oto log z combofixa proszę o sprawdzenie logów
i stworzenie regfixa
ComboFix 09-06-17.04 - Administrator 2009-06-18 13:47.1 - NTFSx86
Uruchomiony z: f:\programy instalki\ComboFix.exe
AV: Kaspersky Anti-Virus *On-access scanning disabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}
* Utworzono nowy punkt przywracania
UWAGA - TEN KOMPUTER NIE MA ZAINSTALOWANEJ KONSOLI ODZYSKIWANIA
.
((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Autorun.inf
C:\dbrxubcw.com
c:\windows\AhnRpta.exe
c:\windows\system32\_000019_.tmp.dll
c:\windows\system32\_000020_.tmp.dll
c:\windows\system32\_000021_.tmp.dll
c:\windows\system32\_000022_.tmp.dll
c:\windows\system32\e8main0.dll
c:\windows\system32\nmdfgds0.dll
c:\windows\system32\nmdfgds1.dll
c:\windows\system32\olhrwef.exe
c:\windows\system32\setup.ini
D:\Autorun.inf
D:\dbrxubcw.com
E:\Autorun.inf
E:\dbrxubcw.com
F:\Autorun.inf
F:\dbrxubcw.com
I:\Autorun.inf
I:\dbrxubcw.com
.
((((((((((((((((((((((((((((((((((((((( Sterowniki/Usługi )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Service_AVPsys
((((((((((((((((((((((((( Pliki utworzone od 2009-05-18 do 2009-06-18 )))))))))))))))))))))))))))))))
.
2009-06-18 11:11 . 2009-06-18 10:54 104274 --sh--r- C:\gbm6n.exe
2009-06-18 11:07 . 2009-06-18 11:07 -------- d-----w- c:\program files\MSXML 4.0
2009-06-18 10:54 . 2009-06-18 10:54 32784 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\update\rollback\AutoPatches\kav8exec\8.0.0.506\klbg.sys
2009-06-18 10:54 . 2009-06-18 10:54 227344 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\update\rollback\AutoPatches\kav8exec\8.0.0.506\XP\klif.sys
2009-06-18 10:54 . 2009-06-18 10:54 206088 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\update\rollback\AutoPatches\kav8exec\8.0.0.506\avp.exe
2009-06-18 10:54 . 2009-06-18 10:54 33808 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.506\klbg.sys
2009-06-18 10:54 . 2009-06-18 10:54 206088 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.506\avp.exe
2009-06-18 10:54 . 2009-06-18 10:54 226832 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.506\XP\klif.sys
2009-06-18 10:46 . 2009-06-18 10:46 106884 --sh--r- C:\[u]0[/u]c9k.exe
2009-06-18 10:35 . 2009-06-18 10:54 94643 ----a-w- c:\windows\system32\drivers\klick.dat
2009-06-18 10:35 . 2009-06-18 10:54 105395 ----a-w- c:\windows\system32\drivers\klin.dat
2009-06-18 10:34 . 2009-06-18 10:34 -------- d-----w- c:\documents and settings\Administrator\Ustawienia lokalne\Dane aplikacji\IsolatedStorage
2009-06-18 10:34 . 2009-06-18 10:34 -------- d-----w- c:\documents and settings\Administrator\Ustawienia lokalne\Dane aplikacji\HP
2009-06-18 10:33 . 2009-06-18 11:31 -------- d-----w- c:\documents and settings\Administrator\Ustawienia lokalne\Dane aplikacji\ApplicationHistory
2009-06-18 10:33 . 2009-06-18 10:33 138 ----a-w- c:\documents and settings\Administrator\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
2009-06-18 10:28 . 2008-06-14 17:36 273024 -c----w- c:\windows\system32\dllcache\bthport.sys
