System XP Spowolniał

pakierhakierxd · 11 Lipiec 2008 11:04

Hej mam taki problem profil mi sie wczesniej szyciej ladowal ikony sie szybciej wczyytywaly teraz po uruchanmianiu systemu musze czekac troche i jeszcze zuzycie procesora skacze od 1 do 100 % tak do max 5 minut na 2 rdzenie wczesniej bylo normalnie mozna cos z tym zrobic

W dniu 11.07.2008 , o godzinie 13:04 został dopisany post przez daniel241190

mam nadzieje ze mi pomozecie ostatnio zainstalowalem sterownik amd AMD Processor Driver Version 1.3.2.0053 for Windows XP moze to przez niego

destroy · 11 Lipiec 2008 11:06

Może masz jakiegoś wirusa ?

pakierhakierxd · 11 Lipiec 2008 11:08

nie wiem mam kaspersky internet security 2009 raczej nie powinien przepuscic zadnego wirusa

huber2t · 11 Lipiec 2008 11:09

Podaj loga z combofix

pakierhakierxd · 11 Lipiec 2008 11:26

ComboFix 08-07-10.1 - ZyzykD 2008-07-11 13:13:02.1 - NTFSx86

Microsoft Windows XP Professional 5.1.2600.3.1250.1.1045.18.1466 [GMT 2:00]

Running from: C:\Documents and Settings\ZyzykD\Pulpit\ComboFix.exe

* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED

.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))

.

C:\Documents and Settings\All Users\Dane aplikacji\Microsoft\Network\Downloader\qmgr0.dat

C:\Documents and Settings\All Users\Dane aplikacji\Microsoft\Network\Downloader\qmgr1.dat

C:\WINDOWS\system32\Cfx32.lic

C:\WINDOWS\system32\cfx32.ocx

C:\WINDOWS\system32\oeminfo.ini

----- BITS: Possible infected sites -----

hxxp://rad.msn.com

.

((((((((((((((((((((((((( Files Created from 2008-06-11 to 2008-07-11 )))))))))))))))))))))))))))))))

.

2008-07-11 12:35 . 2008-07-11 12:35 54,156 --ah----- C:\WINDOWS\QTFont.qfn

2008-07-11 12:35 . 2008-07-11 12:35 1,409 --a------ C:\WINDOWS\QTFont.for

2008-07-11 12:34 . 2008-07-11 12:34

2008-07-10 17:45 . 2008-07-10 17:45 26 --a------ C:\WINDOWS\DVDCreator.INI

2008-07-10 14:50 . 2008-07-10 14:50

2008-07-10 14:50 . 2008-07-10 22:57

2008-07-10 14:50 . 2007-11-22 16:00 483,328 --a------ C:\WINDOWS\system32\actskn45.ocx

2008-07-10 14:41 . 2008-07-10 14:41

2008-07-10 14:32 . 2008-07-10 14:35

2008-07-10 12:52 . 2008-07-10 12:52

2008-07-10 10:00 . 2008-07-10 10:00

2008-07-10 10:00 . 2008-07-10 10:04

2008-07-10 08:41 . 2008-07-10 08:45

2008-07-10 08:35 . 2008-07-10 08:35 38 --a------ C:\WINDOWS\avisplitter.INI

2008-07-10 08:31 . 2008-07-10 08:36

2008-07-10 08:31 . 2008-07-10 08:31

2008-07-10 08:25 . 2008-07-10 17:44

2008-07-10 08:08 . 2005-07-20 12:48 59,904 --a------ C:\WINDOWS\system32\zlib.dll

2008-07-10 00:07 . 2008-07-10 00:07

2008-07-10 00:07 . 2008-07-10 07:50

2008-07-09 14:11 . 2008-07-09 14:11

2008-07-09 10:21 . 2008-07-09 10:21

2008-07-09 09:25 . 2008-07-09 09:25

2008-07-08 15:08 . 2008-07-08 15:08

2008-07-08 15:06 . 2008-07-08 15:06

2008-07-08 14:51 . 2008-07-08 14:51

2008-07-08 12:07 . 2008-07-08 12:07

2008-07-08 11:50 . 2008-07-08 11:50

2008-07-08 11:50 . 2008-05-14 09:34 3,077,416 --a------ C:\WINDOWS\system32\AdvrCntr2D6E0B790.dll

2008-07-08 11:48 . 2008-05-14 09:34 1,000,744 --a------ C:\WINDOWS\system32\ShellManager10E2D762.dll

