nefunguje www toplist.cz

[bigmuff]

zdravím nechce se mě zobrazit www z nadpisu tématu - mam google chrome,ale zkoušel jsem i firefox a nic.
jinde na foru mě potvrdili že jim www načte normálně.
pošlu log....


Logfile of random's system information tool 1.08 (written by random/random)
Run by jezebel at 2011-08-17 16:25:43
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 49 GB (69%) free of 71 GB
Total RAM: 2046 MB (32% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:27:04, on 17.8.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Launch Manager\LManager.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Rainlendar2\Rainlendar2.exe
C:\Program Files\SharpSoft\Vista Battery Saver\VistaBatterySaver.exe
C:\Windows\System32\StikyNot.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Windows Live\Mail\wlmail.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Photodex\ProShowProducer\proshow.exe
C:\Users\jezebel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\jezebel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\rundll32.exe
C:\Users\jezebel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\jezebel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\ScreenShots\ScreenShots.exe
C:\Users\jezebel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\jezebel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Photodex\ProShowProducer\pxplay.exe
C:\Users\jezebel\Desktop\RSIT.exe
C:\Program Files\trend micro\jezebel.exe
C:\Users\jezebel\AppData\Local\Google\Chrome\Application\chrome.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Complitly - {D27FC31C-6E3D-4305-8D53-ACDAEFA5F862} - C:\Users\jezebel\AppData\Roaming\Complitly\Complitly.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [TrueImageMonitor.exe] "C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [IObit Malware Fighter] "C:\Program Files\IObit\IObit Malware Fighter\IMF.exe" /autostart
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [Rainlendar2] C:\Program Files\Rainlendar2\Rainlendar2.exe
O4 - HKCU\..\Run: [VistaBatterySaver] C:\Program Files\SharpSoft\Vista Battery Saver\VistaBatterySaver.exe
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Google Update] "C:\Users\jezebel\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [VistaBatterySaver] C:\Program Files\SharpSoft\Vista Battery Saver\VistaBatterySaver.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [VistaBatterySaver] C:\Program Files\SharpSoft\Vista Battery Saver\VistaBatterySaver.exe (User 'Default user')
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MIF5BA~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MIF5BA~1\Office12\REFIEBAR.DLL
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - (no file)
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{FAF69007-6EC8-42DC-BF97-048EDAD57493}: NameServer = 10.0.0.1,82.119.243.5
O18 - Protocol: AutorunsDisabled - (no CLSID) - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Služba Acronis Scheduler2 (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Advanced SystemCare Service (AdvancedSystemCareService) - IObit - C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe
O23 - Service: Služba Acronis Nonstop Backup (afcdpsrv) - Acronis - C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: LiveShare P2P Server 10 (RoxLiveShare10) - Unknown owner - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe (file missing)
O23 - Service: Aktualizátor aplikace Scrybe (ScrybeUpdater) - Synaptics, Inc. - C:\Program Files\Synaptics\Scrybe\Service\ScrybeUpdater.exe
O23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\ProShowProducer\ScsiAccess.exe

--
End of file - 6971 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-147091643-2008469039-3508251277-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-147091643-2008469039-3508251277-1001UA.job
C:\Windows\tasks\SmartDefrag.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-07-04 820864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D27FC31C-6E3D-4305-8D53-ACDAEFA5F862}]
Complitly - C:\Users\jezebel\AppData\Roaming\Complitly\Complitly.dll [2011-03-23 139768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-08-17 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-07-04 820864]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TrueImageMonitor.exe"=C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [2010-12-17 5566176]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-07-04 3493720]
"LManager"=C:\PROGRA~1\LAUNCH~1\LManager.exe [2007-10-17 858632]
"IObit Malware Fighter"=C:\Program Files\IObit\IObit Malware Fighter\IMF.exe [2011-07-20 4393816]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2011-07-13 639352]
"Rainlendar2"=C:\Program Files\Rainlendar2\Rainlendar2.exe [2009-02-21 4333568]
"VistaBatterySaver"=C:\Program Files\SharpSoft\Vista Battery Saver\VistaBatterySaver.exe [2008-08-22 481280]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 354304]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2011-02-23 1174016]
"Google Update"=C:\Users\jezebel\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-22 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\jezebel\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-22 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Logitech SetPoint.lnk]
C:\PROGRA~1\Logitech\SetPoint\SetPoint.exe [2009-07-20 813584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^jezebel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Registrace produktu.lnk]
C:\PROGRA~1\COMMON~1\Logishrd\eReg\SetPoint\eReg.exe [2008-11-07 517384]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^jezebel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^USDownloader.exe – zástupce.lnk]
C:\PROGRA~1\USDOWN~1\USDOWN~1.EXE [2011-06-14 547840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2009-07-20 72208]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SASCORE]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-08-17 16:25:43 ----DC---- C:\rsit
2011-08-17 16:05:30 ----AC---- C:\Windows\system32\javaws.exe
2011-08-17 16:05:30 ----AC---- C:\Windows\system32\javaw.exe
2011-08-17 16:05:30 ----AC---- C:\Windows\system32\java.exe
2011-08-14 16:10:22 ----DC---- C:\Program Files\DVDFabPortable
2011-08-10 16:56:29 ----DC---- C:\Program Files\AMD APP
2011-08-10 16:56:26 ----DC---- C:\Program Files\Common Files\ATI Technologies
2011-08-10 16:55:34 ----DC---- C:\Program Files\ATI
2011-08-09 20:15:07 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-08-09 20:15:02 ----A---- C:\Windows\system32\ntkrnlpa.exe
2011-08-09 20:14:53 ----A---- C:\Windows\system32\xmllite.dll
2011-08-09 20:14:29 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-08-09 20:14:25 ----A---- C:\Windows\system32\kernel32.dll
2011-08-09 20:14:25 ----A---- C:\Windows\system32\conhost.exe
2011-08-09 20:14:24 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2011-08-09 20:14:24 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2011-08-09 20:14:24 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2011-08-09 20:14:24 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-08-09 20:14:24 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2011-08-09 20:14:24 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2011-08-09 20:14:24 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2011-08-09 20:14:24 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2011-08-09 20:14:24 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2011-08-09 20:14:24 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2011-08-09 20:14:24 ----A---- C:\Windows\system32\winsrv.dll
2011-08-09 20:14:24 ----A---- C:\Windows\system32\KernelBase.dll
2011-08-09 20:14:23 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2011-08-09 20:14:23 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2011-08-09 20:14:23 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2011-08-09 20:14:23 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2011-08-09 20:14:23 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2011-08-09 20:14:23 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2011-08-09 20:14:23 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2011-08-09 20:14:23 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2011-08-09 20:14:23 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2011-08-09 20:14:23 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2011-08-09 20:14:23 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2011-08-09 20:14:23 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2011-08-09 20:14:23 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2011-08-09 20:14:22 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2011-08-09 20:14:22 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2011-08-09 20:14:22 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2011-08-09 20:14:22 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2011-08-09 20:14:22 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2011-08-09 20:14:19 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-08-09 20:13:12 ----A---- C:\Windows\system32\odbcjt32.dll
2011-08-09 20:13:12 ----A---- C:\Windows\system32\odbccu32.dll
2011-08-09 20:13:12 ----A---- C:\Windows\system32\odbccr32.dll
2011-08-09 20:13:11 ----A---- C:\Windows\system32\odbctrac.dll
2011-08-09 20:13:11 ----A---- C:\Windows\system32\odbccp32.dll
2011-08-08 22:01:31 ----DC---- C:\Program Files\Common Files\Java
2011-08-08 20:36:21 ----DC---- C:\ProgramData\tmp
2011-08-08 20:36:20 ----DC---- C:\ProgramData\hps
2011-08-08 20:33:25 ----DC---- C:\Program Files\Schlecker
2011-08-07 20:03:25 ----DC---- C:\Windows\cs
2011-08-04 19:42:33 ----DC---- C:\Users\jezebel\AppData\Roaming\GlarySoft
2011-08-04 18:57:53 ----DC---- C:\Users\jezebel\AppData\Roaming\Netscape
2011-08-04 18:57:53 ----DC---- C:\Program Files\Photodex Presenter
2011-08-04 18:57:38 ----DC---- C:\Program Files\Photodex
2011-08-04 18:54:29 ----DC---- C:\Users\jezebel\AppData\Roaming\Photodex
2011-08-04 18:54:28 ----DC---- C:\ProgramData\Photodex
2011-07-20 19:01:37 ----DC---- C:\ProgramData\Sony
2011-07-20 17:48:05 ----DC---- C:\Program Files\WYSIWYG Web Builder 7