2009-06-18 10:28 . 2008-06-14 17:36 273024 ------w- c:\windows\system32\drivers\bthport.sys
2009-06-18 10:27 . 2009-02-09 11:26 2190336 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2009-06-18 10:27 . 2009-02-09 11:26 2025472 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2009-06-18 10:27 . 2009-02-09 11:26 2146816 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2009-06-18 10:24 . 2008-10-24 11:21 455296 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2009-06-18 10:16 . 2009-06-18 11:52 777760 --sha-w- c:\windows\system32\drivers\fidbox.dat
2009-06-18 10:16 . 2009-06-18 11:52 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab
2009-06-18 10:16 . 2009-06-18 11:49 245792 --sha-w- c:\windows\system32\drivers\fidbox2.dat
2009-06-18 10:16 . 2009-06-18 10:16 -------- d-----w- c:\program files\Kaspersky Lab
2009-06-18 10:15 . 2009-06-18 10:15 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files
2009-06-18 09:59 . 2008-07-09 07:57 26488 ----a-w- c:\windows\system32\spupdsvc.exe
2009-06-18 09:59 . 2009-06-18 11:28 -------- d--h--w- c:\windows\$hf_mig$
2009-06-18 09:44 . 2009-06-18 09:44 -------- d-----w- c:\windows\system32\InsFiles
2009-06-18 09:43 . 2006-06-02 16:38 425984 ----a-w- c:\windows\system32\stmcfg32.dll
2009-06-18 09:43 . 2006-06-02 09:01 151552 ----a-w- c:\windows\system32\stmctrl.dll
2009-06-18 09:43 . 2006-06-06 13:20 102400 ----a-w- c:\windows\stmtrace.exe
2009-06-18 09:43 . 2006-05-25 13:28 684265 ----a-w- c:\windows\system32\drivers\torususb.sys
2009-06-18 09:43 . 2009-06-18 09:43 -------- d-----w- c:\program files\ZTE ZXDSL 852
2009-06-18 09:43 . 2005-07-07 15:02 65536 ----a-w- c:\windows\DSLTest.exe
2009-06-18 09:43 . 2004-07-27 16:18 36864 ----a-w- c:\windows\system32\stmclean.exe
2009-06-18 09:43 . 2003-08-12 12:51 60255 ----a-w- c:\windows\system32\drivers\stmatm.sys
2009-06-18 09:39 . 2009-06-18 09:39 -------- d-----w- c:\program files\Common Files\HP
2009-06-18 09:38 . 2009-06-18 09:38 -------- d-----w- c:\program files\Hewlett-Packard
2009-06-18 09:38 . 2009-06-18 09:38 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Hewlett-Packard
2009-06-18 09:38 . 2004-05-11 08:53 82432 ----a-r- c:\windows\system32\MSXML4r.dll
2009-06-18 09:38 . 2004-05-11 08:53 626960 ----a-r- c:\windows\system32\hpvaut32.dll
2009-06-18 09:38 . 2004-05-11 08:53 487424 ----a-r- c:\windows\system32\hpvcp70.dll
2009-06-18 09:38 . 2004-05-11 08:53 44544 ----a-r- c:\windows\system32\MSXML4a.dll
2009-06-18 09:38 . 2004-05-11 08:53 344064 ----a-r- c:\windows\system32\hpvcr70.dll
2009-06-18 09:38 . 2009-06-18 09:38 45056 ----a-r- c:\documents and settings\Administrator\Dane aplikacji\Microsoft\Installer\{457791C5-D702-4143-A7B2-2744BE9573F2}\NewShortcut1_5B69D3033CA54B39B5ECE7D051297E77.exe
2009-06-18 09:37 . 2009-06-18 09:37 -------- d-----w- c:\program files\Common Files\Hewlett-Packard
2009-06-18 09:37 . 2009-06-18 09:37 -------- d-----w- c:\windows\system32\URTTemp
