Komputer zamulanie - log

[krzr123]

czesc
ostatnio cos komp mi zamula:)
moze ktos sprawdzic log z combofixa?

Kod: Zaznacz wszystko

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

(((((((((((((((((((((((((   Files Created from 2008-07-28 to 2008-08-30  )))))))))))))))))))))))))))))))
.

2008-08-30 19:36 . 2008-08-30 19:36   82,258   --a------   C:\WINDOWS\system32\drivers\klin.dat
2008-08-30 19:36 . 2008-08-30 19:36   82,258   --a------   C:\WINDOWS\system32\drivers\klick.dat
2008-08-30 19:35 . 2008-08-30 19:35   <DIR>   d--------   C:\Program Files\Kaspersky Lab
2008-08-30 19:35 . 2008-08-30 20:50   <DIR>   d--------   C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab
2008-08-30 19:35 . 2008-08-30 21:06   390,688   --ahs----   C:\WINDOWS\system32\drivers\fidbox.dat
2008-08-30 19:35 . 2008-08-30 21:05   8,480   --ahs----   C:\WINDOWS\system32\drivers\fidbox2.dat
2008-08-30 19:35 . 2008-08-30 20:49   6,188   --ahs----   C:\WINDOWS\system32\drivers\fidbox.idx
2008-08-30 19:35 . 2008-08-30 20:49   1,532   --ahs----   C:\WINDOWS\system32\drivers\fidbox2.idx
2008-08-30 19:10 . 2008-08-30 19:10   <DIR>   d--------   C:\Program Files\SAGEM
2008-08-30 19:10 . 2002-09-25 10:36   118,784   --a------   C:\WINDOWS\autoclk.exe
2008-08-30 16:07 . 2008-08-30 19:48   <DIR>   d--------   C:\Program Files\Spybot - Search & Destroy
2008-08-30 15:15 . 2008-08-30 15:37   <DIR>   d--------   C:\Program Files\AutoConnect
2008-08-29 23:29 . 2001-08-17 21:53   4,992   --a------   C:\WINDOWS\system32\drivers\loop.sys
2008-08-29 11:32 . 2008-08-30 15:33   28   --a------   C:\WINDOWS\as.INI
2008-08-27 20:50 . 2008-08-27 20:53   <DIR>   d--------   C:\GRYfolder
2008-08-27 20:44 . 2008-08-27 20:54   <DIR>   d--------   C:\gry
2008-08-25 19:22 . 2008-08-25 19:22   <DIR>   d--------   C:\WINDOWS\OPTIONS
2008-08-25 19:06 . 2008-08-25 19:06   20,480   -r-hs----   C:\WINDOWS\svrse.exe
2008-08-25 19:04 . 2008-08-25 19:16   <DIR>   d--------   C:\Documents and Settings\krz\Dane aplikacji\U3
2008-08-17 19:22 . 2008-08-28 21:58   <DIR>   d--------   C:\Documents and Settings\krz\Dane aplikacji\mIRC
2008-08-15 11:42 . 2008-04-11 20:51   683,520   -----c---   C:\WINDOWS\system32\dllcache\inetcomm.dll
2008-08-14 22:40 . 2008-05-01 16:33   331,776   -----c---   C:\WINDOWS\system32\dllcache\msadce.dll
2008-08-14 10:50 . 2003-04-04 02:53   12,297   --a------   C:\WINDOWS\system32\drivers\ezusb.sys
2008-08-12 22:17 . 2008-08-12 22:17   <DIR>   d--------   C:\Program Files\Real Alternative
2008-08-12 22:17 . 2008-08-12 22:17   <DIR>   d--------   C:\Documents and Settings\krz\Dane aplikacji\Media Player Classic
2008-08-12 22:17 . 2003-03-19 05:14   499,712   --a------   C:\WINDOWS\system32\msvcp71.dll
2008-08-12 22:13 . 2008-08-12 22:13   <DIR>   d--------   C:\Documents and Settings\krz\Dane aplikacji\vlc
2008-08-12 22:12 . 2008-08-12 22:12   <DIR>   d--------   C:\Program Files\VideoLAN
2008-08-12 10:39 . 2008-06-23 18:42   6,066,176   -----c---   C:\WINDOWS\system32\dllcache\ieframe.dll
2008-08-12 10:39 . 2007-04-17 11:32   2,455,488   -----c---   C:\WINDOWS\system32\dllcache\ieapfltr.dat
2008-08-12 10:39 . 2007-03-08 07:11   1,036,288   -----c---   C:\WINDOWS\system32\dllcache\ieframe.dll.mui
2008-08-12 10:39 . 2008-06-23 18:42   459,264   -----c---   C:\WINDOWS\system32\dllcache\msfeeds.dll
2008-08-12 10:39 . 2008-06-23 18:42   383,488   -----c---   C:\WINDOWS\system32\dllcache\ieapfltr.dll
2008-08-12 10:39 . 2008-06-14 20:01   273,024   -----c---   C:\WINDOWS\system32\dllcache\bthport.sys
2008-08-12 10:39 . 2008-06-23 18:42   267,776   -----c---   C:\WINDOWS\system32\dllcache\iertutil.dll
2008-08-12 10:39 . 2008-06-23 18:42   63,488   -----c---   C:\WINDOWS\system32\dllcache\icardie.dll
2008-08-12 10:39 . 2008-06-23 18:42   52,224   -----c---   C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2008-08-12 10:39 . 2008-06-23 11:20   13,824   -----c---   C:\WINDOWS\system32\dllcache\ieudinit.exe
2008-08-07 15:23 . 2008-08-07 15:23   <DIR>   d--------   C:\Documents and Settings\krz\Dane aplikacji\Ahead