======List of files/folders modified in the last 1 months======

2011-08-17 16:27:04 ----DC---- C:\Program Files\trend micro
2011-08-17 16:26:18 ----DC---- C:\Users\jezebel\AppData\Roaming\uTorrent
2011-08-17 16:25:48 ----DC---- C:\Windows\Temp
2011-08-17 16:17:23 ----SHDC---- C:\Windows\Installer
2011-08-17 16:17:23 ----HDC---- C:\Config.Msi
2011-08-17 16:05:30 ----DC---- C:\Windows\System32
2011-08-17 16:05:13 ----AC---- C:\Windows\system32\deployJava1.dll
2011-08-17 16:04:13 ----SHD---- C:\System Volume Information
2011-08-17 15:38:48 ----DC---- C:\Windows\system32\config
2011-08-17 15:11:12 ----DC---- C:\Program Files\rajce
2011-08-17 14:24:02 ----DC---- C:\Windows\inf
2011-08-17 14:24:02 ----AC---- C:\Windows\system32\PerfStringBackup.INI
2011-08-17 14:20:15 ----RDC---- C:\Program Files
2011-08-14 15:20:26 ----DC---- C:\Windows
2011-08-14 13:54:53 ----DC---- C:\ProgramData\DVD Shrink
2011-08-14 00:35:10 ----DC---- C:\Users\jezebel\AppData\Roaming\Vso
2011-08-11 21:10:08 ----DC---- C:\Program Files\USDownloader135
2011-08-10 18:49:24 ----DC---- C:\Users\jezebel\AppData\Roaming\esmska
2011-08-10 17:02:50 ----DC---- C:\Windows\system32\catroot
2011-08-10 16:56:26 ----DC---- C:\Program Files\Common Files
2011-08-10 16:56:03 ----DC---- C:\Windows\system32\drivers
2011-08-10 16:55:57 ----D---- C:\Windows\system32\DriverStore
2011-08-09 22:17:55 ----RSDC---- C:\Windows\assembly
2011-08-09 22:17:55 ----DC---- C:\Windows\Microsoft.NET
2011-08-09 21:37:58 ----D---- C:\Windows\winsxs
2011-08-09 20:22:48 ----DC---- C:\Windows\system32\catroot2
2011-08-08 22:01:10 ----DC---- C:\Program Files\Mozilla Firefox
2011-08-08 22:01:05 ----DC---- C:\Program Files\Java
2011-08-08 21:54:21 ----DC---- C:\Windows\SoftwareDistribution
2011-08-08 20:36:21 ----HDC---- C:\ProgramData
2011-08-08 20:07:47 ----DC---- C:\Program Files\Windows Live
2011-08-08 17:29:25 ----DC---- C:\Windows\Logs
2011-08-07 19:59:45 ----DC---- C:\Program Files\Common Files\microsoft shared
2011-08-07 18:08:38 ----DC---- C:\Users\jezebel\AppData\Roaming\Skype
2011-08-07 18:05:07 ----DC---- C:\Users\jezebel\AppData\Roaming\skypePM
2011-08-07 16:57:31 ----DC---- C:\Program Files\CCleaner
2011-08-07 15:24:28 ----DC---- C:\Windows\Prefetch
2011-08-04 20:27:48 ----DC---- C:\Windows\Tasks
2011-08-04 20:27:48 ----DC---- C:\Windows\system32\Tasks
2011-08-04 18:57:53 ----DC---- C:\Users\jezebel\AppData\Roaming\Mozilla
2011-07-23 18:02:27 ----DC---- C:\Program Files\Foxit Software
2011-07-20 19:01:33 ----DC---- C:\Program Files\Sony
2011-07-20 17:47:46 ----AC---- C:\Windows\iun6002.exe
2011-07-19 16:38:57 ----D---- C:\Windows\rescache

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2011-02-23 173440]
R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS\snapman.sys [2011-02-01 170528]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-03-30 431672]
R0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273); C:\Windows\system32\DRIVERS\tdrpm273.sys [2011-02-01 752128]
R0 timounter;Acronis Backup Archive Explorer; C:\Windows\system32\DRIVERS\timntr.sys [2011-02-01 600928]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-07-04 25432]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2011-07-04 441176]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-07-04 309848]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-07-04 43608]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2011-02-23 388096]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-07-04 19544]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-07-04 54104]
R2 irda;IrDA Protocol; C:\Windows\system32\DRIVERS\irda.sys [2009-07-14 96768]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R3 afcdp;afcdp; C:\Windows\system32\DRIVERS\afcdp.sys [2011-02-01 167968]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-07-08 8312832]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-07-08 244736]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2011-06-28 273960]
R3 DKbFltr;Dritek Keyboard Filter Driver; C:\Windows\system32\DRIVERS\DKbFltr.sys [2007-06-14 17408]
R3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 131072]
R3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 16384]
R3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 36864]
R3 FileMonitor;FileMonitor; \??\C:\Program Files\IObit\IObit Malware Fighter\Drivers\win7_x86\FileMonitor.sys [2011-07-11 18768]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2011-06-28 980992]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2011-06-28 207360]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2009-06-17 35472]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2009-06-17 37392]
R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\Windows\System32\Drivers\LUsbFilt.Sys [2009-06-17 28560]
R3 NETw3v32;Ovladač adaptéru Intel(R) PRO/Wireless 3945ABG pro Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-10-30 1786880]
R3 NSCIRDA;NSC Infrared Device Driver; C:\Windows\system32\DRIVERS\nscirda.sys [2008-01-19 30720]
R3 RegFilter;RegFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\win7_x86\regfilter.sys [2011-03-23 30600]
R3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 84992]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2007-02-07 1729152]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-12-22 1321904]
R3 tifm21;tifm21; C:\Windows\system32\drivers\tifm21.sys [2007-05-02 290816]
R3 UrlFilter;UrlFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\win7_x86\UrlFilter.sys [2011-03-23 19280]
R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2011-06-28 661504]
S1 MpKsl1be18116;MpKsl1be18116; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6004D84A-B68E-464D-8925-2B7826146362}\MpKsl1be18116.sys []
S1 MpKsl72e0415a;MpKsl72e0415a; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D66FC8A5-3D87-4F9A-A350-C311D4D73608}\MpKsl72e0415a.sys []
S1 MpKsl748b06e5;MpKsl748b06e5; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C291FA61-EA82-482C-941A-72CF3D914558}\MpKsl748b06e5.sys []
S1 MpKsl856256a2;MpKsl856256a2; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{3CC2CA29-EA84-4CAB-9A2A-7B5A98DDC62E}\MpKsl856256a2.sys []
S1 MpKsl89aee869;MpKsl89aee869; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DCB6B1FA-872A-48C6-B36A-19C268E2ACB8}\MpKsl89aee869.sys []
S1 MpKsld4266acb;MpKsld4266acb; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4A9D6604-0E2E-43C3-BA58-5DFB60B7D4D4}\MpKsld4266acb.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-07-08 8312832]
S3 flash;flash; \??\C:\Windows\system32\drivers\flash.sys [2005-11-17 8064]
S3 i8042HDR;Keyboard Filter Driver; C:\Windows\system32\DRIVERS\i8042HDR.sys [2011-07-02 13224]
S3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista; C:\Windows\system32\DRIVERS\netw5v32.sys [2009-07-14 4231168]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 Pcouffin;Low level access layer for CD devices; C:\Windows\system32\drivers\Pcouffin.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2011-02-23 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2011-02-23 15872]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-14 207360]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-14 980992]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-14 661504]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\system32\drivers\Synth3dVsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2011-02-23 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2009-08-09 29696]
S3 VGPU;VGPU; C:\Windows\system32\drivers\VGPU.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AcrSch2Svc;Služba Acronis Scheduler2; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [2010-12-17 804952]
R2 AdvancedSystemCareService;Advanced SystemCare Service; C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe [2011-04-22 352656]
R2 afcdpsrv;Služba Acronis Nonstop Backup; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [2011-02-01 3246040]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-07-08 176128]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-07-04 42184]
R2 HsfXAudioService;HsfXAudioService; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 IMFservice;IMF Service; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [2011-07-20 820568]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 ScrybeUpdater;Aktualizátor aplikace Scrybe; C:\Program Files\Synaptics\Scrybe\Service\ScrybeUpdater.exe [2011-01-14 1294848]
R2 ScsiAccess;ScsiAccess; C:\Program Files\Photodex\ProShowProducer\ScsiAccess.exe [2011-08-04 186760]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 RoxLiveShare10;LiveShare P2P Server 10; C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe []
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-06-10 31064]
S3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [2009-07-20 121360]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-02-01 1343400]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]

