prosím o kontrolu

Zpráva

marianek · #1 Příspěvek od **marianek** » 26 bře 2010 16:29

ahojte, mám mininotebook msi http://www.alza.cz/msi-u135-298cz-wind- ... 153196.htm

a dva problémy. nejdou nainstalovat aktualizace net.framework a kdyz kliknu na plose pravým tlačítkem tak pc zatuhne. vubec nevim co s tím notebook mám deset dní a dělá to od začátku

ComboFix 10-03-25.09 - Marian2 26.03.2010 16:19:27.1.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.1013.645 [GMT 1:00]
Spuštěný z: c:\documents and settings\Marian2\Dokumenty\Downloads\ComboFix.exe
AV: avast! Antivirus *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}

VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\FD.dll

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-02-26 do 2010-03-26 )))))))))))))))))))))))))))))))
.

2010-03-26 15:08 . 2010-03-26 15:08 390144 ----a-w- c:\windows\system32\CF28067.exe
2010-03-23 17:21 . 2010-03-09 11:12 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-03-23 17:21 . 2010-03-09 11:12 162640 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-03-23 17:21 . 2010-03-09 11:09 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-03-23 17:21 . 2010-03-09 11:08 19024 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-03-23 17:21 . 2010-03-09 11:08 100432 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-03-23 17:21 . 2010-03-09 11:08 94800 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-03-23 17:21 . 2010-03-09 11:08 28880 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-03-23 17:21 . 2010-03-09 11:24 38848 ----a-w- c:\windows\system32\avastSS.scr
2010-03-23 17:21 . 2010-03-09 11:24 153184 ----a-w- c:\windows\system32\aswBoot.exe
2010-03-21 12:27 . 2006-06-29 12:07 14048 ------w- c:\windows\system32\spmsg2.dll
2010-03-21 11:27 . 2010-03-21 11:27 -------- d-----w- c:\program files\Windows Installer Clean Up
2010-03-21 11:23 . 2010-03-21 11:26 -------- d-----w- c:\program files\MSECACHE
2010-03-20 11:29 . 2008-04-14 07:52 54272 -c--a-w- c:\windows\system32\dllcache\vfwwdm32.dll
2010-03-20 11:29 . 2008-04-14 07:52 54272 ----a-w- c:\windows\system32\vfwwdm32.dll
2010-03-20 11:29 . 2008-04-13 23:16 121984 -c--a-w- c:\windows\system32\dllcache\usbvideo.sys
2010-03-20 11:29 . 2008-04-13 23:16 121984 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2010-03-20 11:29 . 2008-04-13 23:15 32128 -c--a-w- c:\windows\system32\dllcache\usbccgp.sys
2010-03-20 11:29 . 2008-04-13 23:15 32128 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2010-03-19 16:25 . 2006-02-20 15:59 5808 ----a-w- c:\windows\system32\drivers\w810whnt.sys
2010-03-19 16:25 . 2006-02-20 15:59 5808 ----a-w- c:\windows\system32\drivers\w810wh.sys
2010-03-19 16:25 . 2006-02-20 15:59 83344 ----a-w- c:\windows\system32\drivers\w810obex.sys
2010-03-19 16:25 . 2006-02-20 15:59 85408 ----a-w- c:\windows\system32\drivers\w810mgmt.sys
2010-03-19 16:25 . 2006-02-20 15:59 94064 ----a-w- c:\windows\system32\drivers\w810mdm.sys
2010-03-19 16:25 . 2006-02-20 15:59 8336 ----a-w- c:\windows\system32\drivers\w810mdfl.sys
2010-03-19 16:25 . 2006-02-20 15:59 6176 ----a-w- c:\windows\system32\drivers\w810cmnt.sys
2010-03-19 16:25 . 2006-02-20 15:59 6176 ----a-w- c:\windows\system32\drivers\w810cm.sys
2010-03-19 16:25 . 2006-02-20 15:59 58288 ----a-w- c:\windows\system32\drivers\w810bus.sys
2010-03-19 16:03 . 2010-03-19 16:03 -------- d-sh--w- c:\documents and settings\Marian2\IECompatCache
2010-03-19 09:46 . 2010-03-19 09:46 -------- d-----w- c:\windows\system32\wbem\Repository
2010-03-19 08:49 . 2010-03-21 12:27 -------- d-----w- c:\windows\system32\XPSViewer
2010-03-19 08:49 . 2010-03-19 08:49 -------- d-----w- c:\program files\Reference Assemblies
2010-03-19 08:48 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2010-03-19 08:48 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2010-03-19 08:48 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2010-03-19 08:48 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2010-03-19 08:48 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2010-03-19 08:48 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2010-03-19 08:48 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2010-03-19 08:48 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2010-03-19 08:41 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe
2010-03-19 07:23 . 2010-03-19 07:23 -------- d-----w- c:\program files\MyPhoneExplorer
2010-03-18 23:17 . 2008-06-14 17:35 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2010-03-18 23:17 . 2008-06-14 17:35 272128 ------w- c:\windows\system32\drivers\bthport.sys
2010-03-18 23:17 . 2009-12-21 19:08 246272 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2010-03-18 23:17 . 2009-12-21 19:08 594432 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2010-03-18 23:17 . 2009-12-21 19:08 1985536 -c----w- c:\windows\system32\dllcache\iertutil.dll
2010-03-18 23:17 . 2009-12-21 19:08 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2010-03-18 23:17 . 2009-12-21 19:08 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2010-03-18 23:17 . 2009-12-21 19:08 11070464 -c----w- c:\windows\system32\dllcache\ieframe.dll
2010-03-18 23:13 . 2009-12-04 18:22 455424 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2010-03-18 23:04 . 2010-03-20 09:11 -------- d--h--w- c:\windows\$hf_mig$
2010-03-18 23:04 . 2010-03-19 07:22 -------- d-----w- c:\windows\ie8updates
2010-03-18 20:00 . 2010-03-18 20:00 -------- d-----w- c:\program files\Windows Media Connect 2
2010-03-18 19:57 . 2010-03-18 19:58 -------- d-----w- c:\windows\system32\drivers\UMDF
2010-03-18 19:57 . 2010-03-18 19:57 -------- d-----w- c:\windows\system32\LogFiles
2010-03-18 19:49 . 2009-11-27 17:14 17920 -c----w- c:\windows\system32\dllcache\msyuv.dll
2010-03-18 19:49 . 2009-12-09 10:11 2191360 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2010-03-18 19:49 . 2009-12-09 10:11 2147328 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2010-03-18 19:49 . 2009-12-09 10:11 2068224 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2010-03-18 19:49 . 2009-12-09 10:11 2025984 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2010-03-18 18:27 . 2010-03-18 18:27 -------- d-----w- c:\program files\Microsoft Works
2010-03-18 18:27 . 2010-03-18 18:27 -------- d-----w- c:\program files\MSBuild
2010-03-18 18:25 . 2010-03-18 18:25 -------- d-----w- c:\program files\Microsoft.NET
2010-03-18 18:22 . 2010-03-18 18:22 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2010-03-18 18:21 . 2010-03-18 18:26 -------- d-----w- c:\windows\SHELLNEW
2010-03-18 18:20 . 2010-03-18 18:20 -------- d-----r- C:\MSOCache
2010-03-18 18:15 . 2010-03-18 18:16 -------- d-----w- c:\program files\DAEMON Tools Toolbar
2010-03-18 18:15 . 2010-03-18 18:15 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-03-18 18:15 . 2010-03-18 18:16 -------- d-----w- c:\program files\DAEMON Tools Lite
2010-03-18 18:01 . 2010-03-18 18:03 -------- d-----w- c:\program files\ICQ7.0
2010-03-18 17:45 . 2010-03-18 17:50 -------- d-----w- c:\program files\ICQ6
2010-03-18 05:43 . 2010-03-18 05:43 -------- d-----w- c:\windows\RE_DRIVE
2010-03-17 22:39 . 2010-03-17 22:40 -------- d-----w- c:\program files\Google
2010-03-17 22:39 . 2010-03-17 22:39 -------- d-----w- c:\program files\Alwil Software
2010-03-17 22:32 . 2010-03-17 22:32 603904 ----a-w- c:\windows\system32\TUProgSt.exe
2010-03-17 22:32 . 2010-03-17 22:32 360192 ----a-w- c:\windows\system32\TuneUpDefragService.exe
2010-03-17 22:32 . 2008-12-11 12:31 27904 ----a-w- c:\windows\system32\uxtuneup.dll
2010-03-17 22:32 . 2010-03-17 22:33 -------- d-----w- c:\program files\TuneUp Utilities 2009
2010-03-17 22:28 . 2010-03-17 22:28 -------- d-sh--w- c:\documents and settings\Marian2\PrivacIE
2010-03-17 21:54 . 2009-12-29 15:14 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2010-03-17 21:54 . 2009-12-29 15:14 -------- d-sh--w- c:\documents and settings\Default User\IETldCache
2010-03-17 21:24 . 2010-03-17 21:24 -------- d-----w- c:\program files\Common Files\Adobe
2010-03-17 21:21 . 2010-03-17 21:21 -------- d-----w- c:\program files\JPEG Resampler
2010-03-17 18:04 . 2010-03-17 18:04 -------- d-----w- C:\totalcmd
2010-03-17 17:41 . 2010-03-17 17:41 -------- d-----w- c:\program files\Crawler
2010-03-17 17:41 . 2010-03-17 17:41 142592 ----a-w- c:\windows\system32\drivers\sp_rsdrv2.sys
2010-03-17 17:41 . 2010-03-23 18:12 -------- d-----w- c:\program files\Spyware Terminator
2010-03-17 17:28 . 2010-03-17 17:28 -------- d-----w- c:\program files\PSPad editor
2010-03-17 17:24 . 2010-03-18 18:16 -------- d-----w- c:\program files\ICQ6Toolbar
2010-03-17 17:16 . 2010-03-17 17:16 -------- d-----w- c:\program files\Conduit
2010-03-17 17:16 . 2010-03-17 20:15 -------- d-----w- c:\program files\BS_Player
2010-03-17 17:16 . 2010-03-17 17:16 -------- d-----w- c:\program files\Webteh
2010-03-17 16:11 . 2010-03-17 16:11 -------- d-----w- c:\program files\Zoner
2010-03-17 16:05 . 2010-03-17 16:05 -------- d-----w- c:\program files\CCleaner
2010-03-17 15:57 . 2010-03-17 15:57 0 ----a-w- c:\windows\nsreg.dat
2010-03-17 15:56 . 2010-03-17 19:09 -------- d-----w- c:\program files\Mozilla Thunderbird
2010-03-17 15:44 . 2010-03-17 15:44 -------- d-----w- c:\program files\IrfanView
2010-03-17 15:41 . 2009-09-24 06:50 545 ----a-w- c:\windows\UC.PIF
2010-03-17 15:41 . 2009-09-24 06:50 545 ----a-w- c:\windows\RAR.PIF
2010-03-17 15:41 . 2009-09-24 06:50 545 ----a-w- c:\windows\PKZIP.PIF
2010-03-17 15:41 . 2009-09-24 06:50 545 ----a-w- c:\windows\PKUNZIP.PIF
2010-03-17 15:41 . 2009-09-24 06:50 545 ----a-w- c:\windows\NOCLOSE.PIF
2010-03-17 15:41 . 2009-09-24 06:50 545 ----a-w- c:\windows\LHA.PIF
2010-03-17 15:41 . 2009-09-24 06:50 545 ----a-w- c:\windows\ARJ.PIF