2008-08-07 15:03 . 2008-08-07 15:03   <DIR>   d--------   C:\Program Files\Common Files\Ahead
2008-08-07 15:03 . 2008-08-07 15:03   <DIR>   d--------   C:\Program Files\Ahead
2008-08-07 15:03 . 2001-07-06 14:41   569,344   --a------   C:\WINDOWS\system32\imagr5.dll
2008-08-07 15:03 . 2001-07-06 12:44   544,768   --a------   C:\WINDOWS\system32\imagx5.dll
2008-08-07 15:03 . 2001-07-06 18:24   283,920   --a------   C:\WINDOWS\system32\ImagXpr5.dll
2008-08-07 15:03 . 2001-07-09 11:50   155,648   --a------   C:\WINDOWS\system32\NeroCheck.exe
2008-08-07 15:03 . 2003-03-29 16:45   89,184   --a------   C:\WINDOWS\system32\drivers\imagedrv.sys
2008-08-07 15:03 . 2003-07-22 16:29   57,344   --a------   C:\WINDOWS\system32\ImageDrive.cpl
2008-08-07 15:03 . 2001-06-26 08:15   38,912   --a------   C:\WINDOWS\system32\picn20.dll
2008-08-07 13:47 . 2004-08-04 00:44   159,232   --a------   C:\WINDOWS\system32\ptpusd.dll
2008-08-07 13:47 . 2004-08-03 22:58   15,104   --a------   C:\WINDOWS\system32\drivers\usbscan.sys
2008-08-07 13:47 . 2004-08-03 22:58   15,104   --a--c---   C:\WINDOWS\system32\dllcache\usbscan.sys
2008-08-07 13:47 . 2001-10-26 17:29   5,632   --a------   C:\WINDOWS\system32\ptpusb.dll
2008-08-04 20:44 . 2008-08-04 20:44   0   --a------   C:\WINDOWS\ativpsrm.bin
2008-08-04 20:35 . 2008-08-30 19:46   <DIR>   d--------   C:\Documents and Settings\All Users\Dane aplikacji\Spybot - Search & Destroy
2008-08-04 20:30 . 2008-08-04 20:30   <DIR>   d--------   C:\Documents and Settings\All Users\Dane aplikacji\Yahoo! Companion
2008-08-04 20:28 . 2008-08-04 20:28   <DIR>   d--------   C:\Program Files\Yahoo!
2008-08-04 15:43 . 2008-08-04 15:43   <DIR>   d--------   C:\Program Files\K-Lite Codec Pack
2008-08-04 10:57 . 2008-08-04 10:57   <DIR>   d--------   C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files
2008-08-03 18:47 . 2008-08-04 11:56   <DIR>   d--------   C:\WINDOWS\system32\drive
2008-08-03 15:47 . 2008-08-03 15:47   101   --a------   C:\WINDOWS\CMMIXER.INI
2008-08-02 20:40 . 2008-08-04 22:32   <DIR>   d--------   C:\Program Files\Opera
2008-08-01 15:14 . 2001-08-17 21:56   7,552   --a------   C:\WINDOWS\system32\drivers\SONYPVU1.SYS
2008-08-01 15:14 . 2001-08-17 21:56   7,552   --a--c---   C:\WINDOWS\system32\dllcache\sonypvu1.sys
2008-08-01 11:16 . 2008-08-01 11:16   <DIR>   d--------   C:\Documents and Settings\krz\LocalLow
2008-08-01 11:16 . 2008-08-01 11:16   <DIR>   d--------   C:\Documents and Settings\krz\Dane aplikacji\TVU Networks
2008-08-01 11:16 . 2008-08-01 11:16   <DIR>   d--------   C:\Documents and Settings\All Users\Dane aplikacji\TVU Networks
2008-07-27 17:50 . 2008-07-27 17:50   <DIR>   d--------   C:\Program Files\Real
2008-07-27 17:50 . 2008-08-04 15:43   <DIR>   d--------   C:\Program Files\Common Files\Real
2008-07-27 16:05 . 2008-07-27 16:06   <DIR>   d--------   C:\Program Files\SopCast
2008-07-26 17:12 . 2008-07-26 17:12   <DIR>   d--------   C:\WINDOWS\Sun
2008-07-26 17:08 . 2008-07-26 17:08   <DIR>   d--------   C:\Program Files\Java
2008-07-26 17:08 . 2008-06-10 02:32   73,728   --a------   C:\WINDOWS\system32\javacpl.cpl
2008-07-26 17:06 . 2008-07-26 17:06   <DIR>   d--------   C:\Program Files\Common Files\Java
2008-07-26 15:53 . 2008-07-26 15:56   <DIR>   d--------   C:\Documents and Settings\All Users\Dane aplikacji\TrackMania
2008-07-19 13:26 . 2008-08-12 15:34   <DIR>   d--------   C:\WINDOWS\system32\pl-pl
2008-07-19 13:24 . 2008-08-15 18:54   <DIR>   d--h-----   C:\WINDOWS\$hf_mig$
2008-07-19 13:02 . 2008-08-30 21:05   <DIR>   d--h-----   C:\Documents and Settings\Administrator\Ustawienia lokalne
2008-07-19 13:02 . 2008-07-14 19:33   <DIR>   d--------   C:\Documents and Settings\Administrator\Ulubione
2008-07-19 13:02 . 2008-07-14 18:39   <DIR>   d--h-----   C:\Documents and Settings\Administrator\Szablony
2008-07-19 13:02 . 2008-07-14 19:33   <DIR>   d--------   C:\Documents and Settings\Administrator\Pulpit
2008-07-19 13:02 . 2008-07-14 19:33   <DIR>   d--------   C:\Documents and Settings\Administrator\Moje dokumenty