-----------------EOF-----------------

[Roli]

Zdravím, tohle fixni v HJT :

O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKCU\..\Run: [Google Update] "C:\Users\jezebel\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - (no file)

HJT najdeš zde :

C:\Program Files\trend micro\jezebel.exe

Fix znamená že spustíš HJT jako admin

v okně které se ti otevře klikneš na Do a system scan only

v dalším okně najdeš řádky které jsem ti vypsal,

vedle nich je čtvereček do kterého uděláš zatržítko,

pak klikneš na Fix checked které je vlevo dole,

program se ti zeptá zda opravdu ANO s tím samozřejmě souhlasíš a je hotovo.


Přes Odebrat programy odinstaluj vše od IObitu (IObit Malware Fighter)


Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém


Pak použij Mbam z mého podpisu a dej mi sem z něj log, předem nic nemazat !!!

[bigmuff]

zdravím provedeno zde je log

Malwarebytes' Anti-Malware 1.51.1.1800
http://www.malwarebytes.org

Verze databáze: 7506

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

19.8.2011 16:56:01
mbam-log-2011-08-19 (16-55-40).txt

Typ: Rychlá kontrola
Kontrolované objekty: 233688
Uplynulý čas: 7 minut, 58 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 1
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} (Adware.Softomate) -> No action taken.

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

[bigmuff]

toplist jede

[Roli]

To co Mbam našel necj smazat.

Ještě bych pro jistotu použil větší kalibr.


Stáhni a ulož na plochu ComboFix,

spusť aplikaci jako Administrátor a povol instalaci Konzole pro zotavení - Recovery Console.

Poté se zobrazí okno s licenčními podmínkami které potvrdíš kliknutím na ANO,

pak ještě jednou klik na ANO a už to jede.

Celá akce trvá okolo 10 minut ale může i déle, během skenu se nepokoušej spouštět nic jiného.

Při skenovaní může být PC i restartováno nelekat se.

Upozornění: po dobu skenu vypni rezidentní štít Antiviru a AntiSpy programu,

protože Combofix se pokouší napadené soubory smazat a tyto programy mu můžou bránit.

Po dokončení skenu nebo následném restartu aplikace vytvoří log, uložený na C:/Combofix.txt

(při opakovaném použití jsou logy číslovány Combofix2.txt atd.), jeho obsah zkopíruj sem.


V případě nejasností je ZDE obrázkový návod.

[bigmuff]

provádím kontrolu Mbam ale když dám úplnou,tak to hodí chybu a ukončí program-rychlou kontolou to jde
provedu,poté combofix a dám log

[bigmuff]

