Zdravim,mam prosbu ohladne pripojenia na net.nastavenie siete mam dobre,kontroloval som to cez ipconfig,aj v pc laptop ukazuje ze vsetko je v poriadku...ale ani ziadny prehliadac sa nechce pripojit ani avast..pripajam sa po kabli na router...zatial dakujem
Logfile of random's system information tool 1.08 (written by random/random)
Run by HP-1020 at 2010-09-14 10:31:25
Microsoft« Windows VistaÖ Home Premium Service Pack 1
System drive C: has 54 GB (38%) free of 145 GB
Total RAM: 2045 MB (47% free)
HijackThis download failed
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\User_Feed_Synchronization-{BF76BDC5-359E-4461-ABD8-3FBCF1F8180B}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{055FD26D-3A88-4e15-963D-DC8493744B1D}]
XTTBPos00 Class - C:\PROGRA~1\ICQTOO~1\toolbaru.dll [2006-12-25 701952]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-08-26 279944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll [2008-02-22 509328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]
DVDVideoSoftTB Toolbar - C:\Program Files\DVDVideoSoftTB\tbDVDV.dll [2010-03-25 2355296]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}]
DVDVideoSoft Toolbar - C:\Program Files\DVDVideoSoft\tbDVDV.dll [2009-11-09 2331672]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2007-11-06 542016]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2010-01-03 1019128]
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Ask Toolbar - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-08-26 279944]
{e9911ec6-1bcc-40b0-9993-e0eea7f6953f} - DVDVideoSoft Toolbar - C:\Program Files\DVDVideoSoft\tbDVDV.dll [2009-11-09 2331672]
{872b5b88-9db5-4310-bdd0-ac189557e5f5} - DVDVideoSoftTB Toolbar - C:\Program Files\DVDVideoSoftTB\tbDVDV.dll [2010-03-25 2355296]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-01-17 1033512]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2008-04-16 442433]
"UCam_Menu"=C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [2007-12-24 222504]
"DpAgent"=C:\Program Files\DigitalPersona\Bin\dpagent.exe [2008-03-12 699456]
"QPService"=C:\Program Files\HP\QuickPlay\QPService.exe [2008-05-14 468264]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2008-03-14 202032]
"OnScreenDisplay"=C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe [2007-11-01 554288]
"HP Health Check Scheduler"=c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-04-15 70912]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-10-14 49152]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2007-11-20 488752]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe [2008-02-22 144784]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2007-05-11 40048]
"hpqSRMon"=C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [2007-08-22 80896]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-05-06 2815192]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-21 1233920]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
"Camfrog"=C:\Program Files\Camfrog\Camfrog Video Chat\CamfrogNet.exe [2003-09-29 36352]
"ICQ"=C:\Program Files\ICQ7.1\ICQ.exe [2010-03-28 133368]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" t\Windows NT\CurrentVersion\Windows"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
DPPWDFLT
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=153
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=153
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 months======
2010-09-14 10:31:26 ----D---- C:\Program Files\trend micro
2010-09-14 10:31:25 ----D---- C:\rsit
2010-09-14 10:16:21 ----D---- C:\Windows\LastGood
