Dobra mam coś takiego z Combifixa :
ComboFix 08-08-25.01 - Paul 2008-08-26 21:35:51.1 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1250.1.1045.18.1691 [GMT 2:00]
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\autorun.inf
C:\Documents and Settings\Paul\Cookies\paul@2.stat.cashbill[2].txt
C:\Documents and Settings\Paul\Dane aplikacji\m
C:\Documents and Settings\Paul\Dane aplikacji\m\flec006.exe
C:\Documents and Settings\Paul\Dane aplikacji\macromedia\Flash Player#SharedObjects\3VRABEN3\bin.clearspring.com
C:\Documents and Settings\Paul\Dane aplikacji\macromedia\Flash Player#SharedObjects\3VRABEN3\bin.clearspring.com\clearspring.sol
C:\Documents and Settings\Paul\Dane aplikacji\macromedia\Flash Player#SharedObjects\3VRABEN3\static.youku.com
C:\Documents and Settings\Paul\Dane aplikacji\macromedia\Flash Player#SharedObjects\3VRABEN3\static.youku.com\v\swf\qplayer.swf\youku.sol
C:\Documents and Settings\Paul\Dane aplikacji\macromedia\Flash Player#SharedObjects\3VRABEN3\static.youku.com\v1.0.0213\v\swf\qplayer.swf\youku.sol
C:\Documents and Settings\Paul\Dane aplikacji\macromedia\Flash Player#SharedObjects\3VRABEN3\static.youku.com\v1.0.0221\v\swf\qplayer.swf\youku.sol
C:\Documents and Settings\Paul\Dane aplikacji\macromedia\Flash Player#SharedObjects\3VRABEN3\static.youku.com\v1.0.0230\v\swf\qplayer.swf\youku.sol
C:\Documents and Settings\Paul\Dane aplikacji\macromedia\Flash Player\macromedia.com\support\flashplayer\sys#bin.clearspring.com
C:\Documents and Settings\Paul\Dane aplikacji\macromedia\Flash Player\macromedia.com\support\flashplayer\sys#bin.clearspring.com\settings.sol
C:\Documents and Settings\Paul\Dane aplikacji\macromedia\Flash Player\macromedia.com\support\flashplayer\sys#static.youku.com
C:\Documents and Settings\Paul\Dane aplikacji\macromedia\Flash Player\macromedia.com\support\flashplayer\sys#static.youku.com\settings.sol
C:\Documents and Settings\Paul\Pulpit\Error Cleaner.url
C:\Documents and Settings\Paul\Pulpit\Privacy Protector.url
C:\Documents and Settings\Paul\Pulpit\SpywareMalware Protection.url
C:\Documents and Settings\Paul\Ulubione\Error Cleaner.url
C:\Documents and Settings\Paul\Ulubione\Privacy Protector.url
C:\Documents and Settings\Paul\Ulubione\SpywareMalware Protection.url
C:\Program Files\PCHealthCenter
C:\Program Files\PCHealthCenter\0.exe
C:\Program Files\PCHealthCenter\0.gif
C:\Program Files\PCHealthCenter\1.exe
C:\Program Files\PCHealthCenter\1.gif
C:\Program Files\PCHealthCenter\1.ico
C:\Program Files\PCHealthCenter\2.exe
C:\Program Files\PCHealthCenter\2.gif
C:\Program Files\PCHealthCenter\2.ico
C:\Program Files\PCHealthCenter\3.exe
C:\Program Files\PCHealthCenter\3.gif
C:\Program Files\PCHealthCenter\4.exe
C:\Program Files\PCHealthCenter\5.exe
C:\Program Files\PCHealthCenter\7.exe
C:\WINDOWS\autorun.inf
C:\WINDOWS\etbr.exe
C:\WINDOWS\privacy_danger
C:\WINDOWS\privacy_danger\images\capt.gif
C:\WINDOWS\privacy_danger\images\danger.jpg
C:\WINDOWS\privacy_danger\images\down.gif
C:\WINDOWS\privacy_danger\images\spacer.gif
C:\WINDOWS\privacy_danger\index.htm
C:\WINDOWS\system32\ban_list.txt
C:\WINDOWS\system32\drivers\downld
C:\WINDOWS\system32\drivers\downld\1009468.exe
C:\WINDOWS\system32\drivers\downld\101875.exe
C:\WINDOWS\system32\drivers\downld\102701234.exe
C:\WINDOWS\system32\drivers\downld\102716718.exe
C:\WINDOWS\system32\drivers\downld\102731015.exe
C:\WINDOWS\system32\drivers\downld\102735953.exe
C:\WINDOWS\system32\drivers\downld\102799343.exe
C:\WINDOWS\system32\drivers\downld\102801593.exe
C:\WINDOWS\system32\drivers\downld\102933281.exe
C:\WINDOWS\system32\drivers\downld\102967515.exe
C:\WINDOWS\system32\drivers\downld\103281.exe
C:\WINDOWS\system32\drivers\downld\103453.exe
C:\WINDOWS\system32\drivers\downld\103484.exe
C:\WINDOWS\system32\drivers\downld\103781.exe
C:\WINDOWS\system32\drivers\downld\103890.exe
C:\WINDOWS\system32\drivers\downld\1041109.exe
C:\WINDOWS\system32\drivers\downld\110734.exe
C:\WINDOWS\system32\drivers\downld\113156.exe
C:\WINDOWS\system32\drivers\downld\113421.exe
C:\WINDOWS\system32\drivers\downld\117372828.exe
C:\WINDOWS\system32\drivers\downld\117389609.exe
C:\WINDOWS\system32\drivers\downld\117395421.exe
C:\WINDOWS\system32\drivers\downld\117430593.exe
C:\WINDOWS\system32\drivers\downld\117493703.exe
C:\WINDOWS\system32\drivers\downld\117495968.exe
C:\WINDOWS\system32\drivers\downld\117559984.exe
C:\WINDOWS\system32\drivers\downld\117582468.exe
C:\WINDOWS\system32\drivers\downld\117621218.exe
C:\WINDOWS\system32\drivers\downld\118984.exe
C:\WINDOWS\system32\drivers\downld\119218.exe
C:\WINDOWS\system32\drivers\downld\121114359.exe
C:\WINDOWS\system32\drivers\downld\121135375.exe
C:\WINDOWS\system32\drivers\downld\121141656.exe
C:\WINDOWS\system32\drivers\downld\121175984.exe
C:\WINDOWS\system32\drivers\downld\121239375.exe
C:\WINDOWS\system32\drivers\downld\121241703.exe
C:\WINDOWS\system32\drivers\downld\121326781.exe
C:\WINDOWS\system32\drivers\downld\121357031.exe
C:\WINDOWS\system32\drivers\downld\121360531.exe
C:\WINDOWS\system32\drivers\downld\121365406.exe
C:\WINDOWS\system32\drivers\downld\121370390.exe
C:\WINDOWS\system32\drivers\downld\121406.exe
C:\WINDOWS\system32\drivers\downld\121428937.exe
C:\WINDOWS\system32\drivers\downld\121430781.exe
C:\WINDOWS\system32\drivers\downld\121492640.exe
C:\WINDOWS\system32\drivers\downld\121508156.exe
C:\WINDOWS\system32\drivers\downld\121544265.exe
C:\WINDOWS\system32\drivers\downld\121703.exe
C:\WINDOWS\system32\drivers\downld\123531.exe
C:\WINDOWS\system32\drivers\downld\124390.exe
C:\WINDOWS\system32\drivers\downld\124515.exe
C:\WINDOWS\system32\drivers\downld\124640.exe
C:\WINDOWS\system32\drivers\downld\126125.exe
C:\WINDOWS\system32\drivers\downld\126671.exe
C:\WINDOWS\system32\drivers\downld\126821812.exe
C:\WINDOWS\system32\drivers\downld\126855140.exe
C:\WINDOWS\system32\drivers\downld\126882203.exe
C:\WINDOWS\system32\drivers\downld\126956265.exe
C:\WINDOWS\system32\drivers\downld\126986656.exe
C:\WINDOWS\system32\drivers\downld\127447093.exe
C:\WINDOWS\system32\drivers\downld\127553812.exe
C:\WINDOWS\system32\drivers\downld\127687.exe