log z comba

ComboFix 11-08-21.01 - jezebel 21.08.2011 17:26:15.1.2 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.2046.1279 [GMT 2:00]
Spuštěný z: c:\users\jezebel\Downloads\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\jezebel\AppData\Roaming\dvdae
c:\users\jezebel\AppData\Roaming\dvdae\dvdae.config
c:\users\jezebel\AppData\Roaming\dvdae\dvdae.lic
c:\users\jezebel\AppData\Roaming\inst.exe
c:\windows\XSxS
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-07-21 do 2011-08-21 )))))))))))))))))))))))))))))))
.
.
2011-08-19 12:31 . 2011-08-19 12:31 -------- dc----w- c:\users\jezebel\AppData\Roaming\Malwarebytes
2011-08-19 12:31 . 2011-08-19 12:31 -------- dc----w- c:\programdata\Malwarebytes
2011-08-19 12:31 . 2011-07-06 17:52 41272 -c--a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-08-19 12:31 . 2011-08-19 12:38 -------- dc----w- c:\program files\Malwarebytes' Anti-Malware
2011-08-19 12:31 . 2011-07-06 17:52 22712 -c--a-w- c:\windows\system32\drivers\mbam.sys
2011-08-19 12:11 . 2011-08-19 16:11 -------- dc----w- c:\users\jezebel\AppData\Roaming\Photo DVD Maker
2011-08-19 12:11 . 2011-08-19 12:11 -------- dc----w- c:\programdata\Anvsoft
2011-08-19 12:08 . 2011-08-19 12:08 -------- dc----w- c:\program files\AnvSoft
2011-08-17 18:28 . 2011-08-19 11:30 -------- dc----w- c:\program files\Winstep
2011-08-17 14:25 . 2011-08-17 14:27 -------- dc----w- C:\rsit
2011-08-17 14:10 . 2011-08-17 14:11 -------- dc----w- c:\users\jezebel\.jenny
2011-08-14 14:10 . 2011-08-14 14:10 -------- dc----w- c:\program files\DVDFabPortable
2011-08-10 14:56 . 2011-08-10 14:56 -------- dc----w- c:\program files\AMD APP
2011-08-10 14:56 . 2011-08-10 14:56 -------- dc----w- c:\program files\Common Files\ATI Technologies
2011-08-10 14:55 . 2011-08-10 14:55 -------- dc----w- c:\program files\ATI
2011-08-09 18:15 . 2011-08-09 18:23 3912576 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-08-09 18:15 . 2011-08-09 18:23 3967872 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-08-09 18:13 . 2011-08-09 18:22 86016 ----a-w- c:\windows\system32\odbccu32.dll
2011-08-09 18:13 . 2011-08-09 18:22 81920 ----a-w- c:\windows\system32\odbccr32.dll
2011-08-09 18:13 . 2011-08-09 18:22 319488 ----a-w- c:\windows\system32\odbcjt32.dll
2011-08-09 18:13 . 2011-08-09 18:22 94208 ----a-w- c:\program files\Common Files\System\Ole DB\msdaosp.dll
2011-08-09 18:13 . 2011-08-09 18:22 163840 ----a-w- c:\windows\system32\odbctrac.dll
2011-08-09 18:13 . 2011-08-09 18:22 122880 ----a-w- c:\windows\system32\odbccp32.dll
2011-08-08 20:01 . 2011-08-08 20:01 -------- dc----w- c:\program files\Common Files\Java
2011-08-08 18:36 . 2011-08-17 20:49 -------- dc----w- c:\programdata\tmp
2011-08-08 18:36 . 2011-08-17 20:49 -------- dc----w- c:\programdata\hps
2011-08-08 18:33 . 2011-08-17 14:14 -------- dc----w- c:\program files\Schlecker
2011-08-07 18:03 . 2011-08-07 18:03 -------- dc----w- c:\windows\cs
2011-08-07 17:59 . 2011-08-07 17:59 18328 -c--a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-08-04 17:53 . 2011-08-04 17:53 -------- dc----w- c:\users\jezebel\AppData\Local\kompozer.net
2011-08-04 17:42 . 2011-08-04 17:46 -------- dc----w- c:\users\jezebel\AppData\Roaming\GlarySoft
2011-08-04 16:57 . 2011-08-04 16:57 -------- dc----w- c:\users\jezebel\AppData\Roaming\Netscape
2011-08-04 16:57 . 2011-08-18 15:04 -------- dc----w- c:\program files\Photodex
2011-08-04 16:54 . 2011-08-04 16:54 -------- dc----w- c:\users\jezebel\AppData\Roaming\Photodex
2011-08-04 16:54 . 2011-08-04 16:57 -------- dc----w- c:\programdata\Photodex
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-08-17 14:05 . 2011-01-31 17:49 472808 -c--a-w- c:\windows\system32\deployJava1.dll
2011-07-20 15:47 . 2011-06-11 22:19 737280 -c--a-w- c:\windows\iun6002.exe
2011-07-13 14:13 . 2011-07-13 14:12 2334208 ----a-w- c:\windows\system32\win32k.sys
2011-07-11 19:46 . 2011-02-01 19:53 1875560 -c--a-w- c:\windows\system32\auto_reactivate.exe
2011-07-08 18:44 . 2011-05-18 15:01 404640 -c--a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-07-08 04:14 . 2011-07-08 04:14 8312832 -c--a-w- c:\windows\system32\drivers\atikmdag.sys
2011-07-08 03:33 . 2011-07-08 03:33 17940992 -c--a-w- c:\windows\system32\atioglxx.dll
2011-07-08 03:29 . 2011-07-08 03:29 151552 -c--a-w- c:\windows\system32\atiapfxx.exe
2011-07-08 03:29 . 2011-07-08 03:29 689152 -c--a-w- c:\windows\system32\aticfx32.dll
2011-07-08 03:25 . 2011-07-08 03:25 462848 -c--a-w- c:\windows\system32\ATIDEMGX.dll
2011-07-08 03:25 . 2011-07-08 03:25 401408 -c--a-w- c:\windows\system32\atieclxx.exe
2011-07-08 03:24 . 2011-07-08 03:24 176128 -c--a-w- c:\windows\system32\atiesrxx.exe
2011-07-08 03:23 . 2011-07-08 03:23 159744 -c--a-w- c:\windows\system32\atitmmxx.dll
2011-07-08 03:23 . 2009-08-18 00:34 356352 -c--a-w- c:\windows\system32\atipdlxx.dll
2011-07-08 03:23 . 2011-07-08 03:23 278528 -c--a-w- c:\windows\system32\Oemdspif.dll
2011-07-08 03:23 . 2011-07-08 03:23 15872 -c--a-w- c:\windows\system32\atimuixx.dll
2011-07-08 03:22 . 2011-07-08 03:22 43520 -c--a-w- c:\windows\system32\ati2edxx.dll
2011-07-08 03:19 . 2009-07-13 22:09 4275712 -c--a-w- c:\windows\system32\atidxx32.dll
2011-07-08 03:05 . 2011-07-08 03:05 1828864 -c--a-w- c:\windows\system32\atiumdmv.dll
2011-07-08 03:02 . 2011-07-08 03:02 46080 -c--a-w- c:\windows\system32\aticalrt.dll
2011-07-08 03:01 . 2011-07-08 03:01 44032 -c--a-w- c:\windows\system32\aticalcl.dll
2011-07-08 03:00 . 2011-07-08 03:00 4367360 -c--a-w- c:\windows\system32\atiumdag.dll
2011-07-08 02:58 . 2011-07-08 02:58 6740480 -c--a-w- c:\windows\system32\aticaldd.dll
2011-07-08 02:55 . 2011-07-08 02:55 4039680 -c--a-w- c:\windows\system32\atiumdva.dll
2011-07-08 02:54 . 2011-07-08 02:54 52736 -c--a-w- c:\windows\system32\coinst.dll
2011-07-08 02:47 . 2011-07-08 02:47 266240 -c--a-w- c:\windows\system32\atiadlxx.dll
2011-07-08 02:47 . 2011-07-08 02:47 13312 -c--a-w- c:\windows\system32\atiglpxx.dll
2011-07-08 02:47 . 2011-07-08 02:47 32768 -c--a-w- c:\windows\system32\atigktxx.dll
2011-07-08 02:46 . 2011-07-08 02:46 244736 -c--a-w- c:\windows\system32\drivers\atikmpag.sys
2011-07-08 02:46 . 2011-07-08 02:46 31744 -c--a-w- c:\windows\system32\atiuxpag.dll
2011-07-08 02:45 . 2011-07-08 02:45 29184 -c--a-w- c:\windows\system32\atiu9pag.dll
2011-07-08 02:45 . 2011-07-08 02:45 53248 -c--a-w- c:\windows\system32\drivers\ati2erec.dll
2011-07-08 02:40 . 2011-07-08 02:40 52736 -c--a-w- c:\windows\system32\atimpc32.dll
2011-07-08 02:40 . 2011-07-08 02:40 52736 -c--a-w- c:\windows\system32\amdpcom32.dll
2011-07-07 21:37 . 2011-07-07 21:37 53760 -c--a-w- c:\windows\system32\OVDecode.dll
2011-07-07 21:36 . 2011-07-07 21:36 13904896 -c--a-w- c:\windows\system32\amdocl.dll
2011-07-04 11:43 . 2011-05-13 17:55 40112 -c--a-w- c:\windows\avastSS.scr
2011-07-04 11:43 . 2011-05-13 17:55 199304 -c--a-w- c:\windows\system32\aswBoot.exe
2011-07-04 11:36 . 2011-05-13 17:55 441176 -c--a-w- c:\windows\system32\drivers\aswSnx.sys
2011-07-04 11:36 . 2011-05-13 17:55 309848 -c--a-w- c:\windows\system32\drivers\aswSP.sys
2011-07-04 11:35 . 2011-05-13 17:55 43608 -c--a-w- c:\windows\system32\drivers\aswTdi.sys
2011-07-04 11:32 . 2011-05-13 17:55 25432 -c--a-w- c:\windows\system32\drivers\aswRdr.sys
2011-07-04 11:32 . 2011-05-13 17:55 54104 -c--a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-07-04 11:32 . 2011-05-13 17:55 19544 -c--a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-07-02 14:32 . 2011-07-02 14:32 13224 -c--a-w- c:\windows\system32\drivers\i8042HDR.sys
2011-06-28 20:10 . 2011-06-28 20:10 980992 -c--a-w- c:\windows\system32\drivers\HSX_DPV.sys
2011-06-28 20:10 . 2011-06-28 20:10 8704 -c--a-w- c:\windows\system32\drivers\XAudio32.sys
2011-06-28 20:10 . 2011-06-28 20:10 661504 -c--a-w- c:\windows\system32\drivers\HSX_CNXT.sys
2011-06-28 20:10 . 2011-06-28 20:10 410624 -c--a-w- c:\windows\system32\XAudio32.dll
2011-06-28 20:10 . 2011-06-28 20:10 258048 -c--a-w- c:\windows\system32\UCI32M41.dll
2011-06-28 20:10 . 2011-06-28 20:10 207360 -c--a-w- c:\windows\system32\drivers\HSXHWAZL.sys
2011-06-28 20:09 . 2011-06-28 20:09 273960 -c--a-w- c:\windows\system32\drivers\b57nd60x.sys
2011-06-28 18:38 . 2011-06-28 18:37 293376 ----a-w- c:\windows\system32\umpnpmgr.dll
2011-06-28 18:37 . 2011-06-28 18:37 1549312 ----a-w- c:\windows\system32\tquery.dll
2011-06-28 18:37 . 2011-06-28 18:37 1401344 ----a-w- c:\windows\system32\mssrch.dll