2008-07-19 13:02 . 2008-07-14 19:33   <DIR>   dr-------   C:\Documents and Settings\Administrator\Menu Start
2008-07-19 13:02 . 2008-07-14 19:33   <DIR>   dr-h-----   C:\Documents and Settings\Administrator\Dane aplikacji
2008-07-19 13:02 . 2008-07-19 13:02   <DIR>   d--------   C:\Documents and Settings\Administrator
2008-07-18 11:58 . 2008-07-26 11:14   21,840   --a----t-   C:\WINDOWS\system32\SIntfNT.dll
2008-07-18 11:58 . 2008-07-26 11:14   17,212   --a----t-   C:\WINDOWS\system32\SIntf32.dll
2008-07-18 11:58 . 2008-07-26 11:14   12,067   --a----t-   C:\WINDOWS\system32\SIntf16.dll
2008-07-18 11:42 . 1999-04-23 22:22   151,552   --a------   C:\WINDOWS\system32\MSOSS.DLL
2008-07-18 11:07 . 2008-07-18 11:07   <DIR>   d--------   C:\WINDOWS\system32\LogFiles
2008-07-17 16:50 . 2008-08-30 19:13   343   --a------   C:\WINDOWS\adiras.ini
2008-07-16 21:39 . 2008-08-22 13:18   <DIR>   d--------   C:\Documents and Settings\krz\Dane aplikacji\Hamachi
2008-07-16 21:38 . 2008-08-06 11:12   25,280   --a------   C:\WINDOWS\system32\drivers\hamachi.sys
2008-07-16 20:25 . 2004-08-03 23:08   26,496   --a--c---   C:\WINDOWS\system32\dllcache\usbstor.sys
2008-07-15 17:29 . 2008-07-15 17:29   <DIR>   d--h-----   C:\WINDOWS\system32\GroupPolicy
2008-07-15 17:20 . 2008-07-15 17:20   <DIR>   d--------   C:\Documents and Settings\LocalService\Menu Start
2008-07-15 17:19 . 2008-07-15 17:19   <DIR>   d---s----   C:\WINDOWS\system32\Microsoft
2008-07-15 17:09 . 2008-07-15 17:20   316,640   --a------   C:\WINDOWS\WMSysPr9.prx
2008-07-15 17:03 . 2008-07-15 17:03   <DIR>   d--------   C:\WINDOWS\ServicePackFiles
2008-07-15 16:56 . 2004-07-17 11:40   19,528   --a------   C:\WINDOWS\[u]0[/u]02368_.tmp
2008-07-15 16:55 . 2006-09-06 17:43   22,752   --a------   C:\WINDOWS\system32\spupdsvc.exe
2008-07-15 16:50 . 2008-07-15 17:07   <DIR>   d--------   C:\WINDOWS\EHome
2008-07-15 15:29 . 2008-07-15 15:29   <DIR>   d--------   C:\Program Files\DAEMON Tools
2008-07-15 15:29 . 2008-07-15 15:29   223,128   --a------   C:\WINDOWS\system32\drivers\dtscsi.sys
2008-07-15 15:23 . 2008-07-15 15:23   664,064   --a------   C:\WINDOWS\system32\drivers\sptd.sys
2008-07-15 15:23 . 2008-07-15 17:18   96,256   --a------   C:\WINDOWS\system32\drivers\sptd1741.sys
2008-07-15 15:14 . 2001-08-17 22:02   9,600   --a------   C:\WINDOWS\system32\drivers\hidusb.sys
2008-07-15 15:14 . 2001-08-17 22:02   9,600   --a--c---   C:\WINDOWS\system32\dllcache\hidusb.sys
2008-07-14 21:04 . 2008-08-30 21:00   <DIR>   d--------   C:\Program Files\FlashGet
2008-07-14 19:58 . 2008-07-14 19:59   <DIR>   d--------   C:\WINDOWS\system32\URTTemp
2008-07-14 19:56 . 2006-01-18 17:57   1,114,674   -ra------   C:\WINDOWS\system32\drivers\ativcaxx.cpa
2008-07-14 19:56 . 2008-07-03 21:05   593,920   ---------   C:\WINDOWS\system32\ati2sgag.exe
2008-07-14 19:56 . 2008-07-04 04:55   307,200   --a------   C:\WINDOWS\system32\atiiiexx.dll
2008-07-14 19:56 . 2008-06-10 23:50   174,819   --a------   C:\WINDOWS\system32\atiicdxx.dat
2008-07-14 19:56 . 2005-10-14 17:10   58,560   -ra------   C:\WINDOWS\system32\drivers\ativckxx.vp
2008-07-14 19:56 . 2006-02-22 05:58   27,264   -ra------   C:\WINDOWS\system32\drivers\ativvpxx.vp
2008-07-14 19:56 . 2007-08-31 15:20   7,167   --a------   C:\WINDOWS\system32\atifglpf.xml
2008-07-14 19:56 . 2006-01-18 17:57   929   -ra------   C:\WINDOWS\system32\drivers\ativcaxx.vp
2008-07-14 19:53 . 1998-07-30 17:43   305,664   --a------   C:\WINDOWS\IsUn0415.exe
2008-07-14 19:52 . 2008-07-14 19:52   <DIR>   d--------   C:\Documents and Settings\krz\WINDOWS
2008-07-14 19:52 . 2008-07-14 19:52   <DIR>   d--------   C:\ATI
2008-07-14 19:48 . 2004-08-03 23:08   26,624   -ra------   C:\WINDOWS\system32\drivers\usbehci.sys
2008-07-14 19:43 . 2008-07-14 19:43   <DIR>   d--------   C:\WINDOWS\system32\Tools
2008-07-14 19:38 . 2008-07-14 19:38   <DIR>   d--------   C:\Program Files\Common Files\ATI Technologies
2008-07-14 19:35 . 2004-08-04 00:35   58,624   --a------   C:\WINDOWS\system32\drivers\redbook.sys
2008-07-14 19:35 . 2004-08-03 23:07   42,240   --a------   C:\WINDOWS\system32\drivers\viaagp.sys

