Prosím o kontrolu

Zpráva

#16 Příspěvek od **Márty84** » 29 dub 2012 14:01

Nastala nejaka zmena?

extreme41 · #17 Příspěvek od **extreme41** » 29 dub 2012 15:35

Ani nie, stranku stale nenacita ani neprehra videa na niektorych strankach ktore predtym v pohode isli

#18 Příspěvek od **Márty84** » 29 dub 2012 15:55

Zkuste pouzit WinsockFix http://www.softpedia.com/get/Tweak/Netw ... kFix.shtml

Pozor, program resetuje protokol tcp/ip. Jestli mate parametry site zadavany rucne, budete je muset znovu nastavit podle smlouvy s poskytovatelem.

extreme41 · #19 Příspěvek od **extreme41** » 29 dub 2012 16:12

Nepomohlo

#20 Příspěvek od **Márty84** » 29 dub 2012 16:14

Kdy se problem objevil? Ktere prohlizece jste zkousel?

extreme41 · #21 Příspěvek od **extreme41** » 29 dub 2012 16:17

Problem sa objavil nedavno ked som zmenil providera. Skusal som IE a Mozzilu.

#22 Příspěvek od **Márty84** » 29 dub 2012 16:22

Kestli to dela od te zmeny, muze byt problem nekde jinde, nez v pc.

Ale zkusime na to pustit jeste tezky kalibr

Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Kliknete na ComboFix pravym mysidlem a levym na Spustit jako spravce
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace

extreme41 · #23 Příspěvek od **extreme41** » 29 dub 2012 17:20

ComboFix 12-04-29.01 - Robo . 04. 2012 18:12:13.1.4 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1250.421.1051.18.3070.2311 [GMT 2:00]
Running from: c:\users\Robo\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\weave\toFetch
c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\weave\toFetch\clients.json
c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\weave\toFetch\tabs.json
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
D:\install.exe
.
.
((((((((((((((((((((((((( Files Created from 2012-03-28 to 2012-04-29 )))))))))))))))))))))))))))))))
.
.
2012-04-29 12:55 . 2012-04-29 12:55 -------- d-----w- C:\_OTL
2012-04-29 12:16 . 2012-04-29 12:16 -------- d-----w- c:\users\Robo\AppData\Roaming\Malwarebytes
2012-04-29 12:16 . 2012-04-29 12:16 -------- d-----w- c:\programdata\Malwarebytes
2012-04-29 11:21 . 2012-04-29 11:21 -------- d-----w- c:\program files\Common Files\Java
2012-04-29 11:20 . 2012-04-13 07:36 6734704 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{907C4B7D-F0A8-4587-BD8D-E2C2314DF967}\mpengine.dll
2012-04-29 11:20 . 2012-04-29 11:20 -------- d-----w- c:\program files\Java
2012-04-29 10:48 . 2012-04-29 10:48 512 ----a-w- C:\PhysicalMBR.bin
2012-04-28 14:26 . 2012-04-28 14:26 -------- d-----w- C:\_OTM
2012-04-28 08:37 . 2012-04-28 08:39 -------- d-----w- c:\users\Robo\AppData\Roaming\GHISLER
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\UC.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\RAR.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\NOCLOSE.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\LHA.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\ARJ.PIF
2012-04-26 12:54 . 2012-03-01 05:46 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-04-26 12:54 . 2012-03-01 05:37 172544 ----a-w- c:\windows\system32\wintrust.dll
2012-04-26 12:54 . 2012-03-01 05:33 159232 ----a-w- c:\windows\system32\imagehlp.dll
2012-04-26 12:54 . 2012-03-01 05:29 5120 ----a-w- c:\windows\system32\wmi.dll
2012-04-26 12:50 . 2012-03-06 05:59 3968368 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-04-26 12:50 . 2012-03-06 05:59 3913072 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-03-31 10:08 . 2012-04-18 20:49 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-04-29 11:20 . 2011-08-31 10:43 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-04-18 20:49 . 2011-12-05 20:42 458064 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-04-11 20:47 . 2011-09-27 10:17 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-04-11 20:47 . 2011-09-27 10:17 458064 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-03-09 11:21 . 2011-08-09 09:02 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-02-23 08:18 . 2011-08-09 08:24 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-02-17 18:09 . 2012-02-17 17:41 137416 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-02-17 05:34 . 2012-03-15 07:10 826880 ----a-w- c:\windows\system32\rdpcore.dll
2012-02-17 04:14 . 2012-03-15 07:10 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-02-17 04:13 . 2012-03-15 07:10 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-02-10 05:38 . 2012-03-15 07:10 1077248 ----a-w- c:\windows\system32\DWrite.dll
2012-02-10 04:13 . 2012-02-21 15:49 61248 ----a-w- c:\windows\system32\OpenCL.dll
2012-02-10 04:13 . 2012-02-21 15:49 5892928 ----a-w- c:\windows\system32\nvcuda.dll
2012-02-10 04:13 . 2012-02-21 15:49 2517312 ----a-w- c:\windows\system32\nvcuvid.dll
2012-02-10 04:13 . 2012-02-21 15:49 2437440 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-02-10 04:13 . 2012-02-21 15:49 19443520 ----a-w- c:\windows\system32\nvoglv32.dll
2012-02-10 04:13 . 2012-02-21 15:49 17543488 ----a-w- c:\windows\system32\nvcompiler.dll
2012-02-10 04:13 . 2012-02-21 15:49 15009600 ----a-w- c:\windows\system32\nvd3dum.dll
2012-02-10 04:13 . 2012-02-21 15:49 10816832 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2012-02-10 04:13 . 2011-12-25 11:34 881984 ----a-w- c:\windows\system32\nvgenco32.dll
2012-02-10 04:13 . 2011-12-25 11:34 1000256 ----a-w- c:\windows\system32\nvdispco32.dll
2012-02-10 04:13 . 2011-05-21 04:01 2301248 ----a-w- c:\windows\system32\nvapi.dll