C:\WINDOWS\system32\drivers\downld\127703.exe
C:\WINDOWS\system32\drivers\downld\128281.exe
C:\WINDOWS\system32\drivers\downld\128968.exe
C:\WINDOWS\system32\drivers\downld\129984.exe
C:\WINDOWS\system32\drivers\downld\130171.exe
C:\WINDOWS\system32\drivers\downld\130578.exe
C:\WINDOWS\system32\drivers\downld\130765.exe
C:\WINDOWS\system32\drivers\downld\130796.exe
C:\WINDOWS\system32\drivers\downld\131062.exe
C:\WINDOWS\system32\drivers\downld\131906.exe
C:\WINDOWS\system32\drivers\downld\132046.exe
C:\WINDOWS\system32\drivers\downld\132685703.exe
C:\WINDOWS\system32\drivers\downld\132692890.exe
C:\WINDOWS\system32\drivers\downld\132713359.exe
C:\WINDOWS\system32\drivers\downld\132726750.exe
C:\WINDOWS\system32\drivers\downld\132729312.exe
C:\WINDOWS\system32\drivers\downld\133046.exe
C:\WINDOWS\system32\drivers\downld\133125.exe
C:\WINDOWS\system32\drivers\downld\133578.exe
C:\WINDOWS\system32\drivers\downld\133984.exe
C:\WINDOWS\system32\drivers\downld\134140.exe
C:\WINDOWS\system32\drivers\downld\134796.exe
C:\WINDOWS\system32\drivers\downld\135656.exe
C:\WINDOWS\system32\drivers\downld\135906.exe
C:\WINDOWS\system32\drivers\downld\135953.exe
C:\WINDOWS\system32\drivers\downld\136593.exe
C:\WINDOWS\system32\drivers\downld\137265.exe
C:\WINDOWS\system32\drivers\downld\137515.exe
C:\WINDOWS\system32\drivers\downld\137718.exe
C:\WINDOWS\system32\drivers\downld\138765.exe
C:\WINDOWS\system32\drivers\downld\139296.exe
C:\WINDOWS\system32\drivers\downld\139578.exe
C:\WINDOWS\system32\drivers\downld\140171.exe
C:\WINDOWS\system32\drivers\downld\140312.exe
C:\WINDOWS\system32\drivers\downld\140968.exe
C:\WINDOWS\system32\drivers\downld\141078.exe
C:\WINDOWS\system32\drivers\downld\141453.exe
C:\WINDOWS\system32\drivers\downld\141500.exe
C:\WINDOWS\system32\drivers\downld\141609.exe
C:\WINDOWS\system32\drivers\downld\142343.exe
C:\WINDOWS\system32\drivers\downld\142562.exe
C:\WINDOWS\system32\drivers\downld\142734.exe
C:\WINDOWS\system32\drivers\downld\142750.exe
C:\WINDOWS\system32\drivers\downld\143453.exe
C:\WINDOWS\system32\drivers\downld\143468.exe
C:\WINDOWS\system32\drivers\downld\144906.exe
C:\WINDOWS\system32\drivers\downld\146312.exe
C:\WINDOWS\system32\drivers\downld\146375.exe
C:\WINDOWS\system32\drivers\downld\146671.exe
C:\WINDOWS\system32\drivers\downld\14690593.exe
C:\WINDOWS\system32\drivers\downld\14699578.exe
C:\WINDOWS\system32\drivers\downld\14700687.exe
C:\WINDOWS\system32\drivers\downld\14706312.exe
C:\WINDOWS\system32\drivers\downld\14707484.exe
C:\WINDOWS\system32\drivers\downld\14709171.exe
C:\WINDOWS\system32\drivers\downld\147125.exe
C:\WINDOWS\system32\drivers\downld\14714312.exe
C:\WINDOWS\system32\drivers\downld\14717687.exe
C:\WINDOWS\system32\drivers\downld\14717875.exe
C:\WINDOWS\system32\drivers\downld\14718125.exe
C:\WINDOWS\system32\drivers\downld\14718890.exe
C:\WINDOWS\system32\drivers\downld\14719718.exe
C:\WINDOWS\system32\drivers\downld\14720234.exe
C:\WINDOWS\system32\drivers\downld\14721765.exe
C:\WINDOWS\system32\drivers\downld\14724953.exe
C:\WINDOWS\system32\drivers\downld\14725531.exe
C:\WINDOWS\system32\drivers\downld\14728609.exe
C:\WINDOWS\system32\drivers\downld\14730250.exe
C:\WINDOWS\system32\drivers\downld\14732609.exe
C:\WINDOWS\system32\drivers\downld\14736140.exe
C:\WINDOWS\system32\drivers\downld\14738000.exe
C:\WINDOWS\system32\drivers\downld\14739500.exe
C:\WINDOWS\system32\drivers\downld\14740953.exe
C:\WINDOWS\system32\drivers\downld\14743000.exe
C:\WINDOWS\system32\drivers\downld\14747609.exe
C:\WINDOWS\system32\drivers\downld\14748203.exe
C:\WINDOWS\system32\drivers\downld\14748390.exe
C:\WINDOWS\system32\drivers\downld\14756578.exe
C:\WINDOWS\system32\drivers\downld\14759296.exe
C:\WINDOWS\system32\drivers\downld\14765937.exe
C:\WINDOWS\system32\drivers\downld\14766796.exe
C:\WINDOWS\system32\drivers\downld\14772609.exe
C:\WINDOWS\system32\drivers\downld\14779406.exe
C:\WINDOWS\system32\drivers\downld\14783640.exe
C:\WINDOWS\system32\drivers\downld\14788031.exe
C:\WINDOWS\system32\drivers\downld\14790578.exe
C:\WINDOWS\system32\drivers\downld\14803593.exe
C:\WINDOWS\system32\drivers\downld\14807765.exe
C:\WINDOWS\system32\drivers\downld\14808578.exe
C:\WINDOWS\system32\drivers\downld\14811593.exe
C:\WINDOWS\system32\drivers\downld\14815515.exe
C:\WINDOWS\system32\drivers\downld\14818750.exe
C:\WINDOWS\system32\drivers\downld\14823093.exe
C:\WINDOWS\system32\drivers\downld\14828375.exe
C:\WINDOWS\system32\drivers\downld\14831750.exe
C:\WINDOWS\system32\drivers\downld\14834015.exe
C:\WINDOWS\system32\drivers\downld\148703.exe
C:\WINDOWS\system32\drivers\downld\14888906.exe
C:\WINDOWS\system32\drivers\downld\148953.exe
C:\WINDOWS\system32\drivers\downld\14898390.exe
C:\WINDOWS\system32\drivers\downld\14900281.exe
C:\WINDOWS\system32\drivers\downld\14902218.exe
C:\WINDOWS\system32\drivers\downld\14903671.exe
C:\WINDOWS\system32\drivers\downld\14905453.exe
C:\WINDOWS\system32\drivers\downld\14911546.exe
C:\WINDOWS\system32\drivers\downld\149171.exe
C:\WINDOWS\system32\drivers\downld\14922640.exe
C:\WINDOWS\system32\drivers\downld\14932140.exe
C:\WINDOWS\system32\drivers\downld\14933750.exe
C:\WINDOWS\system32\drivers\downld\14943171.exe
C:\WINDOWS\system32\drivers\downld\14945062.exe
C:\WINDOWS\system32\drivers\downld\14947515.exe
C:\WINDOWS\system32\drivers\downld\14951453.exe
C:\WINDOWS\system32\drivers\downld\14965328.exe
C:\WINDOWS\system32\drivers\downld\14967828.exe
C:\WINDOWS\system32\drivers\downld\14977546.exe
C:\WINDOWS\system32\drivers\downld\14979515.exe
C:\WINDOWS\system32\drivers\downld\14979578.exe
C:\WINDOWS\system32\drivers\downld\14988234.exe
C:\WINDOWS\system32\drivers\downld\14990203.exe
C:\WINDOWS\system32\drivers\downld\15016125.exe
C:\WINDOWS\system32\drivers\downld\15036984.exe
C:\WINDOWS\system32\drivers\downld\15040437.exe
C:\WINDOWS\system32\drivers\downld\15041062.exe
C:\WINDOWS\system32\drivers\downld\15042984.exe
C:\WINDOWS\system32\drivers\downld\15046312.exe
C:\WINDOWS\system32\drivers\downld\15048781.exe
C:\WINDOWS\system32\drivers\downld\15050171.exe
C:\WINDOWS\system32\drivers\downld\15054984.exe
