Prośba O Sprawdzenie - Log Combofix

[Rafalz]

» Naciśnij aby pokazać/ukryć tekst oznaczony jako spoiler « - "Log"

ComboFix 09-01-21.04 - ZeeL 2009-01-24 19:17:11.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1250.1.1045.18.3583.3165 [GMT 1:00]
Uruchomiony z: d:\nowy folder (3)\ComboFix.exe
AV: Kaspersky Internet Security *On-access scanning disabled* (Updated)
FW: Kaspersky Internet Security *disabled*
* Utworzono nowy punkt przywracania

UWAGA - TEN KOMPUTER NIE MA ZAINSTALOWANEJ KONSOLI ODZYSKIWANIA !!
.
ADS - WINDOWS: deleted 72 bytes in 1 streams.

((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\ZeeL\Dane aplikacji\Gadu-Gadu\backup\Rafał\avatars\Desktop_.ini
c:\documents and settings\ZeeL\Dane aplikacji\Gadu-Gadu\backup\Rafał\Desktop_.ini
c:\documents and settings\ZeeL\Gadu-Gadu\Rafał\avatars\Desktop_.ini
c:\documents and settings\ZeeL\Gadu-Gadu\Rafał\Desktop_.ini

.
((((((((((((((((((((((((( Pliki utworzone od 2008-12-24 do 2009-01-24 )))))))))))))))))))))))))))))))
.