2011-06-28 18:37 . 2011-06-28 18:37 427520 ----a-w- c:\windows\system32\SearchIndexer.exe
2011-06-28 18:37 . 2011-06-28 18:37 337408 ----a-w- c:\windows\system32\mssph.dll
2011-06-28 18:37 . 2011-06-28 18:37 164352 ----a-w- c:\windows\system32\SearchProtocolHost.exe
2011-06-28 18:37 . 2011-06-28 18:37 666624 ----a-w- c:\windows\system32\mssvp.dll
2011-06-28 18:37 . 2011-06-28 18:37 86528 ----a-w- c:\windows\system32\SearchFilterHost.exe
2011-06-28 18:37 . 2011-06-28 18:37 197120 ----a-w- c:\windows\system32\mssphtb.dll
2011-06-28 18:37 . 2011-06-28 18:37 59392 ----a-w- c:\windows\system32\msscntrs.dll
2011-06-16 01:34 . 2011-06-16 01:34 79872 -c--a-w- c:\windows\system32\SlotMaximizerAg.dll
2011-06-16 01:34 . 2011-06-16 01:34 2117632 -c--a-w- c:\windows\system32\SlotMaximizerBe.dll
2011-06-15 14:40 . 2011-06-15 14:27 311808 ----a-w- c:\windows\system32\drivers\srv.sys
2011-06-15 14:40 . 2011-06-15 14:27 310272 ----a-w- c:\windows\system32\drivers\srv2.sys
2011-06-15 14:40 . 2011-06-15 14:27 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys
2011-06-15 14:40 . 2011-06-15 14:27 338944 ----a-w- c:\windows\system32\drivers\afd.sys
2011-06-15 14:40 . 2011-06-15 14:28 571904 ----a-w- c:\windows\system32\oleaut32.dll
2011-06-15 14:38 . 2011-06-15 14:38 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-06-15 14:38 . 2011-06-15 14:38 1797632 ----a-w- c:\windows\system32\jscript9.dll
2011-06-15 14:38 . 2011-06-15 14:28 741376 ----a-w- c:\windows\system32\inetcomm.dll
2011-06-15 14:28 . 2011-06-15 14:26 96768 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2011-06-15 14:28 . 2011-06-15 14:26 123904 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-05-25 14:48 . 2011-05-25 14:48 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2011-08-18 15:59 . 2011-03-22 18:28 134104 -c--a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D27FC31C-6E3D-4305-8D53-ACDAEFA5F862}]
2011-03-23 07:48 139768 -c--a-w- c:\users\jezebel\AppData\Roaming\Complitly\Complitly.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-07-04 11:43 122512 -c--a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2007-09-02 495616]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2011-07-13 639352]
"Rainlendar2"="c:\program files\Rainlendar2\Rainlendar2.exe" [2009-02-21 4333568]
"VistaBatterySaver"="c:\program files\SharpSoft\Vista Battery Saver\VistaBatterySaver.exe" [2008-08-22 481280]
"RESTART_STICKY_NOTES"="c:\windows\System32\StikyNot.exe" [2009-07-14 354304]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2011-02-23 1174016]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TrueImageMonitor.exe"="c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe" [2010-12-17 5566176]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-07-04 3493720]
"LManager"="c:\progra~1\LAUNCH~1\LManager.exe" [2007-10-17 858632]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-07-06 449584]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"VistaBatterySaver"="c:\program files\SharpSoft\Vista Battery Saver\VistaBatterySaver.exe" [2008-08-22 481280]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2009-07-20 10:28 72208 -c--a-w- c:\program files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SASCORE]
@=""
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Logitech SetPoint.lnk]
backup=c:\windows\pss\Logitech SetPoint.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^Users^jezebel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Registrace produktu.lnk]
backup=c:\windows\pss\Logitech . Registrace produktu.lnk.Startup
backupExtension=.Startup
.
[HKLM\~\startupfolder\C:^Users^jezebel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^USDownloader.exe – zástupce.lnk]
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2011-06-22 15:38 136176 -c--atw- c:\users\jezebel\AppData\Local\Google\Update\GoogleUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2011-04-08 10:59 254696 -c--a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
R1 MpKsl1be18116;MpKsl1be18116;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{6004D84A-B68E-464D-8925-2B7826146362}\MpKsl1be18116.sys [x]
R1 MpKsl72e0415a;MpKsl72e0415a;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D66FC8A5-3D87-4F9A-A350-C311D4D73608}\MpKsl72e0415a.sys [x]
R1 MpKsl748b06e5;MpKsl748b06e5;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C291FA61-EA82-482C-941A-72CF3D914558}\MpKsl748b06e5.sys [x]
R1 MpKsl856256a2;MpKsl856256a2;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{3CC2CA29-EA84-4CAB-9A2A-7B5A98DDC62E}\MpKsl856256a2.sys [x]
R1 MpKsl89aee869;MpKsl89aee869;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DCB6B1FA-872A-48C6-B36A-19C268E2ACB8}\MpKsl89aee869.sys [x]
R1 MpKsld4266acb;MpKsld4266acb;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{4A9D6604-0E2E-43C3-BA58-5DFB60B7D4D4}\MpKsld4266acb.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 RoxLiveShare10;LiveShare P2P Server 10;c:\program files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe [x]
R2 SessionLauncher;SessionLauncher; [x]
R3 flash;flash;c:\windows\system32\drivers\flash.sys [2005-11-17 8064]
R3 i8042HDR;Keyboard Filter Driver;c:\windows\system32\DRIVERS\i8042HDR.sys [2011-07-02 13224]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2011-07-06 41272]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista;c:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2011-02-23 15872]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
R3 Synth3dVsc;Synth3dVsc; [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2011-02-23 52224]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU; [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-01-31 1343400]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273);c:\windows\system32\DRIVERS\tdrpm273.sys [2011-02-01 752128]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 afcdpsrv;Služba Acronis Nonstop Backup;c:\program files\Common Files\Acronis\CDP\afcdpsrv.exe [2011-02-01 3246040]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2011-07-08 176128]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-07-04 54104]
S2 HsfXAudioService;HsfXAudioService;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-07-06 366640]
S2 ScrybeUpdater;Aktualizátor aplikace Scrybe;c:\program files\Synaptics\Scrybe\Service\ScrybeUpdater.exe [2011-01-14 1294848]
S3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys [2011-02-01 167968]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2011-07-08 8312832]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2011-07-08 244736]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-07-06 22712]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMSWISSARMY
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc SensrSvc
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
HPService REG_MULTI_SZ HPSLPSVC
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
HsfXAudioService REG_MULTI_SZ HsfXAudioService
.
Obsah adresáře 'Naplánované úlohy'
.
2011-08-21 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-147091643-2008469039-3508251277-1001Core.job
- c:\users\jezebel\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-22 15:38]
.
2011-08-21 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-147091643-2008469039-3508251277-1001UA.job
- c:\users\jezebel\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-22 15:38]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MIF5BA~1\Office12\EXCEL.EXE/3000
TCP: Interfaces\{FAF69007-6EC8-42DC-BF97-048EDAD57493}: NameServer = 10.0.0.1,82.119.243.5
FF - ProfilePath - c:\users\jezebel\AppData\Roaming\Mozilla\Firefox\Profiles\82n7item.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=642886&p=
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: browser.xul.error_pages.enabled - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 3000000
FF - user.js: content.maxtextrun - 8191
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: network.http.max-connections - 32
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: network.http.max-persistent-connections-per-proxy - 8
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 0
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2011-08-21 17:43:04
ComboFix-quarantined-files.txt 2011-08-21 15:43
.
Před spuštěním: Volných bajtů: 49 894 457 344
Po spuštění: Volných bajtů: 49 725 333 504
.
- - End Of File - - 09EC30185D014790A09B65A8BABB937B