2009-06-18 09:35 . 2008-04-13 22:17 25856 -c--a-w- c:\windows\system32\dllcache\usbprint.sys
2009-06-18 09:35 . 2008-04-13 22:17 25856 ----a-w- c:\windows\system32\drivers\usbprint.sys
2009-06-18 09:35 . 2008-04-13 22:15 15104 -c--a-w- c:\windows\system32\dllcache\usbscan.sys
2009-06-18 09:35 . 2008-04-13 22:15 15104 ----a-w- c:\windows\system32\drivers\usbscan.sys
2009-06-18 09:32 . 2004-03-18 14:56 204800 ----a-w- c:\windows\system32\HPZipr12.dll
2009-06-18 09:32 . 2004-03-18 14:55 65536 ----a-w- c:\windows\system32\HPZipm12.exe
2009-06-18 09:32 . 2004-03-18 14:53 278584 ----a-w- c:\windows\system32\HPZidr12.dll
2009-06-18 09:32 . 2004-03-18 14:39 57344 ----a-w- c:\windows\system32\HPZisn12.dll
2009-06-18 09:32 . 2004-03-18 14:39 94208 ----a-w- c:\windows\system32\HPZipt12.dll
2009-06-18 09:32 . 2004-03-18 14:38 61440 ----a-w- c:\windows\system32\HPZinw12.exe
2009-06-18 09:32 . 1998-10-29 14:45 306688 ----a-w- c:\windows\IsUninst.exe
2009-06-18 09:29 . 2009-06-18 09:40 -------- d-----w- c:\program files\HP
2009-06-18 09:26 . 2009-06-18 09:42 104257 ----a-w- c:\windows\hpoins04.dat
2009-06-18 09:26 . 2004-06-21 20:34 17176 ------w- c:\windows\hpomdl04.dat
2009-06-18 09:23 . 2009-06-18 09:23 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\FLEXnet
2009-06-18 09:17 . 2009-06-18 09:24 -------- d-----w- c:\documents and settings\Administrator\Ustawienia lokalne\Dane aplikacji\Adobe
2009-06-18 09:13 . 2009-06-18 09:13 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2009-06-18 08:49 . 2009-06-18 08:49 -------- d-----w- c:\program files\Asprate
2009-06-18 08:42 . 2009-06-18 08:42 -------- d-----w- c:\program files\Godlike Developers
2009-06-18 08:38 . 2009-06-18 08:39 -------- d-----w- c:\program files\Perfect Uninstaller
2009-06-18 08:29 . 2008-04-13 22:15 26368 -c--a-w- c:\windows\system32\dllcache\usbstor.sys
2009-06-18 08:18 . 2009-06-18 08:18 60416 ----a-w- c:\windows\ALCFDRTM.EXE
2009-06-18 08:18 . 2009-06-18 08:18 -------- d-----w- c:\windows\system32\Lang
2009-06-18 08:17 . 2009-06-18 08:17 217536 ----a-w- c:\windows\system32\drivers\truecrypt.sys
2009-06-18 08:17 . 2009-06-18 08:17 -------- d-----w- c:\program files\TrueCrypt
2009-06-18 08:15 . 2009-06-18 08:15 -------- d-----w- c:\program files\Real Alternative
2009-06-18 08:15 . 2009-06-18 08:15 -------- d-----w- c:\documents and settings\Administrator\Ustawienia lokalne\Dane aplikacji\Real
2009-06-18 08:15 . 2004-01-11 22:00 348160 ----a-w- c:\windows\system32\msvcr71.dll
2009-06-18 08:15 . 2003-03-19 03:14 499712 ----a-w- c:\windows\system32\msvcp71.dll
2009-06-18 08:14 . 2009-06-18 08:14 -------- d-----w- C:\totalcmd
2009-06-18 08:14 . 2008-08-08 05:04 545 ----a-w- c:\windows\UC.PIF
2009-06-18 08:14 . 2008-08-08 05:04 545 ----a-w- c:\windows\RAR.PIF
2009-06-18 08:14 . 2008-08-08 05:04 545 ----a-w- c:\windows\PKZIP.PIF
2009-06-18 08:14 . 2008-08-08 05:04 545 ----a-w- c:\windows\PKUNZIP.PIF
2009-06-18 08:14 . 2008-08-08 05:04 545 ----a-w- c:\windows\NOCLOSE.PIF
2009-06-18 08:14 . 2008-08-08 05:04 545 ----a-w- c:\windows\LHA.PIF
