Prosze o sprawdzenie loga z ComboFix

[credoPDG]

ComboFix 09-06-21.01 - Kolejorz 2009-06-22 13:49.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1250.48.1045.18.2047.1534 [GMT 2:00]
Uruchomiony z: c:\documents and settings\Kolejorz\Pulpit\ComboFix.exe
AV: ESET NOD32 Antivirus 4.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.

((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Kolejorz\Dane aplikacji\EurekaLog
c:\documents and settings\Kolejorz\Dane aplikacji\EurekaLog\EurekaLog.ini
c:\windows\notepad.tmp
c:\windows\notepad.tmp2
c:\windows\system32\AVSredirect.dll
c:\windows\system32\dllcache\notepad.tmp
c:\windows\system32\dllcache\notepad.tmp2
c:\windows\system32\notepad.tmp
c:\windows\system32\notepad.tmp2

.
((((((((((((((((((((((((( Pliki utworzone od 2009-05-22 do 2009-06-22 )))))))))))))))))))))))))))))))
.

2009-06-19 13:56 . 2009-06-19 13:56 2560 ----a-w- c:\windows\_MSRSTRT.EXE
2009-06-15 21:29 . 2008-06-12 10:09 33088 ----a-w- c:\documents and settings\Kolejorz\Dane aplikacji\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
2009-06-15 10:15 . 2009-06-15 10:15 -------- d-----w- c:\program files\Asprate
2009-06-14 18:25 . 2009-04-30 21:17 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2009-06-14 18:25 . 2009-04-30 21:17 246272 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2009-06-14 18:25 . 2009-04-30 21:17 1985024 -c----w- c:\windows\system32\dllcache\iertutil.dll
2009-06-14 18:25 . 2009-04-30 21:17 11064832 -c----w- c:\windows\system32\dllcache\ieframe.dll
2009-06-14 11:00 . 2006-06-29 11:07 14048 ------w- c:\windows\system32\spmsg2.dll
2009-06-14 10:58 . 2009-06-14 10:58 228064 ----a-w- c:\documents and settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
2009-06-14 10:58 . 2009-06-14 10:59 -------- d-----w- c:\windows\system32\XPSViewer
2009-06-14 10:57 . 2009-06-14 10:57 -------- d-----w- c:\program files\Reference Assemblies
2009-06-14 10:57 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2009-06-14 10:57 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2009-06-14 10:57 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2009-06-14 10:57 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2009-06-14 10:57 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2009-06-14 10:57 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2009-06-14 10:57 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2009-06-14 09:55 . 2009-06-14 09:55 -------- d-----w- c:\documents and settings\Kolejorz\Ustawienia lokalne\Dane aplikacji\Stardock
2009-06-13 08:33 . 2008-03-16 12:30 216064 --sh--r- c:\windows\system32\nbDX.dll
2009-06-13 08:33 . 2007-02-21 10:47 31232 --sh--r- c:\windows\system32\msfDX.dll
2009-06-13 08:33 . 2006-05-03 09:06 163328 --sh--r- c:\windows\system32\flvDX.dll
2009-06-13 07:50 . 2007-05-14 13:24 394240 ----a-w- c:\windows\system32\Smab.dll
2009-06-13 07:50 . 2004-02-22 08:11 719872 ----a-w- c:\windows\system32\devil.dll
2009-06-13 07:50 . 2007-05-17 15:30 318976 ----a-w- c:\windows\system32\avisynth.dll
2009-06-13 07:50 . 2006-04-05 06:09 66560 ----a-w- c:\windows\MOTA113.exe
2009-06-13 07:50 . 2004-01-24 22:00 70656 ----a-w- c:\windows\system32\i420vfw.dll
2009-06-13 07:50 . 2005-02-28 11:16 240128 ----a-w- c:\windows\system32\x.264.exe
2009-06-13 07:50 . 2006-10-07 15:43 502784 ----a-w- c:\windows\x2.64.exe
2009-06-13 07:50 . 2006-04-12 07:47 217073 ----a-w- c:\windows\meta4.exe
2009-06-13 07:50 . 2009-06-13 07:50 -------- d-----w- c:\program files\AviSynth 2.5
2009-06-05 10:12 . 2009-06-21 18:03 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\TrackMania
2009-06-05 07:43 . 2008-10-21 20:27 63040 ----a-w- c:\windows\system32\PnkBstrA.exe
2009-06-05 07:43 . 2009-06-05 07:43 138184 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2009-06-05 07:43 . 2009-06-05 07:43 183112 ----a-w- c:\windows\system32\PnkBstrB.exe
2009-06-05 07:41 . 2009-06-05 07:41 -------- d-----w- c:\documents and settings\Kolejorz\Dane aplikacji\Leadertech
2009-06-03 14:39 . 2008-08-08 05:04 545 ----a-w- c:\windows\UC.PIF
2009-06-03 14:39 . 2008-08-08 05:04 545 ----a-w- c:\windows\RAR.PIF
2009-06-03 14:39 . 2008-08-08 05:04 545 ----a-w- c:\windows\PKZIP.PIF
2009-06-03 14:39 . 2008-08-08 05:04 545 ----a-w- c:\windows\PKUNZIP.PIF
2009-06-03 14:39 . 2008-08-08 05:04 545 ----a-w- c:\windows\NOCLOSE.PIF
2009-06-03 14:39 . 2008-08-08 05:04 545 ----a-w- c:\windows\LHA.PIF
2009-06-03 14:39 . 2008-08-08 05:04 545 ----a-w- c:\windows\ARJ.PIF
2009-06-02 18:30 . 2009-06-02 18:30 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\FLEXnet
2009-06-02 18:27 . 2009-06-02 18:27 -------- d-----w- c:\program files\Bonjour
2009-06-02 18:21 . 2009-06-02 18:21 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2009-06-01 14:00 . 2009-06-01 18:19 -------- d-----w- c:\documents and settings\Kolejorz\Dane aplikacji\Hamachi
2009-06-01 14:00 . 2009-06-01 14:00 25280 ----a-w- c:\windows\system32\drivers\hamachi.sys
2009-06-01 14:00 . 2009-06-19 14:39 -------- d-----w- c:\program files\Hamachi
2009-05-31 10:49 . 2009-05-31 10:51 -------- d-----w- c:\documents and settings\Kolejorz\Dane aplikacji\SQLite Administrator
2009-05-31 10:41 . 2009-05-31 11:08 -------- d-----w- c:\documents and settings\Kolejorz\Dane aplikacji\Tibia
2009-05-24 18:31 . 2009-05-24 18:31 -------- d-----w- c:\documents and settings\Kolejorz\Dane aplikacji\Remere's Map Editor
2009-05-23 12:14 . 2009-05-23 12:14 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Wru
2009-05-23 12:10 . 2004-06-22 18:06 1040384 ----a-w- c:\windows\system32\GnucCOM.dll

