Witam.
Nie bede s2ie rozpisywał bo ciężko mi sie pis2ze
Gdy pis2ze pewne litery i cyfry na klawia1turze to dopisują mi sie odrazu inne zna1ki
np
a1
s2
d3
f4
l9
;0
tak to mniej więcej wyglądaa1.
nie wiem w czym tkwi problem, w kla1wiaturze bądź jakiś virus ?
Miał ktoś podobny problem?
Log z ComboFix’a:
[b]ComboFix 11-04-22.01 - brtk 11-04-22 20:59:27.1.1 - x86
Microsoft Windows XP Professional 5.1.2600.2.1250.48.1045.18.767.568 [GMT 2:00]
Uruchomiony z: c:\documents and settings\brtk\Pulpit\ComboFix.exe
.
.
((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Administrator\WINDOWS
c:\documents and settings\brtk\Dane aplikacji\EurekaLog
c:\program files\filesubmit
c:\program files\filesubmit\184694\Hot pursuit(tochpc.ru).exe
c:\program files\filesubmit\184694\internal-flame-ws.jpg
c:\program files\YouTube Downloader Toolbar\IE\4.3\yoUTubedownloadertoolbarie.dll
c:\windows\IECOdecpl.dll
.
.
((((((((((((((((((((((((( Pliki utworzone od 2011-03-22 do 2011-04-22 )))))))))))))))))))))))))))))))
.
.
2011-04-20 08:50 . 2011-04-20 08:50 -------- d-----w- c:\documents and settings\LocalService\Dane aplikacji\McAfee
2011-04-18 21:33 . 2011-04-18 21:34 -------- d-----w- c:\documents and settings\brtk\Dane aplikacji\Search Settings
2011-04-18 21:33 . 2011-04-18 21:33 -------- d-----w- c:\program files\Application Updater
2011-04-18 21:33 . 2011-04-18 21:33 -------- d-----w- c:\program files\YouTube Downloader Toolbar
2011-04-18 21:33 . 2011-04-18 21:33 -------- d-----w- c:\program files\Common Files\Spigot
2011-04-18 21:32 . 2011-04-18 21:32 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\McAfee
2011-04-18 21:32 . 2011-04-18 21:32 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\McAfee Security Scan
2011-04-18 21:32 . 2011-04-20 08:50 -------- d-----w- c:\program files\McAfee Security Scan
2011-04-18 21:27 . 2011-04-18 21:27 -------- d-sh--w- c:\documents and settings\brtk\IECompatCache
2011-04-17 19:43 . 2011-04-17 19:43 -------- d-----w- c:\program files\Avanquest update
2011-04-17 19:43 . 2011-04-17 19:43 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Avanquest
2011-04-16 20:26 . 2011-04-16 20:26 -------- d-----w- c:\documents and settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google
2011-04-16 20:21 . 2011-04-16 20:21 -------- d-----w- c:\documents and settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google
2011-04-16 20:20 . 2011-04-16 20:23 -------- d-----w- c:\program files\Google
2011-04-16 20:20 . 2011-04-16 20:21 -------- d-----w- c:\program files\Veetle
2011-04-16 19:57 . 2011-04-16 19:57 -------- d-----w- c:\documents and settings\brtk\Dane aplikacji\vShare
2011-04-16 19:57 . 2011-04-16 19:57 -------- d-----w- c:\program files\vShare
2011-04-16 17:44 . 2011-04-16 20:22 -------- d-----w- c:\documents and settings\brtk\Ustawienia lokalne\Dane aplikacji\Temp
2011-04-16 17:33 . 2011-04-16 17:33 -------- d-sh--w- c:\documents and settings\brtk\PrivacIE
2011-04-08 15:59 . 2011-04-08 15:59 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
2011-04-07 20:38 . 2011-04-07 20:38 -------- d-sh--w- c:\documents and settings\brtk\IETldCache
2011-04-07 20:00 . 2011-04-07 20:29 -------- dc-h--w- c:\windows\ie8
2011-04-07 19:50 . 2010-05-06 10:35 599040 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2011-04-07 19:50 . 2010-05-06 10:35 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2011-04-07 19:50 . 2010-05-06 10:35 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2011-04-07 19:50 . 2010-05-06 10:35 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2011-04-07 19:50 . 2010-05-06 10:35 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2011-04-07 19:50 . 2010-05-06 10:35 1985536 -c----w- c:\windows\system32\dllcache\iertutil.dll
2011-04-07 19:50 . 2010-05-06 10:35 11076096 -c----w- c:\windows\system32\dllcache\ieframe.dll
2011-04-04 21:15 . 2011-04-04 21:15 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\NVIDIA
.
.
.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-02-28 08:00 . 2011-03-04 22:19 80896 ----a-w- c:\windows\system32\ff_vfw.dll
.
.
------- Sigcheck -------
.