2009-06-18 08:14 . 2008-08-08 05:04 545 ----a-w- c:\windows\ARJ.PIF
2009-06-18 08:14 . 2009-06-18 08:14 -------- d-----w- c:\program files\RADVideo
2009-06-18 08:13 . 2009-06-18 09:04 -------- d-----w- c:\program files\Kliper
2009-06-18 08:12 . 2009-06-18 08:12 0 ----a-w- c:\windows\nsreg.dat
2009-06-18 08:12 . 2009-06-18 08:12 -------- d-----w- c:\documents and settings\Administrator\Ustawienia lokalne\Dane aplikacji\Mozilla
2009-06-18 08:12 . 2008-12-08 10:53 57344 ----a-w- c:\windows\system32\ff_vfw.dll
2009-06-18 08:12 . 2009-06-18 08:12 -------- d-----w- c:\program files\ffdshow
2009-06-18 08:12 . 2008-06-08 20:58 60273 ----a-w- c:\windows\system32\pthreadGC2.dll
2009-06-18 08:12 . 2009-06-18 08:12 -------- d-----w- c:\program files\Dziobas Rar Player
2009-06-18 08:10 . 2009-06-18 08:10 -------- d-----w- c:\documents and settings\Administrator\Ustawienia lokalne\Dane aplikacji\Identities
2009-06-18 08:09 . 2009-06-18 08:09 -------- d-----w- c:\program files\CCleaner
2009-06-18 08:09 . 2009-06-18 08:09 -------- d-----w- c:\documents and settings\Administrator\Dane aplikacji\BESTplayer
2009-06-18 08:09 . 2009-06-18 09:19 -------- d-----w- c:\program files\Common Files\Adobe
2009-06-18 08:08 . 2009-06-18 08:08 -------- d-----w- c:\program files\AC3Filter
2009-06-18 08:08 . 2009-06-18 08:08 -------- d-----w- c:\program files\Common Files\Nero
2009-06-18 08:06 . 2000-06-26 08:45 106496 ----a-w- c:\windows\system32\TwnLib20.dll
2009-06-18 08:06 . 2004-07-20 14:24 476320 ------w- c:\windows\system32\ImagXpr7.dll
2009-06-18 08:06 . 2004-07-20 14:24 471040 ------w- c:\windows\system32\ImagXRA7.dll
2009-06-18 08:06 . 2004-07-20 14:24 262144 ------w- c:\windows\system32\ImagXR7.dll
2009-06-18 08:06 . 2004-07-20 14:24 1568768 ------w- c:\windows\system32\ImagX7.dll
2009-06-18 08:06 . 2004-07-09 06:43 364544 ------w- c:\windows\system32\TwnLib4.dll
2009-06-18 08:06 . 2001-06-26 05:15 38912 ------w- c:\windows\system32\picn20.dll
2009-06-18 08:06 . 2009-06-18 08:06 -------- d-----w- c:\program files\Common Files\Ahead
2009-06-18 08:06 . 2001-07-09 08:50 155648 ----a-w- c:\windows\system32\NeroCheck.exe
2009-06-18 08:06 . 2009-06-18 08:06 -------- d-----w- c:\program files\Ahead
2009-06-18 08:05 . 2009-06-18 08:05 -------- d-----w- c:\program files\Netropa
2009-06-18 08:05 . 2002-07-11 06:47 98304 ------w- c:\windows\system32\msikbd.dll
2009-06-18 08:05 . 2001-12-20 08:02 6656 ------w- c:\windows\system32\drivers\Msikbd2k.sys
2009-06-18 08:05 . 2000-06-08 01:09 28672 ------w- c:\windows\system32\msiosd32.dll
2009-06-18 08:02 . 2004-11-11 03:54 200192 ----a-r- c:\windows\system32\fdco1ins.dll
2009-06-18 08:02 . 2004-11-11 03:54 200192 ----a-r- c:\windows\system32\fdco1.dll
2009-06-18 08:02 . 2004-11-11 03:56 33408 ----a-r- c:\windows\system32\drivers\NVENETFD.sys
2009-06-18 08:02 . 2004-10-29 22:26 32256 ----a-r- c:\windows\system32\nvconrm.dll
2009-06-18 08:02 . 2004-10-29 22:25 176128 ----a-w- c:\windows\system32\nvunrm.exe