2012-02-10 04:13 . 2009-07-13 22:09 7713088 ----a-w- c:\windows\system32\nvwgf2um.dll
2012-02-10 03:02 . 2011-08-09 09:56 3881792 ----a-w- c:\windows\system32\nvcpl.dll
2012-02-10 03:00 . 2011-08-09 09:56 2719040 ----a-w- c:\windows\system32\nvsvc.dll
2012-02-10 03:00 . 2011-08-09 09:56 645440 ----a-w- c:\windows\system32\nvvsvc.exe
2012-02-10 03:00 . 2011-08-09 09:56 62272 ----a-w- c:\windows\system32\nvshext.dll
2012-02-10 03:00 . 2011-08-09 09:56 108352 ----a-w- c:\windows\system32\nvmctray.dll
2012-02-10 03:00 . 2011-08-09 09:56 2561344 ----a-w- c:\windows\system32\nvsvcr.dll
2012-02-09 19:05 . 2012-02-09 19:05 416064 ----a-w- c:\windows\system32\nvStreaming.exe
2012-02-03 03:54 . 2012-03-15 07:10 2343424 ----a-w- c:\windows\system32\win32k.sys
2010-01-26 09:11 . 2012-03-15 15:34 444283 ----a-w- c:\program files\Common Files\WinPcapNmap.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"DAEMON Tools Lite"="c:\programy\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"B2C_AGENT"="c:\programdata\LGMOBILEAX\B2C_Client\B2CNotiAgent.exe" [2011-09-27 404568]
"AmIcoSinglun"="c:\program files\AmIcoSingLun\AmIcoSinglun.exe" [2010-05-03 237568]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-12-13 11487848]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-09-23 258512]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
c:\users\Robo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
VDownloader.lnk - c:\programy\VDownloader\VDownloader.exe [2012-3-15 875008]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
2012-03-14 15:14 446136 ----a-w- c:\program files\Sony\Sony PC Companion\PCCompanion.exe
.
R0 vmci;VMware VMCI Bus Driver;c:\windows\system32\DRIVERS\vmci.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 Andbus;LGE Android Platform Composite USB Device;c:\windows\system32\DRIVERS\lgandbus.sys [x]
R3 AndDiag;LGE Android Platform USB Serial Port;c:\windows\system32\DRIVERS\lganddiag.sys [x]
R3 AndGps;LGE Android Platform USB GPS NMEA Port;c:\windows\system32\DRIVERS\lgandgps.sys [x]
R3 ANDModem;LGE Android Platform USB Modem;c:\windows\system32\DRIVERS\lgandmodem.sys [x]
R3 BthAvrcp;Bluetooth AVRCP Profile;c:\windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 22528]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2011-08-31 13224]
R3 netr73;RT73 USB Extensible Wireless LAN Card Driver;c:\windows\system32\DRIVERS\netr73.sys [2011-10-05 564800]
R3 Sony PC Companion;Sony PC Companion;c:\program files\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2011-08-09 1343400]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2011-09-15 36000]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-08-10 232512]
S1 SASDIFSV;SASDIFSV;c:\programy\SuperAntispyware\SASDIFSV.SYS [2011-07-22 12880]
S1 SASKUTIL;SASKUTIL;c:\programy\SuperAntispyware\SASKUTIL.SYS [2011-07-12 67664]
S1 TsLwWfF;WiFi Capture Driver;c:\windows\system32\DRIVERS\TsLwWfF.sys [2011-05-12 22632]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 !SASCORE;SAS Core Service;c:\programy\SuperAntispyware\SASCORE.EXE [2011-08-11 116608]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [2011-09-23 86224]
S2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2010-01-27 50704]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-02-10 2348352]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-02-09 382272]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2011-09-29 490088]
.
.
.
------- Supplementary Scan -------
.
IE: E&xportovať do programu Microsoft Excel - c:\programy\MICROS~1\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - google.sk
FF - user.js: extensions.BabylonToolbar_i.id - 9451ff03000000000000001fd05f0179
FF - user.js: extensions.BabylonToolbar_i.hardId - 9451ff03000000000000001fd05f0179
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15387
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1711:19
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
FF - user.js: extensions.BabylonToolbar_i.newTab - false
FF - user.js: extensions.BabylonToolbar_i.babTrack - tt=090212_noffx
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-04-29 18:17:42
ComboFix-quarantined-files.txt 2012-04-29 16:17
.
Pre-Run: 61 043 097 600 bytes free
Post-Run: 60 705 218 560 bytes free
.
- - End Of File - - 0C4328EC0D425E7D9BAED002011115FF