2009-01-24 18:51 . 2009-01-24 18:51 <DIR> d-------- c:\documents and settings\Rafał\Dane aplikacji\Ahead
2009-01-24 15:03 . 2009-01-24 15:03 <DIR> d-------- c:\program files\D-Link AirPlus
2009-01-21 21:28 . 2003-09-08 16:06 255,360 --a------ c:\windows\system32\drivers\AIRPLUS.sys
2009-01-21 21:28 . 2003-09-02 14:33 40,636 --a------ c:\windows\system32\drivers\WLANGEN.bin
2009-01-21 21:28 . 2003-09-02 14:33 40,636 --a------ c:\windows\system\WLANGEN.bin
2009-01-21 21:28 . 2003-07-25 10:24 936 --a------ c:\windows\system32\drivers\RADIO0d.bin
2009-01-21 21:28 . 2003-07-25 10:24 936 --a------ c:\windows\system\RADIO0d.bin
2009-01-21 18:38 . 2009-01-21 18:52 <DIR> d-------- c:\program files\nLite
2009-01-19 13:12 . 2009-01-19 13:12 <DIR> d-------- c:\program files\Internet Download Manager
2009-01-19 13:12 . 2009-01-21 21:17 <DIR> d-------- c:\documents and settings\ZeeL\Dane aplikacji\IDM
2009-01-19 13:12 . 2009-01-24 15:44 <DIR> d-------- c:\documents and settings\ZeeL\Dane aplikacji\DMCache
2009-01-18 13:34 . 2009-01-19 13:12 50 --a------ c:\windows\MegaManager.INI
2009-01-18 13:32 . 2009-01-18 13:32 <DIR> d-------- c:\documents and settings\ZeeL\Dane aplikacji\Megaupload
2009-01-17 21:33 . 2009-01-17 21:33 688,128 --a------ c:\windows\system32\mmamr.ax
2009-01-17 21:33 . 2009-01-17 21:33 487,936 --a------ c:\windows\system32\madFlac.ax
2009-01-17 21:33 . 2009-01-17 21:33 348,160 --a------ c:\windows\system32\CoreVorbis.ax
2009-01-17 21:33 . 2009-01-17 21:33 258,048 --a------ c:\windows\system32\libFLAC.dll
2009-01-17 21:31 . 2009-01-17 21:31 4,302,881 --a------ c:\windows\system32\libavcodec.dll
2009-01-17 21:31 . 2009-01-17 21:31 560,802 --a------ c:\windows\system32\libmplayer.dll
2009-01-17 21:31 . 2009-01-17 21:31 145,609 --a------ c:\windows\system32\libmpeg2_ff.dll
2009-01-17 21:31 . 2009-01-17 21:31 547 --a------ c:\windows\system32\ffdshow.ax.manifest
2009-01-17 21:30 . 2009-01-17 21:30 2,041,363 --a------ c:\windows\system32\x264vfw.dll
2009-01-17 21:30 . 2009-01-17 21:30 485,888 --a------ c:\windows\system32\ff_libfaad2.dll
2009-01-17 21:30 . 2009-01-17 21:30 257,024 --a------ c:\windows\system32\ff_libdts.dll
2009-01-17 21:30 . 2009-01-17 21:30 185,436 --a------ c:\windows\system32\CoreAVCDecoder.ax
2009-01-17 21:30 . 2009-01-17 21:30 183,296 --a------ c:\windows\system32\ff_samplerate.dll
2009-01-17 21:30 . 2009-01-17 21:30 178,688 --a------ c:\windows\system32\ff_libmad.dll
2009-01-17 21:30 . 2009-01-17 21:30 142,848 --a------ c:\windows\system32\ff_liba52.dll
2009-01-17 21:30 . 2009-01-17 21:30 113,152 --a------ c:\windows\system32\ff_unrar.dll
2009-01-17 21:30 . 2009-01-17 21:30 93,184 --a------ c:\windows\system32\ff_wmv9.dll
2009-01-17 21:29 . 2009-01-17 21:29 873,888 --a------ c:\windows\system32\CLVSD.ax
2009-01-17 21:29 . 2009-01-17 21:29 524,288 --a------ c:\windows\system32\DivXsm.exe
2009-01-17 21:29 . 2009-01-17 21:29 417,792 --a------ c:\windows\system32\FLVSplitter.ax
2009-01-17 21:29 . 2009-01-17 21:29 69,632 --a------ c:\windows\system32\divxconfig.exe
2009-01-17 21:29 . 2009-01-17 21:29 4,816 --a------ c:\windows\system32\divxsm.tlb
2009-01-16 11:59 . 2009-01-16 11:59 <DIR> d-------- c:\program files\AMD
2009-01-13 16:26 . 2002-01-05 06:48 974,848 --a------ c:\windows\system32\mfc70.dll
2009-01-13 16:26 . 2002-01-05 05:40 487,424 --a------ c:\windows\system32\msvcp70.dll
2009-01-13 16:26 . 1998-12-24 20:23 40,960 --a------ c:\windows\system32\VBAME.DLL
2009-01-13 14:15 . 2009-01-13 14:15 <DIR> d-------- C:\DriveKey
2009-01-13 06:06 . 2009-01-13 06:06 <DIR> d-------- C:\DVR216D
2009-01-13 06:01 . 2009-01-13 06:01 <DIR> d-------- c:\program files\Common Files\Adobe AIR
2009-01-13 06:01 . 2009-01-13 16:17 <DIR> d-------- c:\program files\Common Files\Adobe
2009-01-13 05:51 . 2009-01-13 05:51 <DIR> d-------- c:\program files\NOS
2009-01-13 05:51 . 2009-01-13 05:51 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\NOS
2009-01-12 04:08 . 2009-01-13 15:22 <DIR> d-------- c:\documents and settings\ZeeL\Dane aplikacji\Download Manager
2009-01-11 05:52 . 2009-01-11 05:52 25,992 --a------ c:\windows\system32\pgdfgsvc.exe
2009-01-11 05:17 . 2009-01-11 05:27 <DIR> d-------- c:\program files\Microsoft Bootvis
2009-01-10 15:11 . 2002-07-17 09:20 45,056 --a------ c:\windows\system32\Wnaspi32.dll