C:\WINDOWS\system32\drivers\downld\15061593.exe
C:\WINDOWS\system32\drivers\downld\15084937.exe
C:\WINDOWS\system32\drivers\downld\15120328.exe
C:\WINDOWS\system32\drivers\downld\151328.exe
C:\WINDOWS\system32\drivers\downld\152046.exe
C:\WINDOWS\system32\drivers\downld\152250.exe
C:\WINDOWS\system32\drivers\downld\15242718.exe
C:\WINDOWS\system32\drivers\downld\15260828.exe
C:\WINDOWS\system32\drivers\downld\15268812.exe
C:\WINDOWS\system32\drivers\downld\15277906.exe
C:\WINDOWS\system32\drivers\downld\15332765.exe
C:\WINDOWS\system32\drivers\downld\15335765.exe
C:\WINDOWS\system32\drivers\downld\15388828.exe
C:\WINDOWS\system32\drivers\downld\15412000.exe
C:\WINDOWS\system32\drivers\downld\15443734.exe
C:\WINDOWS\system32\drivers\downld\15471906.exe
C:\WINDOWS\system32\drivers\downld\15478046.exe
C:\WINDOWS\system32\drivers\downld\15486796.exe
C:\WINDOWS\system32\drivers\downld\154906.exe
C:\WINDOWS\system32\drivers\downld\15496359.exe
C:\WINDOWS\system32\drivers\downld\15498484.exe
C:\WINDOWS\system32\drivers\downld\15501562.exe
C:\WINDOWS\system32\drivers\downld\15514484.exe
C:\WINDOWS\system32\drivers\downld\15554828.exe
C:\WINDOWS\system32\drivers\downld\15557812.exe
C:\WINDOWS\system32\drivers\downld\15603156.exe
C:\WINDOWS\system32\drivers\downld\15635312.exe
C:\WINDOWS\system32\drivers\downld\15697875.exe
C:\WINDOWS\system32\drivers\downld\15733234.exe
C:\WINDOWS\system32\drivers\downld\165390.exe
C:\WINDOWS\system32\drivers\downld\165515.exe
C:\WINDOWS\system32\drivers\downld\165593.exe
C:\WINDOWS\system32\drivers\downld\165953.exe
C:\WINDOWS\system32\drivers\downld\168046.exe
C:\WINDOWS\system32\drivers\downld\168125.exe
C:\WINDOWS\system32\drivers\downld\172421.exe
C:\WINDOWS\system32\drivers\downld\175218.exe
C:\WINDOWS\system32\drivers\downld\180343.exe
C:\WINDOWS\system32\drivers\downld\181265.exe
C:\WINDOWS\system32\drivers\downld\184968.exe
C:\WINDOWS\system32\drivers\downld\188875.exe
C:\WINDOWS\system32\drivers\downld\190046.exe
C:\WINDOWS\system32\drivers\downld\191531.exe
C:\WINDOWS\system32\drivers\downld\194781.exe
C:\WINDOWS\system32\drivers\downld\199906.exe
C:\WINDOWS\system32\drivers\downld\202078.exe
C:\WINDOWS\system32\drivers\downld\208015.exe
C:\WINDOWS\system32\drivers\downld\208390.exe
C:\WINDOWS\system32\drivers\downld\210281.exe
C:\WINDOWS\system32\drivers\downld\212640.exe
C:\WINDOWS\system32\drivers\downld\2208359.exe
C:\WINDOWS\system32\drivers\downld\2210515.exe
C:\WINDOWS\system32\drivers\downld\2210796.exe
C:\WINDOWS\system32\drivers\downld\2212468.exe
C:\WINDOWS\system32\drivers\downld\2212890.exe
C:\WINDOWS\system32\drivers\downld\2214359.exe
C:\WINDOWS\system32\drivers\downld\2216031.exe
C:\WINDOWS\system32\drivers\downld\2216765.exe
C:\WINDOWS\system32\drivers\downld\2221234.exe
C:\WINDOWS\system32\drivers\downld\2227687.exe
C:\WINDOWS\system32\drivers\downld\228921.exe
C:\WINDOWS\system32\drivers\downld\229906.exe
C:\WINDOWS\system32\drivers\downld\230281.exe
C:\WINDOWS\system32\drivers\downld\233046.exe
C:\WINDOWS\system32\drivers\downld\233250.exe
C:\WINDOWS\system32\drivers\downld\234828.exe
C:\WINDOWS\system32\drivers\downld\236203.exe
C:\WINDOWS\system32\drivers\downld\236953.exe
C:\WINDOWS\system32\drivers\downld\241578.exe
C:\WINDOWS\system32\drivers\downld\245218.exe
C:\WINDOWS\system32\drivers\downld\246031.exe
C:\WINDOWS\system32\drivers\downld\246734.exe
C:\WINDOWS\system32\drivers\downld\247734.exe
C:\WINDOWS\system32\drivers\downld\248984.exe
C:\WINDOWS\system32\drivers\downld\250015.exe
C:\WINDOWS\system32\drivers\downld\250109.exe
C:\WINDOWS\system32\drivers\downld\250421.exe
C:\WINDOWS\system32\drivers\downld\251703.exe
C:\WINDOWS\system32\drivers\downld\252312.exe
C:\WINDOWS\system32\drivers\downld\256187.exe
C:\WINDOWS\system32\drivers\downld\257609.exe
C:\WINDOWS\system32\drivers\downld\257718.exe
C:\WINDOWS\system32\drivers\downld\259078.exe
C:\WINDOWS\system32\drivers\downld\260781.exe
C:\WINDOWS\system32\drivers\downld\264781.exe
C:\WINDOWS\system32\drivers\downld\266750.exe
C:\WINDOWS\system32\drivers\downld\270578.exe
C:\WINDOWS\system32\drivers\downld\271609.exe
C:\WINDOWS\system32\drivers\downld\274515.exe
C:\WINDOWS\system32\drivers\downld\274968.exe
C:\WINDOWS\system32\drivers\downld\275390.exe
C:\WINDOWS\system32\drivers\downld\279500.exe
C:\WINDOWS\system32\drivers\downld\281531.exe
C:\WINDOWS\system32\drivers\downld\281812.exe
C:\WINDOWS\system32\drivers\downld\282656.exe
C:\WINDOWS\system32\drivers\downld\282687.exe
C:\WINDOWS\system32\drivers\downld\285687.exe
C:\WINDOWS\system32\drivers\downld\291562.exe
C:\WINDOWS\system32\drivers\downld\292187.exe
C:\WINDOWS\system32\drivers\downld\292593.exe
C:\WINDOWS\system32\drivers\downld\292921.exe
C:\WINDOWS\system32\drivers\downld\29328875.exe
C:\WINDOWS\system32\drivers\downld\29384390.exe
C:\WINDOWS\system32\drivers\downld\29388546.exe
C:\WINDOWS\system32\drivers\downld\29398562.exe
C:\WINDOWS\system32\drivers\downld\29399000.exe
C:\WINDOWS\system32\drivers\downld\29399734.exe
C:\WINDOWS\system32\drivers\downld\29399984.exe
C:\WINDOWS\system32\drivers\downld\29404984.exe
C:\WINDOWS\system32\drivers\downld\29406031.exe
C:\WINDOWS\system32\drivers\downld\29415781.exe
C:\WINDOWS\system32\drivers\downld\29421218.exe
C:\WINDOWS\system32\drivers\downld\29429593.exe
C:\WINDOWS\system32\drivers\downld\29430140.exe
C:\WINDOWS\system32\drivers\downld\29435062.exe
C:\WINDOWS\system32\drivers\downld\29439828.exe
C:\WINDOWS\system32\drivers\downld\29460531.exe
C:\WINDOWS\system32\drivers\downld\29462937.exe
C:\WINDOWS\system32\drivers\downld\29465953.exe
C:\WINDOWS\system32\drivers\downld\294687.exe
C:\WINDOWS\system32\drivers\downld\29469187.exe
C:\WINDOWS\system32\drivers\downld\29469781.exe
C:\WINDOWS\system32\drivers\downld\29471546.exe
C:\WINDOWS\system32\drivers\downld\29475468.exe
C:\WINDOWS\system32\drivers\downld\29477390.exe
C:\WINDOWS\system32\drivers\downld\29478843.exe
C:\WINDOWS\system32\drivers\downld\29479265.exe
C:\WINDOWS\system32\drivers\downld\29481250.exe
C:\WINDOWS\system32\drivers\downld\29483687.exe
C:\WINDOWS\system32\drivers\downld\29490296.exe