2010-09-14 10:14:23 ----D---- C:\Program Files\COMODO
2010-09-14 10:12:02 ----D---- C:\ProgramData\Comodo Downloader
2010-09-14 08:57:13 ----A---- C:\ComboFix.txt
2010-09-14 08:46:01 ----D---- C:\$RECYCLE.BIN
2010-09-14 08:42:26 ----D---- C:\Windows\temp
2010-09-14 08:22:44 ----A---- C:\Windows\zip.exe
2010-09-14 08:22:44 ----A---- C:\Windows\SWSC.exe
2010-09-14 08:22:44 ----A---- C:\Windows\SWREG.exe
2010-09-14 08:22:44 ----A---- C:\Windows\sed.exe
2010-09-14 08:22:44 ----A---- C:\Windows\PEV.exe
2010-09-14 08:22:44 ----A---- C:\Windows\NIRCMD.exe
2010-09-14 08:22:44 ----A---- C:\Windows\MBR.exe
2010-09-14 08:22:44 ----A---- C:\Windows\grep.exe
2010-09-14 08:22:33 ----D---- C:\ComboFix
2010-09-14 08:21:52 ----A---- C:\Windows\SWXCACLS.exe
2010-09-14 08:07:12 ----D---- C:\Windows\ERDNT
2010-09-14 08:06:24 ----D---- C:\Qoobox
2010-09-13 10:26:45 ----AD---- C:\Windows\VDLL.DLL
2010-09-13 10:26:45 ----AD---- C:\Windows\system32\runouce.exe
2010-09-13 10:26:45 ----AD---- C:\Windows\rundll16.exe
2010-09-13 10:26:45 ----AD---- C:\Windows\RUNDL132.EXE
2010-09-13 10:26:45 ----AD---- C:\Windows\logo1_.exe
2010-09-13 10:26:45 ----AD---- C:\Windows\logo_1.exe
2010-09-13 10:21:09 ----A---- C:\Windows\system32\msvcr80.dll
2010-09-13 10:21:09 ----A---- C:\Windows\system32\msvcp80.dll
2010-09-13 10:21:09 ----A---- C:\Windows\system32\eEmpty.exe
2010-09-13 10:21:03 ----D---- C:\Program Files\Common Files\MicroWorld
2010-09-13 09:59:28 ----D---- C:\Program Files\CCleaner
2010-09-13 09:54:18 ----D---- C:\ProgramData\Kaspersky SDK
2010-09-13 09:53:14 ----D---- C:\ProgramData\MicroWorld
2010-09-13 09:51:14 ----D---- C:\sku
2010-09-13 07:56:47 ----D---- C:\Windows\system32\cs
2010-09-12 22:25:42 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2010-09-12 22:25:41 ----A---- C:\Windows\system32\drivers\aswSP.sys
2010-09-12 22:25:39 ----A---- C:\Windows\system32\drivers\aswRdr.sys
2010-09-12 22:25:37 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2010-09-12 22:25:34 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2010-09-12 22:24:06 ----A---- C:\Windows\system32\aswBoot.exe
2010-09-12 22:21:19 ----D---- C:\Program Files\ATI Technologies
2010-09-12 21:52:59 ----D---- C:\Program Files\ATI
2010-09-12 21:32:30 ----A---- C:\Windows\system32\drivers\btwrchid.sys
2010-09-12 21:32:30 ----A---- C:\Windows\system32\drivers\btwavdt.sys
2010-09-12 21:32:30 ----A---- C:\Windows\system32\drivers\btwaudio.sys
2010-09-12 21:32:23 ----A---- C:\Windows\system32\BtwRSupport.dll
2010-09-12 21:31:57 ----D---- C:\Windows\system32\es-MX
2010-09-12 21:31:56 ----D---- C:\Windows\system32\es-AR
2010-09-12 20:36:02 ----A---- C:\Windows\system32\uxtuneup.dll
2010-09-12 20:36:01 ----A---- C:\Windows\system32\authuitu.dll
2010-09-12 20:35:35 ----A---- C:\Windows\system32\TuneUpDefragService.exe
2010-09-12 20:35:34 ----D---- C:\Users\HP-1020\AppData\Roaming\TuneUp Software
2010-09-12 20:35:06 ----D---- C:\ProgramData\TuneUp Software
2010-09-12 20:34:47 ----D---- C:\Program Files\TuneUp Utilities 2008
2010-09-12 20:33:54 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-09-12 20:32:48 ----A---- C:\Windows\Wincmd.ini
2010-09-12 20:32:41 ----D---- C:\Program Files\Total Commander
2010-09-12 18:06:53 ----D---- C:\Windows\system32\EventProviders
2010-09-09 17:51:03 ----D---- C:\ProgramData\Alwil Software
2010-09-09 17:51:02 ----D---- C:\Program Files\Alwil Software
2010-09-01 11:39:42 ----A---- C:\Windows\system32\win32k.sys
2010-09-01 11:39:16 ----A---- C:\Windows\system32\iertutil.dll
2010-09-01 11:39:11 ----A---- C:\Windows\system32\mshtml.dll
2010-09-01 11:39:03 ----A---- C:\Windows\system32\ieframe.dll