#24 Příspěvek od **Márty84** » 29 dub 2012 17:46

Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

KillAll::

Firefox::
FF - ProfilePath - c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\
FF - user.js: extensions.BabylonToolbar_i.id - 9451ff03000000000000001fd05f0179
FF - user.js: extensions.BabylonToolbar_i.hardId - 9451ff03000000000000001fd05f0179
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15387
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1711:19
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
FF - user.js: extensions.BabylonToolbar_i.newTab - false
FF - user.js: extensions.BabylonToolbar_i.babTrack - tt=090212_noffx
FF - user.js: extensions.BabylonToolbar_i.babExt - 
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst

RegLock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

Reboot::

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev CFScript a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni a ukoncete vsechny spustene programy
Pretahntete mysi tento vytvoreny textovy dokument nad ikonu ComboFix a pustte.
ComboFix by se mel spustit a vykonat prikazy.
Az skonci (muze dojit k restartu pc), mel by se objevit novy log, ten mi sem zase zkopirujte.

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace

extreme41 · #25 Příspěvek od **extreme41** » 29 dub 2012 18:26

ComboFix 12-04-29.01 - Robo . 04. 2012 19:06:11.2.4 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1250.421.1051.18.3070.2177 [GMT 2:00]
Running from: c:\users\Robo\Desktop\ComboFix.exe
Command switches used :: c:\users\Robo\Desktop\CFScript.txt
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2012-03-28 to 2012-04-29 )))))))))))))))))))))))))))))))
.
.
2012-04-29 17:09 . 2012-04-29 17:09 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-04-29 17:09 . 2012-04-29 17:09 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-04-29 17:05 . 2012-04-29 17:05 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{907C4B7D-F0A8-4587-BD8D-E2C2314DF967}\offreg.dll
2012-04-29 16:17 . 2012-04-29 17:11 -------- d-----w- c:\users\Robo\AppData\Local\temp
2012-04-29 12:55 . 2012-04-29 12:55 -------- d-----w- C:\_OTL
2012-04-29 12:16 . 2012-04-29 12:16 -------- d-----w- c:\users\Robo\AppData\Roaming\Malwarebytes
2012-04-29 12:16 . 2012-04-29 12:16 -------- d-----w- c:\programdata\Malwarebytes
2012-04-29 11:21 . 2012-04-29 11:21 -------- d-----w- c:\program files\Common Files\Java
2012-04-29 11:20 . 2012-04-13 07:36 6734704 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{907C4B7D-F0A8-4587-BD8D-E2C2314DF967}\mpengine.dll
2012-04-29 11:20 . 2012-04-29 11:20 -------- d-----w- c:\program files\Java
2012-04-29 10:48 . 2012-04-29 10:48 512 ----a-w- C:\PhysicalMBR.bin
2012-04-28 14:26 . 2012-04-28 14:26 -------- d-----w- C:\_OTM
2012-04-28 08:37 . 2012-04-28 08:39 -------- d-----w- c:\users\Robo\AppData\Roaming\GHISLER
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\UC.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\RAR.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\NOCLOSE.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\LHA.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\ARJ.PIF
2012-04-26 12:54 . 2012-03-01 05:46 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-04-26 12:54 . 2012-03-01 05:37 172544 ----a-w- c:\windows\system32\wintrust.dll
2012-04-26 12:54 . 2012-03-01 05:33 159232 ----a-w- c:\windows\system32\imagehlp.dll
2012-04-26 12:54 . 2012-03-01 05:29 5120 ----a-w- c:\windows\system32\wmi.dll
2012-04-26 12:50 . 2012-03-06 05:59 3968368 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-04-26 12:50 . 2012-03-06 05:59 3913072 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-03-31 10:08 . 2012-04-18 20:49 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-04-29 11:20 . 2011-08-31 10:43 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-04-18 20:49 . 2011-12-05 20:42 458064 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-04-11 20:47 . 2011-09-27 10:17 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-04-11 20:47 . 2011-09-27 10:17 458064 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-03-09 11:21 . 2011-08-09 09:02 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-02-23 08:18 . 2011-08-09 08:24 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-02-17 18:09 . 2012-02-17 17:41 137416 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-02-17 05:34 . 2012-03-15 07:10 826880 ----a-w- c:\windows\system32\rdpcore.dll
2012-02-17 04:14 . 2012-03-15 07:10 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-02-17 04:13 . 2012-03-15 07:10 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-02-10 05:38 . 2012-03-15 07:10 1077248 ----a-w- c:\windows\system32\DWrite.dll
2012-02-10 04:13 . 2012-02-21 15:49 61248 ----a-w- c:\windows\system32\OpenCL.dll
2012-02-10 04:13 . 2012-02-21 15:49 5892928 ----a-w- c:\windows\system32\nvcuda.dll
2012-02-10 04:13 . 2012-02-21 15:49 2517312 ----a-w- c:\windows\system32\nvcuvid.dll
2012-02-10 04:13 . 2012-02-21 15:49 2437440 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-02-10 04:13 . 2012-02-21 15:49 19443520 ----a-w- c:\windows\system32\nvoglv32.dll
2012-02-10 04:13 . 2012-02-21 15:49 17543488 ----a-w- c:\windows\system32\nvcompiler.dll
2012-02-10 04:13 . 2012-02-21 15:49 15009600 ----a-w- c:\windows\system32\nvd3dum.dll
