pomaly pocitac - mblast.exe, nelze odinstalovat antivir, atd
zdravim vsechny radce,
mam doma brachuv PC a je nejaky pomaly (256MB RAM neni nic moc, ale takhle by to fungovat snad nemelo).
kamarad mu doporucil "zajimavy" antivir - Mrkvosoft Security Essentials, ktery mu tam i namontoval. Pry od te doby PC nebezi jak byl zvykly.
Antivir jsem skoukl, program vypada nejak podezrele - nejde shodit, pouze kill process, nelze ho ani radne odinstalovat - odinstalace pada a vubec je nejakej nepovedenej.
Po netu jsem na nej cetl royporuplne reakce, ale vylozene chvalu ani ne. Par nevyresenych problemu meho razeni ale ano, zkousel jsem pra utilit na odinstalovani - REVO UNIN, MSICUU od MS, ruzne zastavovani procesu, milon restartu, ale porad v systemu jaksi je.
Pri spusteni msconfig jsem navic nasel v startupu nejaky mblast.exe, coz mi neco rika, takze se na vas obracim s prosbou o radu - log prikladam:
Logfile of random's system information tool 1.06 (written by random/random)
Run by DA199818 at 2010-06-23 20:23:48
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 3 GB (17%) free of 19 GB
Total RAM: 256 MB (20% free)
HijackThis download failed
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{021BB032-80A8-4FB6-B3D5-CF27B1553B95}]
C:\WINDOWS\mslagent\4b_1,0,1,0_mslagent.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-06-09 278128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll [2010-06-10 814648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-06-10 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-06-10 79648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Lištička - C:\Program Files\Seznam.cz\listicka.dll [2010-05-05 1736472]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-06-09 278128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"windows auto update"=msblast.exe []
"Trickler"=c:\documents and settings\da199818\local settings\temp\trickler3016.exe []
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe []
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2005-01-30 98304]
"PrnSys Executable"=C:\Program Files\Hewlett-Packard\hp print screen utility\PrnSys.exe [2002-08-01 36864]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"HPDJ Taskbar Utility"=C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb08.exe [2003-03-26 172032]
"HP Software Update"=C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe [2002-12-17 49152]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
"MSSE"=c:\Program Files\Microsoft Security Essentials\msseces.exe [2010-02-21 1093208]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"mslagent"=C:\WINDOWS\mslagent\mslagent_.exe []
"DWQueuedReporting"=c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe -t []
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="NVDESK32.DLL"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=91000000
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
======List of files/folders created in the last 1 months======
2010-06-23 20:23:50 ----D---- C:\Program Files\trend micro
2010-06-23 20:23:48 ----D---- C:\rsit
2010-06-23 20:06:07 ----D---- C:\WINDOWS\pss
2010-06-23 19:59:41 ----D---- C:\WINDOWS\SxsCaPendDel
2010-06-23 19:44:38 ----D---- C:\Program Files\whoLockMe
2010-06-23 17:11:03 ----D---- C:\Documents and Settings\DA199818\Data aplikací\KONICA MINOLTA
2010-06-23 16:57:58 ----D---- C:\Program Files\KONICA MINOLTA
2010-06-21 20:00:15 ----SHD---- C:\Config.Msi
2010-06-21 19:11:37 ----A---- C:\WINDOWS\system32\javaws.exe
2010-06-21 19:11:36 ----A---- C:\WINDOWS\system32\javaw.exe
2010-06-21 19:11:35 ----A---- C:\WINDOWS\system32\java.exe
2010-06-18 22:53:11 ----HD---- C:\WINDOWS\$NtUninstallKB979402_WM9$
2010-06-18 22:52:53 ----HD---- C:\WINDOWS\$NtUninstallKB951978$
2010-06-18 22:52:13 ----HD---- C:\WINDOWS\$NtUninstallKB956744$
2010-06-18 22:51:09 ----HD---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2010-06-16 18:57:40 ----D---- C:\WINDOWS\Prefetch
2010-06-16 18:49:54 ----HD---- C:\WINDOWS\$NtUninstallKB970430$
2010-06-16 18:46:25 ----HD---- C:\WINDOWS\$NtUninstallKB971737$
2010-06-16 18:43:02 ----HD---- C:\WINDOWS\$NtUninstallKB951376-v2$
2010-06-16 18:39:37 ----HD---- C:\WINDOWS\$NtUninstallKB946648$
2010-06-16 18:36:21 ----HD---- C:\WINDOWS\$NtUninstallKB956803$
2010-06-16 18:32:48 ----HD---- C:\WINDOWS\$NtUninstallKB971468$
2010-06-16 18:29:19 ----HD---- C:\WINDOWS\$NtUninstallKB979683$
2010-06-16 18:25:23 ----HD---- C:\WINDOWS\$NtUninstallKB980232$
2010-06-16 18:21:58 ----HD---- C:\WINDOWS\$NtUninstallKB955759$
2010-06-16 18:18:24 ----HD---- C:\WINDOWS\$NtUninstallKB972270$
2010-06-16 18:14:27 ----HD---- C:\WINDOWS\$NtUninstallKB956572$
2010-06-16 18:10:52 ----HD---- C:\WINDOWS\$NtUninstallKB956844$
2010-06-16 18:07:16 ----HD---- C:\WINDOWS\$NtUninstallKB975561$
2010-06-16 18:04:00 ----HD---- C:\WINDOWS\$NtUninstallKB973869$
2010-06-16 18:00:31 ----HD---- C:\WINDOWS\$NtUninstallKB973687$
2010-06-16 17:57:04 ----HD---- C:\WINDOWS\$NtUninstallKB950762$
2010-06-16 17:53:43 ----HD---- C:\WINDOWS\$NtUninstallKB952287$
2010-06-16 17:50:10 ----HD---- C:\WINDOWS\$NtUninstallKB958644$
2010-06-16 17:46:49 ----HD---- C:\WINDOWS\$NtUninstallKB973687_1$
2010-06-16 17:43:26 ----HD---- C:\WINDOWS\$NtUninstallKB955069$
2010-06-16 17:39:52 ----HD---- C:\WINDOWS\$NtUninstallKB923561$
2010-06-16 17:36:37 ----HD---- C:\WINDOWS\$NtUninstallKB978338$
2010-06-16 17:33:15 ----HD---- C:\WINDOWS\$NtUninstallKB979559$
2010-06-16 17:29:58 ----HD---- C:\WINDOWS\$NtUninstallKB980218$
2010-06-16 17:26:41 ----HD---- C:\WINDOWS\$NtUninstallKB952954$
2010-06-16 17:23:25 ----HD---- C:\WINDOWS\$NtUninstallKB959426$
2010-06-16 17:20:05 ----HD---- C:\WINDOWS\$NtUninstallKB960859$
2010-06-16 17:16:51 ----HD---- C:\WINDOWS\$NtUninstallKB974318$
2010-06-16 17:13:31 ----HD---- C:\WINDOWS\$NtUninstallKB950974$
2010-06-16 17:10:15 ----HD---- C:\WINDOWS\$NtUninstallKB978037$
2010-06-16 17:06:44 ----HD---- C:\WINDOWS\$NtUninstallKB975713$
2010-06-16 17:03:34 ----HD---- C:\WINDOWS\$NtUninstallKB971657$
2010-06-16 17:00:13 ----HD---- C:\WINDOWS\$NtUninstallKB960225$
2010-06-16 16:56:59 ----HD---- C:\WINDOWS\$NtUninstallKB974112$
2010-06-16 16:53:32 ----HD---- C:\WINDOWS\$NtUninstallKB961501$
2010-06-16 16:50:10 ----HD---- C:\WINDOWS\$NtUninstallKB975025$
2010-06-16 16:46:44 ----HD---- C:\WINDOWS\$NtUninstallKB952004$
2010-06-16 16:43:13 ----HD---- C:\WINDOWS\$NtUninstallKB975560$
2010-06-16 16:39:59 ----HD---- C:\WINDOWS\$NtUninstallKB973507$
2010-06-16 16:36:07 ----HD---- C:\WINDOWS\$NtUninstallKB953155$
2010-06-16 16:32:28 ----HD---- C:\WINDOWS\$NtUninstallKB967715$
2010-06-16 16:29:15 ----HD---- C:\WINDOWS\$NtUninstallKB974392$
2010-06-16 16:26:01 ----HD---- C:\WINDOWS\$NtUninstallKB977914$
2010-06-16 16:22:45 ----HD---- C:\WINDOWS\$NtUninstallKB951748$
2010-06-16 16:18:54 ----HD---- C:\WINDOWS\$NtUninstallKB978542$
2010-06-16 16:15:33 ----HD---- C:\WINDOWS\$NtUninstallKB970238$