[bigmuff]

log z comba nevim proč byl 2x daval jsem 1x

[Roli]

Ten log z ComboFixu by stačil jednou

Pokud jsi tak ještě neučinil, přesuň Combofix na plochu

otevři si Poznámkový blok

do něj zkopíruj skript z následujícího okna:

Kód: Vybrat vše

RegLock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

ulož Tebou vytvořený TXT soubor jako CFScript.txt na plochu,

po uložení uchop vytvořený skript levým myšítkem a přesuň ho nad ikonu Combofixu, kde ho upustíš:



Po aplikaci na Tebe vypadne další log, zkopíruj ho sem

Upozornění : může se stát, že po aplikaci skriptu a restartu Windows nenaběhnou,

v tom případě znovu restartuj a přitom mačkej F8 poté zvol Poslední známou funkční konfiguraci


P.S. ještě dotaz, proč tam máš dva antiviry (Avast a Microsoft Security Essentials) ?

[bigmuff]

tady:


ComboFix 11-08-22.03 - jezebel 22.08.2011 18:49:15.2.2 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.2046.1066 [GMT 2:00]
Spuštěný z: c:\users\jezebel\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\jezebel\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-07-22 do 2011-08-22 )))))))))))))))))))))))))))))))
.
.
2011-08-22 17:02 . 2011-08-22 17:02 -------- dc----w- c:\users\Default\AppData\Local\temp
2011-08-22 17:02 . 2011-08-22 17:02 -------- dc----w- c:\users\Administrator\AppData\Local\temp
2011-08-21 15:43 . 2011-08-22 17:02 -------- dc----w- c:\users\jezebel\AppData\Local\temp
2011-08-19 12:31 . 2011-08-19 12:31 -------- dc----w- c:\users\jezebel\AppData\Roaming\Malwarebytes
2011-08-19 12:31 . 2011-08-19 12:31 -------- dc----w- c:\programdata\Malwarebytes
2011-08-19 12:31 . 2011-07-06 17:52 41272 -c--a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-08-19 12:31 . 2011-08-19 12:38 -------- dc----w- c:\program files\Malwarebytes' Anti-Malware
2011-08-19 12:31 . 2011-07-06 17:52 22712 -c--a-w- c:\windows\system32\drivers\mbam.sys
2011-08-19 12:11 . 2011-08-22 14:54 -------- dc----w- c:\users\jezebel\AppData\Roaming\Photo DVD Maker
2011-08-19 12:11 . 2011-08-19 12:11 -------- dc----w- c:\programdata\Anvsoft
2011-08-19 12:08 . 2011-08-19 12:08 -------- dc----w- c:\program files\AnvSoft
2011-08-17 18:28 . 2011-08-19 11:30 -------- dc----w- c:\program files\Winstep
2011-08-17 14:10 . 2011-08-17 14:11 -------- dc----w- c:\users\jezebel\.jenny
2011-08-14 14:10 . 2011-08-14 14:10 -------- dc----w- c:\program files\DVDFabPortable
2011-08-10 14:56 . 2011-08-10 14:56 -------- dc----w- c:\program files\AMD APP
2011-08-10 14:56 . 2011-08-10 14:56 -------- dc----w- c:\program files\Common Files\ATI Technologies
2011-08-10 14:55 . 2011-08-10 14:55 -------- dc----w- c:\program files\ATI
2011-08-09 18:15 . 2011-08-09 18:23 3912576 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-08-09 18:15 . 2011-08-09 18:23 3967872 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-08-09 18:13 . 2011-08-09 18:22 86016 ----a-w- c:\windows\system32\odbccu32.dll
2011-08-09 18:13 . 2011-08-09 18:22 81920 ----a-w- c:\windows\system32\odbccr32.dll
2011-08-09 18:13 . 2011-08-09 18:22 319488 ----a-w- c:\windows\system32\odbcjt32.dll
2011-08-09 18:13 . 2011-08-09 18:22 94208 ----a-w- c:\program files\Common Files\System\Ole DB\msdaosp.dll
2011-08-09 18:13 . 2011-08-09 18:22 163840 ----a-w- c:\windows\system32\odbctrac.dll
2011-08-09 18:13 . 2011-08-09 18:22 122880 ----a-w- c:\windows\system32\odbccp32.dll
2011-08-08 20:01 . 2011-08-08 20:01 -------- dc----w- c:\program files\Common Files\Java
2011-08-08 18:36 . 2011-08-17 20:49 -------- dc----w- c:\programdata\tmp
2011-08-08 18:36 . 2011-08-17 20:49 -------- dc----w- c:\programdata\hps
2011-08-08 18:33 . 2011-08-17 14:14 -------- dc----w- c:\program files\Schlecker
2011-08-07 18:03 . 2011-08-07 18:03 -------- dc----w- c:\windows\cs
2011-08-07 17:59 . 2011-08-07 17:59 18328 -c--a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-08-04 17:53 . 2011-08-04 17:53 -------- dc----w- c:\users\jezebel\AppData\Local\kompozer.net
2011-08-04 17:42 . 2011-08-04 17:46 -------- dc----w- c:\users\jezebel\AppData\Roaming\GlarySoft
2011-08-04 16:57 . 2011-08-04 16:57 -------- dc----w- c:\users\jezebel\AppData\Roaming\Netscape
2011-08-04 16:57 . 2011-08-18 15:04 -------- dc----w- c:\program files\Photodex
2011-08-04 16:54 . 2011-08-04 16:54 -------- dc----w- c:\users\jezebel\AppData\Roaming\Photodex
2011-08-04 16:54 . 2011-08-04 16:57 -------- dc----w- c:\programdata\Photodex
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-08-17 14:05 . 2011-01-31 17:49 472808 -c--a-w- c:\windows\system32\deployJava1.dll
2011-07-20 15:47 . 2011-06-11 22:19 737280 -c--a-w- c:\windows\iun6002.exe
2011-07-13 14:13 . 2011-07-13 14:12 2334208 ----a-w- c:\windows\system32\win32k.sys
2011-07-11 19:46 . 2011-02-01 19:53 1875560 -c--a-w- c:\windows\system32\auto_reactivate.exe
2011-07-08 18:44 . 2011-05-18 15:01 404640 -c--a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-07-08 04:14 . 2011-07-08 04:14 8312832 -c--a-w- c:\windows\system32\drivers\atikmdag.sys
2011-07-08 03:33 . 2011-07-08 03:33 17940992 -c--a-w- c:\windows\system32\atioglxx.dll
2011-07-08 03:29 . 2011-07-08 03:29 151552 -c--a-w- c:\windows\system32\atiapfxx.exe
2011-07-08 03:29 . 2011-07-08 03:29 689152 -c--a-w- c:\windows\system32\aticfx32.dll
2011-07-08 03:25 . 2011-07-08 03:25 462848 -c--a-w- c:\windows\system32\ATIDEMGX.dll
2011-07-08 03:25 . 2011-07-08 03:25 401408 -c--a-w- c:\windows\system32\atieclxx.exe
2011-07-08 03:24 . 2011-07-08 03:24 176128 -c--a-w- c:\windows\system32\atiesrxx.exe
2011-07-08 03:23 . 2011-07-08 03:23 159744 -c--a-w- c:\windows\system32\atitmmxx.dll
2011-07-08 03:23 . 2009-08-18 00:34 356352 -c--a-w- c:\windows\system32\atipdlxx.dll
2011-07-08 03:23 . 2011-07-08 03:23 278528 -c--a-w- c:\windows\system32\Oemdspif.dll
2011-07-08 03:23 . 2011-07-08 03:23 15872 -c--a-w- c:\windows\system32\atimuixx.dll
2011-07-08 03:22 . 2011-07-08 03:22 43520 -c--a-w- c:\windows\system32\ati2edxx.dll
2011-07-08 03:19 . 2009-07-13 22:09 4275712 -c--a-w- c:\windows\system32\atidxx32.dll
2011-07-08 03:05 . 2011-07-08 03:05 1828864 -c--a-w- c:\windows\system32\atiumdmv.dll
2011-07-08 03:02 . 2011-07-08 03:02 46080 -c--a-w- c:\windows\system32\aticalrt.dll