C:\WINDOWS\system32\drivers\downld\29492796.exe
C:\WINDOWS\system32\drivers\downld\29495187.exe
C:\WINDOWS\system32\drivers\downld\29495937.exe
C:\WINDOWS\system32\drivers\downld\29499921.exe
C:\WINDOWS\system32\drivers\downld\29525609.exe
C:\WINDOWS\system32\drivers\downld\29540468.exe
C:\WINDOWS\system32\drivers\downld\29544171.exe
C:\WINDOWS\system32\drivers\downld\29549031.exe
C:\WINDOWS\system32\drivers\downld\29549843.exe
C:\WINDOWS\system32\drivers\downld\29557359.exe
C:\WINDOWS\system32\drivers\downld\29568296.exe
C:\WINDOWS\system32\drivers\downld\29590203.exe
C:\WINDOWS\system32\drivers\downld\29603390.exe
C:\WINDOWS\system32\drivers\downld\29614171.exe
C:\WINDOWS\system32\drivers\downld\29615906.exe
C:\WINDOWS\system32\drivers\downld\29616453.exe
C:\WINDOWS\system32\drivers\downld\29625906.exe
C:\WINDOWS\system32\drivers\downld\29635328.exe
C:\WINDOWS\system32\drivers\downld\29640265.exe
C:\WINDOWS\system32\drivers\downld\29649593.exe
C:\WINDOWS\system32\drivers\downld\29675796.exe
C:\WINDOWS\system32\drivers\downld\297093.exe
C:\WINDOWS\system32\drivers\downld\29724609.exe
C:\WINDOWS\system32\drivers\downld\29757890.exe
C:\WINDOWS\system32\drivers\downld\297984.exe
C:\WINDOWS\system32\drivers\downld\298265.exe
C:\WINDOWS\system32\drivers\downld\29926156.exe
C:\WINDOWS\system32\drivers\downld\29949312.exe
C:\WINDOWS\system32\drivers\downld\29966468.exe
C:\WINDOWS\system32\drivers\downld\30021984.exe
C:\WINDOWS\system32\drivers\downld\30025171.exe
C:\WINDOWS\system32\drivers\downld\30040296.exe
C:\WINDOWS\system32\drivers\downld\30056937.exe
C:\WINDOWS\system32\drivers\downld\30065578.exe
C:\WINDOWS\system32\drivers\downld\30097718.exe
C:\WINDOWS\system32\drivers\downld\30138421.exe
C:\WINDOWS\system32\drivers\downld\30146421.exe
C:\WINDOWS\system32\drivers\downld\30158203.exe
C:\WINDOWS\system32\drivers\downld\30160171.exe
C:\WINDOWS\system32\drivers\downld\30166640.exe
C:\WINDOWS\system32\drivers\downld\30175125.exe
C:\WINDOWS\system32\drivers\downld\30184656.exe
C:\WINDOWS\system32\drivers\downld\30197906.exe
C:\WINDOWS\system32\drivers\downld\30262203.exe
C:\WINDOWS\system32\drivers\downld\30265093.exe
C:\WINDOWS\system32\drivers\downld\30265890.exe
C:\WINDOWS\system32\drivers\downld\302906.exe
C:\WINDOWS\system32\drivers\downld\30299046.exe
C:\WINDOWS\system32\drivers\downld\303703.exe
C:\WINDOWS\system32\drivers\downld\30436203.exe
C:\WINDOWS\system32\drivers\downld\30484375.exe
C:\WINDOWS\system32\drivers\downld\308125.exe
C:\WINDOWS\system32\drivers\downld\308703.exe
C:\WINDOWS\system32\drivers\downld\312921.exe
C:\WINDOWS\system32\drivers\downld\317000.exe
C:\WINDOWS\system32\drivers\downld\318140.exe
C:\WINDOWS\system32\drivers\downld\322359.exe
C:\WINDOWS\system32\drivers\downld\324468.exe
C:\WINDOWS\system32\drivers\downld\327421.exe
C:\WINDOWS\system32\drivers\downld\341000.exe
C:\WINDOWS\system32\drivers\downld\3549968.exe
C:\WINDOWS\system32\drivers\downld\3551375.exe
C:\WINDOWS\system32\drivers\downld\3563203.exe
C:\WINDOWS\system32\drivers\downld\3573859.exe
C:\WINDOWS\system32\drivers\downld\358312.exe
C:\WINDOWS\system32\drivers\downld\3601296.exe
C:\WINDOWS\system32\drivers\downld\3657453.exe
C:\WINDOWS\system32\drivers\downld\3660281.exe
C:\WINDOWS\system32\drivers\downld\369625.exe
C:\WINDOWS\system32\drivers\downld\3732609.exe
C:\WINDOWS\system32\drivers\downld\374218.exe
C:\WINDOWS\system32\drivers\downld\3757671.exe
C:\WINDOWS\system32\drivers\downld\3794343.exe
C:\WINDOWS\system32\drivers\downld\387968.exe
C:\WINDOWS\system32\drivers\downld\404234.exe
C:\WINDOWS\system32\drivers\downld\415187.exe
C:\WINDOWS\system32\drivers\downld\41593.exe
C:\WINDOWS\system32\drivers\downld\420218.exe
C:\WINDOWS\system32\drivers\downld\42609.exe
C:\WINDOWS\system32\drivers\downld\42718.exe
C:\WINDOWS\system32\drivers\downld\430312.exe
C:\WINDOWS\system32\drivers\downld\43421.exe
C:\WINDOWS\system32\drivers\downld\43894046.exe
C:\WINDOWS\system32\drivers\downld\43895531.exe
C:\WINDOWS\system32\drivers\downld\43895921.exe
C:\WINDOWS\system32\drivers\downld\43897515.exe
C:\WINDOWS\system32\drivers\downld\43899750.exe
C:\WINDOWS\system32\drivers\downld\43901234.exe
C:\WINDOWS\system32\drivers\downld\43902031.exe
C:\WINDOWS\system32\drivers\downld\43906109.exe
C:\WINDOWS\system32\drivers\downld\43911890.exe
C:\WINDOWS\system32\drivers\downld\44000.exe
C:\WINDOWS\system32\drivers\downld\44009218.exe
C:\WINDOWS\system32\drivers\downld\44024187.exe
C:\WINDOWS\system32\drivers\downld\44028890.exe
C:\WINDOWS\system32\drivers\downld\44029703.exe
C:\WINDOWS\system32\drivers\downld\44034671.exe
C:\WINDOWS\system32\drivers\downld\44054593.exe
C:\WINDOWS\system32\drivers\downld\44070906.exe
C:\WINDOWS\system32\drivers\downld\44079562.exe
C:\WINDOWS\system32\drivers\downld\44081453.exe
C:\WINDOWS\system32\drivers\downld\44087312.exe
C:\WINDOWS\system32\drivers\downld\44093296.exe
C:\WINDOWS\system32\drivers\downld\44095296.exe
C:\WINDOWS\system32\drivers\downld\44097328.exe
C:\WINDOWS\system32\drivers\downld\44106812.exe
C:\WINDOWS\system32\drivers\downld\44117796.exe
C:\WINDOWS\system32\drivers\downld\44125.exe
C:\WINDOWS\system32\drivers\downld\44161906.exe
C:\WINDOWS\system32\drivers\downld\44163031.exe
C:\WINDOWS\system32\drivers\downld\44169031.exe
C:\WINDOWS\system32\drivers\downld\44171343.exe
C:\WINDOWS\system32\drivers\downld\44174328.exe
C:\WINDOWS\system32\drivers\downld\44179296.exe
C:\WINDOWS\system32\drivers\downld\44179312.exe
C:\WINDOWS\system32\drivers\downld\44179984.exe
C:\WINDOWS\system32\drivers\downld\44192921.exe
C:\WINDOWS\system32\drivers\downld\44214890.exe
C:\WINDOWS\system32\drivers\downld\44249609.exe
C:\WINDOWS\system32\drivers\downld\44251765.exe
C:\WINDOWS\system32\drivers\downld\44279015.exe
C:\WINDOWS\system32\drivers\downld\44301234.exe
C:\WINDOWS\system32\drivers\downld\44304609.exe
C:\WINDOWS\system32\drivers\downld\44316187.exe
C:\WINDOWS\system32\drivers\downld\44336390.exe
C:\WINDOWS\system32\drivers\downld\44394531.exe
C:\WINDOWS\system32\drivers\downld\44428328.exe
C:\WINDOWS\system32\drivers\downld\44595531.exe