.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-06-22 09:25 . 2009-05-07 13:39 98456 ----a-w- c:\documents and settings\Kolejorz\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
2009-06-18 16:30 . 2009-05-13 12:50 -------- d---a-w- c:\documents and settings\All Users\Dane aplikacji\TEMP
2009-06-15 12:16 . 2009-05-08 05:51 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Microsoft Help
2009-06-14 16:38 . 2009-05-07 13:30 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-06-14 16:37 . 2009-05-07 13:37 -------- d-----w- c:\program files\Common Files\InstallShield
2009-06-14 10:58 . 2001-10-26 18:15 83880 ----a-w- c:\windows\system32\perfc015.dat
2009-06-14 10:58 . 2001-10-26 18:15 490628 ----a-w- c:\windows\system32\perfh015.dat
2009-06-14 10:58 . 2009-05-08 05:54 -------- d-----w- c:\program files\MSBuild
2009-06-03 18:21 . 2009-05-22 11:09 -------- d-----w- c:\documents and settings\Kolejorz\Dane aplikacji\teamspeak2
2009-06-02 18:28 . 2009-05-08 11:49 -------- d-----w- c:\program files\Common Files\Adobe
2009-05-24 12:53 . 2009-05-18 19:09 -------- d-----w- c:\documents and settings\Kolejorz\Dane aplikacji\PC Suite
2009-05-22 21:44 . 2009-05-22 21:44 -------- d-----w- c:\program files\MSXML 4.0
2009-05-22 10:45 . 2009-05-22 10:44 -------- d-----w- c:\documents and settings\Kolejorz\Dane aplikacji\Ventrilo
2009-05-22 10:36 . 2009-05-22 10:36 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-05-18 19:10 . 2009-05-18 19:09 -------- d-----w- c:\documents and settings\Kolejorz\Dane aplikacji\Nokia
2009-05-18 19:10 . 2009-05-18 19:09 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\PC Suite
2009-05-18 19:10 . 2009-05-18 19:10 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
2009-05-18 19:10 . 2009-05-18 19:10 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2009-05-18 19:09 . 2009-05-18 19:09 -------- d-----w- c:\program files\Common Files\PCSuite
2009-05-18 19:09 . 2009-05-18 19:09 -------- d-----w- c:\program files\Common Files\Nokia
2009-05-18 19:09 . 2009-05-18 19:09 -------- d-----w- c:\program files\Nokia
2009-05-18 19:09 . 2009-05-18 19:09 -------- d-----w- c:\program files\DIFX
2009-05-18 19:09 . 2009-05-18 19:09 -------- d-----w- c:\program files\PC Connectivity Solution
2009-05-18 19:08 . 2009-05-18 19:08 8192 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{58FB2F9A-5F2D-40E8-82DF-4987E60AD8BD}\Installer\CommonCustomActions\UninstCCD.exe
2009-05-18 19:08 . 2009-05-18 19:08 61440 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{58FB2F9A-5F2D-40E8-82DF-4987E60AD8BD}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2009-05-18 19:08 . 2009-05-18 19:08 10240 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{58FB2F9A-5F2D-40E8-82DF-4987E60AD8BD}\Installer\CommonCustomActions\UninstPCS.exe
2009-05-18 19:08 . 2009-05-18 19:08 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Installations
2009-05-18 17:28 . 2009-05-18 17:28 -------- d-----w- c:\program files\Common Files\Adobe AIR
2009-05-18 17:19 . 2009-05-18 17:19 2560 ----a-w- c:\windows\system32\bitcometres.dll