2009-01-10 15:11 . 2002-07-17 08:53 16,877 --a------ c:\windows\system32\drivers\Aspi32.sys
2009-01-10 15:11 . 2002-07-17 16:22 4,455 --a------ c:\windows\system\Winaspi.dll
2009-01-10 15:11 . 2002-07-17 16:22 3,535 --a------ c:\windows\system\Wowpost.exe
2009-01-09 23:25 . 2009-01-10 03:00 <DIR> d-------- c:\documents and settings\ZeeL\Dane aplikacji\Ahead
2009-01-09 23:24 . 2009-01-09 23:24 <DIR> d-------- c:\program files\Nero
2009-01-09 23:24 . 2009-01-09 23:25 <DIR> d-------- c:\program files\Common Files\Ahead
2009-01-09 21:17 . 2009-01-24 01:27 <DIR> d-------- c:\program files\Garena
2008-12-31 23:25 . 2008-12-31 23:25 <DIR> d-------- c:\program files\HD Tune
2008-12-31 19:08 . 2008-12-31 19:08 <DIR> d-------- c:\program files\Ares
2008-12-31 15:13 . 2008-12-31 15:13 107 --a------ c:\windows\IfoEdit.INI
2008-12-30 19:11 . 2008-12-30 19:11 <DIR> d-------- c:\documents and settings\Rafał\Dane aplikacji\CyberLink
2008-12-30 17:11 . 2008-12-30 17:11 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\Elaborate Bytes
2008-12-30 17:08 . 2008-12-30 17:08 <DIR> d-------- c:\program files\SlySoft
2008-12-30 17:08 . 2009-01-22 13:33 <DIR> d-------- c:\program files\Elaborate Bytes
2008-12-30 17:08 . 2008-12-30 17:08 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\SlySoft
2008-12-29 20:37 . 2008-12-29 20:37 936 --a------ c:\windows\system32\%LocalXml%
2008-12-26 15:50 . 2009-01-23 16:44 69 --a------ c:\windows\NeroDigital.ini
2008-12-26 15:45 . 2008-12-26 15:45 1,415,680 --a------ c:\windows\system32\WMV9VCM.dll
2008-12-26 15:45 . 2008-12-26 15:45 892,928 --a------ c:\windows\system32\iconv.dll
2008-12-26 15:45 . 2008-12-26 15:45 675,840 --a------ c:\windows\system32\ac3filter.ax
2008-12-26 15:45 . 2008-12-26 15:45 118,784 --a------ c:\windows\system32\ac3acm.acm
2008-12-26 15:44 . 2008-12-26 15:44 245,760 --a------ c:\windows\system32\mplvpx.dll
2008-12-26 15:44 . 2008-12-26 15:44 106,496 --a------ c:\windows\system32\lmpgspl.ax
2008-12-26 15:44 . 2008-12-26 15:44 94,208 --a------ c:\windows\system32\lmpgvd.ax
2008-12-26 15:44 . 2008-12-26 15:44 86,528 --a------ c:\windows\system32\DVDVideo.ax
2008-12-26 15:44 . 2008-12-26 15:44 9,216 --a------ c:\windows\system32\cpuinf32.dll
2008-12-26 15:42 . 2009-01-17 21:42 <DIR> d-------- c:\program files\NAPI-PROJEKT
2008-12-26 15:42 . 2009-01-18 12:50 <DIR> d-------- c:\program files\ALLPlayer
2008-12-26 15:16 . 2008-12-26 15:16 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\Office Genuine Advantage
2008-12-26 15:08 . 2008-12-26 15:08 <DIR> d-------- c:\program files\Vuze
2008-12-26 15:08 . 2009-01-22 18:18 <DIR> d-------- c:\documents and settings\ZeeL\Dane aplikacji\Azureus
2008-12-26 15:08 . 2008-12-26 15:08 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\Azureus
2008-12-25 11:18 . 2008-12-25 11:18 <DIR> d---s---- c:\documents and settings\ZeeL\UserData
2008-12-25 09:09 . 2008-12-25 09:09 <DIR> d-------- c:\documents and settings\ZeeL\Dane aplikacji\Malwarebytes
2008-12-25 09:09 . 2008-12-25 09:09 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\Malwarebytes
2008-12-25 08:26 . 2008-12-25 08:26 96,976 --a------ c:\windows\system32\drivers\klin.dat
2008-12-25 08:26 . 2008-12-25 08:26 87,855 --a------ c:\windows\system32\drivers\klick.dat
2008-12-25 08:25 . 2008-12-25 08:25 <DIR> d-------- c:\program files\Kaspersky Lab
2008-12-25 08:25 . 2009-01-24 18:55 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab
2008-12-25 08:20 . 2008-12-25 08:20 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files
2008-12-25 08:20 . 2009-01-24 18:36 7,239,712 --ahs---- c:\windows\system32\drivers\fidbox.dat
2008-12-25 08:20 . 2009-01-24 18:36 688,160 --ahs---- c:\windows\system32\drivers\fidbox2.dat
2008-12-25 08:20 . 2009-01-24 18:36 63,928 --ahs---- c:\windows\system32\drivers\fidbox.idx
2008-12-25 08:20 . 2009-01-24 18:36 9,720 --ahs---- c:\windows\system32\drivers\fidbox2.idx
2008-12-25 02:23 . 2008-12-25 04:13 138,184 --a------ c:\windows\system32\drivers\PnkBstrK.sys
2008-12-25 02:23 . 2008-12-25 04:13 66,872 --a------ c:\windows\system32\PnkBstrA.exe
2008-12-25 02:22 . 2008-12-25 04:13 183,112 --a------ c:\windows\system32\PnkBstrB.exe
2008-12-25 02:19 . 2008-12-25 02:19 <DIR> d-------- c:\documents and settings\ZeeL\Dane aplikacji\Leadertech
2008-12-24 12:25 . 2008-12-25 09:49 <DIR> dr-hs---- C:\Recycled