C:\WINDOWS\system32\drivers\downld\44613921.exe
C:\WINDOWS\system32\drivers\downld\44621812.exe
C:\WINDOWS\system32\drivers\downld\44633265.exe
C:\WINDOWS\system32\drivers\downld\44692578.exe
C:\WINDOWS\system32\drivers\downld\44696125.exe
C:\WINDOWS\system32\drivers\downld\44846734.exe
C:\WINDOWS\system32\drivers\downld\44885812.exe
C:\WINDOWS\system32\drivers\downld\451125.exe
C:\WINDOWS\system32\drivers\downld\45187.exe
C:\WINDOWS\system32\drivers\downld\45250.exe
C:\WINDOWS\system32\drivers\downld\45625.exe
C:\WINDOWS\system32\drivers\downld\46078.exe
C:\WINDOWS\system32\drivers\downld\461312.exe
C:\WINDOWS\system32\drivers\downld\46500.exe
C:\WINDOWS\system32\drivers\downld\46531.exe
C:\WINDOWS\system32\drivers\downld\46875.exe
C:\WINDOWS\system32\drivers\downld\46953.exe
C:\WINDOWS\system32\drivers\downld\47359.exe
C:\WINDOWS\system32\drivers\downld\47406.exe
C:\WINDOWS\system32\drivers\downld\47484.exe
C:\WINDOWS\system32\drivers\downld\47703.exe
C:\WINDOWS\system32\drivers\downld\48046.exe
C:\WINDOWS\system32\drivers\downld\48078.exe
C:\WINDOWS\system32\drivers\downld\48375.exe
C:\WINDOWS\system32\drivers\downld\48953.exe
C:\WINDOWS\system32\drivers\downld\49687.exe
C:\WINDOWS\system32\drivers\downld\49859.exe
C:\WINDOWS\system32\drivers\downld\50140.exe
C:\WINDOWS\system32\drivers\downld\50562.exe
C:\WINDOWS\system32\drivers\downld\51343.exe
C:\WINDOWS\system32\drivers\downld\52218.exe
C:\WINDOWS\system32\drivers\downld\53562.exe
C:\WINDOWS\system32\drivers\downld\53734.exe
C:\WINDOWS\system32\drivers\downld\53968.exe
C:\WINDOWS\system32\drivers\downld\54250.exe
C:\WINDOWS\system32\drivers\downld\54953.exe
C:\WINDOWS\system32\drivers\downld\55187.exe
C:\WINDOWS\system32\drivers\downld\56250.exe
C:\WINDOWS\system32\drivers\downld\56953.exe
C:\WINDOWS\system32\drivers\downld\57000.exe
C:\WINDOWS\system32\drivers\downld\57984.exe
C:\WINDOWS\system32\drivers\downld\58000.exe
C:\WINDOWS\system32\drivers\downld\58031.exe
C:\WINDOWS\system32\drivers\downld\58315062.exe
C:\WINDOWS\system32\drivers\downld\58316796.exe
C:\WINDOWS\system32\drivers\downld\58317250.exe
C:\WINDOWS\system32\drivers\downld\58318859.exe
C:\WINDOWS\system32\drivers\downld\58320796.exe
C:\WINDOWS\system32\drivers\downld\58322421.exe
C:\WINDOWS\system32\drivers\downld\58323234.exe
C:\WINDOWS\system32\drivers\downld\58327390.exe
C:\WINDOWS\system32\drivers\downld\58333437.exe
C:\WINDOWS\system32\drivers\downld\58562.exe
C:\WINDOWS\system32\drivers\downld\58721421.exe
C:\WINDOWS\system32\drivers\downld\58736906.exe
C:\WINDOWS\system32\drivers\downld\58741078.exe
C:\WINDOWS\system32\drivers\downld\58745781.exe
C:\WINDOWS\system32\drivers\downld\58745921.exe
C:\WINDOWS\system32\drivers\downld\58763625.exe
C:\WINDOWS\system32\drivers\downld\58774546.exe
C:\WINDOWS\system32\drivers\downld\58775765.exe
C:\WINDOWS\system32\drivers\downld\58783187.exe
C:\WINDOWS\system32\drivers\downld\58800109.exe
C:\WINDOWS\system32\drivers\downld\58802265.exe
C:\WINDOWS\system32\drivers\downld\58841437.exe
C:\WINDOWS\system32\drivers\downld\58845390.exe
C:\WINDOWS\system32\drivers\downld\58916250.exe
C:\WINDOWS\system32\drivers\downld\58950218.exe
C:\WINDOWS\system32\drivers\downld\58978437.exe
C:\WINDOWS\system32\drivers\downld\58982734.exe
C:\WINDOWS\system32\drivers\downld\59015.exe
C:\WINDOWS\system32\drivers\downld\59016515.exe
C:\WINDOWS\system32\drivers\downld\59203.exe
C:\WINDOWS\system32\drivers\downld\59500.exe
C:\WINDOWS\system32\drivers\downld\60046.exe
C:\WINDOWS\system32\drivers\downld\603812.exe
C:\WINDOWS\system32\drivers\downld\60406.exe
C:\WINDOWS\system32\drivers\downld\60859.exe
C:\WINDOWS\system32\drivers\downld\609406.exe
C:\WINDOWS\system32\drivers\downld\61078.exe
C:\WINDOWS\system32\drivers\downld\612062.exe
C:\WINDOWS\system32\drivers\downld\612312.exe
C:\WINDOWS\system32\drivers\downld\612343.exe
C:\WINDOWS\system32\drivers\downld\61250.exe
C:\WINDOWS\system32\drivers\downld\613968.exe
C:\WINDOWS\system32\drivers\downld\61484.exe
C:\WINDOWS\system32\drivers\downld\616906.exe
C:\WINDOWS\system32\drivers\downld\61750.exe
C:\WINDOWS\system32\drivers\downld\618546.exe
C:\WINDOWS\system32\drivers\downld\619156.exe
C:\WINDOWS\system32\drivers\downld\61921.exe
C:\WINDOWS\system32\drivers\downld\619984.exe
C:\WINDOWS\system32\drivers\downld\62250.exe
C:\WINDOWS\system32\drivers\downld\62468.exe
C:\WINDOWS\system32\drivers\downld\626125.exe
C:\WINDOWS\system32\drivers\downld\62781.exe
C:\WINDOWS\system32\drivers\downld\63203.exe
C:\WINDOWS\system32\drivers\downld\63296.exe
C:\WINDOWS\system32\drivers\downld\633421.exe
C:\WINDOWS\system32\drivers\downld\64859.exe
C:\WINDOWS\system32\drivers\downld\65078.exe
C:\WINDOWS\system32\drivers\downld\65546.exe
C:\WINDOWS\system32\drivers\downld\66046.exe
C:\WINDOWS\system32\drivers\downld\66062.exe
C:\WINDOWS\system32\drivers\downld\66140.exe
C:\WINDOWS\system32\drivers\downld\66687.exe
C:\WINDOWS\system32\drivers\downld\67062.exe
C:\WINDOWS\system32\drivers\downld\670937.exe
C:\WINDOWS\system32\drivers\downld\673078.exe
C:\WINDOWS\system32\drivers\downld\67312.exe
C:\WINDOWS\system32\drivers\downld\67421.exe
C:\WINDOWS\system32\drivers\downld\67750.exe
C:\WINDOWS\system32\drivers\downld\678578.exe
C:\WINDOWS\system32\drivers\downld\67859.exe
C:\WINDOWS\system32\drivers\downld\68062.exe
C:\WINDOWS\system32\drivers\downld\68250.exe
C:\WINDOWS\system32\drivers\downld\69093.exe
C:\WINDOWS\system32\drivers\downld\69187.exe
C:\WINDOWS\system32\drivers\downld\69531.exe
C:\WINDOWS\system32\drivers\downld\69796.exe
C:\WINDOWS\system32\drivers\downld\69921.exe
C:\WINDOWS\system32\drivers\downld\70656.exe
C:\WINDOWS\system32\drivers\downld\71250.exe
C:\WINDOWS\system32\drivers\downld\71734.exe
C:\WINDOWS\system32\drivers\downld\71875.exe
C:\WINDOWS\system32\drivers\downld\72234.exe
C:\WINDOWS\system32\drivers\downld\72312.exe
C:\WINDOWS\system32\drivers\downld\72437.exe
C:\WINDOWS\system32\drivers\downld\72562.exe
C:\WINDOWS\system32\drivers\downld\72703.exe
C:\WINDOWS\system32\drivers\downld\72812.exe
C:\WINDOWS\system32\drivers\downld\73156.exe
C:\WINDOWS\system32\drivers\downld\73281.exe