2012-02-10 04:13 . 2012-02-21 15:49 10816832 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2012-02-10 04:13 . 2011-12-25 11:34 881984 ----a-w- c:\windows\system32\nvgenco32.dll
2012-02-10 04:13 . 2011-12-25 11:34 1000256 ----a-w- c:\windows\system32\nvdispco32.dll
2012-02-10 04:13 . 2011-05-21 04:01 2301248 ----a-w- c:\windows\system32\nvapi.dll
2012-02-10 04:13 . 2009-07-13 22:09 7713088 ----a-w- c:\windows\system32\nvwgf2um.dll
2012-02-10 03:02 . 2011-08-09 09:56 3881792 ----a-w- c:\windows\system32\nvcpl.dll
2012-02-10 03:00 . 2011-08-09 09:56 2719040 ----a-w- c:\windows\system32\nvsvc.dll
2012-02-10 03:00 . 2011-08-09 09:56 645440 ----a-w- c:\windows\system32\nvvsvc.exe
2012-02-10 03:00 . 2011-08-09 09:56 62272 ----a-w- c:\windows\system32\nvshext.dll
2012-02-10 03:00 . 2011-08-09 09:56 108352 ----a-w- c:\windows\system32\nvmctray.dll
2012-02-10 03:00 . 2011-08-09 09:56 2561344 ----a-w- c:\windows\system32\nvsvcr.dll
2012-02-09 19:05 . 2012-02-09 19:05 416064 ----a-w- c:\windows\system32\nvStreaming.exe
2012-02-03 03:54 . 2012-03-15 07:10 2343424 ----a-w- c:\windows\system32\win32k.sys
2010-01-26 09:11 . 2012-03-15 15:34 444283 ----a-w- c:\program files\Common Files\WinPcapNmap.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"DAEMON Tools Lite"="c:\programy\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"B2C_AGENT"="c:\programdata\LGMOBILEAX\B2C_Client\B2CNotiAgent.exe" [2011-09-27 404568]
"AmIcoSinglun"="c:\program files\AmIcoSingLun\AmIcoSinglun.exe" [2010-05-03 237568]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-12-13 11487848]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-09-23 258512]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
c:\users\Robo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
VDownloader.lnk - c:\programy\VDownloader\VDownloader.exe [2012-3-15 875008]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
2012-03-14 15:14 446136 ----a-w- c:\program files\Sony\Sony PC Companion\PCCompanion.exe
.
R0 vmci;VMware VMCI Bus Driver;c:\windows\system32\DRIVERS\vmci.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 Andbus;LGE Android Platform Composite USB Device;c:\windows\system32\DRIVERS\lgandbus.sys [x]
R3 AndDiag;LGE Android Platform USB Serial Port;c:\windows\system32\DRIVERS\lganddiag.sys [x]
R3 AndGps;LGE Android Platform USB GPS NMEA Port;c:\windows\system32\DRIVERS\lgandgps.sys [x]
R3 ANDModem;LGE Android Platform USB Modem;c:\windows\system32\DRIVERS\lgandmodem.sys [x]
R3 BthAvrcp;Bluetooth AVRCP Profile;c:\windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 22528]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2011-08-31 13224]
R3 netr73;RT73 USB Extensible Wireless LAN Card Driver;c:\windows\system32\DRIVERS\netr73.sys [2011-10-05 564800]
R3 Sony PC Companion;Sony PC Companion;c:\program files\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2011-08-09 1343400]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2011-09-15 36000]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-08-10 232512]
S1 SASDIFSV;SASDIFSV;c:\programy\SuperAntispyware\SASDIFSV.SYS [2011-07-22 12880]
S1 SASKUTIL;SASKUTIL;c:\programy\SuperAntispyware\SASKUTIL.SYS [2011-07-12 67664]
S1 TsLwWfF;WiFi Capture Driver;c:\windows\system32\DRIVERS\TsLwWfF.sys [2011-05-12 22632]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 !SASCORE;SAS Core Service;c:\programy\SuperAntispyware\SASCORE.EXE [2011-08-11 116608]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [2011-09-23 86224]
S2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2010-01-27 50704]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-02-10 2348352]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-02-09 382272]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2011-09-29 490088]
.
.
.
------- Supplementary Scan -------
.
IE: E&xportovať do programu Microsoft Excel - c:\programy\MICROS~1\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - google.sk
FF - user.js: extensions.BabylonToolbar_i.id - 9451ff03000000000000001fd05f0179
FF - user.js: extensions.BabylonToolbar_i.hardId - 9451ff03000000000000001fd05f0179
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15387
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1711:19
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
FF - user.js: extensions.BabylonToolbar_i.newTab - false
FF - user.js: extensions.BabylonToolbar_i.babTrack - tt=090212_noffx
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
.
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\windows\system32\taskhost.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\windows\system32\conhost.exe
c:\windows\system32\conhost.exe
c:\windows\system32\WUDFHost.exe
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\program files\Windows Media Player\wmplayer.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\avira\antivir desktop\ipmGui.exe
c:\windows\system32\sppsvc.exe
.
**************************************************************************
.
Completion time: 2012-04-29 19:13:40 - machine was rebooted
ComboFix-quarantined-files.txt 2012-04-29 17:13
ComboFix2.txt 2012-04-29 16:17
.
Pre-Run: 60 705 910 784 bytes free
Post-Run: 60 607 553 536 bytes free
.
- - End Of File - - E5255E8EAF49738ED9262C67FC1936EF