2010-06-16 16:12:12 ----HD---- C:\WINDOWS\$NtUninstallKB979482$
2010-06-16 16:08:46 ----HD---- C:\WINDOWS\$NtUninstallKB978706$
2010-06-16 16:05:25 ----HD---- C:\WINDOWS\$NtUninstallKB960803$
2010-06-16 16:02:01 ----HD---- C:\WINDOWS\$NtUninstallKB975562$
2010-06-16 15:58:56 ----HD---- C:\WINDOWS\$NtUninstallKB956802$
2010-06-16 15:55:29 ----HD---- C:\WINDOWS\$NtUninstallKB975467$
2010-06-16 15:52:20 ----HD---- C:\WINDOWS\$NtUninstallKB968389$
2010-06-16 15:48:33 ----HD---- C:\WINDOWS\$NtUninstallKB969059$
2010-06-16 15:44:54 ----HD---- C:\WINDOWS\$NtUninstallKB974571$
2010-06-16 15:41:48 ----HD---- C:\WINDOWS\$NtUninstallKB973815$
2010-06-16 15:38:22 ----HD---- C:\WINDOWS\$NtUninstallKB978601$
2010-06-16 15:34:44 ----HD---- C:\WINDOWS\$NtUninstallKB979309$
2010-06-16 15:16:49 ----D---- C:\WINDOWS\l2schemas
2010-06-16 15:16:47 ----D---- C:\WINDOWS\system32\cs
2010-06-16 14:58:47 ----D---- C:\WINDOWS\network diagnostic
2010-06-16 10:53:48 ----N---- C:\WINDOWS\system32\msxml6.dll
2010-06-16 10:53:46 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2010-06-16 10:53:40 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2010-06-16 10:53:39 ----N---- C:\WINDOWS\system32\dot3ui.dll
2010-06-16 10:53:36 ----N---- C:\WINDOWS\system32\wmphoto.dll
2010-06-16 10:53:36 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2010-06-16 10:53:32 ----N---- C:\WINDOWS\system32\mmcex.dll
2010-06-16 10:53:30 ----N---- C:\WINDOWS\system32\qagentrt.dll
2010-06-16 10:53:23 ----N---- C:\WINDOWS\system32\azroles.dll
2010-06-16 10:53:22 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2010-06-16 10:53:21 ----N---- C:\WINDOWS\system32\napstat.exe
2010-06-16 10:53:20 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2010-06-16 10:53:19 ----N---- C:\WINDOWS\system32\eapphost.dll
2010-06-16 10:53:16 ----N---- C:\WINDOWS\system32\mssha.dll
2010-06-16 10:53:16 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2010-06-16 10:53:14 ----N---- C:\WINDOWS\system32\napmontr.dll
2010-06-16 10:53:14 ----N---- C:\WINDOWS\system32\dot3svc.dll
2010-06-16 10:53:14 ----N---- C:\WINDOWS\system32\aaclient.dll
2010-06-16 10:53:13 ----N---- C:\WINDOWS\system32\qagent.dll
2010-06-16 10:53:09 ----N---- C:\WINDOWS\system32\onex.dll
2010-06-16 10:53:09 ----N---- C:\WINDOWS\system32\eappcfg.dll
2010-06-16 10:53:04 ----N---- C:\WINDOWS\system32\eappgnui.dll
2010-06-16 10:53:03 ----N---- C:\WINDOWS\system32\qutil.dll
2010-06-16 10:53:03 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2010-06-16 10:53:01 ----N---- C:\WINDOWS\system32\wlanapi.dll
2010-06-16 10:52:57 ----N---- C:\WINDOWS\system32\qcliprov.dll
2010-06-16 10:52:57 ----N---- C:\WINDOWS\system32\kmsvc.dll
2010-06-16 10:52:55 ----N---- C:\WINDOWS\system32\eapqec.dll
2010-06-16 10:52:53 ----N---- C:\WINDOWS\system32\tspkg.dll
2010-06-16 10:52:52 ----N---- C:\WINDOWS\system32\dot3msm.dll
2010-06-16 10:52:51 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2010-06-16 10:52:49 ----N---- C:\WINDOWS\system32\tsgqec.dll
2010-06-16 10:52:47 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2010-06-16 10:52:47 ----N---- C:\WINDOWS\system32\dimsroam.dll
2010-06-16 10:52:43 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2010-06-16 10:52:42 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2010-06-16 10:52:42 ----N---- C:\WINDOWS\system32\eappprxy.dll
2010-06-16 10:52:39 ----N---- C:\WINDOWS\system32\rasqec.dll
2010-06-16 10:52:37 ----N---- C:\WINDOWS\system32\verclsid.exe
2010-06-16 10:52:34 ----N---- C:\WINDOWS\system32\msxml6r.dll
2010-06-16 10:52:32 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2010-06-16 10:52:32 ----N---- C:\WINDOWS\system32\mmcperf.exe
2010-06-16 10:52:31 ----N---- C:\WINDOWS\system32\eapsvc.dll
2010-06-16 10:52:28 ----N---- C:\WINDOWS\system32\napipsec.dll
2010-06-16 10:52:22 ----N---- C:\WINDOWS\system32\eapolqec.dll
2010-06-16 10:52:15 ----N---- C:\WINDOWS\system32\dot3api.dll
2010-06-16 10:52:13 ----N---- C:\WINDOWS\system32\setupn.exe
2010-06-16 10:52:13 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2010-06-16 10:52:03 ----N---- C:\WINDOWS\system32\credssp.dll
2010-06-16 10:51:53 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2010-06-16 10:51:41 ----N---- C:\WINDOWS\system32\kbdpash.dll
2010-06-16 10:51:41 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2010-06-16 10:51:41 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2010-06-16 10:51:41 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2010-06-16 10:51:39 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2010-06-16 10:50:55 ----N---- C:\WINDOWS\system32\ieencode.dll
2010-06-16 10:49:12 ----A---- C:\WINDOWS\005238_.tmp
2010-06-10 22:47:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-06-10 21:30:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2010-06-10 21:26:10 ----A---- C:\WINDOWS\system32\deployJava1.dll
2010-06-10 20:01:45 ----HD---- C:\WINDOWS\$NtUninstallKB970430_0$
2010-06-10 20:01:21 ----HD---- C:\WINDOWS\$NtUninstallKB971737_0$
2010-06-10 19:19:14 ----A---- C:\VDM31.tmp
2010-06-10 19:19:14 ----A---- C:\VDM30.tmp
2010-06-10 19:18:03 ----A---- C:\WINDOWS\system32\reboot.txt
2010-06-09 22:45:58 ----D---- C:\WINDOWS\ie8updates
2010-06-09 22:44:26 ----D---- C:\Program Files\Seznam.cz
2010-06-09 22:44:19 ----HD---- C:\WINDOWS\msdownld.tmp
2010-06-09 22:43:10 ----D---- C:\WINDOWS\WBEM
2010-06-09 22:40:10 ----HD---- C:\WINDOWS\ie8
2010-06-09 22:40:10 ----D---- C:\WINDOWS\system32\cs-CZ
2010-06-09 22:28:12 ----A---- C:\WINDOWS\system32\MRT.exe
2010-06-09 20:51:18 ----HD---- C:\WINDOWS\$NtUninstallKB980218_0$
2010-06-09 20:51:08 ----HD---- C:\WINDOWS\$NtUninstallKB951376-v2_0$
2010-06-09 20:50:57 ----HD---- C:\WINDOWS\$NtUninstallKB952954_0$
2010-06-09 20:50:46 ----HD---- C:\WINDOWS\$NtUninstallKB959426_0$
2010-06-09 20:50:35 ----HD---- C:\WINDOWS\$NtUninstallKB946648_0$
2010-06-09 20:50:24 ----HD---- C:\WINDOWS\$NtUninstallKB956803_0$
2010-06-09 20:50:13 ----HD---- C:\WINDOWS\$NtUninstallKB960859_0$
2010-06-09 20:50:02 ----HD---- C:\WINDOWS\$NtUninstallKB971468_0$
2010-06-09 20:49:36 ----HD---- C:\WINDOWS\$NtUninstallKB979683_0$
2010-06-09 20:48:50 ----HD---- C:\WINDOWS\$NtUninstallKB978207$
2010-06-09 20:48:24 ----HD---- C:\WINDOWS\$NtUninstallKB958869$
2010-06-09 20:48:15 ----HD---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2010-06-09 20:48:07 ----HD---- C:\WINDOWS\$NtUninstallKB980195$
2010-06-09 20:47:56 ----HD---- C:\WINDOWS\$NtUninstallKB980232_0$
2010-06-09 20:47:42 ----HD---- C:\WINDOWS\$NtUninstallKB981350$
2010-06-09 20:47:28 ----HD---- C:\WINDOWS\$NtUninstallKB955759_0$
2010-06-09 20:47:15 ----HD---- C:\WINDOWS\$NtUninstallKB974318_0$
2010-06-09 20:47:01 ----HD---- C:\WINDOWS\$NtUninstallKB969059_0$
2010-06-09 20:46:48 ----HD---- C:\WINDOWS\$NtUninstallKB950974_0$
2010-06-09 20:46:38 ----HD---- C:\WINDOWS\$NtUninstallKB978037_0$
2010-06-09 20:46:27 ----HD---- C:\WINDOWS\$NtUninstallKB975713_0$