2009-06-18 08:02 . 2004-11-11 03:56 12928 ----a-r- c:\windows\system32\drivers\nvnetbus.sys
2009-06-18 08:02 . 2004-11-11 03:56 274944 ----a-r- c:\windows\system32\drivers\nvnrm.sys
2009-06-18 08:02 . 2004-11-11 03:56 208128 ----a-r- c:\windows\system32\drivers\nvsnpu.sys
2009-06-18 08:02 . 2004-11-11 03:54 9728 ----a-r- c:\windows\system32\bdco1ins.dll
2009-06-18 08:02 . 2004-11-11 03:54 9728 ----a-r- c:\windows\system32\bdco1.dll
2009-06-18 08:01 . 2004-08-13 10:56 5810 ----a-r- c:\windows\system32\drivers\ASACPI.sys
2009-06-18 08:01 . 2000-03-29 14:17 5824 ----a-w- c:\windows\system32\drivers\ASUSHWIO.SYS
.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-06-18 11:49 . 2009-06-18 10:16 6112 --sha-w- c:\windows\system32\drivers\fidbox2.idx
2009-06-18 11:49 . 2009-06-18 10:16 11320 --sha-w- c:\windows\system32\drivers\fidbox.idx
2009-06-18 11:35 . 2001-10-26 16:15 67078 ----a-w- c:\windows\system32\perfc015.dat
2009-06-18 11:35 . 2001-10-26 16:15 435978 ----a-w- c:\windows\system32\perfh015.dat
2009-06-18 10:54 . 2008-01-29 15:29 33808 ----a-w- c:\windows\system32\drivers\klbg.sys
2009-06-18 08:46 . 2009-06-18 08:16 -------- d-----w- c:\documents and settings\Administrator\Dane aplikacji\Winamp
2009-06-18 08:16 . 2009-06-18 08:16 -------- d-----w- c:\program files\Winamp
2009-06-18 08:05 . 2009-06-18 07:42 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-06-18 07:46 . 2009-06-18 07:46 -------- d-----w- c:\program files\AvRack
2009-06-18 07:46 . 2009-06-18 07:42 -------- d-----w- c:\program files\Common Files\InstallShield
2009-06-18 07:42 . 2009-06-18 07:42 -------- d-----w- c:\program files\Realtek
2009-06-18 07:42 . 2009-06-18 07:42 319488 ----a-w- c:\windows\HideWin.exe
2009-06-17 22:29 . 2009-06-17 22:29 -------- d-----w- c:\program files\microsoft frontpage
2009-06-17 22:28 . 2009-06-17 22:28 86327 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2009-06-17 22:28 . 2009-06-17 22:28 -------- d-----w- c:\program files\Usługi online
2009-06-17 22:25 . 2009-06-17 22:25 21856 ----a-w- c:\windows\system32\emptyregdb.dat
2009-04-30 22:30 . 2009-04-30 22:30 1194528 ----a-w- c:\windows\system32\nvcplui.exe
2009-04-30 20:02 . 2009-04-30 20:02 9994240 ----a-w- c:\windows\system32\nvoglnt.dll
2009-04-30 20:02 . 2009-04-30 20:02 806912 ----a-w- c:\windows\system32\nvapi.dll
2009-04-30 20:02 . 2009-04-30 20:02 8055584 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2009-04-30 20:02 . 2009-04-30 20:02 663552 ----a-w- c:\windows\system32\nvcuvid.dll
2009-04-30 20:02 . 2009-04-30 20:02 5896320 ----a-w- c:\windows\system32\nv4_disp.dll
2009-04-30 20:02 . 2009-04-30 20:02 1720320 ----a-w- c:\windows\system32\nvcuda.dll
2009-04-30 20:02 . 2009-04-30 20:02 1579630 ----a-w- c:\windows\system32\nvdata.bin
2009-04-30 20:02 . 2009-04-30 20:02 143360 ----a-w- c:\windows\system32\nvcodins.dll
2009-04-30 20:02 . 2009-04-30 20:02 143360 ----a-w- c:\windows\system32\nvcod.dll
2009-04-30 20:02 . 2009-04-30 20:02 1314816 ----a-w- c:\windows\system32\nvcuvenc.dll
.
