I think I've got some spyware/downloader... I've found some unknown new files in my windows and system32 folders...

Please have a look:

suspects are:
dwnrpofk.dll
kdftlboerfg.dll
norlatmx.exe
qvdntlmw.dll
vbgtorfd.dll
rs.txt
gxkjwlob.exe

I attach a HJT log aswell.

Attached Files

hijackthis.log (12.9 KB, 0 views)

New log after a long fight...

Attached Files

hijackthis.log (12.5 KB, 0 views)

I coulnd't wait... I think I get rid of most infections... Here's today HJT log.

Thanks for having a look.

I still have this kpkfmdil.exe, what is it?


Cheers!

Attached Files

hijackthis.log (12.6 KB, 0 views)

Hi raph76,
I'm sorry your thread was missed but I'll let the security staff know.
You should never use HiJackThis on your own unless you're 100% sure of what you're doing, you can do a lot of damage quickly and it may not be fixable except by a reformat.

That is actually true of most of the specialized security tools you may see in HJT threads.
You can instantly make your PC unbootable....

Ok.We need to download ComboFix.exe. This will give a better view to the files running and also hidden on your computer.
Please visit this webpage for download links, and instructions for running the tool

When the tool is finished, it will produce a report for you. Please copy and paste the "C:\ComboFix.txt" along with a new HijackThis log so that we can continue to do any further cleaning that your system may require.
Caution: Never run and remove files with Combofix unless supervised by a security analyst.
NOTE: Combofix prevents autorun of all CDs, floppies and USB devices to assist with malware removal & increase security. If this is an issue or makes it difficult for you - please let me know.

Hi!

Thx for your answer...

Note that I didn't delete or change anything anything with HJT, just used antivirus, windows defender and spybot... Thans for the advices anyway ;o)

Here are the latest logs...

Cheers.

Attached Files

	hijackthis.log (12.5 KB, 1 views)
	ComboFix.txt (18.4 KB, 1 views)