05 <DIR> d-------- D:\Program Files\HP
2008-01-17 21:45 . 2008-01-17 21:45 <DIR> d-------- D:\Documents and Settings\roni\Dane aplikacji\HP
2008-01-17 21:44 . 2002-08-29 01:50 24,960 --a------ D:\WINDOWS\system32\drivers\usbprint.sys
2008-01-17 21:43 . 2008-01-17 21:43 <DIR> d-------- D:\WUTemp
2008-01-17 04:07 . 2007-05-03 07:00 545 --a------ D:\WINDOWS\UC.PIF
2008-01-17 04:07 . 2007-05-03 07:00 545 --a------ D:\WINDOWS\RAR.PIF
2008-01-17 04:07 . 2007-05-03 07:00 545 --a------ D:\WINDOWS\PKZIP.PIF
2008-01-17 04:07 . 2007-05-03 07:00 545 --a------ D:\WINDOWS\PKUNZIP.PIF
2008-01-17 04:07 . 2007-05-03 07:00 545 --a------ D:\WINDOWS\NOCLOSE.PIF
2008-01-17 04:07 . 2007-05-03 07:00 545 --a------ D:\WINDOWS\LHA.PIF
2008-01-17 04:07 . 2007-05-03 07:00 545 --a------ D:\WINDOWS\ARJ.PIF
2008-01-17 04:07 . 2008-01-17 04:08 387 --a------ D:\WINDOWS\wincmd.ini
2008-01-17 03:41 . 2008-01-17 03:41 <DIR> d-------- D:\Program Files\Realtek AC97
2008-01-17 03:41 . 2004-12-22 10:06 17,584,128 --a------ D:\WINDOWS\system32\ALSNDMGR.CPL
2008-01-17 03:41 . 2004-12-22 10:07 2,304,320 --a------ D:\WINDOWS\system32\drivers\ALCXWDM.SYS
2008-01-17 03:41 . 2002-02-05 06:54 141,016 --a------ D:\WINDOWS\system32\ALSNDMGR.WAV
2008-01-17 03:41 . 2004-09-01 13:04 139,264 --a------ D:\WINDOWS\alcrmv.exe
2008-01-17 03:41 . 2002-08-29 02:01 134,272 --a------ D:\WINDOWS\system32\drivers\portcls.sys
2008-01-17 03:41 . 2002-08-29 01:32 57,856 --a------ D:\WINDOWS\system32\drivers\drmk.sys
2008-01-17 03:27 . 2008-01-25 19:27 <DIR> d-------- D:\Program Files\BearShare
2008-01-17 03:27 . 2008-01-17 03:27 <DIR> d-------- D:\My Downloads
2008-01-16 13:41 . 2008-01-16 13:42 <DIR> d-------- D:\Program Files\Winamp
2008-01-16 13:41 . 2008-01-25 19:29 <DIR> d-------- D:\Documents and Settings\roni\Dane aplikacji\Winamp
2008-01-15 19:31 . 2008-01-15 19:31 <DIR> d-------- D:\Documents and Settings\roni\Dane aplikacji\vlc
2008-01-15 19:30 . 2008-01-15 19:30 <DIR> d-------- D:\Program Files\VideoLAN
2008-01-15 13:48 . 2008-01-15 13:48 <DIR> d--hs---- D:\WINDOWS\ftpcache
2008-01-14 21:52 . 2004-08-03 13:59 185,624 --a------ D:\WINDOWS\system32\iuengine.dll
2008-01-11 21:09 . 2008-01-23 14:22 <DIR> d-------- D:\Documents and Settings\All Users\Dane aplikacji\Test Drive Unlimited
2008-01-11 20:30 . 2008-01-11 20:30 <DIR> d-------- D:\Program Files\Electronic Arts
2008-01-11 17:30 . 2005-06-24 16:24 438,272 -ra------ D:\WINDOWS\system32\vp6vfw.dll
2008-01-11 17:30 . 2004-12-10 09:06 327,680 --a------ D:\WINDOWS\system32\vp6dec.ax
2008-01-11 02:14 . 2008-01-11 02:14 <DIR> d-------- D:\Program Files\IrfanView
2008-01-11 02:11 . 2008-01-11 02:11 <DIR> d-------- D:\Program Files\Sony Ericsson
2008-01-11 00:52 . 2008-01-11 00:52 <DIR> dr-h----- D:\Documents and Settings\roni\Dane aplikacji\SecuROM
2008-01-11 00:52 . 2008-01-23 14:26 <DIR> d-------- D:\Documents and Settings\roni\Dane aplikacji\Bioshock
2008-01-11 00:52 . 2006-11-01 14:42 33,280 --a------ D:\WINDOWS\system32\drivers\AmdLLD.sys
2008-01-11 00:46 . 2008-01-17 03:30 <DIR> d-------- D:\Program Files\DC++