2010-06-09 20:46:15 ----HD---- C:\WINDOWS\$NtUninstallKB971657_0$
2010-06-09 20:46:03 ----HD---- C:\WINDOWS\$NtUninstallKB978338_0$
2010-06-09 20:45:52 ----HD---- C:\WINDOWS\$NtUninstallKB960225_0$
2010-06-09 20:45:41 ----HD---- C:\WINDOWS\$NtUninstallKB972270_0$
2010-06-09 20:45:30 ----HD---- C:\WINDOWS\$NtUninstallKB974112_0$
2010-06-09 20:44:30 ----HD---- C:\WINDOWS\$NtUninstallKB956572_0$
2010-06-09 20:44:03 ----HD---- C:\WINDOWS\$NtUninstallKB956844_0$
2010-06-09 20:43:53 ----HD---- C:\WINDOWS\$NtUninstallKB961501_0$
2010-06-09 20:43:37 ----HD---- C:\WINDOWS\$NtUninstallKB975561_0$
2010-06-09 20:43:22 ----HD---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2010-06-09 20:43:12 ----HD---- C:\WINDOWS\$NtUninstallKB973869_0$
2010-06-09 20:43:01 ----HD---- C:\WINDOWS\$NtUninstallKB975025_0$
2010-06-09 20:42:38 ----HD---- C:\WINDOWS\$NtUninstallKB973540_WM9L$
2010-06-09 20:42:20 ----HD---- C:\WINDOWS\$NtUninstallKB952004_0$
2010-06-09 20:42:03 ----HD---- C:\WINDOWS\$NtUninstallKB974571_0$
2010-06-09 20:41:51 ----HD---- C:\WINDOWS\$NtUninstallKB975560_0$
2010-06-09 20:41:35 ----HD---- C:\WINDOWS\$NtUninstallKB973507_0$
2010-06-09 20:41:19 ----HD---- C:\WINDOWS\$NtUninstallKB977816$
2010-06-09 20:40:19 ----HD---- C:\WINDOWS\$NtUninstallKB973687_0$
2010-06-09 20:33:08 ----HD---- C:\WINDOWS\$NtUninstallKB953155_0$
2010-06-09 20:28:50 ----HD---- C:\WINDOWS\$NtUninstallKB950762_0$
2010-06-09 20:28:37 ----HD---- C:\WINDOWS\$NtUninstallKB981793$
2010-06-09 20:28:25 ----HD---- C:\WINDOWS\$NtUninstallKB979559_0$
2010-06-09 20:28:06 ----HD---- C:\WINDOWS\$NtUninstallKB952287_0$
2010-06-09 20:27:49 ----HD---- C:\WINDOWS\$NtUninstallKB973904$
2010-06-09 20:25:49 ----HD---- C:\WINDOWS\$NtUninstallKB967715_0$
2010-06-09 20:25:34 ----HD---- C:\WINDOWS\$NtUninstallKB950760$
2010-06-09 20:25:16 ----HD---- C:\WINDOWS\$NtUninstallKB974392_0$
2010-06-09 20:24:12 ----HD---- C:\WINDOWS\$NtUninstallKB977914_0$
2010-06-09 20:23:33 ----HD---- C:\WINDOWS\$NtUninstallKB951748_0$
2010-06-09 20:23:16 ----HD---- C:\WINDOWS\$NtUninstallKB971961$
2010-06-09 20:22:33 ----HD---- C:\WINDOWS\$NtUninstallKB978542_0$
2010-06-09 20:21:35 ----HD---- C:\WINDOWS\$NtUninstallKB970238_0$
2010-06-09 20:21:12 ----D---- C:\Program Files\MSECACHE
2010-06-09 20:20:13 ----HD---- C:\WINDOWS\$NtUninstallKB885884$
2010-06-09 20:18:44 ----HD---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2010-06-09 20:17:07 ----HD---- C:\WINDOWS\$NtUninstallKB979482_0$
2010-06-09 20:15:59 ----HD---- C:\WINDOWS\$NtUninstallKB978706_0$
2010-06-09 20:14:46 ----HD---- C:\WINDOWS\$NtUninstallKB958470$
2010-06-09 20:13:35 ----HD---- C:\WINDOWS\$NtUninstallKB960803_0$
2010-06-09 20:13:12 ----HD---- C:\WINDOWS\$NtUninstallKB973815_0$
2010-06-09 20:12:56 ----HD---- C:\WINDOWS\$NtUninstallKB975562_0$
2010-06-09 20:12:43 ----HD---- C:\WINDOWS\$NtUninstallKB958644_0$
2010-06-09 20:12:16 ----HD---- C:\WINDOWS\$NtUninstallKB955069_0$
2010-06-09 20:11:55 ----HD---- C:\WINDOWS\$NtUninstallKB979402_WM9L$
2010-06-09 20:11:45 ----HD---- C:\WINDOWS\$NtUninstallKB956802_0$
2010-06-09 20:10:36 ----HD---- C:\WINDOWS\$NtUninstallKB982381$
2010-06-09 20:10:00 ----HD---- C:\WINDOWS\$NtUninstallKB944338-v2$
2010-06-09 20:09:31 ----HD---- C:\WINDOWS\$NtUninstallKB923561_0$
2010-06-09 20:09:02 ----HD---- C:\WINDOWS\$NtUninstallKB975467_0$
2010-06-09 20:06:09 ----HD---- C:\WINDOWS\$NtUninstallKB968389_0$
2010-06-09 16:13:07 ----N---- C:\WINDOWS\system32\browserchoice.exe
2010-06-09 15:23:19 ----N---- C:\WINDOWS\system32\tzchange.exe
2010-06-09 15:06:48 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2010-06-09 15:06:46 ----A---- C:\WINDOWS\system32\mucltui.dll
2010-06-09 09:41:32 ----HD---- C:\WINDOWS\$NtUninstallKB978601_0$
2010-06-09 09:40:50 ----HD---- C:\WINDOWS\$NtUninstallKB979309_0$
2010-06-09 09:05:50 ----D---- C:\Documents and Settings\DA199818\Data aplikací\Google
2010-06-09 08:58:26 ----D---- C:\Documents and Settings\All Users\Data aplikací\Google
2010-06-09 08:58:24 ----D---- C:\Program Files\Google
2010-06-08 22:18:46 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2010-06-08 22:11:24 ----D---- C:\Program Files\Microsoft Security Essentials
2010-06-08 22:10:22 ----HD---- C:\WINDOWS\$NtUninstallKB914882$
2010-06-08 21:58:35 ----D---- C:\WINDOWS\system32\PreInstall
2010-06-08 21:58:33 ----HD---- C:\WINDOWS\$NtUninstallKB898461$
2010-06-08 21:58:33 ----HD---- C:\WINDOWS\$hf_mig$
2010-06-08 21:57:53 ----HD---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2010-06-08 21:44:03 ----A---- C:\WINDOWS\system32\wmpns.dll
2010-06-08 21:41:51 ----D---- C:\WINDOWS\peernet
2010-06-08 21:41:50 ----D---- C:\WINDOWS\provisioning
2010-06-08 21:38:49 ----D---- C:\WINDOWS\ServicePackFiles
2010-06-08 21:33:49 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2010-06-08 21:30:25 ----HD---- C:\WINDOWS\$NtServicePackUninstall$
2010-06-08 21:30:19 ----D---- C:\WINDOWS\EHome
2010-06-08 21:21:18 ----N---- C:\WINDOWS\system32\spnpinst.exe
2010-06-08 21:08:10 ----SD---- C:\WINDOWS\system32\Microsoft
2010-06-08 21:08:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
2010-06-08 21:04:32 ----D---- C:\WINDOWS\system32\bits
2010-06-08 21:04:18 ----HD---- C:\WINDOWS\$NtUninstallKB842773$
2010-06-08 21:03:58 ----N---- C:\WINDOWS\system32\bitsprx3.dll
2010-06-08 21:03:58 ----N---- C:\WINDOWS\system32\bitsprx2.dll
2010-06-08 21:03:58 ----A---- C:\WINDOWS\system32\winhttp.dll
2010-06-08 21:03:58 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2010-06-08 21:02:24 ----A---- C:\WINDOWS\system32\wups2.dll
2010-06-08 21:02:24 ----A---- C:\WINDOWS\system32\wups.dll
2010-06-08 21:02:24 ----A---- C:\WINDOWS\system32\wucltui.dll.mui
2010-06-08 21:02:24 ----A---- C:\WINDOWS\system32\wucltui.dll
2010-06-08 21:02:24 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui
2010-06-08 21:02:22 ----A---- C:\WINDOWS\system32\wuapi.dll.mui
2010-06-08 21:02:22 ----A---- C:\WINDOWS\system32\wuapi.dll
2010-06-08 21:01:54 ----D---- C:\WINDOWS\SoftwareDistribution
======List of files/folders modified in the last 1 months======
2010-06-23 20:23:28 ----RASH---- C:\boot.ini
2010-06-23 20:23:28 ----A---- C:\WINDOWS\win.ini
2010-06-23 20:23:28 ----A---- C:\WINDOWS\system.ini
2010-06-23 20:18:36 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-06-23 17:16:26 ----A---- C:\WINDOWS\wincmd.ini
2010-06-18 22:53:08 ----A---- C:\WINDOWS\imsins.BAK
2010-06-18 19:09:06 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-06-16 19:03:52 ----A---- C:\WINDOWS\OEWABLog.txt
2010-06-16 18:59:00 ----A---- C:\WINDOWS\setuplog.txt
2010-06-08 21:35:38 ----RASH---- C:\NTDETECT.COM
2010-06-08 19:40:00 ----A---- C:\WINDOWS\ModemLog_Generic SoftK56.txt
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\System32\DRIVERS\amdk7.sys [2008-04-14 41600]
R2 Fallback;Fallback; C:\WINDOWS\System32\DRIVERS\HSF_FALL.sys [2001-10-25 289887]
R2 Fsks;Fsks; C:\WINDOWS\System32\DRIVERS\HSF_FSKS.sys [2001-10-25 115807]