2009-05-16 17:08 . 2009-05-16 17:08 4096 ----a-w- c:\windows\d3dx.dat
2009-05-16 13:23 . 2009-05-16 11:04 -------- d-----w- c:\documents and settings\Kolejorz\Dane aplikacji\Winamp
2009-05-13 18:48 . 2009-05-13 18:48 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\KONAMI
2009-05-13 18:38 . 2009-05-07 13:42 -------- d-----w- c:\documents and settings\Kolejorz\Dane aplikacji\DAEMON Tools Lite
2009-05-13 18:36 . 2009-05-13 18:36 -------- d-----w- c:\documents and settings\Kolejorz\Dane aplikacji\DAEMON Tools Pro
2009-05-13 18:36 . 2009-05-13 18:36 -------- d-----w- c:\documents and settings\Kolejorz\Dane aplikacji\DAEMON Tools
2009-05-13 18:35 . 2009-05-13 18:35 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\DAEMON Tools Lite
2009-05-13 18:35 . 2009-05-13 18:35 -------- d-----w- c:\program files\DAEMON Tools Toolbar
2009-05-13 05:06 . 2008-04-14 20:50 915456 ----a-w- c:\windows\system32\wininet.dll
2009-05-11 16:25 . 2009-05-11 16:25 -------- d-----w- c:\documents and settings\Kolejorz\Dane aplikacji\Nero
2009-05-11 16:24 . 2009-05-11 16:23 -------- d-----w- c:\program files\Common Files\Nero
2009-05-11 16:23 . 2009-05-11 16:23 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Nero
2009-05-10 18:26 . 2009-05-07 13:22 86327 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2009-05-09 13:37 . 2009-05-09 13:32 -------- d-----w- c:\program files\Google
2009-05-08 11:50 . 2009-05-08 11:50 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Adobe Systems
2009-05-08 11:50 . 2009-05-08 11:50 -------- d-----w- c:\program files\Common Files\Adobe Systems Shared
2009-05-08 05:54 . 2009-05-08 05:54 -------- d-----w- c:\program files\Microsoft Works
2009-05-07 20:05 . 2009-05-07 20:05 -------- d-----w- c:\program files\Common Files\NSV
2009-05-07 18:42 . 2009-05-07 18:41 -------- d-----w- c:\documents and settings\Kolejorz\Dane aplikacji\Media Player Classic
2009-05-07 17:44 . 2009-05-07 17:44 15872 ----a-r- c:\documents and settings\Kolejorz\Dane aplikacji\Microsoft\Installer\{048298C9-A4D3-490B-9FF9-AB023A9238F3}\Icon048298C9.exe
2009-05-07 16:42 . 2009-05-07 16:42 0 ----a-w- c:\windows\nsreg.dat
2009-05-07 16:39 . 2009-05-07 16:39 -------- d-----w- c:\documents and settings\Kolejorz\Dane aplikacji\Toolbars
2009-05-07 16:39 . 2009-05-07 16:39 -------- d-----w- c:\documents and settings\Kolejorz\Dane aplikacji\Desktopicon
2009-05-07 15:34 . 2008-04-14 20:50 347648 ----a-w- c:\windows\system32\localspl.dll
2009-05-07 13:59 . 2009-05-07 13:59 -------- d-----w- c:\documents and settings\Kolejorz\Dane aplikacji\Nowe Gadu-Gadu
2009-05-07 13:59 . 2009-05-07 13:58 -------- d-----w- c:\documents and settings\Kolejorz\Dane aplikacji\ViStart
2009-05-07 13:58 . 2009-05-07 13:58 -------- d-----w- c:\documents and settings\Kolejorz\Dane aplikacji\ViSplore
2009-05-07 13:46 . 2009-05-07 13:46 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\ESET
2009-05-07 13:42 . 2009-05-07 13:42 717296 ----a-w- c:\windows\system32\drivers\sptd.sys