C:\WINDOWS\system32\drivers\downld\73355734.exe
C:\WINDOWS\system32\drivers\downld\73370640.exe
C:\WINDOWS\system32\drivers\downld\73396296.exe
C:\WINDOWS\system32\drivers\downld\73402765.exe
C:\WINDOWS\system32\drivers\downld\73430687.exe
C:\WINDOWS\system32\drivers\downld\73453.exe
C:\WINDOWS\system32\drivers\downld\73463031.exe
C:\WINDOWS\system32\drivers\downld\73465203.exe
C:\WINDOWS\system32\drivers\downld\73465296.exe
C:\WINDOWS\system32\drivers\downld\73492953.exe
C:\WINDOWS\system32\drivers\downld\73500640.exe
C:\WINDOWS\system32\drivers\downld\73525328.exe
C:\WINDOWS\system32\drivers\downld\73569671.exe
C:\WINDOWS\system32\drivers\downld\73598906.exe
C:\WINDOWS\system32\drivers\downld\73605828.exe
C:\WINDOWS\system32\drivers\downld\73610843.exe
C:\WINDOWS\system32\drivers\downld\73687.exe
C:\WINDOWS\system32\drivers\downld\73833781.exe
C:\WINDOWS\system32\drivers\downld\73843.exe
C:\WINDOWS\system32\drivers\downld\73851421.exe
C:\WINDOWS\system32\drivers\downld\73892484.exe
C:\WINDOWS\system32\drivers\downld\74765.exe
C:\WINDOWS\system32\drivers\downld\75375.exe
C:\WINDOWS\system32\drivers\downld\75562.exe
C:\WINDOWS\system32\drivers\downld\757875.exe
C:\WINDOWS\system32\drivers\downld\76062.exe
C:\WINDOWS\system32\drivers\downld\76109.exe
C:\WINDOWS\system32\drivers\downld\76640.exe
C:\WINDOWS\system32\drivers\downld\76671.exe
C:\WINDOWS\system32\drivers\downld\774750.exe
C:\WINDOWS\system32\drivers\downld\77578.exe
C:\WINDOWS\system32\drivers\downld\77859.exe
C:\WINDOWS\system32\drivers\downld\781000.exe
C:\WINDOWS\system32\drivers\downld\78250.exe
C:\WINDOWS\system32\drivers\downld\78687.exe
C:\WINDOWS\system32\drivers\downld\789968.exe
C:\WINDOWS\system32\drivers\downld\79531.exe
C:\WINDOWS\system32\drivers\downld\799078.exe
C:\WINDOWS\system32\drivers\downld\801140.exe
C:\WINDOWS\system32\drivers\downld\81062.exe
C:\WINDOWS\system32\drivers\downld\82453.exe
C:\WINDOWS\system32\drivers\downld\83218.exe
C:\WINDOWS\system32\drivers\downld\83328.exe
C:\WINDOWS\system32\drivers\downld\83343.exe
C:\WINDOWS\system32\drivers\downld\834859.exe
C:\WINDOWS\system32\drivers\downld\83640.exe
C:\WINDOWS\system32\drivers\downld\846687.exe
C:\WINDOWS\system32\drivers\downld\848796.exe
C:\WINDOWS\system32\drivers\downld\87468.exe
C:\WINDOWS\system32\drivers\downld\87687.exe
C:\WINDOWS\system32\drivers\downld\88017968.exe
C:\WINDOWS\system32\drivers\downld\88029468.exe
C:\WINDOWS\system32\drivers\downld\88036093.exe
C:\WINDOWS\system32\drivers\downld\88097140.exe
C:\WINDOWS\system32\drivers\downld\88099484.exe
C:\WINDOWS\system32\drivers\downld\88260281.exe
C:\WINDOWS\system32\drivers\downld\88295968.exe
C:\WINDOWS\system32\drivers\downld\88341093.exe
C:\WINDOWS\system32\drivers\downld\88437062.exe
C:\WINDOWS\system32\drivers\downld\88484.exe
C:\WINDOWS\system32\drivers\downld\88519546.exe
C:\WINDOWS\system32\drivers\downld\88620812.exe
C:\WINDOWS\system32\drivers\downld\88751359.exe
C:\WINDOWS\system32\drivers\downld\88781265.exe
C:\WINDOWS\system32\drivers\downld\88984.exe
C:\WINDOWS\system32\drivers\downld\89140.exe
C:\WINDOWS\system32\drivers\downld\89214500.exe
C:\WINDOWS\system32\drivers\downld\89218.exe
C:\WINDOWS\system32\drivers\downld\89245578.exe
C:\WINDOWS\system32\drivers\downld\89301078.exe
C:\WINDOWS\system32\drivers\downld\89437.exe
C:\WINDOWS\system32\drivers\downld\90515.exe
C:\WINDOWS\system32\drivers\downld\91562.exe
C:\WINDOWS\system32\drivers\downld\92312.exe
C:\WINDOWS\system32\drivers\downld\951093.exe
C:\WINDOWS\system32\drivers\downld\95187.exe
C:\WINDOWS\system32\drivers\downld\952265.exe
C:\WINDOWS\system32\drivers\downld\95718.exe
C:\WINDOWS\system32\drivers\downld\95906.exe
C:\WINDOWS\system32\drivers\downld\96531.exe
C:\WINDOWS\system32\drivers\downld\96656.exe
C:\WINDOWS\system32\drivers\downld\97187.exe
C:\WINDOWS\system32\drivers\downld\97328.exe
C:\WINDOWS\system32\drivers\downld\97703.exe
C:\WINDOWS\system32\drivers\downld\980421.exe
C:\WINDOWS\system32\drivers\downld\983812.exe
C:\WINDOWS\system32\drivers\hldrrr.exe
C:\WINDOWS\system32\drivers\mdelk.exe
C:\WINDOWS\system32\drivers\srosa.sys
C:\WINDOWS\system32\mdelk.exe
C:\WINDOWS\system32\wintems.exe
.
((((((((((((((((((((((((( Files Created from 2008-07-26 to 2008-08-26 )))))))))))))))))))))))))))))))
.
2008-08-26 20:35 . 2008-08-26 20:35
2008-08-26 20:35 . 2008-08-26 20:35
2008-08-26 19:08 . 2008-08-26 19:08
2008-08-26 19:08 . 2008-08-26 19:08
2008-08-26 18:53 . 2008-08-26 18:52 125 --a------ C:\fix.reg
2008-08-26 17:40 . 2008-08-24 05:08
2008-08-26 15:55 . 2008-08-26 15:55
2008-08-26 15:55 . 2008-08-26 15:55
2008-08-26 15:55 . 2006-08-24 12:40 51,072 --a------ C:\WINDOWS\system32\drivers\ikhlayer.sys
2008-08-26 15:53 . 2008-08-26 15:53
2008-08-25 23:03 . 2008-08-25 23:11
2008-08-25 22:51 . 2008-08-25 22:52
2008-08-25 22:17 . 2008-08-26 21:45 6,623,264 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat
2008-08-25 22:17 . 2008-08-26 21:42 78,140 --ahs---- C:\WINDOWS\system32\drivers\fidbox.idx
2008-08-25 22:16 . 2008-03-05 11:41 148,496 --a------ C:\WINDOWS\system32\drivers\56078211.sys
2008-08-25 21:53 . 2008-08-25 21:53 247 --a------ C:\WINDOWS{6ECB6EE7-DF64-4F26-9273-9525FC11A417}_WiseFW.ini
2008-08-25 21:48 . 2008-08-25 22:00
2008-08-25 17:47 . 2008-08-25 17:47 10,520 --------- C:\WINDOWS\system32\avgrsstx.dll
2008-08-25 17:23 . 2008-08-25 17:35
2008-08-25 16:41 . 2008-08-25 16:41
2008-08-25 16:41 . 2008-08-25 16:41
2008-08-25 16:41 . 2008-08-25 20:08
2008-08-25 16:26 . 2008-08-22 17:22 3,262 --a------ C:\WINDOWS\system32\2.ico
2008-08-24 23:42 . 2008-08-24 23:42
2008-08-24 23:42 . 2008-08-24 12:45 380,928 --a------ C:\WINDOWS\rodqgpvlkoa.dll
2008-08-24 23:42 . 2008-08-24 12:45 233,472 --a------ C:\WINDOWS\pdoskegl.dll
2008-08-24 23:42 . 2008-08-24 12:45 188,416 --a------ C:\WINDOWS\rqbmvpso.dll
2008-08-24 23:42 . 2008-08-22 15:38 165,888 --a------ C:\WINDOWS\system32\MSA.cpl
2008-08-24 23:42 . 2008-08-24 12:45 155,648 --a------ C:\WINDOWS\qalkfxor.dll
2008-08-24 23:42 . 2008-08-24 12:45 86,016 --a------ C:\WINDOWS\rvoelbxt.exe
2008-08-20 15:18 . 2008-08-20 15:21 4,268 --a------ C:\DW_A0436.sfk