R2 K56;K56; C:\WINDOWS\System32\DRIVERS\HSF_K56K.sys [2001-10-25 391199]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\System32\DRIVERS\mdmxsdk.sys [2004-08-04 11868]
R2 MLPTDR_C;MLPTDR_C; \??\C:\WINDOWS\System32\MLPTDR_C.SYS []
R2 SoftFax;SoftFax; C:\WINDOWS\System32\DRIVERS\HSF_FAXX.sys [2001-10-25 199711]
R2 SpeakerPhone;SpeakerPhone; C:\WINDOWS\System32\DRIVERS\HSF_SPKP.sys [2001-10-25 73279]
R2 Tones;Tones; C:\WINDOWS\System32\DRIVERS\HSF_TONE.sys [2001-10-25 50751]
R2 V124;V124; C:\WINDOWS\System32\DRIVERS\HSF_V124.sys [2001-10-25 488383]
R3 HSF_DP;HSF_DP; C:\WINDOWS\System32\DRIVERS\HSFDPSP2.sys [2004-08-04 1041536]
R3 HSFHWBS2;HSFHWBS2; C:\WINDOWS\System32\DRIVERS\HSFBS2S2.sys [2004-08-04 220032]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
R3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2004-08-04 1897408]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2002-10-02 9856]
R3 rtl8029;Realtek RTL8029(AS)-based PCI Ethernet Adapter NT Driver; C:\WINDOWS\System32\DRIVERS\RTL8029.SYS [2001-08-17 19017]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 VIAudio;Zvukový řadič VIA AC'97 (WDM); C:\WINDOWS\system32\drivers\ac97via.sys [2004-08-04 84480]
R3 winachsf;winachsf; C:\WINDOWS\System32\DRIVERS\HSFCXTS2.sys [2004-08-04 685056]
S3 basic2;basic2; C:\WINDOWS\System32\DRIVERS\HSF_BSC2.sys [2001-10-25 67167]
S3 hidgame;Microsoft Hid to Joystick Port Enabler; C:\WINDOWS\System32\DRIVERS\hidgame.sys [2001-10-25 8576]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 hsf_msft;hsf_msft; C:\WINDOWS\System32\DRIVERS\HSF_MSFT.sys [2001-10-25 542879]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-10-25 12160]
S3 nv4;nv4; C:\WINDOWS\System32\DRIVERS\nv4.sys [2001-08-17 731648]
S3 Rksample;Rksample; C:\WINDOWS\System32\DRIVERS\HSF_SAMP.sys [2001-10-25 57471]
S3 usbprint;Třída USB Printer; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-13 25856]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-06-10 153376]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-06-10 136176]
S2 hpdj;hpdj; C:\DOCUME~1\DA199818\LOCALS~1\Temp\hpdj.exe [2003-03-26 266240]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-06-09 182768]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
pomaly pocitac - mblast.exe, nelze odinstalovat antivir, atd
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
riffman
- VIP
- Příspěvky: 3203
- Registrován: 20 říj 2004 07:00
- Bydliště: České Budějovice
- Kontaktovat uživatele:
Re: pomaly pocitac - mblast.exe, nelze odinstalovat antivir,
zdravim
stal jste se hrdym majitelem Win32.Blastera
stahnete a ulozte nejlepe na plochu ComboFix
pote spustte aplikaci pod uctem s administratorskym opravnenim (nikoli pod uctem s omezenym opravnenim)
v operacnich systemech Windows Vista a Windows 7 spoustejte aplikaci jako spravce (kliknutim pravym mysitkem na ikonu aplikace a volbou "Spustit jako spravce"
hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano:
dale muze dojit k varovani ohledne rezidentniho stitu vaseho antiviru a upozorneni na nenainstalovanou konzoli pro zotaveni; tu zatim neinstalujte.
v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho
behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)
upozorneni: pokud pouzivate antispyware s rezidentnim stitem, deaktivujte jeho rezidentni stit, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim Combofixu s rezidentem antispyware
po restartu aplikace vytvori log, ulozeny na C:/Combofix.txt (pri opakovanem pouziti jsou logy oznaceny Combofix2.txt atd.), jeho obsah vlozte sem
stal jste se hrdym majitelem Win32.Blastera
stahnete a ulozte nejlepe na plochu ComboFix
pote spustte aplikaci pod uctem s administratorskym opravnenim (nikoli pod uctem s omezenym opravnenim)
v operacnich systemech Windows Vista a Windows 7 spoustejte aplikaci jako spravce (kliknutim pravym mysitkem na ikonu aplikace a volbou "Spustit jako spravce"
hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano:
dale muze dojit k varovani ohledne rezidentniho stitu vaseho antiviru a upozorneni na nenainstalovanou konzoli pro zotaveni; tu zatim neinstalujte.
v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho
behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)
upozorneni: pokud pouzivate antispyware s rezidentnim stitem, deaktivujte jeho rezidentni stit, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim Combofixu s rezidentem antispyware
po restartu aplikace vytvori log, ulozeny na C:/Combofix.txt (pri opakovanem pouziti jsou logy oznaceny Combofix2.txt atd.), jeho obsah vlozte sem
Give us a chance to live
Give us a chance to die
Give us a chance to be free
Without fire from the sky
Give us a chance to love
Give us a chance to hate
Give us a chance, before you kill us all
Give us a chance to die
Give us a chance to be free
Without fire from the sky
Give us a chance to love
Give us a chance to hate
Give us a chance, before you kill us all
Re: pomaly pocitac - mblast.exe, nelze odinstalovat antivir,
combofix nelze spustit. zkousel jsem i restart, ale po kliknuti na program, se objevi ten laoder, nacte se, zmizi, probliknou vsechny ikony na plose a nic... 
-
riffman
- VIP
- Příspěvky: 3203
- Registrován: 20 říj 2004 07:00
- Bydliště: České Budějovice
- Kontaktovat uživatele:
Re: pomaly pocitac - mblast.exe, nelze odinstalovat antivir,
zkuste to v nouzovem rezimu
Give us a chance to live
Give us a chance to die
Give us a chance to be free
Without fire from the sky
Give us a chance to love
Give us a chance to hate
Give us a chance, before you kill us all
Give us a chance to die
Give us a chance to be free
Without fire from the sky
Give us a chance to love
Give us a chance to hate
Give us a chance, before you kill us all
Re: pomaly pocitac - mblast.exe, nelze odinstalovat antivir,
ok, povedlo se. zde je log:
ComboFix 10-06-23.01 - Administrator . 06. 2010 20:56:02.1.1 - FAT32x86 MINIMAL
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.256.160 [GMT 2:00]
Spuštěný z: c:\documents and settings\Administrator\Plocha\ComboFix.exe
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\program files\\setup.exe
c:\program files\instant access
c:\program files\Setup.exe
C:\VDM195.tmp
C:\VDM196.tmp
C:\VDM198.tmp
C:\VDM199.tmp
C:\VDM19A.tmp
C:\VDM19B.tmp
C:\VDM19D.tmp
C:\VDM19E.tmp
C:\VDM1A0.tmp
C:\VDM1A1.tmp
C:\VDM1A2.tmp
C:\VDM1A3.tmp
C:\VDM30.tmp
C:\VDM31.tmp
c:\windows\Downloaded Program Files\nethv32.inf
c:\windows\Downloaded Program Files\netia32.inf
c:\windows\mslagent
c:\windows\mslagent\3_1,0,1,2_mslagent.dll
c:\windows\mslagent\acknowledged.mc2
c:\windows\mslagent\CompManagerPersist.mc2
c:\windows\mslagent\NaviPersist.mc2
c:\windows\mslagent\NaviPromo.mc2
c:\windows\mslagent\OrderPersist.mc2
c:\windows\mslagent\TimePersist
c:\windows\system\oeminfo.ini
c:\windows\system32\msegcompid.dll
.
((((((((((((((((((((((((( Soubory vytvořené od 2010-05-24 do 2010-06-24 )))))))))))))))))))))))))))))))
.