.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-08-30 17:13   23   ----a-w   C:\WINDOWS\system32\drivers\adidsl.cfg
2008-08-14 15:32   ---------   d-----w   C:\Program Files\Gadu-Gadu
2008-08-12 20:18   ---------   d-----w   C:\Program Files\NAPI-PROJEKT
2008-07-18 20:10   94,920   ----a-w   C:\WINDOWS\system32\cdm.dll
2008-07-18 20:10   53,448   ----a-w   C:\WINDOWS\system32\wuauclt.exe
2008-07-18 20:10   45,768   ----a-w   C:\WINDOWS\system32\wups2.dll
2008-07-18 20:10   36,552   ----a-w   C:\WINDOWS\system32\wups.dll
2008-07-18 20:09   563,912   ----a-w   C:\WINDOWS\system32\wuapi.dll
2008-07-18 20:09   325,832   ----a-w   C:\WINDOWS\system32\wucltui.dll
2008-07-18 20:09   205,000   ----a-w   C:\WINDOWS\system32\wuweb.dll
2008-07-18 20:09   1,811,656   ----a-w   C:\WINDOWS\system32\wuaueng.dll
2008-07-14 18:14   ---------   d-----w   C:\Documents and Settings\krz\Dane aplikacji\Gadu-Gadu
2008-07-14 18:06   ---------   d-----w   C:\Documents and Settings\krz\Dane aplikacji\ATI
2008-07-14 17:10   ---------   d-----w   C:\Program Files\Common Files\InstallShield
2008-07-14 16:56   ---------   d-----w   C:\Program Files\C-Media
2008-07-14 16:43   ---------   d-----w   C:\Program Files\microsoft frontpage
2008-07-14 16:41   ---------   d-----w   C:\Program Files\Usługi online
2008-07-07 20:33   253,952   ----a-w   C:\WINDOWS\system32\es.dll
2008-07-04 06:33   3,230,720   ----a-w   C:\WINDOWS\system32\drivers\ati2mtag.sys
2008-07-04 03:23   309,248   ----a-w   C:\WINDOWS\system32\ati2dvag.dll
2008-07-04 03:14   26,112   ----a-w   C:\WINDOWS\system32\Ati2mdxx.exe
2008-07-04 03:14   184,320   ----a-w   C:\WINDOWS\system32\atipdlxx.dll
2008-07-04 03:14   143,360   ----a-w   C:\WINDOWS\system32\Oemdspif.dll
2008-07-04 03:13   43,520   ----a-w   C:\WINDOWS\system32\ati2edxx.dll
2008-07-04 03:13   139,264   ----a-w   C:\WINDOWS\system32\ati2evxx.dll
2008-07-04 03:12   561,152   ----a-w   C:\WINDOWS\system32\ati2evxx.exe
2008-07-04 03:10   53,248   ----a-w   C:\WINDOWS\system32\ATIDDC.DLL
2008-07-04 03:00   3,786,144   ----a-w   C:\WINDOWS\system32\ati3duag.dll
2008-07-04 02:49   2,140,672   ----a-w   C:\WINDOWS\system32\ativvaxx.dll
2008-07-04 02:30   348,160   ----a-w   C:\WINDOWS\system32\atikvmag.dll
2008-07-04 02:28   53,248   ----a-w   C:\WINDOWS\system32\drivers\ati2erec.dll
2008-07-04 02:28   17,408   ----a-w   C:\WINDOWS\system32\atitvo32.dll
2008-07-04 02:25   5,439,488   ----a-w   C:\WINDOWS\system32\atioglxx.dll
2008-07-04 02:22   565,248   ----a-w   C:\WINDOWS\system32\ati2cqag.dll
2008-06-24 16:24   74,240   ----a-w   C:\WINDOWS\system32\mscms.dll
2008-06-23 16:42   826,368   ----a-w   C:\WINDOWS\system32\wininet.dll
2008-06-20 17:42   246,784   ----a-w   C:\WINDOWS\system32\mswsock.dll
2008-06-12 18:36   7,680   ----a-w   C:\WINDOWS\system32\ff_vfw.dll
2008-05-30 23:22   683,520   ----a-w   C:\WINDOWS\system32\divx.dll
2008-05-22 22:22   3,596,288   ----a-w   C:\WINDOWS\system32\qt-dx331.dll
2008-05-22 22:19   81,920   ----a-w   C:\WINDOWS\system32\dpl100.dll
2008-05-07 05:16   1,291,264   ----a-w   C:\WINDOWS\system32\quartz.dll
2001-11-23 04:08   712,704   ----a-r   C:\WINDOWS\inf\OTHER\AUDIO3D.DLL
.