2011-07-08 03:01 . 2011-07-08 03:01 44032 -c--a-w- c:\windows\system32\aticalcl.dll
2011-07-08 03:00 . 2011-07-08 03:00 4367360 -c--a-w- c:\windows\system32\atiumdag.dll
2011-07-08 02:58 . 2011-07-08 02:58 6740480 -c--a-w- c:\windows\system32\aticaldd.dll
2011-07-08 02:55 . 2011-07-08 02:55 4039680 -c--a-w- c:\windows\system32\atiumdva.dll
2011-07-08 02:54 . 2011-07-08 02:54 52736 -c--a-w- c:\windows\system32\coinst.dll
2011-07-08 02:47 . 2011-07-08 02:47 266240 -c--a-w- c:\windows\system32\atiadlxx.dll
2011-07-08 02:47 . 2011-07-08 02:47 13312 -c--a-w- c:\windows\system32\atiglpxx.dll
2011-07-08 02:47 . 2011-07-08 02:47 32768 -c--a-w- c:\windows\system32\atigktxx.dll
2011-07-08 02:46 . 2011-07-08 02:46 244736 -c--a-w- c:\windows\system32\drivers\atikmpag.sys
2011-07-08 02:46 . 2011-07-08 02:46 31744 -c--a-w- c:\windows\system32\atiuxpag.dll
2011-07-08 02:45 . 2011-07-08 02:45 29184 -c--a-w- c:\windows\system32\atiu9pag.dll
2011-07-08 02:45 . 2011-07-08 02:45 53248 -c--a-w- c:\windows\system32\drivers\ati2erec.dll
2011-07-08 02:40 . 2011-07-08 02:40 52736 -c--a-w- c:\windows\system32\atimpc32.dll
2011-07-08 02:40 . 2011-07-08 02:40 52736 -c--a-w- c:\windows\system32\amdpcom32.dll
2011-07-07 21:37 . 2011-07-07 21:37 53760 -c--a-w- c:\windows\system32\OVDecode.dll
2011-07-07 21:36 . 2011-07-07 21:36 13904896 -c--a-w- c:\windows\system32\amdocl.dll
2011-07-04 11:43 . 2011-05-13 17:55 40112 -c--a-w- c:\windows\avastSS.scr
2011-07-04 11:43 . 2011-05-13 17:55 199304 -c--a-w- c:\windows\system32\aswBoot.exe
2011-07-04 11:36 . 2011-05-13 17:55 441176 -c--a-w- c:\windows\system32\drivers\aswSnx.sys
2011-07-04 11:36 . 2011-05-13 17:55 309848 -c--a-w- c:\windows\system32\drivers\aswSP.sys
2011-07-04 11:35 . 2011-05-13 17:55 43608 -c--a-w- c:\windows\system32\drivers\aswTdi.sys
2011-07-04 11:32 . 2011-05-13 17:55 25432 -c--a-w- c:\windows\system32\drivers\aswRdr.sys
2011-07-04 11:32 . 2011-05-13 17:55 54104 -c--a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-07-04 11:32 . 2011-05-13 17:55 19544 -c--a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-07-02 14:32 . 2011-07-02 14:32 13224 -c--a-w- c:\windows\system32\drivers\i8042HDR.sys
2011-06-28 20:10 . 2011-06-28 20:10 980992 -c--a-w- c:\windows\system32\drivers\HSX_DPV.sys
2011-06-28 20:10 . 2011-06-28 20:10 8704 -c--a-w- c:\windows\system32\drivers\XAudio32.sys
2011-06-28 20:10 . 2011-06-28 20:10 661504 -c--a-w- c:\windows\system32\drivers\HSX_CNXT.sys
2011-06-28 20:10 . 2011-06-28 20:10 410624 -c--a-w- c:\windows\system32\XAudio32.dll
2011-06-28 20:10 . 2011-06-28 20:10 258048 -c--a-w- c:\windows\system32\UCI32M41.dll
2011-06-28 20:10 . 2011-06-28 20:10 207360 -c--a-w- c:\windows\system32\drivers\HSXHWAZL.sys
2011-06-28 20:09 . 2011-06-28 20:09 273960 -c--a-w- c:\windows\system32\drivers\b57nd60x.sys
2011-06-28 18:38 . 2011-06-28 18:37 293376 ----a-w- c:\windows\system32\umpnpmgr.dll
2011-06-28 18:37 . 2011-06-28 18:37 1549312 ----a-w- c:\windows\system32\tquery.dll
2011-06-28 18:37 . 2011-06-28 18:37 1401344 ----a-w- c:\windows\system32\mssrch.dll
2011-06-28 18:37 . 2011-06-28 18:37 427520 ----a-w- c:\windows\system32\SearchIndexer.exe
2011-06-28 18:37 . 2011-06-28 18:37 337408 ----a-w- c:\windows\system32\mssph.dll
2011-06-28 18:37 . 2011-06-28 18:37 164352 ----a-w- c:\windows\system32\SearchProtocolHost.exe
2011-06-28 18:37 . 2011-06-28 18:37 666624 ----a-w- c:\windows\system32\mssvp.dll
2011-06-28 18:37 . 2011-06-28 18:37 86528 ----a-w- c:\windows\system32\SearchFilterHost.exe
2011-06-28 18:37 . 2011-06-28 18:37 197120 ----a-w- c:\windows\system32\mssphtb.dll
2011-06-28 18:37 . 2011-06-28 18:37 59392 ----a-w- c:\windows\system32\msscntrs.dll
2011-06-16 01:34 . 2011-06-16 01:34 79872 -c--a-w- c:\windows\system32\SlotMaximizerAg.dll
2011-06-16 01:34 . 2011-06-16 01:34 2117632 -c--a-w- c:\windows\system32\SlotMaximizerBe.dll
2011-06-15 14:40 . 2011-06-15 14:27 311808 ----a-w- c:\windows\system32\drivers\srv.sys
2011-06-15 14:40 . 2011-06-15 14:27 310272 ----a-w- c:\windows\system32\drivers\srv2.sys
2011-06-15 14:40 . 2011-06-15 14:27 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys
2011-06-15 14:40 . 2011-06-15 14:27 338944 ----a-w- c:\windows\system32\drivers\afd.sys
2011-06-15 14:40 . 2011-06-15 14:28 571904 ----a-w- c:\windows\system32\oleaut32.dll
2011-06-15 14:38 . 2011-06-15 14:38 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-06-15 14:38 . 2011-06-15 14:38 1797632 ----a-w- c:\windows\system32\jscript9.dll
2011-06-15 14:38 . 2011-06-15 14:28 741376 ----a-w- c:\windows\system32\inetcomm.dll
2011-06-15 14:28 . 2011-06-15 14:26 96768 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2011-06-15 14:28 . 2011-06-15 14:26 123904 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-05-25 14:48 . 2011-05-25 14:48 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2011-08-18 15:59 . 2011-03-22 18:28 134104 -c--a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D27FC31C-6E3D-4305-8D53-ACDAEFA5F862}]
2011-03-23 07:48 139768 -c--a-w- c:\users\jezebel\AppData\Roaming\Complitly\Complitly.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-07-04 11:43 122512 -c--a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2007-09-02 495616]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2011-07-13 639352]
"Rainlendar2"="c:\program files\Rainlendar2\Rainlendar2.exe" [2009-02-21 4333568]
"VistaBatterySaver"="c:\program files\SharpSoft\Vista Battery Saver\VistaBatterySaver.exe" [2008-08-22 481280]
"RESTART_STICKY_NOTES"="c:\windows\System32\StikyNot.exe" [2009-07-14 354304]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2011-02-23 1174016]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TrueImageMonitor.exe"="c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe" [2010-12-17 5566176]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-07-04 3493720]
"LManager"="c:\progra~1\LAUNCH~1\LManager.exe" [2007-10-17 858632]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-07-06 449584]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"VistaBatterySaver"="c:\program files\SharpSoft\Vista Battery Saver\VistaBatterySaver.exe" [2008-08-22 481280]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2009-07-20 10:28 72208 -c--a-w- c:\program files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SASCORE]