2010-06-24 18:52 . 2010-06-24 18:52 -------- d-sh--w- c:\documents and settings\Administrator\IETldCache
2010-06-23 18:23 . 2010-06-23 18:23 -------- d-----w- c:\program files\trend micro
2010-06-23 18:23 . 2010-06-23 18:23 -------- d-----w- C:\rsit
2010-06-23 17:59 . 2010-06-23 17:59 -------- d-----w- c:\windows\SxsCaPendDel
2010-06-23 17:44 . 2010-06-23 17:44 -------- d-----w- c:\program files\whoLockMe
2010-06-23 14:57 . 2010-06-23 14:58 -------- d-----w- c:\program files\KONICA MINOLTA
2010-06-16 16:57 . 2010-06-16 16:57 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2010-06-16 13:16 . 2010-06-16 13:16 -------- d-----w- c:\windows\l2schemas
2010-06-16 13:16 . 2010-06-16 13:16 -------- d-----w- c:\windows\system32\cs
2010-06-16 08:52 . 2008-04-14 03:22 897024 ------w- c:\windows\system32\dllcache\wmspdmoe.dll
2010-06-16 08:51 . 2008-04-13 18:40 10240 ------w- c:\windows\system32\drivers\sffp_mmc.sys
2010-06-16 08:50 . 2008-04-14 03:21 81920 ------w- c:\windows\system32\ieencode.dll
2010-06-16 08:49 . 2008-04-14 03:22 27136 ------w- c:\windows\system32\dllcache\wmdmlog.dll
2010-06-16 08:49 . 2008-04-14 03:21 10240 ------w- c:\windows\system32\dllcache\npwmsdrm.dll
2010-06-16 08:49 . 2008-04-14 03:21 6656 ------w- c:\windows\system32\dllcache\laprxy.dll
2010-06-16 08:49 . 2008-04-14 03:22 4639 ------w- c:\windows\system32\dllcache\mplayer2.exe
2010-06-16 08:49 . 2008-04-14 03:22 23552 ------w- c:\windows\system32\dllcache\wmdmps.dll
2010-06-16 08:49 . 2008-04-14 03:22 20480 ------w- c:\windows\system32\dllcache\wmpui.dll
2010-06-16 08:49 . 2008-04-14 03:22 20480 ------w- c:\windows\system32\dllcache\wmpcore.dll
2010-06-16 08:49 . 2008-04-14 03:22 20480 ------w- c:\windows\system32\dllcache\wmpcd.dll
2010-06-16 08:49 . 2008-04-14 02:19 173056 ------w- c:\windows\system32\dllcache\wmerror.dll
2010-06-16 08:49 . 2008-04-14 02:09 7680 ------w- c:\windows\system32\dllcache\asferror.dll
2010-06-16 08:49 . 2008-04-14 03:18 4126 ------w- c:\windows\system32\dllcache\msdxmlc.dll
2010-06-16 08:48 . 2002-04-03 12:35 403 ------w- c:\windows\system32\dllcache\npdrmv2.zip
2010-06-16 08:48 . 2001-10-25 10:00 22060 ------w- c:\windows\system32\dllcache\npds.zip
2010-06-10 20:01 . 2010-06-10 20:01 -------- d-----w- c:\documents and settings\DA199818\.fio
2010-06-10 19:26 . 2010-06-10 19:25 411368 ----a-w- c:\windows\system32\deployJava1.dll
2010-06-10 18:47 . 2010-06-10 18:47 -------- d-----w- c:\documents and settings\DA199818\kbpki
2010-06-10 18:31 . 2010-06-10 18:31 -------- d-sh--w- c:\documents and settings\DA199818\IECompatCache
2010-06-10 18:26 . 2010-06-10 18:26 -------- d-sh--w- c:\documents and settings\DA199818\PrivacIE
2010-06-09 20:54 . 2010-06-09 20:55 -------- d-sh--w- c:\documents and settings\DA199818\IETldCache
2010-06-09 20:45 . 2010-06-09 20:46 -------- d-----w- c:\windows\ie8updates
2010-06-09 20:44 . 2010-06-09 20:44 -------- d-----w- c:\program files\Seznam.cz
2010-06-09 20:44 . 2010-06-09 20:44 -------- d--h--w- c:\windows\msdownld.tmp
2010-06-09 20:40 . 2010-06-09 20:40 -------- d--h--w- c:\windows\ie8
2010-06-09 20:40 . 2010-06-09 20:40 -------- d-----w- c:\windows\system32\cs-CZ
2010-06-09 20:27 . 2010-05-06 10:35 55296 ------w- c:\windows\system32\dllcache\msfeedsbs.dll
2010-06-09 20:27 . 2010-05-06 10:35 599040 ------w- c:\windows\system32\dllcache\msfeeds.dll
2010-06-09 20:27 . 2010-05-06 10:35 247808 ------w- c:\windows\system32\dllcache\ieproxy.dll
2010-06-09 20:27 . 2010-05-06 10:35 12800 ------w- c:\windows\system32\dllcache\xpshims.dll
2010-06-09 20:27 . 2010-05-06 10:35 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll
2010-06-09 20:27 . 2010-05-06 10:35 1985536 ------w- c:\windows\system32\dllcache\iertutil.dll
2010-06-09 20:27 . 2010-05-06 10:35 11076096 ------w- c:\windows\system32\dllcache\ieframe.dll
2010-06-09 20:26 . 2010-04-16 11:43 41984 ------w- c:\windows\system32\dllcache\iecompat.dll
2010-06-09 18:21 . 2010-06-09 18:21 -------- d-----w- c:\program files\MSECACHE
2010-06-09 15:02 . 2008-10-15 16:38 337408 ------w- c:\windows\system32\dllcache\netapi32.dll
2010-06-09 15:00 . 2009-12-31 16:50 353792 ------w- c:\windows\system32\dllcache\srv.sys
2010-06-09 14:58 . 2010-02-24 13:11 455680 ------w- c:\windows\system32\dllcache\mrxsmb.sys
2010-06-09 14:57 . 2009-10-15 16:32 81920 ------w- c:\windows\system32\dllcache\fontsub.dll
2010-06-09 14:57 . 2009-10-15 16:32 119808 ------w- c:\windows\system32\dllcache\t2embed.dll
2010-06-09 14:48 . 2009-02-06 10:10 227840 ------w- c:\windows\system32\dllcache\wmiprvse.exe
2010-06-09 14:48 . 2010-02-17 12:09 2192128 ------w- c:\windows\system32\dllcache\ntoskrnl.exe
2010-06-09 14:48 . 2009-03-06 14:23 284160 ------w- c:\windows\system32\dllcache\pdh.dll
2010-06-09 14:48 . 2009-02-09 11:25 111104 ------w- c:\windows\system32\dllcache\services.exe
2010-06-09 14:47 . 2009-02-09 10:56 401408 ------w- c:\windows\system32\dllcache\rpcss.dll
2010-06-09 14:47 . 2009-02-09 10:56 473600 ------w- c:\windows\system32\dllcache\fastprox.dll
2010-06-09 14:47 . 2009-02-09 10:56 684032 ------w- c:\windows\system32\dllcache\advapi32.dll
2010-06-09 14:47 . 2009-02-09 10:56 453120 ------w- c:\windows\system32\dllcache\wmiprvsd.dll
2010-06-09 14:47 . 2009-02-09 10:56 709632 ------w- c:\windows\system32\dllcache\ntdll.dll
2010-06-09 14:47 . 2010-02-16 19:08 2148352 ------w- c:\windows\system32\dllcache\ntkrnlmp.exe
2010-06-09 14:47 . 2010-02-16 19:08 2026496 ------w- c:\windows\system32\dllcache\ntkrpamp.exe
2010-06-09 14:44 . 2009-06-21 21:48 153088 ------w- c:\windows\system32\dllcache\triedit.dll
2010-06-09 14:40 . 2009-10-23 15:28 3558912 ------w- c:\windows\system32\dllcache\moviemk.exe
2010-06-09 14:21 . 2008-05-08 14:02 203136 ------w- c:\windows\system32\dllcache\rmcast.sys
2010-06-09 14:21 . 2008-05-01 14:37 331776 ------w- c:\windows\system32\dllcache\msadce.dll
2010-06-09 14:13 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe
2010-06-09 13:54 . 2009-07-31 04:35 1172480 ------w- c:\windows\system32\dllcache\msxml3.dll
2010-06-09 13:37 . 2008-06-14 17:35 272128 ------w- c:\windows\system32\dllcache\bthport.sys
2010-06-09 13:35 . 2009-11-21 16:03 471552 ------w- c:\windows\system32\dllcache\aclayers.dll
2010-06-09 13:22 . 2009-06-10 07:21 2066432 ------w- c:\windows\system32\dllcache\mstscax.dll
2010-06-09 13:14 . 2008-04-21 21:15 216576 ------w- c:\windows\system32\dllcache\wordpad.exe
2010-06-09 13:06 . 2009-08-06 17:23 274288 ----a-w- c:\windows\system32\mucltui.dll
2010-06-09 06:58 . 2010-06-09 06:58 -------- d-----w- c:\program files\Google
2010-06-08 20:18 . 2010-05-21 12:14 221568 ------w- c:\windows\system32\MpSigStub.exe
2010-06-08 20:11 . 2010-06-08 20:11 -------- d-----w- c:\program files\Microsoft Security Essentials