2008-07-08 11:48 . 2008-04-10 19:52 648,192 --a------ C:\WINDOWS\system32\NEROINSTAEC43759.DB

2008-07-07 22:20 . 2008-07-07 22:20

2008-07-07 15:23 . 2008-07-07 15:23

2008-07-07 15:23 . 2008-05-16 11:48 446,464 --a------ C:\WINDOWS\system32\NVUNINST.EXE

2008-07-07 15:23 . 2008-05-16 14:01 446,464 --a------ C:\WINDOWS\system32\nvudisp.exe

2008-07-07 15:23 . 2008-05-16 14:01 18,070 --a------ C:\WINDOWS\system32\nvdisp.nvu

2008-07-07 15:23 . 2008-07-11 12:58 104 --a------ C:\WINDOWS\system32\nvapps.xml

2008-07-04 14:28 . 2001-08-17 21:56 7,552 --a------ C:\WINDOWS\system32\drivers\SONYPVU1.SYS

2008-07-04 14:28 . 2001-08-17 21:56 7,552 --a–c— C:\WINDOWS\system32\dllcache\sonypvu1.sys

2008-07-04 13:14 . 2008-07-04 13:14 103,736 --a------ C:\WINDOWS\system32\PnkBstrB.exe

2008-07-04 13:14 . 2008-07-04 13:14 66,872 --a------ C:\WINDOWS\system32\PnkBstrA.exe

2008-07-03 12:24 . 2008-07-03 12:24

2008-07-03 11:38 . 2008-07-03 11:40

2008-07-02 23:04 . 2008-07-02 23:04

2008-07-01 10:32 . 2008-07-09 08:44

2008-06-30 15:40 . 2008-07-04 20:10

2008-06-30 11:49 . 2008-06-30 11:50

2008-06-29 22:59 . 2008-06-29 22:59

2008-06-29 22:58 . 2008-06-29 22:58

2008-06-29 22:55 . 2008-06-29 22:55

2008-06-29 12:06 . 2008-06-29 12:06

2008-06-29 12:05 . 2008-07-11 13:15

2008-06-29 12:05 . 2008-06-29 12:05

2008-06-29 12:05 . 2008-06-24 14:14

2008-06-29 12:05 . 2008-06-24 16:07

2008-06-29 12:05 . 2008-06-29 12:06

2008-06-29 12:05 . 2008-06-24 16:07

2008-06-29 12:05 . 2008-06-29 12:06

2008-06-29 12:05 . 2008-06-29 12:05

2008-06-29 11:51 . 2008-06-29 11:51

2008-06-28 12:22 . 2008-04-14 00:15 26,112 --a------ C:\WINDOWS\system32\drivers\usbser.sys

2008-06-28 12:22 . 2008-04-14 00:15 26,112 --a–c— C:\WINDOWS\system32\dllcache\usbser.sys

2008-06-28 12:22 . 2008-06-28 12:22 0 --ah----- C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf

2008-06-28 12:22 . 2008-06-28 12:22 0 --ah----- C:\WINDOWS\system32\drivers\Msft_Kernel_ccdcmb_01005.Wdf