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-01-29 17:00 42,496 ----a-w D:\WINDOWS\system32\ftp.exe
2008-01-29 17:00 16,896 ----a-w D:\WINDOWS\system32\tftp.exe
2008-01-25 15:18 --------- d-----w D:\Program Files\VDOTool
2008-01-25 15:15 --------- d-----w D:\Program Files\FlashFXP
2008-01-25 15:06 --------- d-----w D:\Program Files\DAEMON Tools
2008-01-22 17:08 12,800 ----a-w D:\WINDOWS\system32\svchost.exe
2008-01-15 13:00 --------- d--h--w D:\Program Files\InstallShield Installation Information
2008-01-15 12:48 --------- d-----w D:\Program Files\Common Files\InstallShield
2008-01-11 12:21 133,632 ----a-w D:\WINDOWS\system32\sfc_os.dll
2008-01-10 23:52 107,888 ----a-w D:\WINDOWS\system32\CmdLineExt.dll
2008-01-10 23:52 --------- d-----w D:\Program Files\AMD
2007-12-16 12:53 --------- d-----w D:\Documents and Settings\roni\Dane aplikacji\Talkback
2007-12-16 12:52 --------- d-----w D:\Documents and Settings\All Users\Dane aplikacji\FlashFXP
2007-12-14 15:02 --------- d-----w D:\Program Files\SystemRequirementsLab
2007-12-14 15:02 --------- d-----w D:\Program Files\Java
2007-12-14 14:59 --------- d-----w D:\Program Files\Common Files\Java
2007-12-13 16:59 --------- d-----w D:\Documents and Settings\roni\Dane aplikacji\InstallShield Installation Information
2007-12-13 16:56 --------- d-----w D:\Program Files\ToniArts
2007-12-13 16:48 --------- d-----w D:\Program Files\AGEIA Technologies
2007-12-13 16:47 --------- d-----w D:\Program Files\Common Files\Wise Installation Wizard
2007-12-13 16:30 --------- d-----w D:\Program Files\AIDA32 - Personal System Information
2007-12-12 14:04 --------- d-----w D:\Program Files\MarBit
2007-12-11 17:13 --------- d-----w D:\Program Files\Microsoft.NET
2007-12-11 16:57 639,224 ----a-w D:\WINDOWS\system32\drivers\sptd.sys
2007-12-11 16:19 --------- d-----w D:\Documents and Settings\roni\Dane aplikacji\Media Player Classic
2007-12-11 15:50 --------- d-----w D:\Program Files\Common Files\Adobe
2007-12-11 15:41 --------- d-----w D:\Program Files\K-Lite Codec Pack
2007-12-11 15:03 --------- d-----w D:\Program Files\WapSter
2007-12-11 11:36 --------- d-----w D:\Documents and Settings\roni\Dane aplikacji\Gadu-Gadu
2007-12-11 11:24 --------- d-----w D:\Documents and Settings\roni\Dane aplikacji\MSN6
2007-12-11 11:24 --------- d-----w D:\Documents and Settings\All Users\Dane aplikacji\MSN6
2007-12-11 11:17 --------- d-----w D:\Program Files\Realtek Sound Manager
2007-12-11 11:17 --------- d-----w D:\Program Files\AvRack
2007-12-11 11:13 --------- d--h--w D:\Program Files\Uninstall Information
2007-12-11 11:09 --------- d-----w D:\Program Files\microsoft frontpage
2007-12-11 11:08 558,142 ----a-w D:\WINDOWS\java\Packages\N7VLZVJ5.ZIP
2007-12-11 11:08 155,995 ----a-w D:\WINDOWS\java\Packages\QLBDVP3R.ZIP
2007-12-11 11:05 --------- d-----w D:\Program Files\Usługi online
2007-11-30 22:57 43,696 ----a-w D:\WINDOWS\system32\drivers\srtspx.sys
2007-11-30 22:57 317,616 ----a-w D:\WINDOWS\system32\drivers\srtspl.sys