#26 Příspěvek od **Márty84** » 29 dub 2012 18:41

Na neco jsem v tom skriptu zapomnel

, takze prosim jeste jednou, tentokrat s timto skriptem

Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

KillAll::

Firefox::
FF - ProfilePath - c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\
FF - user.js: extensions.BabylonToolbar_i.id - 9451ff03000000000000001fd05f0179
FF - user.js: extensions.BabylonToolbar_i.hardId - 9451ff03000000000000001fd05f0179
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15387
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1711:19
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
FF - user.js: extensions.BabylonToolbar_i.newTab - false
FF - user.js: extensions.BabylonToolbar_i.babTrack - tt=090212_noffx
FF - user.js: extensions.BabylonToolbar_i.babExt - 
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst

Reboot::

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev CFScript a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni a ukoncete vsechny spustene programy
Pretahntete mysi tento vytvoreny textovy dokument nad ikonu ComboFix a pustte.
ComboFix by se mel spustit a vykonat prikazy.
Az skonci (muze dojit k restartu pc), mel by se objevit novy log, ten mi sem zase zkopirujte.

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace

Jelikoz uz tu dneska asi nebudu, napiste pak, jestli se neco zmenilo.
Pokud ne, mate tam jeste jiny pocitac? Chtel bych vedet, jestli to na nem funguje. A zkuste jeste prohlizec google chrome.
Zitra bychom pokracovali.