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-03-21 12:17 . 2009-12-29 19:02 474892 ----a-w- c:\windows\system32\perfh005.dat
2010-03-21 12:17 . 2009-12-29 19:02 103104 ----a-w- c:\windows\system32\perfc005.dat
2010-03-18 22:31 . 2009-12-29 14:19 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-03-18 16:19 . 2009-12-29 14:56 -------- d-----w- c:\program files\Microsoft
2010-03-17 16:04 . 2009-12-29 11:17 76487 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2010-03-17 16:04 . 2009-12-29 11:17 2378 ----a-w- c:\windows\pchealth\helpctr\PackageStore\SkuStore.bin
2010-03-17 16:02 . 2009-12-29 11:17 8972 ----a-w- c:\windows\pchealth\helpctr\Config\Cntstore.bin
2009-12-31 16:50 . 2009-12-29 19:02 353792 ----a-w- c:\windows\system32\drivers\srv.sys
2009-12-29 11:16 . 2009-12-29 11:16 21812 ----a-w- c:\windows\system32\emptyregdb.dat
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}]
2010-03-17 20:15 2349080 ----a-w- c:\program files\BS_Player\tbBS_1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}"= "c:\program files\BS_Player\tbBS_1.dll" [2010-03-17 2349080]

[HKEY_CLASSES_ROOT\clsid\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}"= "c:\program files\BS_Player\tbBS_1.dll" [2010-03-17 2349080]

[HKEY_CLASSES_ROOT\clsid\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Google Update"="c:\documents and settings\Marian2\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" [2010-03-17 133104]
"SpywareTerminatorUpdate"="c:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe" [2010-03-17 3037696]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2009-10-30 369200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-11-16 141336]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-11-16 173592]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-11-16 141336]
"RTHDCPL"="RTHDCPL.EXE" [2009-05-14 17881088]
"MGSysCtrl"="c:\program files\System Control Manager\MGSysCtrl.exe" [2009-09-11 2064384]
"ArcSoft Connection Service"="c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" [2009-10-10 203264]
"SpywareTerminator"="c:\program files\Spyware Terminator\SpywareTerminatorShield.exe" [2010-03-17 2166784]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-12-11 948672]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-03-09 2769336]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\totalcmd\\TOTALCMD.EXE"=
"c:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe"=
"c:\\Program Files\\ICQ7.0\\ICQ.exe"=
"c:\\Program Files\\ICQ7.0\\aolload.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=

R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [23.3.2010 18:21 162640]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [17.3.2010 18:41 142592]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [23.3.2010 18:21 19024]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [17.3.2010 18:24 246520]
R2 Micro Star SCM;Micro Star SCM;c:\program files\System Control Manager\MSIService.exe [29.12.2009 15:31 160768]
R3 RT80x86;Ralink 802.11n Wireless Driver;c:\windows\system32\drivers\rt2860.sys [12.1.2010 18:09 1005312]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [18.3.2010 19:15 691696]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [17.3.2010 23:40 133104]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [29.12.2009 15:19 1684736]
S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\system32\drivers\ArcSoftKsUFilter.sys [29.12.2009 16:25 14336]
S3 BTMCOM;Bluetooth Serial Port;c:\windows\system32\Drivers\btmcom.sys --> c:\windows\system32\Drivers\btmcom.sys [?]
S3 EUCR;EUCR;c:\windows\system32\drivers\EUCR6SK.sys [30.12.2009 8:43 81744]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'