@=""
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Logitech SetPoint.lnk]
backup=c:\windows\pss\Logitech SetPoint.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^Users^jezebel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Registrace produktu.lnk]
backup=c:\windows\pss\Logitech . Registrace produktu.lnk.Startup
backupExtension=.Startup
.
[HKLM\~\startupfolder\C:^Users^jezebel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^USDownloader.exe – zástupce.lnk]
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2011-06-22 15:38 136176 -c--atw- c:\users\jezebel\AppData\Local\Google\Update\GoogleUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2011-04-08 10:59 254696 -c--a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
R1 MpKsl1be18116;MpKsl1be18116;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{6004D84A-B68E-464D-8925-2B7826146362}\MpKsl1be18116.sys [x]
R1 MpKsl72e0415a;MpKsl72e0415a;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D66FC8A5-3D87-4F9A-A350-C311D4D73608}\MpKsl72e0415a.sys [x]
R1 MpKsl748b06e5;MpKsl748b06e5;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C291FA61-EA82-482C-941A-72CF3D914558}\MpKsl748b06e5.sys [x]
R1 MpKsl856256a2;MpKsl856256a2;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{3CC2CA29-EA84-4CAB-9A2A-7B5A98DDC62E}\MpKsl856256a2.sys [x]
R1 MpKsl89aee869;MpKsl89aee869;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DCB6B1FA-872A-48C6-B36A-19C268E2ACB8}\MpKsl89aee869.sys [x]
R1 MpKsld4266acb;MpKsld4266acb;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{4A9D6604-0E2E-43C3-BA58-5DFB60B7D4D4}\MpKsld4266acb.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 RoxLiveShare10;LiveShare P2P Server 10;c:\program files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe [x]
R2 SessionLauncher;SessionLauncher; [x]
R3 flash;flash;c:\windows\system32\drivers\flash.sys [2005-11-17 8064]
R3 i8042HDR;Keyboard Filter Driver;c:\windows\system32\DRIVERS\i8042HDR.sys [2011-07-02 13224]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista;c:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2011-02-23 15872]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
R3 Synth3dVsc;Synth3dVsc; [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2011-02-23 52224]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU; [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-01-31 1343400]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273);c:\windows\system32\DRIVERS\tdrpm273.sys [2011-02-01 752128]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 afcdpsrv;Služba Acronis Nonstop Backup;c:\program files\Common Files\Acronis\CDP\afcdpsrv.exe [2011-02-01 3246040]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2011-07-08 176128]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-07-04 54104]
S2 HsfXAudioService;HsfXAudioService;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-07-06 366640]
S2 ScrybeUpdater;Aktualizátor aplikace Scrybe;c:\program files\Synaptics\Scrybe\Service\ScrybeUpdater.exe [2011-01-14 1294848]
S3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys [2011-02-01 167968]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2011-07-08 8312832]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2011-07-08 244736]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-07-06 22712]
S4 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2011-07-06 41272]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc SensrSvc
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
HPService REG_MULTI_SZ HPSLPSVC
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
HsfXAudioService REG_MULTI_SZ HsfXAudioService
.
Obsah adresáře 'Naplánované úlohy'
.
2011-08-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-147091643-2008469039-3508251277-1001Core.job
- c:\users\jezebel\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-22 15:38]
.
2011-08-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-147091643-2008469039-3508251277-1001UA.job
- c:\users\jezebel\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-22 15:38]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MIF5BA~1\Office12\EXCEL.EXE/3000
TCP: Interfaces\{FAF69007-6EC8-42DC-BF97-048EDAD57493}: NameServer = 10.0.0.1,82.119.243.5
FF - ProfilePath - c:\users\jezebel\AppData\Roaming\Mozilla\Firefox\Profiles\82n7item.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=642886&p=
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: browser.xul.error_pages.enabled - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 3000000
FF - user.js: content.maxtextrun - 8191
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: network.http.max-connections - 32
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: network.http.max-persistent-connections-per-proxy - 8
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 0
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
.
.
Celkový čas: 2011-08-22 19:07:59
ComboFix-quarantined-files.txt 2011-08-22 17:07
.
Před spuštěním: Volných bajtů: 48 092 528 640
Po spuštění: Volných bajtů: 47 940 968 448
.
- - End Of File - - F32BDA9F47F910A3E90FDAAABA4922BA

[bigmuff]

měl bych mět jen avasta

[Roli]

měl bych mět jen avasta

Řekl bych že to stačí, maximálně na občasný sken Super Anti Spy z mého podpisu.


Přes Start >> Spustit zkopíruj do okna:

ComboFix /Uninstall

a stiskni Enter

To odinstaluje ComboFix a smaže s ním související soubory a složky.


Použij T-Cleaner, který smaže případné zbytky po aplikacích které jsme použili.

Jen před jeho stažením a při použití stopni antivir, protože ho muže detekovat jako vir ale není tomu tak.


Přes Odebrat programy odinstaluj Mbam a pak dej vědět jaký je stav PC.

[bigmuff]

DĚKUJI -provedeno,ale zustaly mě tam nějaké složky viz.obr.-mužu je dát odstranit




Uploaded with ImageShack.us

[Roli]

No pokud tam před tím nebyli a vše jede jak má klidně je smaž.

[bigmuff]

ok děkuji