extreme41 · #27 Příspěvek od **extreme41** » 29 dub 2012 18:51

ComboFix 12-04-29.01 - Robo . 04. 2012 19:43:49.3.4 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1250.421.1051.18.3070.2030 [GMT 2:00]
Running from: c:\users\Robo\Desktop\ComboFix.exe
Command switches used :: c:\users\Robo\Desktop\CFScript.txt
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2012-03-28 to 2012-04-29 )))))))))))))))))))))))))))))))
.
.
2012-04-29 17:47 . 2012-04-29 17:47 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-04-29 17:47 . 2012-04-29 17:47 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-04-29 17:05 . 2012-04-29 17:43 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{907C4B7D-F0A8-4587-BD8D-E2C2314DF967}\offreg.dll
2012-04-29 16:17 . 2012-04-29 17:48 -------- d-----w- c:\users\Robo\AppData\Local\temp
2012-04-29 12:55 . 2012-04-29 12:55 -------- d-----w- C:\_OTL
2012-04-29 12:16 . 2012-04-29 12:16 -------- d-----w- c:\users\Robo\AppData\Roaming\Malwarebytes
2012-04-29 12:16 . 2012-04-29 12:16 -------- d-----w- c:\programdata\Malwarebytes
2012-04-29 11:21 . 2012-04-29 11:21 -------- d-----w- c:\program files\Common Files\Java
2012-04-29 11:20 . 2012-04-13 07:36 6734704 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{907C4B7D-F0A8-4587-BD8D-E2C2314DF967}\mpengine.dll
2012-04-29 11:20 . 2012-04-29 11:20 -------- d-----w- c:\program files\Java
2012-04-29 10:48 . 2012-04-29 10:48 512 ----a-w- C:\PhysicalMBR.bin
2012-04-28 14:26 . 2012-04-28 14:26 -------- d-----w- C:\_OTM
2012-04-28 08:37 . 2012-04-28 08:39 -------- d-----w- c:\users\Robo\AppData\Roaming\GHISLER
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\UC.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\RAR.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\NOCLOSE.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\LHA.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\ARJ.PIF
2012-04-26 12:54 . 2012-03-01 05:46 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-04-26 12:54 . 2012-03-01 05:37 172544 ----a-w- c:\windows\system32\wintrust.dll
2012-04-26 12:54 . 2012-03-01 05:33 159232 ----a-w- c:\windows\system32\imagehlp.dll
2012-04-26 12:54 . 2012-03-01 05:29 5120 ----a-w- c:\windows\system32\wmi.dll
2012-04-26 12:50 . 2012-03-06 05:59 3968368 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-04-26 12:50 . 2012-03-06 05:59 3913072 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-03-31 10:08 . 2012-04-18 20:49 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-04-29 11:20 . 2011-08-31 10:43 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-04-18 20:49 . 2011-12-05 20:42 458064 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-04-11 20:47 . 2011-09-27 10:17 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-04-11 20:47 . 2011-09-27 10:17 458064 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-03-09 11:21 . 2011-08-09 09:02 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-02-23 08:18 . 2011-08-09 08:24 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-02-17 18:09 . 2012-02-17 17:41 137416 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-02-17 05:34 . 2012-03-15 07:10 826880 ----a-w- c:\windows\system32\rdpcore.dll
2012-02-17 04:14 . 2012-03-15 07:10 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-02-17 04:13 . 2012-03-15 07:10 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-02-10 05:38 . 2012-03-15 07:10 1077248 ----a-w- c:\windows\system32\DWrite.dll
2012-02-10 04:13 . 2012-02-21 15:49 61248 ----a-w- c:\windows\system32\OpenCL.dll
2012-02-10 04:13 . 2012-02-21 15:49 5892928 ----a-w- c:\windows\system32\nvcuda.dll
2012-02-10 04:13 . 2012-02-21 15:49 2517312 ----a-w- c:\windows\system32\nvcuvid.dll
2012-02-10 04:13 . 2012-02-21 15:49 2437440 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-02-10 04:13 . 2012-02-21 15:49 19443520 ----a-w- c:\windows\system32\nvoglv32.dll
2012-02-10 04:13 . 2012-02-21 15:49 17543488 ----a-w- c:\windows\system32\nvcompiler.dll
2012-02-10 04:13 . 2012-02-21 15:49 15009600 ----a-w- c:\windows\system32\nvd3dum.dll
2012-02-10 04:13 . 2012-02-21 15:49 10816832 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2012-02-10 04:13 . 2011-12-25 11:34 881984 ----a-w- c:\windows\system32\nvgenco32.dll
2012-02-10 04:13 . 2011-12-25 11:34 1000256 ----a-w- c:\windows\system32\nvdispco32.dll
2012-02-10 04:13 . 2011-05-21 04:01 2301248 ----a-w- c:\windows\system32\nvapi.dll
2012-02-10 04:13 . 2009-07-13 22:09 7713088 ----a-w- c:\windows\system32\nvwgf2um.dll
2012-02-10 03:02 . 2011-08-09 09:56 3881792 ----a-w- c:\windows\system32\nvcpl.dll
2012-02-10 03:00 . 2011-08-09 09:56 2719040 ----a-w- c:\windows\system32\nvsvc.dll