2008-06-27 17:59 . 2008-06-27 18:02

2008-06-27 16:12 . 2008-07-03 18:32

2008-06-27 16:12 . 2008-06-27 16:12

2008-06-26 21:50 . 2008-06-26 21:50

2008-06-26 21:47 . 2008-06-26 21:48

2008-06-26 16:14 . 2008-07-07 15:25

2008-06-26 13:15 . 2008-07-03 22:19

2008-06-26 13:15 . 1997-09-15 12:19 28,160 --a------ C:\WINDOWS\SFMAN32.DLL

2008-06-26 13:14 . 2008-06-26 13:14

2008-06-26 13:14 . 1996-10-15 18:01 298,496 --a------ C:\WINDOWS\uninst.exe

2008-06-26 13:13 . 2008-06-26 13:13

2008-06-26 13:13 . 2008-07-03 22:19

2008-06-26 11:20 . 2008-06-26 11:20

2008-06-25 17:08 . 2008-06-25 17:08

2008-06-25 16:56 . 2008-06-25 16:56 32 --a------ C:\WINDOWS\plugin.ini

2008-06-25 16:55 . 2008-07-02 16:42

2008-06-25 15:11 . 2008-06-25 15:12

2008-06-25 15:09 . 2008-06-25 15:09

2008-06-25 14:59 . 2008-06-25 14:59

2008-06-25 13:11 . 2008-06-25 13:11

2008-06-25 12:57 . 2008-06-25 12:57

2008-06-25 12:56 . 2008-07-11 13:15

2008-06-25 12:56 . 2008-06-25 12:56

2008-06-25 12:56 . 2008-06-24 14:14

2008-06-25 12:56 . 2008-06-24 16:07

2008-06-25 12:56 . 2008-06-25 12:57

2008-06-25 12:56 . 2008-06-25 12:59

2008-06-25 12:53 . 2008-07-11 13:15

2008-06-25 12:53 . 2008-06-25 12:53

2008-06-25 12:53 . 2008-06-24 14:14

2008-06-25 12:53 . 2008-06-24 16:07

2008-06-25 12:53 . 2008-06-25 12:53

2008-06-25 12:53 . 2008-06-25 12:54

2008-06-25 12:41 . 2008-06-25 12:41

2008-06-25 12:40 . 2008-07-11 13:15

2008-06-25 12:40 . 2008-06-25 12:40

2008-06-25 12:40 . 2008-06-24 14:14

2008-06-25 12:40 . 2008-06-24 16:07

2008-06-25 12:40 . 2008-07-03 12:24

2008-06-25 12:40 . 2008-07-03 23:21

2008-06-25 12:40 . 2008-04-14 22:51 221,184 --a------ C:\WINDOWS\system32\wmpns.dll

2008-06-25 12:23 . 2008-06-25 12:23 107,888 --a------ C:\WINDOWS\system32\CmdLineExt.dll

2008-06-25 10:56 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll

2008-06-25 10:56 . 2007-07-30 19:18 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui

2008-06-25 10:32 . 2008-07-03 10:04

2008-06-25 09:59 . 2008-06-25 12:19

2008-06-25 09:59 . 2004-08-18 11:34 442,368 -ra------ C:\WINDOWS\system32\vp6vfw.dll

2008-06-25 09:22 . 2008-07-10 20:22

2008-06-25 09:22 . 2008-06-25 09:22

2008-06-25 06:37 . 2008-07-10 20:32

2008-06-25 06:37 . 2008-01-21 04:22 333,203 -rahs---- C:\bootmgr

2008-06-25 06:37 . 2008-06-25 06:37 8,192 -ra-s---- C:\BOOTSECT.BAK

2008-06-24 20:49 . 2008-06-25 09:03

2008-06-24 20:12 . 2008-06-24 20:12

.

(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2008-07-11 11:06 --------- d-----w C:\Program Files\Mozilla Thunderbird

2008-07-10 15:17 --------- d-----w C:\Program Files\WapSter

2008-07-10 06:14 --------- d-----w C:\Program Files\PowerISO

2008-07-08 10:07 --------- d–h--w C:\Program Files\InstallShield Installation Information

2008-07-07 20:21 --------- d-----w C:\Program Files\Common Files\Ahead

2008-07-03 08:43 --------- d-----w C:\Program Files\Ashampoo

2008-06-28 10:23 --------- d-----w C:\Documents and Settings\ZyzykD\Dane aplikacji\PC Suite

2008-06-28 10:22 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\PC Suite

2008-06-25 17:51 --------- d-----w C:\Program Files\Gadu-Gadu

2008-06-24 17:42 --------- d-----w C:\Program Files\Menedżer ucznia

2008-06-24 16:05 --------- d-----w C:\Program Files\Realtek

2008-06-24 14:57 --------- d-----w C:\Program Files\CyberLink

2008-06-24 14:51 --------- d-----w C:\Program Files\Rockstar Games

2008-06-24 14:50 --------- d-----w C:\Program Files\DAEMON Tools Lite

2008-06-24 14:46 --------- d-----w C:\Program Files\Microsoft Silverlight

2008-06-24 14:45 --------- d-----w C:\Program Files\Windows Media Connect 2

2008-06-24 14:34 --------- d-----w C:\Program Files\Auslogics

2008-06-24 14:34 --------- d-----w C:\Documents and Settings\ZyzykD\Dane aplikacji\Ahead