[-] 2008-04-14 . A9ED600F08A92143253C10EDB5651ECF . 1571840 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\51fc2b55c6deef38fc801319336cdbc7\sfcfiles.dll
[-] 2007-04-04 . 1A3B01CFF31B660EB43F228F4C468273 . 1548288 . . [5.1.2600.2180] . . c:\windows\system32\sfcfiles.dll
.
((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AQQ"="c:\progra~1\WapSter\WAPSTE~1\AQQ.exe" [2011-04-07 8882688]
"Gadu-Gadu"="c:\program files\Gadu-Gadu\gg.exe" [2008-03-20 2127296]
"Sony Ericsson PC Companion"="c:\program files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe" [2011-02-28 427008]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-10-22 7700480]
"nwiz"="nwiz.exe" [2006-10-22 1622016]
"SoundMan"="SOUNDMAN.EXE" [2004-05-14 67072]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-10-22 86016]
"SearchSettings"="c:\program files\Common Files\Spigot\Search Settings\SearchSettings.exe" [2011-01-28 526336]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-03 15360]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_2"="shell32" [X]
"tscuninstall"="c:\windows\system32\tscupgrd.exe" [2004-08-03 44544]
.
c:\documents and settings\All Users\Menu Start\Programy\Autostart\
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\2.0.189\SSScheduler.exe [2010-9-2 255536]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Documents and Settings\\brtk\\Pulpit\\brtk\\Tactical Ops\\System\\TacticalOps.exe"=
"c:\\Program Files\\aot\\System\\TacticalOps.exe"=
"c:\\Program Files\\WapSter\\WapSter AQQ\\AQQ.exe"=
"c:\\Documents and Settings\\brtk\\Pulpit\\brtk\\Opera\\opera.exe"=
"c:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"=
.
S2 Application Updater;Application Updater;c:\program files\Application Updater\ApplicationUpdater.exe [11-01-28 17:10 387072]
S2 gupdate;Usługa Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [11-04-16 22:21 136176]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\2.0.189\McCHSvc.exe [10-09-02 22:18 227232]
S3 s1029bus;Sony Ericsson Device 1029 driver (WDM);c:\windows\system32\drivers\s1029bus.sys [11-03-12 19:43 90280]
S3 s1029mdfl;Sony Ericsson Device 1029 USB WMC Modem Filter;c:\windows\system32\drivers\s1029mdfl.sys [11-03-12 19:43 15016]
S3 s1029mdm;Sony Ericsson Device 1029 USB WMC Modem Driver;c:\windows\system32\drivers\s1029mdm.sys [11-03-12 19:43 122280]
S3 s1029mgmt;Sony Ericsson Device 1029 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s1029mgmt.sys [11-03-12 19:43 115880]
S3 s1029nd5;Sony Ericsson Device 1029 USB Ethernet Emulation (NDIS);c:\windows\system32\drivers\s1029nd5.sys [11-03-12 19:43 26024]
S3 s1029obex;Sony Ericsson Device 1029 USB WMC OBEX Interface;c:\windows\system32\drivers\s1029obex.sys [11-03-12 19:43 111912]
S3 s1029unic;Sony Ericsson Device 1029 USB Ethernet Emulation (WDM);c:\windows\system32\drivers\s1029unic.sys [11-03-12 19:43 116904]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\d:\ntglm7x.sys --> d:\NTGLM7X.sys [?]
S3 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion;c:\program files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [11-04-21 10:07 150528]
.
Zawartość folderu 'Zaplanowane zadania'
.
2011-04-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-04-16 20:20]
.
2011-04-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-04-16 20:20]
.
2011-04-22 c:\windows\Tasks\User_Feed_Synchronization-{9DB09CB8-7CC7-45FE-9B4F-581884C4DD80}.job
- c:\windows\system32\msfeedssync.exe [2007-10-16 02:31]
.
2011-04-22 c:\windows\Tasks\WGASetup.job
- c:\windows\system32\KB905474\wgasetup.exe [2010-12-31 21:18]
.
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://vshare.toolbarhome.com/?hp=df
.
- - - - USUNIĘTO PUSTE WPISY - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKCU-Run-PKTray - c:\program files\Przyspiesz Komputer\PKTray.exe
HKCU-Run-ALLUpdate - c:\program files\ALLPlayer\ALLUpdate.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-04-22 21:03
Windows 5.1.2600 Dodatek Service Pack 2 NTFS
.
skanowanie ukrytych procesów ...
.
skanowanie ukrytych wpisów autostartu ...
.
skanowanie ukrytych plików ...
.
skanowanie pomyślnie ukończone
ukryte pliki: 0
.
**************************************************************************
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
Czas ukończenia: 2011-04-22 21:05:20
ComboFix-quarantined-files.txt 2011-04-22 19:05
.
Przed: 27 105 423 360 bajtów wolnych
Po: 27 193 802 752 bajtów wolnych
.
WindowsXP-KB310994-SP2-Pro-BootDisk-PLK.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - DC05865D4E8CB9E1DC496259DC60D446[/b]
z góry d3zięk8uje za1 zainteresowanie tematem i jakąkolwiek pomoc.
pozd3rawia1m, brtka10