2012-02-10 03:00 . 2011-08-09 09:56 645440 ----a-w- c:\windows\system32\nvvsvc.exe
2012-02-10 03:00 . 2011-08-09 09:56 62272 ----a-w- c:\windows\system32\nvshext.dll
2012-02-10 03:00 . 2011-08-09 09:56 108352 ----a-w- c:\windows\system32\nvmctray.dll
2012-02-10 03:00 . 2011-08-09 09:56 2561344 ----a-w- c:\windows\system32\nvsvcr.dll
2012-02-09 19:05 . 2012-02-09 19:05 416064 ----a-w- c:\windows\system32\nvStreaming.exe
2012-02-03 03:54 . 2012-03-15 07:10 2343424 ----a-w- c:\windows\system32\win32k.sys
2010-01-26 09:11 . 2012-03-15 15:34 444283 ----a-w- c:\program files\Common Files\WinPcapNmap.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"DAEMON Tools Lite"="c:\programy\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"B2C_AGENT"="c:\programdata\LGMOBILEAX\B2C_Client\B2CNotiAgent.exe" [2011-09-27 404568]
"AmIcoSinglun"="c:\program files\AmIcoSingLun\AmIcoSinglun.exe" [2010-05-03 237568]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-12-13 11487848]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-09-23 258512]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
c:\users\Robo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
VDownloader.lnk - c:\programy\VDownloader\VDownloader.exe [2012-3-15 875008]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
2012-03-14 15:14 446136 ----a-w- c:\program files\Sony\Sony PC Companion\PCCompanion.exe
.
R0 vmci;VMware VMCI Bus Driver;c:\windows\system32\DRIVERS\vmci.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-02-10 2348352]
R3 Andbus;LGE Android Platform Composite USB Device;c:\windows\system32\DRIVERS\lgandbus.sys [x]
R3 AndDiag;LGE Android Platform USB Serial Port;c:\windows\system32\DRIVERS\lganddiag.sys [x]
R3 AndGps;LGE Android Platform USB GPS NMEA Port;c:\windows\system32\DRIVERS\lgandgps.sys [x]
R3 ANDModem;LGE Android Platform USB Modem;c:\windows\system32\DRIVERS\lgandmodem.sys [x]
R3 BthAvrcp;Bluetooth AVRCP Profile;c:\windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 22528]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2011-08-31 13224]
R3 netr73;RT73 USB Extensible Wireless LAN Card Driver;c:\windows\system32\DRIVERS\netr73.sys [2011-10-05 564800]
R3 Sony PC Companion;Sony PC Companion;c:\program files\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2011-08-09 1343400]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2011-09-15 36000]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-08-10 232512]
S1 SASDIFSV;SASDIFSV;c:\programy\SuperAntispyware\SASDIFSV.SYS [2011-07-22 12880]
S1 SASKUTIL;SASKUTIL;c:\programy\SuperAntispyware\SASKUTIL.SYS [2011-07-12 67664]
S1 TsLwWfF;WiFi Capture Driver;c:\windows\system32\DRIVERS\TsLwWfF.sys [2011-05-12 22632]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 !SASCORE;SAS Core Service;c:\programy\SuperAntispyware\SASCORE.EXE [2011-08-11 116608]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [2011-09-23 86224]
S2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2010-01-27 50704]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-02-09 382272]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2011-09-29 490088]
.
.
.
------- Supplementary Scan -------
.
IE: E&xportovať do programu Microsoft Excel - c:\programy\MICROS~1\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - google.sk
.
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\windows\system32\taskhost.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\windows\system32\conhost.exe
c:\windows\system32\WUDFHost.exe
c:\windows\system32\conhost.exe
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\avira\antivir desktop\ipmGui.exe
.
**************************************************************************
.
Completion time: 2012-04-29 19:50:40 - machine was rebooted
ComboFix-quarantined-files.txt 2012-04-29 17:50
ComboFix2.txt 2012-04-29 17:13
ComboFix3.txt 2012-04-29 16:17
.
Pre-Run: 60 675 461 120 bytes free
Post-Run: 60 586 512 384 bytes free
.
- - End Of File - - 74496DCB06605B227B6F5171B26FC074

#28 Příspěvek od **Márty84** » 29 dub 2012 19:15

Fajn, ted uz to udelalo, co jsem chtel

Márty84 píše:... napiste pak, jestli se neco zmenilo.
Pokud ne, mate tam jeste jiny pocitac? Chtel bych vedet, jestli to na nem funguje. A zkuste jeste prohlizec google chrome.
Zitra bychom pokracovali.

extreme41 · #29 Příspěvek od **extreme41** » 29 dub 2012 20:30

Nezmenilo sa nic, stale to nejde

skusal som na druhom pc a na tom to tiez nejde.

#30 Příspěvek od **Márty84** » 30 dub 2012 09:21

Tohle nevypada na problem s haveti, ja uz tam nic nevidim

Jake mate pripojeni? Router, wifi, kabel...

VIRY.CZ

Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu