Nie dzialaja zadne strony

Endrju1111 · 18 Wrzesień 2007 19:32

Witam, kolezanka ma problem nie odpalaja sie zadne strony internetowe, gg dziala, skype tez ale neostrada nie. Miala wczesniej noda32, zainstalowala kasperskiego i on wykryl jej 49wirusow :o miedzy innymi Koń trojański Trojan-PSW.Win32.Delf.abr i Koń trojański Trojan.Win32.Pakes.bi oraz Koń trojański Trojan.Win32.StartPage.arc a takze wirus Net-Worm.Win32.Agent.f czy moglibyscie sprawdzic logi i poradzic co ma zrobic? z gory dzieki

Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 20:09:39, on 2007-09-18 Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\VIAudioi\SBADeck\ADeck.exe C:\Program Files\Picasa2\PicasaMediaDetector.exe C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Gadu-Gadu\gg.exe C:\WINDOWS\explorer.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM…\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM…\Run: [nwiz] nwiz.exe /install O4 - HKLM…\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit O4 - HKLM…\Run: [AudioDeck] C:\Program Files\VIAudioi\SBADeck\ADeck.exe O4 - HKLM…\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe O4 - HKLM…\Run: [kis] “C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe” O4 - HKCU…\Run: [skype] “C:\Program Files\Skype\Phone\Skype.exe” /nosplash /minimized O4 - HKCU…\Run: [MSMSGS] “C:\Program Files\Messenger\msmsgs.exe” /background O4 - HKCU…\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-19…\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User ‘USŁUGA LOKALNA’) O4 - HKUS\S-1-5-20…\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User ‘USŁUGA SIECIOWA’) O4 - HKUS\S-1-5-18…\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User ‘SYSTEM’) O4 - HKUS.DEFAULT…\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User ‘Default user’) O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe O4 - Global Startup: hp psc 1000 series.lnk = ? O4 - Global Startup: hpoddt01.exe.lnk = ? O8 - Extra context menu item: Dodaj do Kaspersky Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\ie_banner_deny.htm O9 - Extra button: Ochrona WWW - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\scieplugin.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {18506D80-9B80-11D4-82C2-0080C8D7ED4A} (GameDesire Roulette) - http://67.15.101.33/g_bin/pl/roulette_2_0_0_27.cab O16 - DPF: {1A781DED-C22D-4153-3213-A3211E29DF13} (GameDesire Card Games) - http://67.15.101.3/g_bin/pl/cards_2_0_0_75.cab O16 - DPF: {4B4513E2-4E57-43DF-9496-FCD37E9DFA64} (GameDesire Sea Battle) - http://67.15.101.33/g_bin/pl/navy_2_0_0_29.cab O16 - DPF: {83AFB5CA-ED35-11D4-A452-0080C8D85045} (GameDesire Poker Games) - http://67.15.101.33/g_bin/eng/poker_2_0_0_49.cab O16 - DPF: {881290B9-F53C-4676-8DAF-3DBEFC297308} (GameDesire Makao) - http://67.15.101.3/g_bin/pl/makao_2_0_0_24.cab O16 - DPF: {92ECE6FA-AC2E-4042-BFAE-0C8608E52A43} (SignActivX Control) - https://www.bph.pl/pi/components/SignActivX.cab O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} (AxisMediaControlEmb Class) - http://81.190.193.145/activex/AMC.cab O16 - DPF: {E23FABEE-12E3-33DA-DA12-195DAC123984} (GameDesire Mahjong) - http://67.15.101.3/g_bin/pl/mahjong_2_0_0_29.cab O16 - DPF: {FDDBE2B8-6602-4AD8-946D-94C5A32FA6C1} (GameDesire Pool 8) - http://67.15.101.3/g_bin/pl/billard8_2_0_0_35.cab O16 - DPF: {FDDBE2B8-6602-4AD8-946D-94C5A32FA6C4} (GameDesire Pool Training) - http://67.15.101.3/g_bin/pl/billardt_2_0_0_35.cab O16 - DPF: {FDDBE2B8-6602-4AD8-946D-94C5A32FA6C5} (GameDesire Snooker) - http://67.15.101.3/g_bin/pl/snooker_2_0_0_35.cab O17 - HKLM\System\CCS\Services\Tcpip…{57384709-AE9A-430B-98B9-B28339241EEE}: NameServer = 194.204.159.1 217.98.63.164 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll O23 - Service: Kaspersky Internet Security 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe End of file - 7097 bytes

i combo

ComboFix 07-08-04.3 - “Dom” 2007-09-18 19:30:38.3 [GMT 2:00] - NTFS Microsoft Windows XP Home Edition 5.1.2600.2.1250.1.1045.18.Prawda ((((((((((((((((((((((((( Files Created from 2007-08-18 to 2007-09-18 ))))))))))))))))))))))))))))))) 2007-09-16 08:50 2007-09-14 12:35 2007-09-14 08:25 23,040 -----c— C:\WINDOWS\system32\dllcache\fltmc.exe 2007-09-14 08:25 16,896 -----c— C:\WINDOWS\system32\dllcache\fltlib.dll 2007-09-14 08:25 128,896 -----c— C:\WINDOWS\system32\dllcache\fltmgr.sys 2007-09-14 07:42 2007-09-14 07:41 33,792 --a–c— C:\WINDOWS\system32\dllcache\custsat.dll 2007-09-14 07:40 2007-09-13 14:55 51,488 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.dat 2007-09-13 14:55 2,953,248 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat 2007-09-13 14:55 2007-09-13 14:55 2007-09-13 14:01 2007-09-13 10:43 332,288 -----c— C:\WINDOWS\system32\dllcache\netapi32.dll 2007-09-13 09:42 2007-09-13 08:05 2007-09-13 07:33 221,184 --a------ C:\WINDOWS\system32\wmpns.dll 2007-09-13 07:31 2007-09-13 07:31 2007-09-13 07:29 2007-09-13 07:21 2007-09-13 00:56 1,156 --a------ C:\WINDOWS\mozver.dat 2007-09-13 00:53 0 --a------ C:\WINDOWS\nsreg.dat 2007-09-08 21:06 2007-09-05 16:59 64,000 --a------ C:\WINDOWS\system32\drivers\e4ldr.sys 2007-09-05 16:59 50,007 --a------ C:\WINDOWS\system32\drivers\adildr.sys 2007-09-05 16:59 24,576 --a------ C:\WINDOWS\enddisk32.exe 2007-09-05 16:59 155,648 --a------ C:\WINDOWS\system32\adadix32.dll 2007-09-05 16:59 152,126 --a------ C:\WINDOWS\system32\drivers\L1E9P2.BIN 2007-09-05 16:59 143,360 --a------ C:\WINDOWS\adiras.exe 2007-09-05 16:59 127,456 --a------ C:\WINDOWS\system32\IPDETECT.EXE 2007-09-05 16:59 126,976 --a------ C:\WINDOWS\system32\coclassfast.dll 2007-09-05 16:59 126,489 --a------ C:\WINDOWS\system32\drivers\adiusbaw.sys 2007-09-05 16:59 116,992 --a------ C:\WINDOWS\system32\drivers\e4usbaw.sys 2007-09-05 16:58 46,892 --a------ C:\WINDOWS\system32\ADADIX16.DLL 2007-09-05 16:58 4,981 --a------ C:\WINDOWS\system32\ADADIX2K.DLL 2007-09-05 16:58 22,395 --a------ C:\WINDOWS\system32\drivers\fpga.bin 2007-09-05 16:58 176,128 --a------ C:\WINDOWS\autoclk.exe 2007-09-05 16:58 152,220 --a------ C:\WINDOWS\system32\drivers\L1E4I2.BIN 2007-09-05 16:58 152,220 --a------ C:\WINDOWS\system32\drivers\L1E4I1.BIN 2007-09-05 16:58 152,220 --a------ C:\WINDOWS\system32\drivers\L1E4I0.BIN 2007-09-05 16:58 152,132 --a------ C:\WINDOWS\system32\drivers\L1E4P2.BIN 2007-09-05 16:58 152,132 --a------ C:\WINDOWS\system32\drivers\L1E4P1.BIN 2007-09-05 16:58 152,132 --a------ C:\WINDOWS\system32\drivers\L1E4P0.BIN 2007-09-05 16:58 152,126 --a------ C:\WINDOWS\system32\drivers\L1E9P1.BIN 2007-09-05 16:58 152,126 --a------ C:\WINDOWS\system32\drivers\L1E9P0.BIN 2007-09-05 16:58 152,126 --a------ C:\WINDOWS\system32\drivers\L1E9I2.BIN 2007-09-05 16:58 152,126 --a------ C:\WINDOWS\system32\drivers\L1E9I1.BIN 2007-09-05 16:58 152,126 --a------ C:\WINDOWS\system32\drivers\L1E9I0.BIN 2007-09-05 16:58 152,036 --a------ C:\WINDOWS\system32\drivers\L1E4D2.BIN 2007-09-05 16:58 152,034 --a------ C:\WINDOWS\system32\drivers\L1E4D1.BIN 2007-09-05 16:58 152,034 --a------ C:\WINDOWS\system32\drivers\L1E4D0.BIN 2007-09-05 16:58 135,168 --a------ C:\WINDOWS\system32\unaddrv.exe 2007-09-05 16:58 2007-09-05 16:50 28,672 -ra------ C:\WINDOWS\system32\adinst32.dll 2007-09-05 16:35 94,208 --a------ C:\WINDOWS\system32\W32n50.dll 2007-09-05 16:35 16,128 --------- C:\WINDOWS\system32\PCANDIS5.SYS 2007-09-01 21:55 2007-09-01 21:38 2007-08-26 13:27 (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) 2007-09-18 16:28 --------- d-------- C:\DOCUME~1\Dom\DANEAP~1\Skype 2007-09-18 16:27 6776 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.idx 2007-09-18 16:27 41372 --ahs---- C:\WINDOWS\system32\drivers\fidbox.idx 2007-09-14 08:34 49608 --a------ C:\WINDOWS\system32\perfc015.dat 2007-09-14 08:34 355820 --a------ C:\WINDOWS\system32\perfh015.dat 2007-09-14 08:27 --------- d-------- C:\Program Files\Messenger 2007-09-13 07:31 --------- d-------- C:\Program Files\Movie Maker 2007-09-13 07:29 --------- d-------- C:\Program Files\Windows NT 2007-09-05 17:03 --------- d-------- C:\Program Files\Neostrada TP 2007-09-05 16:59 33 --a------ C:\WINDOWS\system32\drivers\adidsl.cfg 2007-09-05 16:58 --------- d–h----- C:\Program Files\InstallShield Installation Information 2007-08-17 10:38 --------- d-------- C:\DOCUME~1\Dom\DANEAP~1\GanymedeNet 2007-08-09 07:26 --------- d-------- C:\DOCUME~1\Dom\DANEAP~1\WinRAR 2007-08-04 17:41 --------- d-------- C:\DOCUME~1\Dom\DANEAP~1\Google 2007-08-04 14:56 --------- d-------- C:\Program Files\Google 2007-08-04 14:55 --------- d-------- C:\Program Files\Skype 2007-08-04 14:55 --------- d-------- C:\Program Files\Common Files\Skype 2007-07-31 22:43 --------- d-------- C:\Program Files\Ganymede 2007-07-30 19:19 92504 --a–c— C:\WINDOWS\system32\dllcache\cdm.dll 2007-07-30 19:19 92504 --a------ C:\WINDOWS\system32\cdm.dll 2007-07-30 19:19 549720 --a------ C:\WINDOWS\system32\wuapi.dll 2007-07-30 19:19 53080 --a–c— C:\WINDOWS\system32\dllcache\wuauclt.exe 2007-07-30 19:19 53080 --a------ C:\WINDOWS\system32\wuauclt.exe 2007-07-30 19:19 43352 --a------ C:\WINDOWS\system32\wups2.dll 2007-07-30 19:19 325976 --a------ C:\WINDOWS\system32\wucltui.dll 2007-07-30 19:19 203096 --a------ C:\WINDOWS\system32\wuweb.dll 2007-07-30 19:19 1712984 --a–c— C:\WINDOWS\system32\dllcache\wuaueng.dll 2007-07-30 19:19 1712984 --a------ C:\WINDOWS\system32\wuaueng.dll 2007-07-30 19:18 33624 --a------ C:\WINDOWS\system32\wups.dll 2007-07-30 12:54 --------- d-------- C:\DOCUME~1\Dom\DANEAP~1\MSN6 2007-07-30 08:28 --------- d-------- C:\Program Files\VIAudioi 2007-07-29 17:25 4 --a------ C:\WINDOWS\system32\proc-220146841.bin 2007-07-29 17:16 --------- d-------- C:\DOCUME~1\Dom\DANEAP~1\Gadu-Gadu 2007-07-29 16:57 --------- d-------- C:\Program Files\Gadu-Gadu 2007-07-29 16:45 --------- d–h----- C:\Program Files\WindowsUpdate 2007-07-29 15:41 --------- d-------- C:\DOCUME~1\Dom\DANEAP~1\Help 2007-07-29 15:30 --------- d-------- C:\Program Files\Java Web Start 2007-07-29 15:21 82380 --a------ C:\WINDOWS\system32\drivers\AFS2K.SYS 2007-07-29 15:21 20458 --a------ C:\WINDOWS\hpoins01.dat 2007-07-29 15:21 --------- d-------- C:\Program Files\Hewlett-Packard 2007-07-29 15:21 --------- d-------- C:\DOCUME~1\Dom\DANEAP~1\Hewlett-Packard 2007-07-29 15:18 --------- d-------- C:\Program Files\Common Files\Hewlett-Packard 2007-07-29 15:04 --------- d-------- C:\Program Files\Common Files\InstallShield 2007-07-29 14:58 --------- d-------- C:\Program Files\Common Files\SpeechEngines 2007-07-29 14:58 --------- d-------- C:\Program Files\Common Files\ODBC 2007-07-29 14:10 0 -rahs---- C:\MSDOS.SYS 2007-07-29 14:10 0 -rahs---- C:\IO.SYS 2007-07-29 14:10 0 --a------ C:\CONFIG.SYS 2007-07-29 14:10 0 --a------ C:\AUTOEXEC.BAT 2007-07-29 14:10 --------- d-------- C:\Program Files\microsoft frontpage 2007-07-29 14:07 21856 --a------ C:\WINDOWS\system32\emptyregdb.dat 2007-07-29 14:07 --------- d-------- C:\Program Files\Common Files\MSSoap 2007-07-29 14:06 --------- d-------- C:\Program Files\MSN Gaming Zone 2007-07-19 08:58 3583488 -----c— C:\WINDOWS\system32\dllcache\mshtml.dll 2007-07-13 01:32 765952 -----c— C:\WINDOWS\system32\dllcache\vgx.dll 2007-06-27 16:09 823808 -----c— C:\WINDOWS\system32\dllcache\wininet.dll 2007-06-27 16:09 671232 -----c— C:\WINDOWS\system32\dllcache\mstime.dll 2007-06-27 16:09 6058496 -----c— C:\WINDOWS\system32\dllcache\ieframe.dll 2007-06-27 16:09 52224 -----c— C:\WINDOWS\system32\dllcache\msfeedsbs.dll 2007-06-27 16:09 477696 -----c— C:\WINDOWS\system32\dllcache\mshtmled.dll 2007-06-27 16:09 459264 -----c— C:\WINDOWS\system32\dllcache\msfeeds.dll 2007-06-27 16:09 44544 -----c— C:\WINDOWS\system32\dllcache\iernonce.dll 2007-06-27 16:09 27648 -----c— C:\WINDOWS\system32\dllcache\jsproxy.dll 2007-06-27 16:09 267776 -----c— C:\WINDOWS\system32\dllcache\iertutil.dll 2007-06-27 16:09 232960 -----c— C:\WINDOWS\system32\dllcache\webcheck.dll 2007-06-27 16:09 193024 -----c— C:\WINDOWS\system32\dllcache\msrating.dll 2007-06-27 16:09 1152000 -----c— C:\WINDOWS\system32\dllcache\urlmon.dll 2007-06-27 16:09 105984 -----c— C:\WINDOWS\system32\dllcache\url.dll 2007-06-27 16:09 102400 -----c— C:\WINDOWS\system32\dllcache\occache.dll 2007-06-27 16:08 384512 -----c— C:\WINDOWS\system32\dllcache\iedkcs32.dll 2007-06-27 16:08 383488 -----c— C:\WINDOWS\system32\dllcache\ieapfltr.dll 2007-06-27 16:08 230400 -----c— C:\WINDOWS\system32\dllcache\ieaksie.dll 2007-06-27 16:08 153088 -----c— C:\WINDOWS\system32\dllcache\ieakeng.dll 2007-06-27 16:08 132608 -----c— C:\WINDOWS\system32\dllcache\extmgr.dll 2007-06-27 16:08 124928 -----c— C:\WINDOWS\system32\dllcache\advpack.dll 2007-06-27 10:30 625152 -----c— C:\WINDOWS\system32\dllcache\iexplore.exe 2007-06-27 10:27 63488 -----c— C:\WINDOWS\system32\dllcache\ie4uinit.exe 2007-06-27 10:27 13824 -----c— C:\WINDOWS\system32\dllcache\ieudinit.exe 2007-06-27 09:00 161792 --a–c— C:\WINDOWS\system32\dllcache\ieakui.dll 2007-06-26 08:10 1104896 --a–c— C:\WINDOWS\system32\dllcache\msxml3.dll 2007-06-26 08:10 1104896 --a------ C:\WINDOWS\system32\msxml3.dll 2007-06-19 15:32 282112 --a------ C:\WINDOWS\system32\gdi32.dll 2007-06-19 15:32 282112 -----c— C:\WINDOWS\system32\dllcache\gdi32.dll --------- C:\Program Files\Usługi online ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) *Note* empty entries & legit default entries are not shown [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] “NvCplDaemon”=“C:\WINDOWS\System32\NvCpl.dll” [2004-02-04 13:37] “nwiz”=“nwiz.exe” [2004-02-04 13:37 C:\WINDOWS\system32\nwiz.exe] “NvMediaCenter”=“C:\WINDOWS\System32\NvMcTray.dll” [2004-02-04 13:37] “AudioDeck”=“C:\Program Files\VIAudioi\SBADeck\ADeck.exe” [2004-03-03 08:09] “Picasa Media Detector”=“C:\Program Files\Picasa2\PicasaMediaDetector.exe” [2006-04-20 01:17] “kis”=“C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe” [2006-03-24 19:09] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] “Skype”=“C:\Program Files\Skype\Phone\Skype.exe” [2007-07-02 17:10] “MSMSGS”=“C:\Program Files\Messenger\msmsgs.exe” [2004-10-13 18:24] “ctfmon.exe”=“C:\WINDOWS\system32\ctfmon.exe” [2004-08-04 09:44] C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\ Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2004-12-14 04:44:06] DSLMON.lnk - C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe [2007-09-05 16:59:03] hp psc 1000 series.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe [2003-04-06 01:17:18] hpoddt01.exe.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe [2003-04-06 01:06:58] HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] “appinit_dlls”=C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll R3 e4usbaw;USB ADSL2 WAN Adapter;C:\WINDOWS\system32\DRIVERS\e4usbaw.sys R3 FETNDIS;Sterownik NT karty VIA PCI 10/100Mb Fast Ethernet;C:\WINDOWS\system32\DRIVERS\fetnd5.sys S2 IKANLOADER2;General Purpose USB Driver (e4ldr.sys);C:\WINDOWS\system32\Drivers\e4ldr.sys S3 GMSIPCI;GMSIPCI;??\F:\INSTALL\GMSIPCI.SYS S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver;??\C:\WINDOWS\System32\PCAMPR5.SYS S3 usbscan;Sterownik skanera USB;C:\WINDOWS\system32\DRIVERS\usbscan.sys S3 USBSTOR;Sterownik magazynu masowego USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS Contents of the ‘Scheduled Tasks’ folder 2007-08-29 13:21:13 C:\WINDOWS\Tasks\FRU Task #Hewlett-Packard#hp psc 1200 series#1185715279.job - C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe ************************************************************************** catchme 0.3.1061 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2007-09-18 19:32:50 Windows 5.1.2600 Dodatek Service Pack 2 NTFS scanning hidden processes … scanning hidden registry entries … [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Favorites\A\1\5\1c] “Order”=hex:08,00,00,00,02,00,00,00,b8,01,00,00,01,00,00,00,04,00,00,00,8c,… scanning hidden files … scan completed successfully hidden files: 0 ************************************************************************** Completion time: 2007-09-18 19:34:13 C:\ComboFix-quarantined-files.txt … 2007-08-04 12:23 C:\ComboFix2.txt … 2007-09-13 10:22 C:\ComboFix3.txt … 2007-09-13 08:54

tabaka · 18 Wrzesień 2007 20:12

Logi czyste. Skan Kasperskym po aktualizacji i AVG Antyspyware

Gutek · 18 Wrzesień 2007 20:52

Kontrolnie

Pobierz program SDFix