2010-03-26 c:\windows\Tasks\1-Click Maintenance.job
- c:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2008-12-11 20:36]

2010-03-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-17 22:39]

2010-03-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-17 22:39]

2010-03-26 c:\windows\Tasks\Úklid 1 kliknutím.job
- c:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2008-12-11 20:36]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.daemon-search.com/startpage
IE: Crawler Search - tbr:iemenu
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: {{88EB38EF-4D2C-436D-ABD3-56B232674062} - c:\program files\ICQ7.0\ICQ.exe
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - c:\progra~1\Crawler\Toolbar\ctbr.dll
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-03-26 16:23
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
Celkový čas: 2010-03-26 16:25:16
ComboFix-quarantined-files.txt 2010-03-26 15:25

Před spuštěním: Volných bajtů: 25 009 659 904
Po spuštění: Volných bajtů: 25 099 014 144

- - End Of File - - A662981761ADB0898E4AF661820A3093

marianek · #2 Příspěvek od **marianek** » 26 bře 2010 18:00

zde je log i s konzolou pro zotavení

zkouším to jen ze zoufalství

ComboFix 10-03-25.09 - Marian2 26.03.2010 17:52:12.2.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.1013.626 [GMT 1:00]
Spuštěný z: c:\documents and settings\Marian2\Dokumenty\Downloads\ComboFix.exe
AV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

((((((((((((((((((((((((( Soubory vytvořené od 2010-02-26 do 2010-03-26 )))))))))))))))))))))))))))))))
.

2010-03-26 15:08 . 2010-03-26 15:08 390144 ----a-w- c:\windows\system32\CF28067.exe
2010-03-23 17:21 . 2010-03-09 11:12 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-03-23 17:21 . 2010-03-09 11:12 162640 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-03-23 17:21 . 2010-03-09 11:09 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-03-23 17:21 . 2010-03-09 11:08 19024 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-03-23 17:21 . 2010-03-09 11:08 100432 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-03-23 17:21 . 2010-03-09 11:08 94800 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-03-23 17:21 . 2010-03-09 11:08 28880 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-03-23 17:21 . 2010-03-09 11:24 38848 ----a-w- c:\windows\system32\avastSS.scr
2010-03-23 17:21 . 2010-03-09 11:24 153184 ----a-w- c:\windows\system32\aswBoot.exe
2010-03-21 12:27 . 2006-06-29 12:07 14048 ------w- c:\windows\system32\spmsg2.dll
2010-03-21 11:27 . 2010-03-21 11:27 -------- d-----w- c:\program files\Windows Installer Clean Up
2010-03-21 11:23 . 2010-03-21 11:26 -------- d-----w- c:\program files\MSECACHE
2010-03-20 11:29 . 2008-04-14 07:52 54272 -c--a-w- c:\windows\system32\dllcache\vfwwdm32.dll
2010-03-20 11:29 . 2008-04-14 07:52 54272 ----a-w- c:\windows\system32\vfwwdm32.dll
2010-03-20 11:29 . 2008-04-13 23:16 121984 -c--a-w- c:\windows\system32\dllcache\usbvideo.sys
2010-03-20 11:29 . 2008-04-13 23:16 121984 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2010-03-20 11:29 . 2008-04-13 23:15 32128 -c--a-w- c:\windows\system32\dllcache\usbccgp.sys
2010-03-20 11:29 . 2008-04-13 23:15 32128 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2010-03-19 16:25 . 2006-02-20 15:59 5808 ----a-w- c:\windows\system32\drivers\w810whnt.sys
2010-03-19 16:25 . 2006-02-20 15:59 5808 ----a-w- c:\windows\system32\drivers\w810wh.sys
2010-03-19 16:25 . 2006-02-20 15:59 83344 ----a-w- c:\windows\system32\drivers\w810obex.sys
2010-03-19 16:25 . 2006-02-20 15:59 85408 ----a-w- c:\windows\system32\drivers\w810mgmt.sys
2010-03-19 16:25 . 2006-02-20 15:59 94064 ----a-w- c:\windows\system32\drivers\w810mdm.sys
2010-03-19 16:25 . 2006-02-20 15:59 8336 ----a-w- c:\windows\system32\drivers\w810mdfl.sys
2010-03-19 16:25 . 2006-02-20 15:59 6176 ----a-w- c:\windows\system32\drivers\w810cmnt.sys
2010-03-19 16:25 . 2006-02-20 15:59 6176 ----a-w- c:\windows\system32\drivers\w810cm.sys
2010-03-19 16:25 . 2006-02-20 15:59 58288 ----a-w- c:\windows\system32\drivers\w810bus.sys
2010-03-19 16:03 . 2010-03-19 16:03 -------- d-sh--w- c:\documents and settings\Marian2\IECompatCache
2010-03-19 09:46 . 2010-03-19 09:46 -------- d-----w- c:\windows\system32\wbem\Repository
2010-03-19 08:49 . 2010-03-21 12:27 -------- d-----w- c:\windows\system32\XPSViewer
2010-03-19 08:49 . 2010-03-19 08:49 -------- d-----w- c:\program files\Reference Assemblies
2010-03-19 08:48 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2010-03-19 08:48 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2010-03-19 08:48 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2010-03-19 08:48 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2010-03-19 08:48 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2010-03-19 08:48 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2010-03-19 08:48 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2010-03-19 08:48 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2010-03-19 08:41 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe
2010-03-19 07:23 . 2010-03-19 07:23 -------- d-----w- c:\program files\MyPhoneExplorer
2010-03-18 23:17 . 2008-06-14 17:35 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2010-03-18 23:17 . 2008-06-14 17:35 272128 ------w- c:\windows\system32\drivers\bthport.sys
2010-03-18 23:17 . 2009-12-21 19:08 246272 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2010-03-18 23:17 . 2009-12-21 19:08 594432 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2010-03-18 23:17 . 2009-12-21 19:08 1985536 -c----w- c:\windows\system32\dllcache\iertutil.dll
2010-03-18 23:17 . 2009-12-21 19:08 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2010-03-18 23:17 . 2009-12-21 19:08 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2010-03-18 23:17 . 2009-12-21 19:08 11070464 -c----w- c:\windows\system32\dllcache\ieframe.dll
2010-03-18 23:13 . 2009-12-04 18:22 455424 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2010-03-18 23:04 . 2010-03-20 09:11 -------- d--h--w- c:\windows\$hf_mig$
2010-03-18 23:04 . 2010-03-19 07:22 -------- d-----w- c:\windows\ie8updates
2010-03-18 20:00 . 2010-03-18 20:00 -------- d-----w- c:\program files\Windows Media Connect 2
2010-03-18 19:57 . 2010-03-18 19:58 -------- d-----w- c:\windows\system32\drivers\UMDF
2010-03-18 19:57 . 2010-03-18 19:57 -------- d-----w- c:\windows\system32\LogFiles
2010-03-18 19:49 . 2009-11-27 17:14 17920 -c----w- c:\windows\system32\dllcache\msyuv.dll
2010-03-18 19:49 . 2009-12-09 10:11 2191360 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2010-03-18 19:49 . 2009-12-09 10:11 2147328 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2010-03-18 19:49 . 2009-12-09 10:11 2068224 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2010-03-18 19:49 . 2009-12-09 10:11 2025984 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2010-03-18 18:27 . 2010-03-18 18:27 -------- d-----w- c:\program files\Microsoft Works
2010-03-18 18:27 . 2010-03-18 18:27 -------- d-----w- c:\program files\MSBuild
2010-03-18 18:25 . 2010-03-18 18:25 -------- d-----w- c:\program files\Microsoft.NET
2010-03-18 18:22 . 2010-03-18 18:22 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2010-03-18 18:21 . 2010-03-18 18:26 -------- d-----w- c:\windows\SHELLNEW
2010-03-18 18:20 . 2010-03-18 18:20 -------- d-----r- C:\MSOCache
2010-03-18 18:15 . 2010-03-18 18:16 -------- d-----w- c:\program files\DAEMON Tools Toolbar
2010-03-18 18:15 . 2010-03-18 18:15 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-03-18 18:15 . 2010-03-18 18:16 -------- d-----w- c:\program files\DAEMON Tools Lite
2010-03-18 18:01 . 2010-03-18 18:03 -------- d-----w- c:\program files\ICQ7.0
2010-03-18 17:45 . 2010-03-18 17:50 -------- d-----w- c:\program files\ICQ6
2010-03-18 05:43 . 2010-03-18 05:43 -------- d-----w- c:\windows\RE_DRIVE
2010-03-17 22:39 . 2010-03-17 22:40 -------- d-----w- c:\program files\Google
2010-03-17 22:39 . 2010-03-17 22:39 -------- d-----w- c:\program files\Alwil Software
2010-03-17 22:32 . 2010-03-17 22:32 603904 ----a-w- c:\windows\system32\TUProgSt.exe
2010-03-17 22:32 . 2010-03-17 22:32 360192 ----a-w- c:\windows\system32\TuneUpDefragService.exe
2010-03-17 22:32 . 2008-12-11 12:31 27904 ----a-w- c:\windows\system32\uxtuneup.dll
2010-03-17 22:32 . 2010-03-17 22:33 -------- d-----w- c:\program files\TuneUp Utilities 2009
2010-03-17 22:28 . 2010-03-17 22:28 -------- d-sh--w- c:\documents and settings\Marian2\PrivacIE
2010-03-17 21:54 . 2009-12-29 15:14 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2010-03-17 21:54 . 2009-12-29 15:14 -------- d-sh--w- c:\documents and settings\Default User\IETldCache
2010-03-17 21:24 . 2010-03-17 21:24 -------- d-----w- c:\program files\Common Files\Adobe
2010-03-17 21:21 . 2010-03-17 21:21 -------- d-----w- c:\program files\JPEG Resampler
2010-03-17 18:04 . 2010-03-17 18:04 -------- d-----w- C:\totalcmd
2010-03-17 17:41 . 2010-03-17 17:41 -------- d-----w- c:\program files\Crawler
2010-03-17 17:41 . 2010-03-17 17:41 142592 ----a-w- c:\windows\system32\drivers\sp_rsdrv2.sys
2010-03-17 17:41 . 2010-03-23 18:12 -------- d-----w- c:\program files\Spyware Terminator
2010-03-17 17:28 . 2010-03-17 17:28 -------- d-----w- c:\program files\PSPad editor
2010-03-17 17:24 . 2010-03-18 18:16 -------- d-----w- c:\program files\ICQ6Toolbar
2010-03-17 17:16 . 2010-03-17 17:16 -------- d-----w- c:\program files\Conduit
2010-03-17 17:16 . 2010-03-17 20:15 -------- d-----w- c:\program files\BS_Player
2010-03-17 17:16 . 2010-03-17 17:16 -------- d-----w- c:\program files\Webteh
2010-03-17 16:11 . 2010-03-17 16:11 -------- d-----w- c:\program files\Zoner
2010-03-17 16:05 . 2010-03-17 16:05 -------- d-----w- c:\program files\CCleaner
2010-03-17 15:57 . 2010-03-17 15:57 0 ----a-w- c:\windows\nsreg.dat
2010-03-17 15:56 . 2010-03-17 19:09 -------- d-----w- c:\program files\Mozilla Thunderbird
2010-03-17 15:44 . 2010-03-17 15:44 -------- d-----w- c:\program files\IrfanView
2010-03-17 15:41 . 2009-09-24 06:50 545 ----a-w- c:\windows\UC.PIF
2010-03-17 15:41 . 2009-09-24 06:50 545 ----a-w- c:\windows\RAR.PIF
2010-03-17 15:41 . 2009-09-24 06:50 545 ----a-w- c:\windows\PKZIP.PIF
2010-03-17 15:41 . 2009-09-24 06:50 545 ----a-w- c:\windows\PKUNZIP.PIF
2010-03-17 15:41 . 2009-09-24 06:50 545 ----a-w- c:\windows\NOCLOSE.PIF
2010-03-17 15:41 . 2009-09-24 06:50 545 ----a-w- c:\windows\LHA.PIF
2010-03-17 15:41 . 2009-09-24 06:50 545 ----a-w- c:\windows\ARJ.PIF

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-03-21 12:17 . 2009-12-29 19:02 474892 ----a-w- c:\windows\system32\perfh005.dat
2010-03-21 12:17 . 2009-12-29 19:02 103104 ----a-w- c:\windows\system32\perfc005.dat
2010-03-18 22:31 . 2009-12-29 14:19 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-03-18 16:19 . 2009-12-29 14:56 -------- d-----w- c:\program files\Microsoft
2010-03-17 16:04 . 2009-12-29 11:17 76487 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2010-03-17 16:04 . 2009-12-29 11:17 2378 ----a-w- c:\windows\pchealth\helpctr\PackageStore\SkuStore.bin
2010-03-17 16:02 . 2009-12-29 11:17 8972 ----a-w- c:\windows\pchealth\helpctr\Config\Cntstore.bin
2009-12-31 16:50 . 2009-12-29 19:02 353792 ----a-w- c:\windows\system32\drivers\srv.sys
2009-12-29 11:16 . 2009-12-29 11:16 21812 ----a-w- c:\windows\system32\emptyregdb.dat
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}]
2010-03-17 20:15 2349080 ----a-w- c:\program files\BS_Player\tbBS_1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}"= "c:\program files\BS_Player\tbBS_1.dll" [2010-03-17 2349080]

[HKEY_CLASSES_ROOT\clsid\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}"= "c:\program files\BS_Player\tbBS_1.dll" [2010-03-17 2349080]

[HKEY_CLASSES_ROOT\clsid\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Google Update"="c:\documents and settings\Marian2\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" [2010-03-17 133104]
"SpywareTerminatorUpdate"="c:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe" [2010-03-17 3037696]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2009-10-30 369200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-11-16 141336]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-11-16 173592]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-11-16 141336]
"RTHDCPL"="RTHDCPL.EXE" [2009-05-14 17881088]
"MGSysCtrl"="c:\program files\System Control Manager\MGSysCtrl.exe" [2009-09-11 2064384]
"ArcSoft Connection Service"="c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" [2009-10-10 203264]
"SpywareTerminator"="c:\program files\Spyware Terminator\SpywareTerminatorShield.exe" [2010-03-17 2166784]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-12-11 948672]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-03-09 2769336]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\totalcmd\\TOTALCMD.EXE"=
"c:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe"=
"c:\\Program Files\\ICQ7.0\\ICQ.exe"=
"c:\\Program Files\\ICQ7.0\\aolload.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=

R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [23.3.2010 18:21 162640]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [17.3.2010 18:41 142592]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [23.3.2010 18:21 19024]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [17.3.2010 18:24 246520]
R2 Micro Star SCM;Micro Star SCM;c:\program files\System Control Manager\MSIService.exe [29.12.2009 15:31 160768]
R3 RT80x86;Ralink 802.11n Wireless Driver;c:\windows\system32\drivers\rt2860.sys [12.1.2010 18:09 1005312]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [18.3.2010 19:15 691696]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [17.3.2010 23:40 133104]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [29.12.2009 15:19 1684736]
S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\system32\drivers\ArcSoftKsUFilter.sys [29.12.2009 16:25 14336]
S3 BTMCOM;Bluetooth Serial Port;c:\windows\system32\Drivers\btmcom.sys --> c:\windows\system32\Drivers\btmcom.sys [?]
S3 EUCR;EUCR;c:\windows\system32\drivers\EUCR6SK.sys [30.12.2009 8:43 81744]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'

2010-03-26 c:\windows\Tasks\1-Click Maintenance.job
- c:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2008-12-11 20:36]

2010-03-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-17 22:39]

2010-03-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-17 22:39]

2010-03-26 c:\windows\Tasks\Úklid 1 kliknutím.job
- c:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2008-12-11 20:36]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.daemon-search.com/startpage
IE: Crawler Search - tbr:iemenu
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: {{88EB38EF-4D2C-436D-ABD3-56B232674062} - c:\program files\ICQ7.0\ICQ.exe
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - c:\progra~1\Crawler\Toolbar\ctbr.dll
.

**************************************************************************
skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory:

**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'explorer.exe'(2584)
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Celkový čas: 2010-03-26 17:57:26
ComboFix-quarantined-files.txt 2010-03-26 16:57
ComboFix2.txt 2010-03-26 15:25

Před spuštěním: Volných bajtů: 25 050 140 672
Po spuštění: Volných bajtů: 25 042 235 392

WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect

- - End Of File - - EAC6C2CB2A5C95C050600A5D281B4C88

marianek · #3 Příspěvek od **marianek** » 26 bře 2010 18:42

takže jeden problém je vyřešen, to zatuhnutí pc po kliku praveho tlačítka uz je vyreseno. vyřešilo to odstranění spyware terminatora

zbývá toto nejdou mi nainstalovat aktualizace

Aktualizace Microsoft .NET Framework 3.5 Service Pack 1 a .NET Framework 3.5 Family Update pro verze rozhraní .NET 2.0 až 3.5 (KB951847) x86

#4 Příspěvek od **Caroprd111** » 26 bře 2010 19:40

Zdravím

Podívám se na to.

Nedoporučuji používat ComboFix z vlastní iniciativy, může dojít k poškození systému!

#5 Příspěvek od **Caroprd111** » 26 bře 2010 19:43

Stáhněte MBAM http://www.viry.cz/forum/viewtopic.php?f=29&t=67229

Podle návodu v odkazu nainstalujte, poté dejte úplný sken.
Nic nemažte MBAM má občas falešné detekce a mohl by smazat např. systémové soubory.
Log vložte sem.

marianek · #6 Příspěvek od **marianek** » 26 bře 2010 20:59

ahoj díky, log

tak jsem to zkontroloval ale nic to nenašlo

Malwarebytes' Anti-Malware 1.44
Verze databáze: 3918
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

26.3.2010 20:58:22
mbam-log-2010-03-26 (20-58-22).txt

Typ kontroly: Kompletní kontrola (C:\|D:\|)
Zkontrolované objekty: 169059
Uplynulý čas: 32 minute(s), 22 second(s)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 0
Infikované datové položky registru: 0
Infikované adresáře: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Nebyly nalezeny žádné škodlivé položky)

Infikované moduly v paměti:
(Nebyly nalezeny žádné škodlivé položky)

Infikované klíče registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované hodnoty registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované datové položky registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované adresáře:
(Nebyly nalezeny žádné škodlivé položky)

Infikované soubory:
(Nebyly nalezeny žádné škodlivé položky)

#7 Příspěvek od **Caroprd111** » 26 bře 2010 21:05

Dejte log z RSIT.

marianek · #8 Příspěvek od **marianek** » 26 bře 2010 21:19

Logfile of random's system information tool 1.06 (written by random/random)
Run by Marian2 at 2010-03-26 21:18:01
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 24 GB (60%) free of 40 GB
Total RAM: 1013 MB (44% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:18:11, on 26.3.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\System Control Manager\MGSysCtrl.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\Documents and Settings\Marian2\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\Program Files\ICQ6Toolbar\ICQ Service.exe
C:\Program Files\System Control Manager\MSIService.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Marian2\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Marian2\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Marian2\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Marian2\Dokumenty\Downloads\RSIT.exe
C:\Program Files\trend micro\Marian2.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.daemon-search.com/startpage
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60327
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\1003181902\ICQToolBar.dll
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: Windows Live OneCare Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_1.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_1.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\1003181902\ICQToolBar.dll
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [MGSysCtrl] C:\Program Files\System Control Manager\MGSysCtrl.exe
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Marian2\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.msi.com.tw
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: Micro Star SCM - Micro-Star International Co., Ltd. - C:\Program Files\System Control Manager\MSIService.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe

--
End of file - 9221 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\1-Click Maintenance.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Úklid 1 kliknutím.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}]
C:\PROGRA~1\Crawler\Toolbar\ctbr.dll [2010-01-29 1230184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2008-12-08 61792]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2008-12-04 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2008-11-18 408952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2008-12-08 1067352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}]
BS Player Toolbar - C:\Program Files\BS_Player\tbBS_1.dll [2010-03-17 2349080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2008-12-08 1067352]
{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - BS Player Toolbar - C:\Program Files\BS_Player\tbBS_1.dll [2010-03-17 2349080]
{855F3B16-6D32-4FE6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\1003181902\ICQToolBar.dll [2010-01-03 1019128]
{4B3803EA-5230-4DC3-A7FC-33638F3D3542} - &Crawler lišta - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll [2010-01-29 1230184]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2009-11-24 953800]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2009-11-16 141336]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2009-11-16 173592]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2009-11-16 141336]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-05-14 17881088]
"MGSysCtrl"=C:\Program Files\System Control Manager\MGSysCtrl.exe [2009-09-11 2064384]
"ArcSoft Connection Service"=C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2009-10-10 203264]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-12-11 948672]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-03-09 2769336]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2010-01-07 429392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Documents and Settings\Marian2\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2010-03-17 133104]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2009-11-11 205312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\totalcmd\TOTALCMD.EXE"="C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit"
"C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"="C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Enabled:Crawler Spyware Terminator"
"C:\Program Files\ICQ7.0\ICQ.exe"="C:\Program Files\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"C:\Program Files\ICQ7.0\aolload.exe"="C:\Program Files\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\Program Files\ICQ7.0\ICQ.exe"="C:\Program Files\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"C:\Program Files\ICQ7.0\aolload.exe"="C:\Program Files\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"

======List of files/folders created in the last 1 months======

2010-03-26 21:18:01 ----D---- C:\rsit
2010-03-26 21:18:01 ----D---- C:\Program Files\trend micro
2010-03-26 20:14:53 ----D---- C:\Documents and Settings\Marian2\Data aplikací\Malwarebytes
2010-03-26 20:14:46 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2010-03-26 20:14:45 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-03-26 17:57:28 ----D---- C:\WINDOWS\temp
2010-03-26 17:57:26 ----A---- C:\ComboFix.txt
2010-03-26 17:51:46 ----A---- C:\Boot.bak
2010-03-26 17:51:41 ----RASHD---- C:\cmdcons
2010-03-26 17:50:55 ----D---- C:\ComboFix
2010-03-26 16:13:52 ----A---- C:\WINDOWS\NIRCMD.exe
2010-03-26 16:13:52 ----A---- C:\WINDOWS\MBR.exe
2010-03-26 16:13:51 ----A---- C:\WINDOWS\zip.exe
2010-03-26 16:13:51 ----A---- C:\WINDOWS\SWXCACLS.exe
2010-03-26 16:13:51 ----A---- C:\WINDOWS\SWSC.exe
2010-03-26 16:13:51 ----A---- C:\WINDOWS\SWREG.exe
2010-03-26 16:13:51 ----A---- C:\WINDOWS\sed.exe
2010-03-26 16:13:51 ----A---- C:\WINDOWS\PEV.exe
2010-03-26 16:13:51 ----A---- C:\WINDOWS\grep.exe
2010-03-26 16:08:51 ----D---- C:\WINDOWS\ERDNT
2010-03-26 16:08:50 ----A---- C:\WINDOWS\system32\CF28067.exe
2010-03-26 16:08:35 ----D---- C:\Qoobox
2010-03-26 08:36:16 ----D---- C:\WINDOWS\pss
2010-03-23 18:21:33 ----A---- C:\WINDOWS\system32\aswBoot.exe
2010-03-21 22:13:09 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2010-03-21 13:27:34 ----N---- C:\WINDOWS\system32\spmsg2.dll
2010-03-21 13:27:30 ----HDC---- C:\WINDOWS\$NtUninstallXPSEPSCLP$
2010-03-21 12:27:00 ----D---- C:\Program Files\Windows Installer Clean Up
2010-03-21 12:23:40 ----D---- C:\Program Files\MSECACHE
2010-03-20 12:29:58 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2010-03-20 10:11:03 ----HDC---- C:\WINDOWS\$NtUninstallKB978262$
2010-03-20 10:10:59 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-03-20 10:10:53 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2010-03-20 10:10:48 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2010-03-20 10:10:43 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2010-03-20 10:10:10 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2010-03-19 16:21:19 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2010-03-19 16:20:26 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2010-03-19 16:19:31 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2010-03-19 09:49:39 ----D---- C:\WINDOWS\system32\XPSViewer
2010-03-19 09:49:26 ----D---- C:\WINDOWS\system32\en-US
2010-03-19 09:49:11 ----D---- C:\Program Files\Reference Assemblies
2010-03-19 09:49:11 ----D---- C:\Config.Msi
2010-03-19 09:48:39 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2010-03-19 09:48:39 ----N---- C:\WINDOWS\system32\prntvpt.dll
2010-03-19 09:48:38 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2010-03-19 09:41:15 ----N---- C:\WINDOWS\system32\browserchoice.exe
2010-03-19 09:36:58 ----A---- C:\WINDOWS\system32\MRT.exe
2010-03-19 08:23:38 ----D---- C:\Documents and Settings\Marian2\Data aplikací\MyPhoneExplorer
2010-03-19 08:23:24 ----D---- C:\Documents and Settings\Marian2\Data aplikací\Desktopicon
2010-03-19 08:23:07 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2010-03-19 08:23:06 ----D---- C:\Program Files\MyPhoneExplorer
2010-03-19 08:22:56 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2010-03-19 08:22:35 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2010-03-19 08:21:42 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2010-03-19 08:21:30 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-03-19 08:20:46 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-03-19 08:20:32 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2010-03-19 08:20:11 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-03-19 08:19:50 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2010-03-19 08:19:37 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-03-19 08:19:16 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-03-19 08:18:55 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-03-19 08:18:37 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2010-03-19 08:18:23 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2010-03-19 08:18:09 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-03-19 08:17:56 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-03-19 08:17:40 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2010-03-19 08:17:25 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-03-19 08:17:08 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2010-03-19 08:16:56 ----HDC---- C:\WINDOWS\$NtUninstallKB978251$
2010-03-19 08:16:47 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-03-19 08:16:20 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2010-03-19 08:16:03 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-03-19 08:15:52 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-03-19 08:15:43 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2010-03-19 08:15:36 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2010-03-19 08:15:28 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2010-03-19 08:15:17 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2010-03-19 08:14:31 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2010-03-19 08:14:21 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2010-03-19 08:14:09 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-03-19 08:13:53 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2010-03-19 08:13:42 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-03-19 08:13:24 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2010-03-19 08:13:15 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-03-19 08:13:04 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2010-03-19 08:12:46 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-03-19 08:12:34 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2010-03-19 08:12:26 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2010-03-19 08:12:13 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2010-03-19 08:11:59 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2010-03-19 08:11:48 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-03-19 08:11:38 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-03-19 08:11:20 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$
2010-03-19 00:06:23 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2010-03-19 00:06:12 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-03-19 00:06:03 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-03-19 00:05:56 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2010-03-19 00:05:45 ----HDC---- C:\WINDOWS\$NtUninstallKB977165-v2$
2010-03-19 00:05:36 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2010-03-19 00:05:28 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-03-19 00:05:16 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-03-19 00:05:09 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-03-19 00:04:56 ----D---- C:\WINDOWS\system32\PreInstall
2010-03-19 00:04:39 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2010-03-19 00:04:20 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2010-03-19 00:04:09 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-03-19 00:04:01 ----HD---- C:\WINDOWS\$hf_mig$
2010-03-19 00:04:01 ----D---- C:\WINDOWS\ie8updates
2010-03-19 00:03:45 ----HDC---- C:\WINDOWS\$NtUninstallKB979306$
2010-03-18 21:28:33 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-03-18 21:01:07 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2010-03-18 21:00:22 ----D---- C:\Program Files\Windows Media Connect 2
2010-03-18 21:00:11 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2010-03-18 20:58:41 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2010-03-18 20:57:42 ----D---- C:\WINDOWS\system32\LogFiles
2010-03-18 20:57:31 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2010-03-18 20:56:19 ----D---- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
2010-03-18 19:27:44 ----D---- C:\Program Files\Microsoft Works
2010-03-18 19:27:24 ----D---- C:\Program Files\MSBuild
2010-03-18 19:26:46 ----D---- C:\Program Files\Microsoft Visual Studio
2010-03-18 19:26:45 ----D---- C:\Program Files\Common Files\DESIGNER
2010-03-18 19:25:21 ----D---- C:\Program Files\Microsoft.NET
2010-03-18 19:22:34 ----D---- C:\Program Files\Microsoft Visual Studio 8
2010-03-18 19:21:48 ----D---- C:\WINDOWS\SHELLNEW
2010-03-18 19:21:12 ----D---- C:\Program Files\Microsoft Office
2010-03-18 19:20:48 ----RD---- C:\MSOCache
2010-03-18 19:15:50 ----D---- C:\Program Files\DAEMON Tools Toolbar
2010-03-18 19:15:06 ----D---- C:\Program Files\DAEMON Tools Lite
2010-03-18 19:15:00 ----D---- C:\Documents and Settings\Marian2\Data aplikací\DAEMON Tools Lite
2010-03-18 19:14:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2010-03-18 19:01:20 ----D---- C:\Program Files\ICQ7.0
2010-03-18 18:45:02 ----D---- C:\Program Files\ICQ6
2010-03-18 18:41:12 ----D---- C:\Documents and Settings\Marian2\Data aplikací\ICQLite
2010-03-18 06:43:41 ----D---- C:\WINDOWS\RE_DRIVE
2010-03-18 06:36:09 ----SHD---- C:\System Volume Information
2010-03-17 23:39:56 ----D---- C:\Program Files\Google
2010-03-17 23:39:36 ----D---- C:\Program Files\Alwil Software
2010-03-17 23:39:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
2010-03-17 23:32:36 ----A---- C:\WINDOWS\system32\uxtuneup.dll
2010-03-17 23:32:36 ----A---- C:\WINDOWS\system32\TUProgSt.exe
2010-03-17 23:32:36 ----A---- C:\WINDOWS\system32\TuneUpDefragService.exe
2010-03-17 23:32:33 ----D---- C:\Documents and Settings\Marian2\Data aplikací\TuneUp Software
2010-03-17 23:32:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
2010-03-17 23:32:22 ----D---- C:\Program Files\TuneUp Utilities 2009
2010-03-17 23:32:04 ----SHD---- C:\Documents and Settings\All Users\Data aplikací\{55A29068-F2CE-456C-9148-C869879E2357}
2010-03-17 22:55:57 ----ASH---- C:\Documents and Settings\Marian2\Data aplikací\desktop.ini
2010-03-17 22:55:49 ----SD---- C:\Documents and Settings\Marian2\Data aplikací\Microsoft
2010-03-17 22:55:49 ----D---- C:\Documents and Settings\Marian2\Data aplikací\Macromedia
2010-03-17 22:55:49 ----D---- C:\Documents and Settings\Marian2\Data aplikací\kidoz.52BCFEE1FEAB03D960EAF75B15C2A56D33E8320D.1
2010-03-17 22:55:49 ----D---- C:\Documents and Settings\Marian2\Data aplikací\InstallShield
2010-03-17 22:55:49 ----D---- C:\Documents and Settings\Marian2\Data aplikací\Identities
2010-03-17 22:55:49 ----D---- C:\Documents and Settings\Marian2\Data aplikací\ArcSoft
2010-03-17 22:55:49 ----D---- C:\Documents and Settings\Marian2\Data aplikací\Adobe
2010-03-17 22:24:01 ----D---- C:\Program Files\Common Files\Adobe
2010-03-17 22:21:05 ----D---- C:\Documents and Settings\Marian2\Data aplikací\Jpeg Resampler
2010-03-17 22:21:00 ----D---- C:\Program Files\JPEG Resampler
2010-03-17 22:09:43 ----D---- C:\Documents and Settings\Marian2\Data aplikací\WinRAR
2010-03-17 22:08:39 ----D---- C:\Program Files\WinRAR
2010-03-17 19:04:48 ----D---- C:\totalcmd
2010-03-17 18:41:10 ----D---- C:\Program Files\Crawler
2010-03-17 18:28:20 ----D---- C:\Documents and Settings\Marian2\Data aplikací\PSpad
2010-03-17 18:28:08 ----D---- C:\Program Files\PSPad editor
2010-03-17 18:24:35 ----D---- C:\Program Files\ICQ6Toolbar
2010-03-17 18:24:30 ----D---- C:\Documents and Settings\All Users\Data aplikací\ICQ
2010-03-17 18:23:56 ----D---- C:\Documents and Settings\Marian2\Data aplikací\ICQ
2010-03-17 18:16:11 ----D---- C:\Program Files\Conduit
2010-03-17 18:16:09 ----D---- C:\Program Files\BS_Player
2010-03-17 18:16:03 ----D---- C:\Documents and Settings\Marian2\Data aplikací\BSplayer Pro
2010-03-17 18:16:03 ----D---- C:\Documents and Settings\Marian2\Data aplikací\BSplayer
2010-03-17 18:16:00 ----D---- C:\Program Files\Webteh
2010-03-17 17:11:15 ----D---- C:\Program Files\Zoner
2010-03-17 17:06:44 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2010-03-17 17:05:00 ----D---- C:\Program Files\CCleaner
2010-03-17 16:57:12 ----D---- C:\Documents and Settings\Marian2\Data aplikací\Thunderbird
2010-03-17 16:57:12 ----D---- C:\Documents and Settings\Marian2\Data aplikací\Mozilla
2010-03-17 16:56:59 ----D---- C:\Program Files\Mozilla Thunderbird
2010-03-17 16:53:53 ----D---- C:\Documents and Settings\Marian2\Data aplikací\Zoner
2010-03-17 16:44:27 ----D---- C:\Program Files\IrfanView
2010-03-17 16:41:06 ----D---- C:\Documents and Settings\Marian2\Data aplikací\GHISLER

======List of files/folders modified in the last 1 months======

2010-03-26 21:18:04 ----D---- C:\WINDOWS\Prefetch
2010-03-26 21:18:01 ----RD---- C:\Program Files
2010-03-26 20:43:16 ----D---- C:\WINDOWS\system32\CatRoot2
2010-03-26 20:14:48 ----D---- C:\WINDOWS\system32\drivers
2010-03-26 18:43:50 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-03-26 17:57:28 ----D---- C:\WINDOWS
2010-03-26 17:55:54 ----A---- C:\WINDOWS\system.ini
2010-03-26 17:54:06 ----D---- C:\WINDOWS\system32
2010-03-26 17:54:06 ----D---- C:\WINDOWS\AppPatch
2010-03-26 17:54:04 ----D---- C:\Program Files\Common Files
2010-03-26 17:51:46 ----RASH---- C:\boot.ini
2010-03-26 16:24:35 ----SD---- C:\WINDOWS\Tasks
2010-03-23 18:21:47 ----SHD---- C:\WINDOWS\Installer
2010-03-23 18:21:46 ----D---- C:\WINDOWS\WinSxS
2010-03-22 19:29:22 ----D---- C:\WINDOWS\Debug
2010-03-21 22:13:21 ----HD---- C:\WINDOWS\inf
2010-03-21 22:13:18 ----D---- C:\WINDOWS\system32\CatRoot
2010-03-21 22:13:14 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-03-21 14:09:39 ----D---- C:\WINDOWS\Microsoft.NET
2010-03-21 14:09:34 ----RSD---- C:\WINDOWS\assembly
2010-03-21 13:27:10 ----D---- C:\WINDOWS\system32\cs-cz
2010-03-21 13:26:20 ----D---- C:\WINDOWS\system32\mui
2010-03-21 13:17:18 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-03-21 12:59:49 ----RSD---- C:\WINDOWS\Fonts
2010-03-20 13:45:49 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-03-19 17:52:37 ----D---- C:\Documents and Settings
2010-03-19 17:03:40 ----D---- C:\WINDOWS\SoftwareDistribution
2010-03-19 10:46:55 ----D---- C:\WINDOWS\system32\config
2010-03-19 10:46:43 ----D---- C:\WINDOWS\system32\wbem
2010-03-19 10:46:42 ----D---- C:\WINDOWS\Registration
2010-03-19 10:37:25 ----D---- C:\WINDOWS\system32\Restore
2010-03-19 09:44:28 ----D---- C:\Program Files\Internet Explorer
2010-03-19 08:17:10 ----D---- C:\Program Files\Movie Maker
2010-03-19 08:15:19 ----D---- C:\Program Files\Outlook Express
2010-03-19 00:06:25 ----D---- C:\Program Files\Messenger
2010-03-18 23:31:13 ----HD---- C:\Program Files\InstallShield Installation Information
2010-03-18 21:27:50 ----D---- C:\Program Files\Windows Media Player
2010-03-18 21:27:48 ----D---- C:\WINDOWS\Help
2010-03-18 21:00:43 ----A---- C:\WINDOWS\win.ini
2010-03-18 19:29:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2010-03-18 19:27:30 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-03-18 17:19:43 ----D---- C:\Program Files\Microsoft
2010-03-17 22:50:09 ----D---- C:\WINDOWS\security
2010-03-17 22:46:52 ----D---- C:\WINDOWS\repair
2010-03-17 22:32:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-03-17 22:24:01 ----D---- C:\Program Files\Adobe
2010-03-17 16:59:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\ArcSoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2010-03-09 28880]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2010-03-09 162640]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2010-03-09 46672]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2010-03-09 19024]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2010-03-09 100432]
R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2008-12-08 55136]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2010-03-09 23376]
R3 CmBatt;Microsoft AC Adapter Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-14 13952]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2009-11-11 1751424]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-05-15 5080064]
R3 RT80x86;Ralink 802.11n Wireless Driver; C:\WINDOWS\system32\DRIVERS\RT2860.sys [2009-04-29 1005312]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2009-07-28 143360]
R3 ULCDRHlp;ULCDRHlp; C:\WINDOWS\System32\Drivers\ULCDRHlp.sys [2004-12-23 27392]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 ap9nld5e;ap9nld5e; C:\WINDOWS\system32\drivers\ap9nld5e.sys []
S3 AR5416;Atheros AR5008 Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athw.sys [2009-06-03 1570240]
S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect; C:\WINDOWS\system32\DRIVERS\ArcSoftKsUFilter.sys [2008-04-25 14336]
S3 BTMCOM;Bluetooth Serial Port; C:\WINDOWS\System32\Drivers\btmcom.sys []
S3 catchme;catchme; \??\C:\DOCUME~1\Marian2\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 EUCR;EUCR; C:\WINDOWS\system32\DRIVERS\EUCR6SK.SYS [2009-12-09 81744]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-14 121984]
S3 w810bus;Sony Ericsson W810 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\w810bus.sys [2006-02-20 58288]
S3 w810mdfl;Sony Ericsson W810 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\w810mdfl.sys [2006-02-20 8336]
S3 w810mdm;Sony Ericsson W810 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\w810mdm.sys [2006-02-20 94064]
S3 w810mgmt;Sony Ericsson W810 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\w810mgmt.sys [2006-02-20 85408]
S3 w810obex;Sony Ericsson W810 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\w810obex.sys [2006-02-20 83344]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 atapi;atapi; C:\WINDOWS\system32\drivers\atapi.sys [2008-04-14 96512]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2009-09-28 109056]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-03-09 40384]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2010-01-03 246520]
R2 Micro Star SCM;Micro Star SCM; C:\Program Files\System Control Manager\MSIService.exe [2009-07-09 160768]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2008-12-04 226640]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service; C:\WINDOWS\System32\TUProgSt.exe [2010-03-17 603904]
R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-03-09 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-03-09 40384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-03-17 133104]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 fsssvc;Windows Live Zabezpečení rodiny; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2008-12-08 533344]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2010-03-17 360192]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

#9 Příspěvek od **Caroprd111** » 26 bře 2010 21:24

Zkuste odinstalovat všechny verze .NET Framework a poté zkusit nainstalovat z webu Microsoft.

#10 Příspěvek od **Caroprd111** » 26 bře 2010 21:29

Doporučuji odinstalovat (pokud nepoužíváte) toolbary (lišty) v Přidat nebo odebrat programy.

Obrázek

Stáhněte Ccleaner http://viry.cz/forum/viewtopic.php?t=7478

Nainstalujte a v průběhu instalace odškrtněte, že chcete instalovat yahoo toolbar.

Záložka Čistič
Dejte analyzovat, po dokončení dejte Spustit Ccleaner.

Záložka Registry
Klikněte na Hledej problémy, po dokončení klikněte na Opravit problémy, zálohu dělat nemusíte, potom dejte Opravit všechny problémy.
OK Zavřít

V logu nevidím firewall, doinstalujte

Přehled: http://www.viry.cz/forum/viewtopic.php?f=41&t=6523

marianek · #11 Příspěvek od **marianek** » 26 bře 2010 21:50

ty toolbary tam nejsou, jak myslíš odškrkněte, že chcete instalovat yahoo, jak, že nechci?

#12 Příspěvek od **Caroprd111** » 26 bře 2010 21:51

Ano, jako že nechcete.

O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_1.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\1003181902\ICQToolBar.dll
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll

marianek · #13 Příspěvek od **marianek** » 26 bře 2010 22:01

díky, ale v pridat-odebrat nejsou, jak jinak je mam bezpecne smazat?

marianek · #14 Příspěvek od **marianek** » 26 bře 2010 22:17

stačí když to smazu z toho programu files?

#15 Příspěvek od **Caroprd111** » 27 bře 2010 09:36

Ano, stačí když je smažete a potom pročistíte PC CCleanerem.

Obrázek

Stáhněte Ccleaner http://viry.cz/forum/viewtopic.php?t=7478

Nainstalujte a v průběhu instalace odškrtněte, že chcete instalovat yahoo toolbar.

Záložka Čistič
Dejte analyzovat, po dokončení dejte Spustit Ccleaner.

Záložka Registry
Klikněte na Hledej problémy, po dokončení klikněte na Opravit problémy, zálohu dělat nemusíte, potom dejte Opravit všechny problémy.
OK Zavřít

VIRY.CZ

prosím o kontrolu

prosím o kontrolu

Re: prosím o kontrolu

Re: prosím o kontrolu

Re: prosím o kontrolu

Re: prosím o kontrolu

Re: prosím o kontrolu

Re: prosím o kontrolu

Re: prosím o kontrolu

Re: prosím o kontrolu

Re: prosím o kontrolu

Re: prosím o kontrolu

Re: prosím o kontrolu

Re: prosím o kontrolu

Re: prosím o kontrolu

Re: prosím o kontrolu