------- Sigcheck -------
[-] 2008-11-16 10:05 1571840 C8BDAD4065118558B3DC360FC96D81DB c:\windows\system32\sfcfiles.dll
.
((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"RAMSaverPro"="c:\program files\Godlike Developers\RAM Saver Professional\ramsaverpro.exe" [2009-06-18 198688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-04-30 86016]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-04-30 13750272]
"WheelMouse"="c:\progra~1\A4Tech\Mouse\Amoumain.exe" [2004-08-25 147456]
"MULTIMEDIA KEYBOARD"="c:\program files\Netropa\Multimedia Keyboard\MMKeybd.exe" [2003-09-30 425984]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2004-02-12 49152]
"HP Component Manager"="c:\program files\HP\hpcoretech\hpcmpmgr.exe" [2004-05-12 241664]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe" [2009-06-18 206088]
"SoundMan"="SOUNDMAN.EXE" - c:\windows\SOUNDMAN.EXE [2004-11-15 77824]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2009-04-30 1657376]
"AdslTaskBar"="stmctrl.dll" - c:\windows\system32\stmctrl.dll [2006-06-02 151552]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\All Users\Menu Start\Programy\Autostart\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2004-5-28 241664]
HP Image Zone - szybkie uruchamianie.lnk - c:\program files\HP\Digital Imaging\bin\hpqthb08.exe [2004-5-28 53248]
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Common Files\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5353:TCP"= 5353:TCP:Adobe CSI CS4
S0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [2009-06-18 33808]
S1 msikbd2k;Multimedia Keyboard Filter Driver;c:\windows\system32\DRIVERS\msikbd2k.sys [2001-12-20 6656]
S2 nhksrv;Netropa NHK Server;c:\program files\Netropa\Multimedia Keyboard\nhksrv.exe [2001-08-06 28672]
S3 Amps2prt;A4Tech PS/2 Port Mouse Driver;c:\windows\system32\DRIVERS\Amps2prt.sys [2004-08-25 9984]
S3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\DRIVERS\klim5.sys [2008-04-30 24592]
S3 Stmatm;ATM/ADSL miniport;c:\windows\system32\DRIVERS\stmatm.sys [2003-08-12 60255]
S3 TaurusUsb;ADSL Modem USB Service;c:\windows\system32\DRIVERS\torususb.sys [2006-05-25 684265]
.
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://www.google.pl/
FF - ProfilePath -
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-06-18 13:51
Windows 5.1.2600 Dodatek Service Pack 3 NTFS
skanowanie ukrytych procesów ...
skanowanie ukrytych wpisów autostartu ...
skanowanie ukrytych plików ...
skanowanie pomyślnie ukończone
ukryte pliki: 0
**************************************************************************
.
--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------
- - - - - - - > 'explorer.exe'(3696)
c:\program files\Netropa\Multimedia Keyboard\nhkdll.dll
c:\program files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll
c:\program files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.POL
.
------------------------ Pozostałe uruchomione procesy ------------------------
.
c:\windows\system32\nvsvc32.exe
c:\windows\system32\rundll32.exe
c:\windows\system32\rundll32.exe
c:\program files\Netropa\Multimedia Keyboard\Traymon.exe
c:\program files\Netropa\Onscreen Display\osd.exe
c:\program files\HP\Digital Imaging\bin\hpqgalry.exe
.
**************************************************************************
.
Czas ukończenia: 2009-06-18 13:53 - komputer został uruchomiony ponownie
ComboFix-quarantined-files.txt 2009-06-18 11:53
Przed: 16 612 667 392 bajtów wolnych
Po: 16 621 420 544 bajtów wolnych
272 --- E O F --- 2009-06-18 11:28
[/code]