2008-06-24 14:34 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\Ahead

2008-06-24 14:32 --------- d-----w C:\Program Files\MarBit

2008-06-24 14:32 --------- d-----w C:\Program Files\foobar2000

2008-06-24 14:31 --------- d-----w C:\Program Files\Nero

2008-06-24 14:31 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\ashampoo

2008-06-24 14:29 717,296 ----a-w C:\WINDOWS\system32\drivers\sptd.sys

2008-06-24 14:29 --------- d-----w C:\Documents and Settings\ZyzykD\Dane aplikacji\DAEMON Tools

2008-06-24 14:22 --------- d-----w C:\Documents and Settings\ZyzykD\Dane aplikacji\Thunderbird

2008-06-24 14:13 --------- d-----w C:\Program Files\CCleaner

2008-06-24 14:11 --------- d-----w C:\Program Files\Windows Defender

2008-06-24 14:08 --------- d-----w C:\Documents and Settings\ZyzykD\Dane aplikacji\Gadu-Gadu

2008-06-24 14:04 --------- d-----w C:\Program Files\MSXML 6.0

2008-06-24 14:04 --------- d-----w C:\Documents and Settings\All Users\Dane aplikacji\Nokia

2008-06-24 14:03 --------- d-----w C:\Program Files\Windows Hacker

2008-06-24 13:55 --------- d-----w C:\Program Files\DIFX

2008-06-24 13:51 23,600 ----a-w C:\WINDOWS\system32\drivers\TVICHW32.SYS

2008-06-24 13:51 15,872 ------w C:\WINDOWS\system32\winskfr.dll

2008-06-24 13:51 119,568 ------w C:\WINDOWS\system32\vb6fr.dll

2008-06-24 13:15 --------- d-----w C:\Program Files\Common Files\InstallShield

2008-06-24 12:28 15,600 ----a-w C:\WINDOWS\gdrv.sys

2008-06-24 12:28 --------- d-----w C:\Documents and Settings\ZyzykD\Dane aplikacji\InstallShield