.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-01-24 17:57 3,766 --sha-w c:\windows\system32\KGyGaAvL.sys
2009-01-24 14:03 --------- d--h--w c:\program files\InstallShield Installation Information
2009-01-17 20:32 79,360 ----a-w c:\windows\system32\mkzlib.dll
2009-01-17 20:32 75,264 ----a-w c:\windows\system32\MACDec.dll
2009-01-17 20:32 23,552 ----a-w c:\windows\system32\mkunicode.dll
2009-01-17 20:32 163,840 ----a-w c:\windows\system32\ts.dll
2009-01-17 20:32 159,744 ----a-w c:\windows\system32\mmfinfo.dll
2009-01-17 20:32 148,992 ----a-w c:\windows\system32\mkx.dll
2009-01-17 20:32 141,312 ----a-w c:\windows\system32\mp4.dll
2009-01-17 20:32 120,832 ----a-w c:\windows\system32\ogm.dll
2009-01-17 20:32 108,032 ----a-w c:\windows\system32\avi.dll
2009-01-17 20:29 --------- d-----w c:\program files\Real Alternative
2009-01-09 22:17 --------- d-----w c:\program files\Ahead
2009-01-07 23:58 --------- d---a-w c:\documents and settings\All Users\Dane aplikacji\TEMP
2008-12-26 14:44 795,648 ----a-w c:\windows\system32\xvidcore.dll
2008-12-26 14:44 130,048 ----a-w c:\windows\system32\xvidvfw.dll
2008-12-17 11:03 206,256 ----a-w c:\windows\system32\idmmbc.dll
2008-12-16 19:45 --------- d-----w c:\program files\Microsoft Games for Windows - LIVE
2008-12-16 19:41 --------- d-----w c:\program files\MSBuild
2008-12-16 19:39 --------- d-----w c:\program files\Reference Assemblies
2008-12-16 19:37 --------- d-----w c:\program files\Rockstar Games
2008-12-16 19:36 107,888 ----a-w c:\windows\system32\CmdLineExt.dll
2008-12-16 19:36 --------- d--h--r c:\documents and settings\ZeeL\Dane aplikacji\SecuROM
2008-12-15 11:50 --------- d-----w c:\program files\Raxco
2008-12-15 11:50 --------- d-----w c:\program files\Common Files\Raxco
2008-12-15 11:50 --------- d-----w c:\documents and settings\All Users\Dane aplikacji\Raxco
2008-12-15 11:44 --------- d-----w c:\program files\RivaTuner v2.21
2008-12-14 19:47 410,984 ----a-w c:\windows\system32\deploytk.dll
2008-12-14 19:47 --------- d-----w c:\program files\Java
2008-12-14 12:45 --------- d-----w c:\program files\Common Files\Java
2008-12-11 14:37 --------- d-----w c:\program files\Futuremark
2008-12-10 21:29 --------- d-----w c:\program files\AGEIA Technologies
2008-12-10 21:28 --------- d-----w c:\program files\Common Files\Wise Installation Wizard
2008-12-10 21:23 --------- d-----w c:\program files\Common Files\InstallShield
2008-12-10 21:19 315,392 ----a-w c:\windows\HideWin.exe
2008-12-10 21:19 --------- d-----w c:\program files\Realtek
2008-12-10 21:19 --------- d-----w c:\program files\DIFX
2008-12-10 21:17 --------- d-----w c:\documents and settings\ZeeL\Dane aplikacji\InstallShield
2008-12-10 21:10 --------- d-----w c:\program files\microsoft frontpage
2008-12-10 21:09 --------- d-----w c:\program files\Usługi online
2008-12-10 16:59 --------- d-----w c:\program files\Common Files\DirectX
2008-12-10 16:32 --------- d-----w c:\program files\VID_0E8F&PID_0003
2008-12-10 15:13 --------- d-----w c:\program files\Gigabyte
2008-12-10 15:11 15,600 ----a-w c:\windows\gdrv.sys
2008-12-10 14:56 --------- d-----w c:\program files\DAEMON Tools Lite
2008-12-10 14:55 717,296 ----a-w c:\windows\system32\drivers\sptd.sys
2008-12-10 14:55 --------- d-----w c:\documents and settings\ZeeL\Dane aplikacji\DAEMON Tools
2008-12-10 14:52 --------- d-----w c:\documents and settings\ZeeL\Dane aplikacji\CyberLink
2008-12-10 14:51 --------- d-----w c:\program files\CyberLink
2008-12-10 14:51 --------- d-----w c:\documents and settings\All Users\Dane aplikacji\CyberLink
2008-12-10 14:49 --------- d-----w c:\program files\DivX
2008-12-10 14:48 --------- d-----w c:\program files\NimoCodec Pack
2008-12-10 14:47 --------- d-----w c:\program files\XviD
2008-12-10 14:45 --------- d-----w c:\program files\Winamp
2008-12-10 14:45 --------- d-----w c:\documents and settings\ZeeL\Dane aplikacji\Winamp
2008-12-10 14:42 --------- d-----w c:\documents and settings\ZeeL\Dane aplikacji\Gadu-Gadu
2008-12-10 14:41 --------- d-----w c:\program files\Gadu-Gadu
2008-11-11 19:00 218,376 ----a-w c:\windows\system32\klogon.dll
2008-10-28 16:41 14,303,392 ----a-w c:\windows\system32\xlive.dll
2008-10-28 16:41 13,643,936 ----a-w c:\windows\system32\xlivefnt.dll
2008-10-27 09:04 70,992 ----a-w c:\windows\system32\XAPOFX1_2.dll
2008-10-27 09:04 514,384 ----a-w c:\windows\system32\XAudio2_3.dll
2008-10-27 09:04 235,856 ----a-w c:\windows\system32\xactengine3_3.dll
2008-10-27 09:04 23,376 ----a-w c:\windows\system32\X3DAudio1_5.dll
.