2009-05-07 13:37 . 2009-05-07 13:30 -------- d-----w- c:\program files\Realtek
2009-05-07 13:37 . 2009-05-07 13:37 315392 ----a-w- c:\windows\HideWin.exe
2009-05-07 13:37 . 2009-05-07 13:29 14656 ----a-w- c:\windows\gdrv.sys
2009-05-07 13:29 . 2009-05-07 13:29 -------- d-----w- c:\documents and settings\Kolejorz\Dane aplikacji\InstallShield
2009-05-07 13:23 . 2009-05-07 13:23 -------- d-----w- c:\program files\microsoft frontpage
2009-05-07 13:22 . 2009-05-07 13:22 -------- d-----w- c:\program files\Usługi online
2009-05-07 13:21 . 2009-05-07 13:21 21856 ----a-w- c:\windows\system32\emptyregdb.dat
2009-04-28 09:47 . 2009-04-28 09:47 499712 ----a-w- c:\windows\system32\msvcp71.dll
2009-04-23 13:15 . 2009-04-23 13:15 1134024 ----a-w- c:\documents and settings\Kolejorz\Dane aplikacji\Mozilla\Firefox\Profiles\ocmupngx.default\extensions\[email protected]\components\DTToolbarFF.dll
2009-04-19 19:51 . 2008-04-14 19:35 1847424 ----a-w- c:\windows\system32\win32k.sys
2009-04-17 14:58 . 2009-05-07 16:48 954368 ----a-w- c:\documents and settings\Kolejorz\Dane aplikacji\Mozilla\Firefox\Profiles\ocmupngx.default\extensions\[email protected]\libs\PicLensHelper.exe
2009-04-17 14:58 . 2009-05-07 16:48 103424 ----a-w- c:\documents and settings\Kolejorz\Dane aplikacji\Mozilla\Firefox\Profiles\ocmupngx.default\extensions\[email protected]\libs\pixomatic.dll
2009-04-17 14:58 . 2009-05-07 16:48 344064 ----a-w- c:\documents and settings\Kolejorz\Dane aplikacji\Mozilla\Firefox\Profiles\ocmupngx.default\extensions\[email protected]\libs\LaunchCooliris.exe
2009-04-17 14:58 . 2009-05-07 16:48 71652 ----a-w- c:\documents and settings\Kolejorz\Dane aplikacji\Mozilla\Firefox\Profiles\ocmupngx.default\extensions\[email protected]\libs\avutil-49.dll
2009-04-17 14:58 . 2009-05-07 16:48 65536 ----a-w- c:\documents and settings\Kolejorz\Dane aplikacji\Mozilla\Firefox\Profiles\ocmupngx.default\extensions\[email protected]\components\coolirisstub.dll
2009-04-17 14:58 . 2009-05-07 16:48 4579328 ----a-w- c:\documents and settings\Kolejorz\Dane aplikacji\Mozilla\Firefox\Profiles\ocmupngx.default\extensions\[email protected]\libs\cooliris18.dll
2009-04-17 14:58 . 2009-05-07 16:48 4534272 ----a-w- c:\documents and settings\Kolejorz\Dane aplikacji\Mozilla\Firefox\Profiles\ocmupngx.default\extensions\[email protected]\libs\cooliris19.dll
2009-04-17 14:58 . 2009-05-07 16:48 131868 ----a-w- c:\documents and settings\Kolejorz\Dane aplikacji\Mozilla\Firefox\Profiles\ocmupngx.default\extensions\[email protected]\libs\avformat-52.dll
2009-04-17 14:58 . 2009-05-07 16:48 1161626 ----a-w- c:\documents and settings\Kolejorz\Dane aplikacji\Mozilla\Firefox\Profiles\ocmupngx.default\extensions\[email protected]\libs\avcodec-51.dll
2009-04-15 14:54 . 2008-04-14 20:50 585216 ----a-w- c:\windows\system32\rpcrt4.dll
2006-05-03 09:06 . 2009-06-13 08:33 163328 --sh--r- c:\windows\system32\flvDX.dll
2007-02-21 10:47 . 2009-06-13 08:33 31232 --sh--r- c:\windows\system32\msfDX.dll
2008-03-16 12:30 . 2009-06-13 08:33 216064 --sh--r- c:\windows\system32\nbDX.dll
.