2010-06-08 19:58 . 2010-06-08 19:58 -------- d--h--w- c:\windows\$hf_mig$
2010-06-08 19:51 . 2010-06-08 19:51 -------- d-----w- c:\documents and settings\LocalService\Nabídka Start
2010-06-08 19:50 . 2010-06-08 19:50 -------- d-----w- c:\windows\system32\wbem\AutoRecover
2010-06-08 19:44 . 2008-04-14 03:22 221184 ----a-w- c:\windows\system32\wmpns.dll
2010-06-08 19:41 . 2010-06-08 19:41 -------- d-----w- c:\windows\peernet
2010-06-08 19:41 . 2010-06-08 19:41 -------- d-----w- c:\windows\provisioning
2010-06-08 19:38 . 2010-06-08 19:38 -------- d-----w- c:\windows\ServicePackFiles
2010-06-08 19:33 . 2009-01-07 16:20 26144 ----a-w- c:\windows\system32\spupdsvc.exe
2010-06-08 19:30 . 2010-06-08 19:30 -------- d-----w- c:\windows\EHome
2010-06-08 19:21 . 2008-04-14 06:52 11264 ------w- c:\windows\system32\spnpinst.exe
2010-06-08 19:21 . 2004-08-02 12:20 4569 ------w- c:\windows\system32\secupd.dat
2010-06-08 19:08 . 2010-06-08 19:08 -------- d-s---w- c:\windows\system32\Microsoft
2010-06-08 19:04 . 2010-06-08 19:04 -------- d-----w- c:\windows\system32\bits
2010-06-08 19:03 . 2009-08-25 09:19 354816 ----a-w- c:\windows\system32\winhttp.dll
2010-06-08 19:03 . 2008-04-14 03:21 18944 ----a-w- c:\windows\system32\qmgrprxy.dll
2010-06-08 19:03 . 2008-04-14 03:21 8192 ------w- c:\windows\system32\bitsprx2.dll
2010-06-08 19:03 . 2008-04-14 03:21 7168 ------w- c:\windows\system32\bitsprx3.dll
2010-06-08 19:02 . 2009-08-06 17:24 327896 ----a-w- c:\windows\system32\wucltui.dll
2010-06-08 19:02 . 2009-08-06 17:24 44768 ----a-w- c:\windows\system32\wups2.dll
2010-06-08 19:02 . 2009-08-06 17:24 35552 ----a-w- c:\windows\system32\wups.dll
2010-06-08 19:02 . 2009-08-06 17:23 575704 ----a-w- c:\windows\system32\wuapi.dll
2010-06-08 17:36 . 2001-08-17 18:12 19017 ----a-w- c:\windows\system32\drivers\RTL8029.sys
2010-06-08 17:36 . 2001-08-17 18:12 19017 ----a-w- c:\windows\system32\dllcache\rtl8029.sys
2010-05-28 15:00 . 2010-05-28 15:00 -------- d-----w- c:\documents and settings\Jech
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-06-18 17:09 . 1979-12-31 22:00 46944 ----a-w- c:\windows\system32\perfc005.dat
2010-06-18 17:09 . 1979-12-31 22:00 311364 ----a-w- c:\windows\system32\perfh005.dat
2010-06-16 13:26 . 2003-11-20 15:32 76825 ----a-w- c:\windows\PCHEALTH\HELPCTR\OfflineCache\index.dat
2010-06-16 13:26 . 2002-03-11 06:26 2684 ----a-w- c:\windows\PCHEALTH\HELPCTR\PackageStore\SkuStore.bin
2010-06-08 19:44 . 2003-11-20 15:32 8972 ----a-w- c:\windows\PCHEALTH\HELPCTR\Config\Cntstore.bin
2010-05-06 10:35 . 2001-10-25 09:00 916480 ----a-w- c:\windows\system32\wininet.dll
2010-05-02 08:09 . 2001-10-25 09:00 1851264 ----a-w- c:\windows\system32\win32k.sys
2010-04-20 05:32 . 2001-10-25 09:00 285696 ----a-w- c:\windows\system32\atmfd.dll
2002-03-21 13:53 . 2002-03-21 13:53 507508 ----a-w- c:\program files\slovnik.exe
2000-11-28 22:35 . 2000-11-28 22:35 9563968 ----a-w- c:\program files\sp2upd.exe
2000-07-17 10:34 . 2000-07-17 10:34 3404 ----a-w- c:\program files\Source.ini
2000-06-13 19:16 . 2000-06-13 19:16 24887296 ------w- c:\program files\DATA1.msp
2000-06-13 02:55 . 2000-06-13 02:55 11857408 ------w- c:\program files\DATA2.msp
2000-06-06 09:58 . 2000-06-06 09:58 7817216 ------w- c:\program files\OWS.msp
2000-05-11 08:57 . 2000-05-11 08:57 8314 ------w- c:\program files\O9sr1.hlp
2000-05-11 08:57 . 2000-05-11 08:57 3700 ------w- c:\program files\Eula.txt
2000-04-10 12:45 . 2000-04-10 12:45 28160 ------w- c:\program files\README.DOC
2000-02-01 17:15 . 2000-02-01 17:15 1878784 ------r- c:\program files\Instmsiw.exe
2000-02-01 17:13 . 2000-02-01 17:13 1857280 ------r- c:\program files\Instmsi.exe
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2005-01-30 98304]
"PrnSys Executable"="c:\program files\Hewlett-Packard\hp print screen utility\PrnSys.exe" [2002-08-01 36864]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"HPDJ Taskbar Utility"="c:\windows\System32\spool\drivers\w32x86\3\hpztsb08.exe" [2003-03-26 172032]
"HP Software Update"="c:\program files\Hewlett-Packard\HP Software Update\HPWuSchd.exe" [2002-12-17 49152]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792]
"MSSE"="c:\program files\Microsoft Security Essentials\msseces.exe" [2010-02-21 1093208]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\system32\nvdesk32.dll
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [10. 6. 2010 21:31 136176]
S2 MLPTDR_C;MLPTDR_C;c:\windows\system32\MLPTDR_C.SYS [25. 3. 2002 20:55 19296]
.
Obsah adresáře 'Naplánované úlohy'
2010-06-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-06-10 19:30]
2010-06-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-06-10 19:30]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.autocont.cz
IE: {{0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - c:\program files\Seznam.cz\listicka.dll
Trusted Zone: mojebanka.cz\*
TCP: {15A46346-3024-46F5-891E-A3465B92E613} = 10.0.0.138
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
HKLM-Run-windows auto update - msblast.exe
HKLM-Run-Trickler - c:\documents and settings\da199818\local settings\temp\trickler3016.exe
HKLM-Run-SunJavaUpdateSched - c:\program files\Java\jre6\bin\jusched.exe
HKU-Default-Run-DWQueuedReporting - c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe
AddRemove-V - D:\!WINPROHL.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-06-24 21:04
Windows 5.1.2600 Service Pack 3 FAT NTAPI
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
.
Celkový čas: 2010-06-24 21:07:18
ComboFix-quarantined-files.txt 2010-06-24 19:07
Před spuštěním: 3 507 748 864
Po spuštění: 3 761 668 096
- - End Of File - - A769DE4201AA4AA846592E1040D6ABA2
ComboFix 10-06-23.01 - Administrator . 06. 2010 20:56:02.1.1 - FAT32x86 MINIMAL
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.256.160 [GMT 2:00]
Spuštěný z: c:\documents and settings\Administrator\Plocha\ComboFix.exe
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\program files\\setup.exe
c:\program files\instant access
c:\program files\Setup.exe
C:\VDM195.tmp
C:\VDM196.tmp
C:\VDM198.tmp
C:\VDM199.tmp
C:\VDM19A.tmp
C:\VDM19B.tmp
C:\VDM19D.tmp
C:\VDM19E.tmp
C:\VDM1A0.tmp
C:\VDM1A1.tmp
C:\VDM1A2.tmp
C:\VDM1A3.tmp
C:\VDM30.tmp
C:\VDM31.tmp
c:\windows\Downloaded Program Files\nethv32.inf
c:\windows\Downloaded Program Files\netia32.inf
c:\windows\mslagent
c:\windows\mslagent\3_1,0,1,2_mslagent.dll
c:\windows\mslagent\acknowledged.mc2
c:\windows\mslagent\CompManagerPersist.mc2
c:\windows\mslagent\NaviPersist.mc2
c:\windows\mslagent\NaviPromo.mc2
c:\windows\mslagent\OrderPersist.mc2
c:\windows\mslagent\TimePersist
c:\windows\system\oeminfo.ini
c:\windows\system32\msegcompid.dll
.
((((((((((((((((((((((((( Soubory vytvořené od 2010-05-24 do 2010-06-24 )))))))))))))))))))))))))))))))
.
2010-06-24 18:52 . 2010-06-24 18:52 -------- d-sh--w- c:\documents and settings\Administrator\IETldCache
2010-06-23 18:23 . 2010-06-23 18:23 -------- d-----w- c:\program files\trend micro
2010-06-23 18:23 . 2010-06-23 18:23 -------- d-----w- C:\rsit
2010-06-23 17:59 . 2010-06-23 17:59 -------- d-----w- c:\windows\SxsCaPendDel
2010-06-23 17:44 . 2010-06-23 17:44 -------- d-----w- c:\program files\whoLockMe
2010-06-23 14:57 . 2010-06-23 14:58 -------- d-----w- c:\program files\KONICA MINOLTA
2010-06-16 16:57 . 2010-06-16 16:57 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2010-06-16 13:16 . 2010-06-16 13:16 -------- d-----w- c:\windows\l2schemas
2010-06-16 13:16 . 2010-06-16 13:16 -------- d-----w- c:\windows\system32\cs
2010-06-16 08:52 . 2008-04-14 03:22 897024 ------w- c:\windows\system32\dllcache\wmspdmoe.dll
2010-06-16 08:51 . 2008-04-13 18:40 10240 ------w- c:\windows\system32\drivers\sffp_mmc.sys
2010-06-16 08:50 . 2008-04-14 03:21 81920 ------w- c:\windows\system32\ieencode.dll
2010-06-16 08:49 . 2008-04-14 03:22 27136 ------w- c:\windows\system32\dllcache\wmdmlog.dll
2010-06-16 08:49 . 2008-04-14 03:21 10240 ------w- c:\windows\system32\dllcache\npwmsdrm.dll
2010-06-16 08:49 . 2008-04-14 03:21 6656 ------w- c:\windows\system32\dllcache\laprxy.dll
2010-06-16 08:49 . 2008-04-14 03:22 4639 ------w- c:\windows\system32\dllcache\mplayer2.exe
2010-06-16 08:49 . 2008-04-14 03:22 23552 ------w- c:\windows\system32\dllcache\wmdmps.dll
2010-06-16 08:49 . 2008-04-14 03:22 20480 ------w- c:\windows\system32\dllcache\wmpui.dll
2010-06-16 08:49 . 2008-04-14 03:22 20480 ------w- c:\windows\system32\dllcache\wmpcore.dll
2010-06-16 08:49 . 2008-04-14 03:22 20480 ------w- c:\windows\system32\dllcache\wmpcd.dll
2010-06-16 08:49 . 2008-04-14 02:19 173056 ------w- c:\windows\system32\dllcache\wmerror.dll
2010-06-16 08:49 . 2008-04-14 02:09 7680 ------w- c:\windows\system32\dllcache\asferror.dll
2010-06-16 08:49 . 2008-04-14 03:18 4126 ------w- c:\windows\system32\dllcache\msdxmlc.dll
2010-06-16 08:48 . 2002-04-03 12:35 403 ------w- c:\windows\system32\dllcache\npdrmv2.zip
2010-06-16 08:48 . 2001-10-25 10:00 22060 ------w- c:\windows\system32\dllcache\npds.zip
2010-06-10 20:01 . 2010-06-10 20:01 -------- d-----w- c:\documents and settings\DA199818\.fio
2010-06-10 19:26 . 2010-06-10 19:25 411368 ----a-w- c:\windows\system32\deployJava1.dll
2010-06-10 18:47 . 2010-06-10 18:47 -------- d-----w- c:\documents and settings\DA199818\kbpki
2010-06-10 18:31 . 2010-06-10 18:31 -------- d-sh--w- c:\documents and settings\DA199818\IECompatCache
2010-06-10 18:26 . 2010-06-10 18:26 -------- d-sh--w- c:\documents and settings\DA199818\PrivacIE
2010-06-09 20:54 . 2010-06-09 20:55 -------- d-sh--w- c:\documents and settings\DA199818\IETldCache
2010-06-09 20:45 . 2010-06-09 20:46 -------- d-----w- c:\windows\ie8updates
2010-06-09 20:44 . 2010-06-09 20:44 -------- d-----w- c:\program files\Seznam.cz
2010-06-09 20:44 . 2010-06-09 20:44 -------- d--h--w- c:\windows\msdownld.tmp
2010-06-09 20:40 . 2010-06-09 20:40 -------- d--h--w- c:\windows\ie8
2010-06-09 20:40 . 2010-06-09 20:40 -------- d-----w- c:\windows\system32\cs-CZ
2010-06-09 20:27 . 2010-05-06 10:35 55296 ------w- c:\windows\system32\dllcache\msfeedsbs.dll
2010-06-09 20:27 . 2010-05-06 10:35 599040 ------w- c:\windows\system32\dllcache\msfeeds.dll
2010-06-09 20:27 . 2010-05-06 10:35 247808 ------w- c:\windows\system32\dllcache\ieproxy.dll
2010-06-09 20:27 . 2010-05-06 10:35 12800 ------w- c:\windows\system32\dllcache\xpshims.dll
2010-06-09 20:27 . 2010-05-06 10:35 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll
2010-06-09 20:27 . 2010-05-06 10:35 1985536 ------w- c:\windows\system32\dllcache\iertutil.dll
2010-06-09 20:27 . 2010-05-06 10:35 11076096 ------w- c:\windows\system32\dllcache\ieframe.dll
2010-06-09 20:26 . 2010-04-16 11:43 41984 ------w- c:\windows\system32\dllcache\iecompat.dll
2010-06-09 18:21 . 2010-06-09 18:21 -------- d-----w- c:\program files\MSECACHE
2010-06-09 15:02 . 2008-10-15 16:38 337408 ------w- c:\windows\system32\dllcache\netapi32.dll
2010-06-09 15:00 . 2009-12-31 16:50 353792 ------w- c:\windows\system32\dllcache\srv.sys
2010-06-09 14:58 . 2010-02-24 13:11 455680 ------w- c:\windows\system32\dllcache\mrxsmb.sys
2010-06-09 14:57 . 2009-10-15 16:32 81920 ------w- c:\windows\system32\dllcache\fontsub.dll
2010-06-09 14:57 . 2009-10-15 16:32 119808 ------w- c:\windows\system32\dllcache\t2embed.dll
2010-06-09 14:48 . 2009-02-06 10:10 227840 ------w- c:\windows\system32\dllcache\wmiprvse.exe
2010-06-09 14:48 . 2010-02-17 12:09 2192128 ------w- c:\windows\system32\dllcache\ntoskrnl.exe
2010-06-09 14:48 . 2009-03-06 14:23 284160 ------w- c:\windows\system32\dllcache\pdh.dll
2010-06-09 14:48 . 2009-02-09 11:25 111104 ------w- c:\windows\system32\dllcache\services.exe
2010-06-09 14:47 . 2009-02-09 10:56 401408 ------w- c:\windows\system32\dllcache\rpcss.dll
2010-06-09 14:47 . 2009-02-09 10:56 473600 ------w- c:\windows\system32\dllcache\fastprox.dll
2010-06-09 14:47 . 2009-02-09 10:56 684032 ------w- c:\windows\system32\dllcache\advapi32.dll
2010-06-09 14:47 . 2009-02-09 10:56 453120 ------w- c:\windows\system32\dllcache\wmiprvsd.dll
2010-06-09 14:47 . 2009-02-09 10:56 709632 ------w- c:\windows\system32\dllcache\ntdll.dll
2010-06-09 14:47 . 2010-02-16 19:08 2148352 ------w- c:\windows\system32\dllcache\ntkrnlmp.exe
2010-06-09 14:47 . 2010-02-16 19:08 2026496 ------w- c:\windows\system32\dllcache\ntkrpamp.exe
2010-06-09 14:44 . 2009-06-21 21:48 153088 ------w- c:\windows\system32\dllcache\triedit.dll
2010-06-09 14:40 . 2009-10-23 15:28 3558912 ------w- c:\windows\system32\dllcache\moviemk.exe
2010-06-09 14:21 . 2008-05-08 14:02 203136 ------w- c:\windows\system32\dllcache\rmcast.sys
2010-06-09 14:21 . 2008-05-01 14:37 331776 ------w- c:\windows\system32\dllcache\msadce.dll
2010-06-09 14:13 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe
2010-06-09 13:54 . 2009-07-31 04:35 1172480 ------w- c:\windows\system32\dllcache\msxml3.dll
2010-06-09 13:37 . 2008-06-14 17:35 272128 ------w- c:\windows\system32\dllcache\bthport.sys
2010-06-09 13:35 . 2009-11-21 16:03 471552 ------w- c:\windows\system32\dllcache\aclayers.dll
2010-06-09 13:22 . 2009-06-10 07:21 2066432 ------w- c:\windows\system32\dllcache\mstscax.dll
2010-06-09 13:14 . 2008-04-21 21:15 216576 ------w- c:\windows\system32\dllcache\wordpad.exe
2010-06-09 13:06 . 2009-08-06 17:23 274288 ----a-w- c:\windows\system32\mucltui.dll
2010-06-09 06:58 . 2010-06-09 06:58 -------- d-----w- c:\program files\Google
2010-06-08 20:18 . 2010-05-21 12:14 221568 ------w- c:\windows\system32\MpSigStub.exe
2010-06-08 20:11 . 2010-06-08 20:11 -------- d-----w- c:\program files\Microsoft Security Essentials
2010-06-08 19:58 . 2010-06-08 19:58 -------- d--h--w- c:\windows\$hf_mig$
2010-06-08 19:51 . 2010-06-08 19:51 -------- d-----w- c:\documents and settings\LocalService\Nabídka Start
2010-06-08 19:50 . 2010-06-08 19:50 -------- d-----w- c:\windows\system32\wbem\AutoRecover
2010-06-08 19:44 . 2008-04-14 03:22 221184 ----a-w- c:\windows\system32\wmpns.dll
2010-06-08 19:41 . 2010-06-08 19:41 -------- d-----w- c:\windows\peernet
2010-06-08 19:41 . 2010-06-08 19:41 -------- d-----w- c:\windows\provisioning
2010-06-08 19:38 . 2010-06-08 19:38 -------- d-----w- c:\windows\ServicePackFiles
2010-06-08 19:33 . 2009-01-07 16:20 26144 ----a-w- c:\windows\system32\spupdsvc.exe
2010-06-08 19:30 . 2010-06-08 19:30 -------- d-----w- c:\windows\EHome
2010-06-08 19:21 . 2008-04-14 06:52 11264 ------w- c:\windows\system32\spnpinst.exe