(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-08-04 00:44 1667584]
"Gadu-Gadu"="C:\Program Files\Gadu-Gadu\gg.exe" [2008-03-20 12:04 2127296]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 00:44 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WinSmsFi"="System" [X]
"ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2006-02-21 21:05 344064]
"ATICCC"="C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" [2006-01-02 17:41 45056]
"Flashget"="C:\Program Files\FlashGet\FlashGet.exe" [2007-09-25 10:10 2007088]
"DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [2005-11-09 00:00 128920]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 04:27 144784]
"NeroCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 11:50 155648]
"FixBluetooth"="C:\WINDOWS\OPTIONS\CABS\CABI\BluSoleiI.exe" [2008-02-02 03:32 234271]
"C-Media Mixer"="Mixer.exe" [2003-03-20 08:21 1855488 C:\WINDOWS\mixer.exe]
"autoclk"="autoclk.exe" [2002-09-25 10:36 118784 C:\WINDOWS\autoclk.exe]
"adiras"="adiras.exe" [2002-11-21 15:43 32768 C:\WINDOWS\adiras.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2004-08-04 00:44 15360]

C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\
BlueSoleiI.lnk - C:\WINDOWS\OPTIONS\CABS\CABI\BluSoleiI.exe [2008-08-25 19:22:22 234271]
DSLMON.lnk - C:\Program Files\SAGEM\SAGEM F@st 800-840\DSLMON.exe [2008-08-30 19:10:33 946247]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.YV12"= yv12vfw.dll

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\FlashGet\\flashget.exe"=
"D:\\gry\\EA Sports\\FIFA 08\\FIFA08.exe"=
"D:\\gry\\scbrood\\pwz-bw115loader.exe"=
"C:\\Program Files\\K-Lite Codec Pack\\Filters\\ac3config.exe"=
"C:\\Program Files\\WinRAR\\WinRAR.exe"=
"D:\\gry\\scbrood\\StarCraft.exe"=
"D:\\gry\\scbrood\\Brood.exe"=
"D:\\gry\\scbrood\\brood-c.exe"=
"D:\\gry\\F1 Challenge 2007\\F1Challenge2007.exe"=
"D:\\gry\\Codemasters\\Colin McRae Rally 2\\CMR2Network.exe"=
"C:\\WINDOWS\\system32\\dplaysvr.exe"=
"D:\\gry\\Codemasters\\Colin McRae Rally 2\\CMR2.exe"=
"D:\\gry\\TmUnitedForever\\TmForever.exe"=
"C:\\Program Files\\SopCast\\SopCast.exe"=
"C:\\Program Files\\SopCast\\adv\\SopAdver.exe"=
"D:\\gry\\Counter-Strike 1.6\\hl.exe"=
"C:\\Program Files\\Windows Media Player\\wmplayer.exe"=
"D:\\gry\\F1 2008\\F1 Challenge 2008.exe"=

R3 klim5;Kaspersky Anti-Virus NDIS Filter;C:\WINDOWS\system32\DRIVERS\klim5.sys [2007-04-04 14:58]
S2 EZUSB;Cypress General Purpose USB Driver (ezusb.sys);C:\WINDOWS\system32\Drivers\ezusb.sys [2003-04-04 02:53]
S2 EZUSBDEV;Cypress General Purpose USB Driver w/ Keil Monitor (ezusb.sys);C:\WINDOWS\system32\Drivers\ezusb.sys [2003-04-04 02:53]
S2 IKANLOADER2;General Purpose USB Driver (e4ldr.sys);C:\WINDOWS\system32\Drivers\e4ldr.sys [2006-09-15 09:07]
S3 e4usbaw;USB ADSL2 WAN Adapter;C:\WINDOWS\system32\DRIVERS\e4usbaw.sys [2006-09-19 09:03]
S3 msloop;Sterownik karty Microsoft Loopback;C:\WINDOWS\system32\DRIVERS\loop.sys [2001-08-17 21:53]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{fcfbafbc-5f2f-11dd-9707-4d6564696130}]
\Shell\AutoRun\command - EXPLORER.EXE
\Shell\explore\Command - EXPLORER.EXE
\Shell\open\Command - EXPLORER.EXE

*Newly Created Service* - PROCEXP90
.

**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-30 21:05:43
Windows 5.1.2600 Dodatek Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...


**************************************************************************
.
Completion time: 2008-08-30 21:08:44
ComboFix-quarantined-files.txt  2008-08-30 19:07:30

Pre-Run: 761,180,160 bajtów wolnych
Post-Run: 672,690,176 bajtów wolnych

259   --- E O F ---   2008-08-28 19:52:08