((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2008-04-14 1695232]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-05-09 39408]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" [2008-02-28 1828136]
"DAEMON Tools Lite"="d:\programy\DAEMON Tools Lite\daemon.exe" [2008-12-29 687560]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2008-12-03 1205760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"UserFaultCheck"="c:\windows\system32\dumprep 0 -u" [X]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-08-27 8466432]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-08-27 81920]
"egui"="d:\programy\ESET NOD32\egui.exe" [2009-02-06 2021400]
"GrooveMonitor"="d:\programy\Office 2007\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2008-04-28 570664]
"NBKeyScan"="d:\programy\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-02-18 2221352]
"Adobe Reader Speed Launcher"="d:\programy\Adobe Reader 9\Reader\Reader_sl.exe" [2008-06-12 34672]
"RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.exe [2007-04-12 16132608]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2007-08-27 1626112]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\Kolejorz\Menu Start\Programy\Autostart\
Adobe Gamma.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664]
Tworzenie wycink˘w ekranu i uruchamianie programu OneNote 2007.lnk - d:\programy\Office 2007\Office12\ONENOTEM.EXE [2006-10-26 98632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"d:\\Programy\\WapSter AQQ\\AQQ.exe"=
"d:\\Programy\\Office 2007\\Office12\\OUTLOOK.EXE"=
"d:\\Programy\\Office 2007\\Office12\\GROOVE.EXE"=
"d:\\Programy\\Office 2007\\Office12\\ONENOTE.EXE"=
"f:\\Steam\\SteamApps\\kredson\\counter-strike\\hl.exe"=
"d:\\Programy\\Nowe Gadu-Gadu\\gg.exe"=
"f:\\pes2009\\pes2009.exe"=
"f:\\Left 4 Dead\\left4dead.exe"=
"d:\\Programy\\BitComet\\BitComet.exe"=
"f:\\Guitar Hero III\\GH3.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"f:\\Steam\\SteamApps\\common\\trackmania nations forever\\TmForever.exe"=
"f:\\Steam\\SteamApps\\common\\trackmania nations forever\\TmForeverLauncher.exe"=
"f:\\Steam\\SteamApps\\common\\trackmania nations forever\\testapp.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"9503:TCP"= 9503:TCP:BitComet 9503 TCP
"9503:UDP"= 9503:UDP:BitComet 9503 UDP