2008-06-24 12:26 315,392 ----a-w C:\WINDOWS\HideWin.exe

2008-06-24 12:17 --------- d-----w C:\Program Files\microsoft frontpage

2008-06-24 12:16 --------- d-----w C:\Program Files\Usługi online

2008-06-20 17:48 246,784 ----a-w C:\WINDOWS\system32\mswsock.dll

2008-06-20 11:51 361,600 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys

2008-06-20 11:40 138,496 ----a-w C:\WINDOWS\system32\drivers\afd.sys

2008-06-20 11:08 225,856 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys

2008-06-14 17:36 273,024 ----a-w C:\WINDOWS\system32\drivers\bthport.sys

2008-06-13 15:11 4,754,944 ----a-w C:\WINDOWS\system32\drivers\RtkHDAud.sys

2008-06-13 12:50 16,871,936 ----a-w C:\WINDOWS\RTHDCPL.exe

2008-06-12 18:36 7,680 ----a-w C:\WINDOWS\system32\ff_vfw.dll

2008-05-30 23:22 683,520 ----a-w C:\WINDOWS\system32\divx.dll

2008-05-30 12:19 507,400 ----a-w C:\WINDOWS\system32\XAudio2_1.dll

2008-05-30 12:18 238,088 ----a-w C:\WINDOWS\system32\xactengine3_1.dll

2008-05-30 12:17 65,032 ----a-w C:\WINDOWS\system32\XAPOFX1_0.dll

2008-05-30 12:17 25,608 ----a-w C:\WINDOWS\system32\X3DAudio1_4.dll

2008-05-30 12:11 467,984 ----a-w C:\WINDOWS\system32\d3dx10_38.dll

2008-05-30 12:11 3,850,760 ----a-w C:\WINDOWS\system32\D3DX9_38.dll

2008-05-30 12:11 1,491,992 ----a-w C:\WINDOWS\system32\D3DCompiler_38.dll

2008-05-22 22:22 3,596,288 ----a-w C:\WINDOWS\system32\qt-dx331.dll

2008-05-22 22:19 81,920 ----a-w C:\WINDOWS\system32\dpl100.dll

2008-05-09 10:56 90,112 ----a-w C:\WINDOWS\system32\wshext.dll

2008-05-09 10:56 430,080 ----a-w C:\WINDOWS\system32\vbscript.dll

2008-05-09 10:56 180,224 ----a-w C:\WINDOWS\system32\scrobj.dll

2008-05-09 10:56 172,032 ----a-w C:\WINDOWS\system32\scrrun.dll

2008-05-08 11:24 155,648 ----a-w C:\WINDOWS\system32\wscript.exe

2008-05-07 09:07 135,168 ----a-w C:\WINDOWS\system32\cscript.exe

2008-05-07 05:12 1,291,776 ----a-w C:\WINDOWS\system32\quartz.dll

2008-04-25 16:22 206,088 ----a-w C:\WINDOWS\system32\klogon.dll

2008-04-23 07:20 826,368 ----a-w C:\WINDOWS\system32\wininet.dll

2008-04-14 22:51 8,192 ----a-w C:\WINDOWS\system32\wshirda.dll

2008-04-14 22:51 152,064 ----a-w C:\WINDOWS\system32\irftp.exe

2008-04-14 22:50 77,312 ----a-w C:\WINDOWS\system32\usbui.dll

2008-04-14 22:50 75,776 ----a-w C:\WINDOWS\system32\storprop.dll

2008-04-14 22:50 28,672 ----a-w C:\WINDOWS\system32\irmon.dll

2008-04-14 21:16 1,804 ----a-w C:\WINDOWS\system32\Dcache.bin

2008-04-14 21:09 55,296 ----a-w C:\WINDOWS\system32\dmutil.dll

2008-04-14 21:09 52,736 ----a-w C:\WINDOWS\system32\wzcsapi.dll

2008-04-14 21:09 49,152 ----a-w C:\WINDOWS\system32\cnbjmon.dll

2008-04-14 21:09 483,840 ----a-w C:\WINDOWS\system32\wzcsvc.dll

2008-04-14 21:09 47,616 ----a-w C:\WINDOWS\system32\iyuv_32.dll

2008-04-14 21:09 35,328 ----a-w C:\WINDOWS\system32\pid.dll

2008-04-14 21:09 294,912 ----a-w C:\WINDOWS\system32\msh263.drv

2008-04-14 21:09 20,992 ----a-w C:\WINDOWS\system32\hid.dll

2008-04-14 21:09 2,025,472 ----a-w C:\WINDOWS\system32\ntkrnlpa.exe

2008-04-14 21:09 16,896 ----a-w C:\WINDOWS\system32\msyuv.dll

2008-04-14 21:09 15,360 ----a-w C:\WINDOWS\system32\pjlmon.dll

2008-04-14 20:56 332,288 ----a-w C:\WINDOWS\system32\netsetup.exe

2008-04-14 20:52 92,424 ----a-w C:\WINDOWS\system32\rdpdd.dll

2008-04-14 20:52 87,176 ----a-w C:\WINDOWS\system32\rdpwsx.dll

2008-04-14 20:52 12,168 ----a-w C:\WINDOWS\system32\tsddd.dll

2008-04-14 20:50 999,936 ----a-w C:\WINDOWS\system32\syssetup.dll

2008-04-14 20:49 98,304 ----a-w C:\WINDOWS\system32\actxprxy.dll

2008-04-14 20:48 5,632 ----a-w C:\WINDOWS\system32\wmi.dll

2008-04-14 20:48 1,449,472 ----a-w C:\WINDOWS\system32\winntbbu.dll

2008-04-14 20:47 57,375 ----a-w C:\WINDOWS\system32\odbcji32.dll

2008-04-14 20:47 103,424 ----a-w C:\WINDOWS\system32\dpcdll.dll

2008-04-14 20:43 4,126 ----a-w C:\WINDOWS\system32\msdxmlc.dll

2008-04-14 20:42 3,584 ----a-w C:\WINDOWS\system32\msafd.dll

2008-04-14 20:36 3,584 ----a-w C:\WINDOWS\system32\icmp.dll

2008-04-14 20:35 9,344 ----a-w C:\WINDOWS\system32\framebuf.dll

.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

.

*Note* empty entries legit default entries are not shown

REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

“ctfmon.exe”=“C:\WINDOWS\system32\ctfmon.exe” [2008-04-14 22:51 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

“Adobe Reader Speed Launcher”=“C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe” [2008-01-11 22:16 39792]

“NvCplDaemon”=“C:\WINDOWS\system32\NvCpl.dll” [2008-05-16 14:01 13529088]

“NvMediaCenter”=“C:\WINDOWS\system32\NvMcTray.dll” [2008-05-16 14:01 86016]

“AVP”=“C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe” [2008-04-25 18:21 201992]

“Kernel and Hardware Abstraction Layer”=“KHALMNPR.EXE” [2008-02-29 03:12 76304 C:\WINDOWS\KHALMNPR.Exe]