2010-06-08 19:21 . 2004-08-02 12:20 4569 ------w- c:\windows\system32\secupd.dat
2010-06-08 19:08 . 2010-06-08 19:08 -------- d-s---w- c:\windows\system32\Microsoft
2010-06-08 19:04 . 2010-06-08 19:04 -------- d-----w- c:\windows\system32\bits
2010-06-08 19:03 . 2009-08-25 09:19 354816 ----a-w- c:\windows\system32\winhttp.dll
2010-06-08 19:03 . 2008-04-14 03:21 18944 ----a-w- c:\windows\system32\qmgrprxy.dll
2010-06-08 19:03 . 2008-04-14 03:21 8192 ------w- c:\windows\system32\bitsprx2.dll
2010-06-08 19:03 . 2008-04-14 03:21 7168 ------w- c:\windows\system32\bitsprx3.dll
2010-06-08 19:02 . 2009-08-06 17:24 327896 ----a-w- c:\windows\system32\wucltui.dll
2010-06-08 19:02 . 2009-08-06 17:24 44768 ----a-w- c:\windows\system32\wups2.dll
2010-06-08 19:02 . 2009-08-06 17:24 35552 ----a-w- c:\windows\system32\wups.dll
2010-06-08 19:02 . 2009-08-06 17:23 575704 ----a-w- c:\windows\system32\wuapi.dll
2010-06-08 17:36 . 2001-08-17 18:12 19017 ----a-w- c:\windows\system32\drivers\RTL8029.sys
2010-06-08 17:36 . 2001-08-17 18:12 19017 ----a-w- c:\windows\system32\dllcache\rtl8029.sys
2010-05-28 15:00 . 2010-05-28 15:00 -------- d-----w- c:\documents and settings\Jech
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-06-18 17:09 . 1979-12-31 22:00 46944 ----a-w- c:\windows\system32\perfc005.dat
2010-06-18 17:09 . 1979-12-31 22:00 311364 ----a-w- c:\windows\system32\perfh005.dat
2010-06-16 13:26 . 2003-11-20 15:32 76825 ----a-w- c:\windows\PCHEALTH\HELPCTR\OfflineCache\index.dat
2010-06-16 13:26 . 2002-03-11 06:26 2684 ----a-w- c:\windows\PCHEALTH\HELPCTR\PackageStore\SkuStore.bin
2010-06-08 19:44 . 2003-11-20 15:32 8972 ----a-w- c:\windows\PCHEALTH\HELPCTR\Config\Cntstore.bin
2010-05-06 10:35 . 2001-10-25 09:00 916480 ----a-w- c:\windows\system32\wininet.dll
2010-05-02 08:09 . 2001-10-25 09:00 1851264 ----a-w- c:\windows\system32\win32k.sys
2010-04-20 05:32 . 2001-10-25 09:00 285696 ----a-w- c:\windows\system32\atmfd.dll
2002-03-21 13:53 . 2002-03-21 13:53 507508 ----a-w- c:\program files\slovnik.exe
2000-11-28 22:35 . 2000-11-28 22:35 9563968 ----a-w- c:\program files\sp2upd.exe
2000-07-17 10:34 . 2000-07-17 10:34 3404 ----a-w- c:\program files\Source.ini
2000-06-13 19:16 . 2000-06-13 19:16 24887296 ------w- c:\program files\DATA1.msp
2000-06-13 02:55 . 2000-06-13 02:55 11857408 ------w- c:\program files\DATA2.msp
2000-06-06 09:58 . 2000-06-06 09:58 7817216 ------w- c:\program files\OWS.msp
2000-05-11 08:57 . 2000-05-11 08:57 8314 ------w- c:\program files\O9sr1.hlp
2000-05-11 08:57 . 2000-05-11 08:57 3700 ------w- c:\program files\Eula.txt
2000-04-10 12:45 . 2000-04-10 12:45 28160 ------w- c:\program files\README.DOC
2000-02-01 17:15 . 2000-02-01 17:15 1878784 ------r- c:\program files\Instmsiw.exe
2000-02-01 17:13 . 2000-02-01 17:13 1857280 ------r- c:\program files\Instmsi.exe
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2005-01-30 98304]
"PrnSys Executable"="c:\program files\Hewlett-Packard\hp print screen utility\PrnSys.exe" [2002-08-01 36864]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"HPDJ Taskbar Utility"="c:\windows\System32\spool\drivers\w32x86\3\hpztsb08.exe" [2003-03-26 172032]
"HP Software Update"="c:\program files\Hewlett-Packard\HP Software Update\HPWuSchd.exe" [2002-12-17 49152]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792]
"MSSE"="c:\program files\Microsoft Security Essentials\msseces.exe" [2010-02-21 1093208]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\system32\nvdesk32.dll
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [10. 6. 2010 21:31 136176]
S2 MLPTDR_C;MLPTDR_C;c:\windows\system32\MLPTDR_C.SYS [25. 3. 2002 20:55 19296]
.
Obsah adresáře 'Naplánované úlohy'
2010-06-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-06-10 19:30]
2010-06-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-06-10 19:30]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.autocont.cz
IE: {{0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - c:\program files\Seznam.cz\listicka.dll
Trusted Zone: mojebanka.cz\*
TCP: {15A46346-3024-46F5-891E-A3465B92E613} = 10.0.0.138
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
HKLM-Run-windows auto update - msblast.exe
HKLM-Run-Trickler - c:\documents and settings\da199818\local settings\temp\trickler3016.exe
HKLM-Run-SunJavaUpdateSched - c:\program files\Java\jre6\bin\jusched.exe
HKU-Default-Run-DWQueuedReporting - c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe
AddRemove-V - D:\!WINPROHL.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-06-24 21:04
Windows 5.1.2600 Service Pack 3 FAT NTAPI
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
.
Celkový čas: 2010-06-24 21:07:18
ComboFix-quarantined-files.txt 2010-06-24 19:07
Před spuštěním: 3 507 748 864
Po spuštění: 3 761 668 096
- - End Of File - - A769DE4201AA4AA846592E1040D6ABA2
-
riffman
- VIP
- Příspěvky: 3203
- Registrován: 20 říj 2004 07:00
- Bydliště: České Budějovice
- Kontaktovat uživatele:
Re: pomaly pocitac - mblast.exe, nelze odinstalovat antivir,
hotovo
v jakem stavu je vas stroj nyni?
v jakem stavu je vas stroj nyni?
Give us a chance to live
Give us a chance to die
Give us a chance to be free
Without fire from the sky
Give us a chance to love
Give us a chance to hate
Give us a chance, before you kill us all
Give us a chance to die
Give us a chance to be free
Without fire from the sky
Give us a chance to love
Give us a chance to hate
Give us a chance, before you kill us all
Re: pomaly pocitac - mblast.exe, nelze odinstalovat antivir,
zda se, ze funguje, ale dam ho na posouzeni bratrovi. Nebyla by jeste nejaka rada, jak se zbavit toho antiviru?
Je porad v systemu, ale nejak napul. Pres Pridat - odebrat programy ho uz nevidim, z procesu take zmizel, ale v program files je porad (samotny .exe cca 1MB, pak .dll 500kB a slozka cs-cz se souborem .mui 92kB). sam o sobe uninstal nenabizi. Mam ho kdyztak natvrdo smazat a system a registry procistit?
Dekuji...
Je porad v systemu, ale nejak napul. Pres Pridat - odebrat programy ho uz nevidim, z procesu take zmizel, ale v program files je porad (samotny .exe cca 1MB, pak .dll 500kB a slozka cs-cz se souborem .mui 92kB). sam o sobe uninstal nenabizi. Mam ho kdyztak natvrdo smazat a system a registry procistit?
Dekuji...
-
riffman
- VIP
- Příspěvky: 3203
- Registrován: 20 říj 2004 07:00
- Bydliště: České Budějovice
- Kontaktovat uživatele:
Re: pomaly pocitac - mblast.exe, nelze odinstalovat antivir,
ja bych ho nejdriv zkusil znovu nainstalovat a pak se ho pokusit odinstalovat
Give us a chance to live
Give us a chance to die
Give us a chance to be free
Without fire from the sky
Give us a chance to love
Give us a chance to hate
Give us a chance, before you kill us all
Give us a chance to die
Give us a chance to be free
Without fire from the sky
Give us a chance to love
Give us a chance to hate
Give us a chance, before you kill us all
Re: pomaly pocitac - mblast.exe, nelze odinstalovat antivir,
reinstal pomohl, program je pryc. Takze stroj necham otestovat vlastnikem. Zatim strasne moc dekuji
-
riffman
- VIP
- Příspěvky: 3203
- Registrován: 20 říj 2004 07:00
- Bydliště: České Budějovice
- Kontaktovat uživatele:
Re: pomaly pocitac - mblast.exe, nelze odinstalovat antivir,
nemate vubec zac
Give us a chance to live
Give us a chance to die
Give us a chance to be free
Without fire from the sky
Give us a chance to love
Give us a chance to hate
Give us a chance, before you kill us all
Give us a chance to die
Give us a chance to be free
Without fire from the sky
Give us a chance to love
Give us a chance to hate
Give us a chance, before you kill us all
Přispějete na provoz fóra?