((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{41F21158-4211-4D32-9E02-D57B19661561}]
2009-01-14 17:54 444416 --a------ c:\progra~1\ALLPLA~1\REDTUB~1.DLL

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{61DB16C5-B733-43F4-872E-B20DC9E72740}]
2008-10-10 23:57 444416 --a------ c:\progra~1\ALLPLA~1\YOUTUB~1.DLL

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"Gadu-Gadu"="c:\program files\Gadu-Gadu\gg.exe" [2008-03-20 2127296]
"ALLUpdate"="c:\program files\ALLPlayer\ALLUpdate.exe" [2008-11-24 869888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-10-07 13574144]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2004-11-02 32768]
"EasyTuneV"="c:\program files\Gigabyte\ET5\ETcall.exe" [2008-12-26 24576]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-10-07 86016]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-12-14 136600]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe" [2008-11-11 206088]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648]
"RTHDCPL"="RTHDCPL.EXE" [2007-07-05 c:\windows\RTHDCPL.exe]
"nwiz"="nwiz.exe" [2008-10-07 c:\windows\system32\nwiz.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\All Users\Menu Start\Programy\Autostart\
D-Link AirPlus.lnk - c:\program files\D-Link AirPlus\AirPlus.exe [2009-01-24 262144]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"msacm.divxa32"= DivXa32.acm