“RTHDCPL”=“RTHDCPL.EXE” [2008-06-13 14:50 16871936 C:\WINDOWS\RTHDCPL.exe]

“nwiz”=“nwiz.exe” [2008-05-16 14:01 1630208 C:\WINDOWS\system32\nwiz.exe]

“BluetoothAuthenticationAgent”=“bthprops.cpl” [2008-04-14 22:51 110592 C:\WINDOWS\system32\bthprops.cpl]

[HKEY_USERS.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

“CTFMON.EXE”=“C:\WINDOWS\system32\CTFMON.EXE” [2008-04-14 22:51 15360]

C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\

BlueSoleil.lnk - C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe [2007-06-06 15:50:42 657168]

Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2008-06-24 18:04:34 91440]

Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe [2008-06-24 18:03:13 805392]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]

2008-05-02 02:42 72208 c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

“VIDC.YV12”= yv12vfw.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]

@=""

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]

“DisableMonitoring”=dword:00000001

[HKLM~\services\sharedaccess\parameters\firewallpolicy\standardprofile]

“EnableFirewall”= 0 (0x0)

[HKLM~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

“%windir%\Network Diagnostic\xpnetdiag.exe”=

“%windir%\system32\sessmgr.exe”=

“C:\Program Files\Bonjour\mDNSResponder.exe”=

“C:\Program Files\iTunes\iTunes.exe”=

“C:\Program Files\Joost\xulrunner\tvprunner.exe”=

“C:\Program Files\FlashGet\flashget.exe”=

“C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe”=

“C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe”=

“C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe”=

“C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe”=

“C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe”=

“C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe”=

“C:\Program Files\HP\Digital Imaging\bin\hposid01.exe”=

“C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe”=

“C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe”=

“C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe”=

“C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe”=

“C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe”=

“C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe”=

“C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe”=

“C:\Program Files\Skype\Phone\Skype.exe”=

“C:\Program Files\Nowe Gadu-Gadu\gg.exe”=

“C:\Program Files\uTorrent\utorrent.exe”=

R0 klbg;Kaspersky Lab Boot Guard Driver;C:\WINDOWS\system32\drivers\klbg.sys [2008-01-29 18:29]

R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service;C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [2007-12-06 21:03]

R3 KLFLTDEV;Kaspersky Lab KLFltDev;C:\WINDOWS\system32\DRIVERS\klfltdev.sys [2008-03-13 19:02]

R3 klim5;Kaspersky Anti-Virus NDIS Filter;C:\WINDOWS\system32\DRIVERS\klim5.sys [2008-03-25 20:07]

S3 nmwcdnsu;Nokia USB Flashing Phone Parent;C:\WINDOWS\system32\drivers\nmwcdnsu.sys [2008-02-01 15:17]

S3 nmwcdnsuc;Nokia USB Flashing Generic;C:\WINDOWS\system32\drivers\nmwcdnsuc.sys [2008-02-01 15:17]

.

Contents of the ‘Scheduled Tasks’ folder

“2008-07-11 11:20:53 C:\WINDOWS\Tasks\MP Scheduled Scan.job”

C:\Program Files\Windows Defender\MpCmdRun.exe

.

**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2008-07-11 13:18:58

Windows 5.1.2600 Dodatek Service Pack 3 NTFS

scanning hidden processes …

scanning hidden autostart entries …

scanning hidden files …

**************************************************************************

.

------------------------ Other Running Processes ------------------------

.

C:\Program Files\Windows Defender\MsMpEng.exe

C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\system32\IoctlSvc.exe

C:\WINDOWS\system32\HPZipm12.exe

C:\WINDOWS\system32\PnkBstrA.exe

C:\WINDOWS\system32\rundll32.exe

.

**************************************************************************

.

Completion time: 2008-07-11 13:25:36 - machine was rebooted

ComboFix-quarantined-files.txt 2008-07-11 11:24:31

Pre-Run: 74,507,497,472 bajtów wolnych

Post-Run: 74,394,640,384 bajt˘w wolnych

340 — E O F — 2008-07-09 05:47:29

yadmiral · 11 Lipiec 2008 11:35

Mysle, ze to moze byc wina sterownika AMD Processor Driver. Moj komp po takiej instalce calkiem ocipial!

Wyrwalem chwasta! I chodzi OK!

huber2t · 11 Lipiec 2008 11:49

Log ok

pakierhakierxd · 11 Lipiec 2008 11:52

usunełem może troszkę lepiej teraz jest;]