2008-08-17 21:17 . 2008-08-17 21:17 12,417 --a------ C:\List otwarty.docx
2008-08-17 16:33 . 2008-08-17 16:33
2008-08-17 16:33 . 2008-08-17 16:33
2008-08-17 16:33 . 2008-08-17 16:33
2008-08-17 16:26 . 2008-08-17 16:26
2008-08-17 16:25 . 2008-08-17 16:25
2008-08-17 16:25 . 2008-08-17 16:25
2008-08-16 13:35 . 2008-08-16 13:25 270,464 --a------ C:\DW_A0436.wav
2008-08-15 17:53 . 2006-01-23 11:48 176,128 --a------ C:\WINDOWS\system32\nvunrm.exe
2008-08-15 17:53 . 2005-10-27 18:10 101,632 --a------ C:\WINDOWS\system32\drivers\nvtcp.sys
2008-08-15 17:53 . 2005-09-23 23:21 3,632 --a------ C:\WINDOWS\system32\nvnrm.nvu
2008-08-15 17:35 . 2008-08-15 17:35
2008-08-15 16:28 . 2008-08-15 16:28 175 --a------ C:\WINDOWS\system\C6501.ini
2008-08-15 16:25 . 2005-09-30 12:52 301,312 --a------ C:\WINDOWS\system32\drivers\nvnrm.sys
2008-08-15 16:25 . 2005-09-30 12:51 222,464 --a------ C:\WINDOWS\system32\drivers\nvsnpu.sys
2008-08-15 16:25 . 2005-09-30 12:51 202,240 --a------ C:\WINDOWS\system32\fdco1.dll
2008-08-15 16:25 . 2005-09-30 00:24 34,304 --a------ C:\WINDOWS\system32\nvconrm.dll
2008-08-15 16:25 . 2005-09-30 12:52 34,048 --a------ C:\WINDOWS\system32\drivers\NVENETFD.sys
2008-08-15 16:25 . 2005-09-30 12:52 13,056 --a------ C:\WINDOWS\system32\drivers\nvnetbus.sys
2008-08-15 16:25 . 2005-09-30 12:51 9,728 --a------ C:\WINDOWS\system32\bdco1.dll
2008-08-15 15:17 . 2007-07-17 11:28 6,410,240 --a------ C:\WINDOWS\system\C6501.cpl
2008-08-15 15:17 . 2001-11-23 12:08 712,704 --a------ C:\WINDOWS\system\c6501a3d.dll
2008-08-15 15:17 . 2007-06-27 18:02 274,432 --a------ C:\WINDOWS\system32\C6501rm.exe
2008-08-15 15:17 . 2005-12-26 17:23 53,248 --a------ C:\WINDOWS\system32\C6501rm.dll
2008-08-15 15:17 . 2006-06-27 14:54 32,768 --a------ C:\WINDOWS\system32\c6501prop.dll
2008-08-15 15:17 . 2008-08-15 16:28 324 --a------ C:\WINDOWS\C6501.ini.cfl
2008-08-15 15:16 . 2008-08-15 16:27
2008-08-15 15:16 . 2007-07-09 18:42 1,310,720 --a------ C:\WINDOWS\system32\drivers\c6501.sys
2008-08-15 15:16 . 2007-06-28 10:16 266,240 --a------ C:\WINDOWS\Cmi6501Uninstall.exe
2008-08-15 15:16 . 2007-06-28 18:55 4,571 --a------ C:\WINDOWS\C6501.ini.cfg
2008-08-15 15:16 . 2007-05-29 19:35 293 --a------ C:\WINDOWS\c6501.ini
2008-08-15 14:19 . 2008-08-15 14:19
2008-08-15 14:19 . 2008-08-25 17:22
2008-08-15 13:21 . 2008-08-15 13:21 16 --a------ C:\WINDOWS\wininit.ini
2008-08-15 13:08 . 2004-08-17 20:00 1,700,352 --a------ C:\WINDOWS\system32\GdiPlus.dll
2008-08-15 13:08 . 2001-11-23 12:08 712,704 --a------ C:\WINDOWS\system\a3d.dll
2008-08-15 12:18 . 2008-08-15 14:19
2008-08-15 09:55 . 2008-08-15 09:55 81,465 --a------ C:\WINDOWS\system32\drivers\klif.cab
2008-08-15 09:28 . 2008-08-15 14:19
2008-08-15 09:12 . 2008-08-15 14:18
2008-08-12 19:29 . 2008-08-15 14:19
2008-08-12 19:27 . 2008-08-12 19:27
2008-08-12 19:23 . 2008-08-12 19:23
2008-08-12 19:20 . 2008-08-26 07:40
2008-08-12 16:11 . 2008-08-12 16:11 91,179,505 --a------ C:\WRa02400
2008-08-12 16:10 . 2008-08-12 16:10 722,182,144 --a------ C:\Quark Xpress .rar
2008-08-11 19:59 . 2008-08-17 16:24
2008-08-10 17:31 . 2008-08-24 23:20
2008-08-03 15:33 . 2008-08-03 15:33 36,327,385 --a------ C:\pack.zip
2008-08-03 15:33 . 2008-08-03 15:33 3,499,271 --a------ C:\Tylkolegia.zip
2008-07-28 21:24 . 2008-08-09 00:20
2008-07-28 21:14 . 2008-07-28 21:20 4,667 --a------ C:\index.html
2008-07-28 17:43 . 2008-07-26 20:40 319,243 --a------ C:\tylkolegia01.pdf
2008-07-28 17:43 . 2008-07-26 20:40 245,946 --a------ C:\tylkolegia02.pdf
2008-07-26 22:50 . 2008-07-26 21:06 46,323 --a------ C:\winieta.jpg
2008-07-26 20:51 . 2008-07-26 20:51
2008-07-26 20:51 . 2008-07-26 22:44
2008-07-26 20:41 . 2008-07-26 20:41
2008-07-26 20:41 . 2008-07-26 20:44
2008-07-26 19:52 . 2008-07-26 20:06
2008-07-26 19:52 . 2002-01-05 16:37 344,064 --a------ C:\WINDOWS\system32\msvcr70.dll
2008-07-26 17:55 . 2008-07-26 17:55
2008-07-26 17:55 . 2003-12-15 19:44 73,728 --a------ C:\WINDOWS\system32\VNUSB.dll
2008-07-26 17:55 . 2003-06-13 17:49 73,728 --a------ C:\WINDOWS\system32\DW90USB.DLL
2008-07-26 17:55 . 2001-04-09 19:17 39,096 --a------ C:\WINDOWS\system32\drivers\DW90USB.SYS
2008-07-26 17:55 . 2003-12-15 18:22 38,448 --a------ C:\WINDOWS\system32\drivers\VNUSB.sys
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-08-26 17:32 --------- d-----w C:\Program Files\Mozilla Thunderbird
2008-08-24 21:37 --------- d-----w C:\Program Files\Fast Mailer Pro
2008-08-20 13:40 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\Soulseek
2008-08-15 15:14 --------- d-----w C:\Program Files\Hattrick Manager
2008-08-15 12:20 --------- d–h--w C:\Program Files\InstallShield Installation Information
2008-08-15 12:18 --------- d-----w C:\Program Files\Winamp
2008-08-15 12:11 --------- d-----w C:\Program Files\OpenOfficeT7 2.3.1
2008-08-15 12:07 --------- d-----w C:\Documents and Settings\Paul\Dane aplikacji\OpenOfficeT72
2008-08-15 07:21 --------- d-----w C:\Documents and Settings\Paul\Dane aplikacji\Winamp
2008-08-07 21:30 --------- d-----w C:\Program Files\Email Subscriber Pro
2008-07-26 15:55 --------- d-----w C:\Program Files\Common Files\InstallShield
2008-07-25 08:34 81,920 ----a-w C:\WINDOWS\system32\dpl100.dll
2008-07-25 08:34 683,520 ----a-w C:\WINDOWS\system32\divx.dll
2008-07-23 16:50 3,596,288 ----a-w C:\WINDOWS\system32\qt-dx331.dll
2008-07-19 16:46 --------- d-----w C:\Program Files\Soulseek-Test
2008-07-16 18:51 2,041,363 ----a-w C:\WINDOWS\system32\x264vfw.dll
2008-06-20 17:42 246,784 ----a-w C:\WINDOWS\system32\mswsock.dll
2008-05-08 15:33 19,120 ----a-w C:\Documents and Settings\Paul\Dane aplikacji\GDIPFONTCACHEV1.DAT
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE~\Browser Helper Objects{E350B1C6-A8DC-4EEF-90DB-61DCAE9D1B67}]
2008-08-24 12:45 380928 --a------ C:\WINDOWS\rodqgpvlkoa.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
“{18C388BB-5014-4906-AE38-E62BA5AA7387}”= “C:\WINDOWS\qalkfxor.dll” [2008-08-24 12:45 155648]
[HKEY_CLASSES_ROOT\clsid{18c388bb-5014-4906-ae38-e62ba5aa7387}]
[HKEY_CLASSES_ROOT\qalkfxor.1]
[HKEY_CLASSES_ROOT\TypeLib{2E94E090-6554-4076-97A0-BC0EBE5CD9B2}]