R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2009-02-06 106208]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2009-02-06 93336]
R2 ekrn;ESET Service;d:\programy\ESET NOD32\ekrn.exe [2009-02-06 727720]
S2 Apache2.2;Apache2.2;"c:\xampp\apache\bin\apache.exe" -k runservice --> c:\xampp\apache\bin\apache.exe [?]

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"c:\windows\system32\rundll32.exe" "c:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
.
- - - - USUNIĘTO PUSTE WPISY - - - -

HKCU-Run-ViGlance - c:\program files\ViGlance\ViGlance.exe
HKCU-Run-WinFlip - c:\program files\WinFlip\WinFlip.exe
HKCU-Run-Vista Rainbar - c:\program files\Vista Rainbar\launcher.exe
HKCU-Run-ViSplore - c:\program files\ViSplore\ViSplore.exe
HKCU-Run-ViStart - c:\program files\ViStart\ViStart.exe
HKLM-Run-DrvIcon - c:\program files\Vista Drive Icon\DrvIcon.exe
HKLM-Run-VIPv3_Auto_Update - (no file)
HKLM-Run-VisualTooltip - (no file)
HKLM-Run-Vistadrv - (no file)


.
------- Skan uzupełniający -------
.
uStart Page = hxxp://www.dirtmiron.com/
uInternet Settings,ProxyOverride = *.local
IE: &D&ownload &with BitComet - d:\programy\BitComet\BitComet.exe/AddLink.htm
IE: &D&ownload all video with BitComet - d:\programy\BitComet\BitComet.exe/AddVideo.htm
IE: &D&ownload all with BitComet - d:\programy\BitComet\BitComet.exe/AddAllLink.htm
IE: E&ksportuj do programu Microsoft Excel - d:\programy\OFFICE~1\Office12\EXCEL.EXE/3000
TCP: {C775276D-55F3-459F-B92D-49F94E3B999A} = 192.168.1.1,194.204.152.34
FF - ProfilePath -
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-06-22 13:51
Windows 5.1.2600 Dodatek Service Pack 3 NTFS

skanowanie ukrytych procesów ...

skanowanie ukrytych wpisów autostartu ...

skanowanie ukrytych plików ...

skanowanie pomyślnie ukończone
ukryte pliki: 0

**************************************************************************
.
Czas ukończenia: 2009-06-22 13:51
ComboFix-quarantined-files.txt 2009-06-22 11:51

Przed: 36 770 877 440 bajtów wolnych
Po: 37 812 137 984 bajtów wolnych

WindowsXP-KB310994-SP2-Pro-BootDisk-PLK.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

Current=15 Default=15 Failed=14 LastKnownGood=16 Sets=1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16
262 --- E O F --- 2009-06-17 04:27

[Michael Parker]

Pobierz Malwarebytes' Anti-Malware Uruchom pełne skanowanie. Jeżeli coś znajdzie, to usuń. Następnie daj log na forum.

Przeskanuj system programem SDFix i daj raport z niego. Instrukcja viewtopic.php?f=22&t=13967

Przeskanuj obszar całego systemu Dr.WEB CureIt!

Po tym daj nowy log z Combofixa.

Logi dajesz na wklej.org, a w poście podajesz tylko link.

[credoPDG]

Ok.
Zrobilem wszystko tak jak napisane bylo ^uP

Logi:
http://wklej.eu/index.php?id=492c073287
http://wklej.eu/index.php?id=4a7531d2bc
http://wklej.eu/index.php?id=ce417ff5c0

[credoPDG]

odswiezam pomocy =)