2007-11-30 22:57 279,088 ----a-w D:\WINDOWS\system32\drivers\srtsp.sys
2007-10-30 18:55 625,032 ----a-w D:\WINDOWS\system32\SymNeti.dll
2007-10-30 18:55 242,056 ----a-w D:\WINDOWS\system32\SymRedir.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="D:\WINDOWS\System32\ctfmon.exe" [2002-09-20 17:05 13312]
"AQQ"="D:\PROGRA~1\WapSter\AQQ\AQQ.exe" [2007-02-28 13:18 2351864]
"ares"="D:\Program Files\Ares\Ares.exe" [2007-07-16 22:54 961536]
"Skype"="D:\Program Files\Skype\Phone\Skype.exe" [2007-12-07 15:11 21803304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2004-12-22 10:09 77824 D:\WINDOWS\SOUNDMAN.EXE]
"Gainward"="D:\Program Files\VDOTool\TBPanel.exe" [2007-06-26 14:58 2165272]
"NvCplDaemon"="D:\WINDOWS\System32\NvCpl.dll" [2007-10-04 17:14 8491008]
"nwiz"="nwiz.exe" [2007-10-04 17:14 1626112 D:\WINDOWS\system32\nwiz.exe]
"DAEMON Tools"="D:\Program Files\DAEMON Tools\daemon.exe" [2006-11-12 11:48 157592]
"NvMediaCenter"="D:\WINDOWS\System32\NvMcTray.dll" [2007-10-04 17:14 81920]
"SunJavaUpdateSched"="D:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11 132496]
"amd_dc_opt"="D:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2006-11-17 16:49 77824]
"servicestub.exe"="D:\WINDOWS\servicestub.exe" [ ]
"ccApp"="D:\Program Files\Common Files\Symantec Shared\ccApp.exe" [2006-09-03 08:04 84640]
"osCheck"="D:\Program Files\Norton AntiVirus\osCheck.exe" [2006-09-06 02:22 26248]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="D:\WINDOWS\System32\CTFMON.EXE" [2002-09-20 17:05 13312]
*Newly Created Service* - UPNPHOST
.
Contents of the 'Scheduled Tasks' folder
"2008-01-25 19:00:00 D:\WINDOWS\Tasks\Norton AntiVirus - Run Full System Scan - roni.job"
- D:\PROGRA~1\NORTON~1\Navw32.exef/TASK:
.
**************************************************************************
catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-01-29 18:09:26
Windows 5.1.2600 Dodatek Service Pack. 1 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
D:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
D:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
D:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
D:\WINDOWS\System32\nvsvc32.exe
D:\WINDOWS\System32\wdfmgr.exe
D:\WINDOWS\SOUNDMAN.EXE
D:\Program Files\VDOTool\TBPanel.exe
D:\Program Files\DAEMON Tools\daemon.exe
D:\WINDOWS\System32\RUNDLL32.EXE
D:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
D:\Program Files\Common Files\Symantec Shared\ccApp.exe
D:\PROGRA~1\WapSter\AQQ\AQQ.exe
D:\Program Files\Skype\Phone\Skype.exe
D:\Program Files\Skype\Plugin Manager\skypePM.exe
D:\Program Files\Winamp\winamp.exe
D:\WINDOWS\system32\rundll32.exe
D:\Program Files\Common Files\Symantec Shared\SymSetup\{830D8CBD-C668-49e2-A969-C2C2106332E0}_14_0_0_89\{830D8CBD-C668-49e2-A969-C2C2106332E0}.exe
D:\WINDOWS\system32\msiexec.exe
.
**************************************************************************
.
Completion time: 2008-01-29 18:14:03 - machine was rebooted
ComboFix-quarantined-files.txt 2008-01-29 17:13:44
Zapisz jako... 