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ PDBoot.exe\0autocheck autochk *

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"e:\\Silkroad\\nuConnector75.exe"=
"c:\\Program Files\\Gigabyte\\ET5\\update.exe"=
"e:\\Rockstar Games\\Grand Theft Auto IV\\LaunchGTAIV.exe"=
"c:\\Program Files\\Rockstar Games\\Rockstar Games Social Club\\RGSCLauncher.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"e:\\Rockstar Games\\Grand Theft Auto IV\\GTAIV.exe"=
"c:\\Program Files\\Gadu-Gadu\\gg.exe"=

R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [2008-01-29 32784]
R3 KLFLTDEV;Kaspersky Lab KLFltDev;c:\windows\system32\drivers\klfltdev.sys [2008-03-13 26640]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [2008-04-30 24592]
R4 PDSched;PDScheduler;c:\program files\Raxco\PerfectDisk\PDSched.exe [2005-06-28 241731]
S3 AVPsys;AVPsys;c:\windows\system32\drivers\cdaudio.sys [2001-08-17 18688]
S3 getPlus® Helper;getPlus® Helper;c:\program files\NOS\bin\getPlus_HelperSvc.exe [2009-01-13 33752]

--- Inne Usługi/Sterowniki w Pamięci ---

*Deregistered* - MarkFun_NT
.
- - - - USUNIĘTO PUSTE WPISY - - - -

Notify-WgaLogon - (no file)


.
------- Skan uzupełniający -------
.
uStart Page = hxxp://www.google.pl/
uInternet Connection Wizard,ShellNext = hxxp://www.google.pl/
IE: Ściągnij przez IDM - c:\program files\Internet Download Manager\IEExt.htm
IE: Ściągnij wszystkie linki przez IDM - c:\program files\Internet Download Manager\IEGetAll.htm
IE: Ściągnij zawartość wideo FLV przez IDM - c:\program files\Internet Download Manager\IEGetVL.htm
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} - hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.2.cab
FF - ProfilePath - c:\documents and settings\ZeeL\Dane aplikacji\Mozilla\Firefox\Profiles\avtx0uks.default\
FF - component: c:\documents and settings\ZeeL\Dane aplikacji\IDM\idmmzcc2\components\idmmzcc.dll
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-24 19:18:29
Windows 5.1.2600 Dodatek Service Pack 3 NTFS

skanowanie ukrytych procesów ...

skanowanie ukrytych wpisów autostartu ...

skanowanie ukrytych plików ...

skanowanie pomyślnie ukończone
ukryte pliki: 0

**************************************************************************
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------

[HKEY_USERS\S-1-5-21-1993962763-602609370-839522115-1003\Software\SecuROM\License information*]
"datasecu"=hex:72,4f,07,79,9b,bf,a3,9f,2c,1a,1f,24,29,f1,9b,51,52,57,05,84,ff,
a1,10,cd,43,5d,18,8c,ff,3a,88,df,f3,12,34,39,a3,d7,72,59,d6,af,dd,b8,ac,d3,\
"rkeysecu"=hex:81,5b,5b,e1,2c,65,58,d8,c1,79,eb,f8,15,a2,3c,da

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):35,c4,cd,f5,d4,b7,85,a7,36,15,38,b9,90,76,9e,4e,4f,df,ac,8a,68,
8c,41,1f,54,ca,2d,8c,69,c3,3e,a8,4b,0f,e5,e2,ac,cb,36,99,00,00,00,00,00,00,\

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{f751d61c-1cb5-4329-b041-3a8df19d0eac}]
@Denied: (Full) (Everyone)
"Model"=dword:00000017
"Therad"=dword:00000006
.
Czas ukończenia: 2009-01-24 19:19:16
ComboFix-quarantined-files.txt 2009-01-24 18:19:14

Przed: 1 770 479 616 bajtów wolnych
Po: 2,684,846,080 bajtów wolnych

280

Wiam prośba o sprawdzenie

log.txt

Edytowane 24 Stycznia 2009 przez Rafalz

[Kolobos]

Wyglada ok. Po co Ci KAV skoro masz wylaczony firewall oraz skaner?

[Rafalz]

Wylączyłem tylko na czas uruchomienia combofixa