[HKEY_CLASSES_ROOT\qalkfxor]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
“CTFMON.EXE”=“C:\WINDOWS\system32\ctfmon.exe” [2004-08-04 01:44 15360]
“Gadu-Gadu”=“C:\Program Files\Gadu-Gadu\gg.exe” [2007-07-09 09:39 2119104]
“SpybotSD TeaTimer”=“C:\Program Files\Spybot - Search Destroy\TeaTimer.exe” [2008-08-26 19:08 2156368]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
“NvCplDaemon”=“C:\WINDOWS\System32\NvCpl.dll” [2007-05-11 00:03 8429568]
“NvMediaCenter”=“C:\WINDOWS\System32\NvMcTray.dll” [2007-05-11 00:03 81920]
“TkBellExe”=“C:\Program Files\Common Files\Real\Update_OB\realsched.exe” [2007-11-11 20:27 185632]
“SunJavaUpdateSched”=“C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe” [2008-02-22 05:25 144784]
“Adobe Reader Speed Launcher”=“C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe” [2008-01-11 23:16 39792]
“MKSRegmon”=“E:\wir\bin\mksregmon.exe” [2007-05-24 05:06 303104]
“mks_mail”=“E:\wir\bin\mks_mail.exe” [2007-05-24 05:06 520192]
“mkstray”=“E:\wir\bin\mkstray.exe” [2007-08-13 18:43 663552]
“nwiz”=“nwiz.exe” [2007-05-11 00:03 1626112 C:\WINDOWS\system32\nwiz.exe]
[HKEY_USERS.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
“CTFMON.EXE”=“C:\WINDOWS\System32\CTFMON.EXE” [2004-08-04 01:44 15360]
“Spyware Doctor”=“C:\Program Files\Spyware Doctor\swdoctor.exe” [2008-08-26 20:35 2119176]
C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\
Device Detector 2.lnk - C:\Program Files\Olympus\DeviceDetector\DevDtct2.exe [2008-07-26 17:55:25 114688]
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE [2001-02-13 10:01:04 83360]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
“msacm.l3fhg”= mp3fhg.acm
“msacm.divxa32”= divxa32.acm
“VIDC.X264”= x264vfw.dll
“VIDC.HFYU”= huffyuv.dll
“vidc.i263”= i263_32.drv
“VIDC.YV12”= yv12vfw.dll
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
“AntiVirusOverride”=dword:00000001
[HKLM~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
“EnableFirewall”= 0 (0x0)
[HKLM~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
“%windir%\system32\sessmgr.exe”=
“C:\Program Files\Bonjour\mDNSResponder.exe”=
“C:\Program Files\Gadu-Gadu\gg.exe”=
“C:\Program Files\Soulseek-Test\slsk.exe”=
“C:\Program Files\SopCast\adv\SopAdver.exe”=
“C:\Program Files\SopCast\SopCast.exe”=
“C:\Program Files\eMule\emule.exe”=
R0 mksidsa;mksidsa;C:\WINDOWS\system32\mksidsa.sys [2007-05-24 05:06]
R1 is-O3SONdrv;is-O3SONdrv;C:\WINDOWS\system32\drivers\56078211.sys [2008-03-05 11:41]
R1 mksfwallf;mksfwallf;C:\WINDOWS\system32\mksfwallf.sys [2007-05-24 05:06]
R1 mksfwallt;mksfwallt;C:\WINDOWS\system32\mksfwallt.sys [2007-05-24 05:06]
R2 MksFwall;MksFwall;E:\wir\bin\MksFwall.exe [2007-05-24 05:06]
R2 MksPC;MksPC;E:\wir\bin\MksPC.exe [2007-05-24 05:06]
R2 MksUpdate;MksUpdate;E:\wir\bin\mksupdate.exe [2007-05-24 05:06]
R3 mksidsf;mksidsf;C:\WINDOWS\system32\mksidsf.sys [2007-05-24 05:06]
R3 MksMonEn;MksMonEn;E:\wir\bin\MksMonEn.sys [2007-08-13 18:43]
R3 MksMonEv;MksMonEv;E:\wir\bin\MksMonEv.sys [2007-05-24 05:06]
R3 MksMonFd;MksMonFd;E:\wir\bin\MksMonFd.sys [2007-05-24 05:06]
S1 ABTDI;ABTDI;C:\Program Files\ArcaBit\ArcaVir\ABTDI.sys []
S2 ABFileMon;ArcaBit FileMonitor;C:\PROGRA~1\ArcaBit\ArcaVir\FILEMO~1.EXE []
S2 ArcaBit.TaskScheduler;ArcaBit.TaskScheduler;C:\PROGRA~1\ArcaBit\Common\TASKSC~1.EXE []
S3 ABFLT;ArcaBit File Monitor Driver;C:\PROGRA~1\ArcaBit\ArcaVir\ABFLT.sys []
S3 als4k;Avance Audio Miniport Driver (WDM);C:\WINDOWS\system32\drivers\als4000.sys []
S3 ArcaBit.Core.Configurator;ArcaBit.Core.Configurator;C:\PROGRA~1\ArcaBit\Common\ARCABI~3.EXE []
S3 ArcaBit.Core.LoggingService;ArcaBit.Core.LoggingService;C:\PROGRA~1\ArcaBit\Common\ARCABI~2.EXE []
S3 c65013264;C-Media CM6501 Like Sound UDAX Interface;C:\WINDOWS\system32\drivers\c6501.sys [2007-07-09 18:42]
S3 VNUSB;VN Series Device;C:\WINDOWS\system32\DRIVERS\VNUSB.sys [2003-12-15 18:22]
.
HKCU-Run-DriverUpdaterPro - C:\Program Files\XPC Tools\Driver Updater Pro\DriverUpdaterPro.exe
HKCU-Run-\VIEB5.exe - C:\Windows\System32\VIEB5.exe
HKCU-Run-\VIEB6.exe - C:\Windows\System32\VIEB6.exe
HKCU-Run-\VIEB7.exe - C:\Windows\System32\VIEB7.exe
HKCU-Run-\VIEB8.exe - C:\Windows\System32\VIEB8.exe
HKCU-Run-\SUEB9.exe - C:\Windows\SUEB9.exe
HKCU-Run-\VIE1.exe - C:\Windows\System32\VIE1.exe
HKCU-Run-\VIE2.exe - C:\Windows\System32\VIE2.exe
HKCU-Run-\VIE3.exe - C:\Windows\System32\VIE3.exe
HKCU-Run-\VIE4.exe - C:\Windows\System32\VIE4.exe
HKLM-Run-\VIEB5.exe - C:\Windows\System32\VIEB5.exe
HKLM-Run-\VIEB6.exe - C:\Windows\System32\VIEB6.exe
HKLM-Run-\VIEB7.exe - C:\Windows\System32\VIEB7.exe
HKLM-Run-\VIEB8.exe - C:\Windows\System32\VIEB8.exe
HKLM-Run-\SUEB9.exe - C:\Windows\SUEB9.exe
HKLM-Run-\VIE1.exe - C:\Windows\System32\VIE1.exe
HKLM-Run-\VIE2.exe - C:\Windows\System32\VIE2.exe
HKLM-Run-\VIE3.exe - C:\Windows\System32\VIE3.exe
HKLM-Run-\VIE4.exe - C:\Windows\System32\VIE4.exe
HKLM-Run-C6501Sound - c6501.cpl
.
------- Supplementary Scan -------
.
FireFox -: Profile - C:\Documents and Settings\Paul\Dane aplikacji\Mozilla\Firefox\Profiles\psutc04a.default\
FF -: plugin - C:\Program Files\Mozilla Firefox 3 Beta 3\plugins\npnul32.dll
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-26 21:44:16
Windows 5.1.2600 Dodatek Service Pack 2 NTFS
scanning hidden processes …
scanning hidden autostart entries …
scanning hidden files …
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
PROCESS: C:\WINDOWS\system32\lsass.exe
.
------------------------ Other Running Processes ------------------------
.
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Bonjour\mDNSResponder.exe
E:\wir\bin\mksvirmonsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Program Files\Java\jre1.6.0_05\bin\jucheck.exe
C:\totalcmd\TOTALCMD.EXE
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Mozilla Firefox\firefox.exe
.
**************************************************************************
.
Completion time: 2008-08-26 21:53:10 - machine was rebooted
ComboFix-quarantined-files.txt 2008-08-26 19:53:00
Pre-Run: 201,959,559,168 bajtów wolnych
Post-Run: 203,518,390,272 bajt˘w wolnych
980 — E O F — 2008-07-09 21:51:45