2010-09-01 11:38:56 ----A---- C:\Windows\system32\urlmon.dll
2010-09-01 11:38:44 ----A---- C:\Windows\system32\msfeeds.dll
2010-09-01 11:38:44 ----A---- C:\Windows\system32\ie4uinit.exe
2010-09-01 11:38:43 ----A---- C:\Windows\system32\wininet.dll
2010-09-01 11:38:43 ----A---- C:\Windows\system32\iedkcs32.dll
2010-09-01 11:38:41 ----A---- C:\Windows\system32\mstime.dll
2010-09-01 11:38:40 ----A---- C:\Windows\system32\occache.dll
2010-09-01 11:38:40 ----A---- C:\Windows\system32\ieui.dll
2010-09-01 11:38:40 ----A---- C:\Windows\system32\iesysprep.dll
2010-09-01 11:38:40 ----A---- C:\Windows\system32\iepeers.dll
2010-09-01 11:38:39 ----A---- C:\Windows\system32\msfeedssync.exe
2010-09-01 11:38:39 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-09-01 11:38:39 ----A---- C:\Windows\system32\jsproxy.dll
2010-09-01 11:38:39 ----A---- C:\Windows\system32\ieUnatt.exe
2010-09-01 11:38:39 ----A---- C:\Windows\system32\iesetup.dll
2010-09-01 11:38:39 ----A---- C:\Windows\system32\iernonce.dll
2010-09-01 11:38:32 ----A---- C:\Windows\system32\schannel.dll
2010-09-01 11:38:25 ----A---- C:\Windows\system32\iccvid.dll
2010-09-01 11:38:20 ----A---- C:\Windows\system32\rtutils.dll
2010-09-01 11:38:09 ----A---- C:\Windows\system32\drivers\srv.sys
2010-09-01 11:38:08 ----A---- C:\Windows\system32\drivers\srv2.sys
2010-09-01 11:37:45 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-09-01 11:37:43 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-09-01 11:37:17 ----A---- C:\Windows\system32\msxml3.dll
2010-09-01 11:37:04 ----A---- C:\Windows\system32\drivers\tcpip.sys
======List of files/folders modified in the last 1 months======
2010-09-14 10:31:26 ----RD---- C:\Program Files
2010-09-14 10:18:46 ----SHD---- C:\Windows\Installer
2010-09-14 10:18:44 ----D---- C:\Windows\inf
2010-09-14 10:17:20 ----D---- C:\Windows\system32\drivers
2010-09-14 10:17:20 ----D---- C:\Windows\System32
2010-09-14 10:16:22 ----D---- C:\Windows\system32\catroot
2010-09-14 10:16:21 ----D---- C:\WINDOWS
2010-09-14 10:13:52 ----SHD---- C:\System Volume Information
2010-09-14 10:12:02 ----D---- C:\ProgramData
2010-09-14 09:16:58 ----D---- C:\Users\HP-1020\AppData\Roaming\ICQ
2010-09-14 09:13:14 ----HD---- C:\Windows\system32\GroupPolicy
2010-09-14 08:46:07 ----A---- C:\Windows\system.ini
2010-09-14 08:45:51 ----D---- C:\Windows\system32\drivers\etc
2010-09-14 08:43:24 ----D---- C:\Windows\system32\config
2010-09-14 08:43:24 ----D---- C:\boot
2010-09-14 08:32:05 ----D---- C:\Windows\AppPatch
2010-09-14 08:32:02 ----D---- C:\Program Files\Common Files
2010-09-14 08:03:21 ----D---- C:\Program Files\DAEMON Tools Toolbar
2010-09-13 10:32:10 ----D---- C:\ProgramData\AOL
2010-09-13 10:00:35 ----D---- C:\Windows\Minidump
2010-09-13 10:00:35 ----D---- C:\Windows\Debug
2010-09-13 09:52:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-09-13 09:00:37 ----D---- C:\Windows\Tasks
2010-09-13 09:00:37 ----D---- C:\Windows\system32\Tasks
2010-09-12 22:25:27 ----D---- C:\Windows\winsxs
2010-09-12 22:13:08 ----RSD---- C:\Windows\assembly
2010-09-12 21:50:49 ----D---- C:\SWSetup
2010-09-12 21:31:59 ----D---- C:\Windows\system32\zh-TW
2010-09-12 21:31:59 ----D---- C:\Windows\system32\zh-CN
2010-09-12 21:31:59 ----D---- C:\Windows\system32\sv-SE
2010-09-12 21:31:59 ----D---- C:\Windows\system32\ru-RU
2010-09-12 21:31:59 ----D---- C:\Windows\system32\pt-BR
2010-09-12 21:31:59 ----D---- C:\Windows\system32\pl-PL
2010-09-12 21:31:58 ----D---- C:\Windows\system32\nl-NL
2010-09-12 21:31:58 ----D---- C:\Windows\system32\nb-NO
2010-09-12 21:31:58 ----D---- C:\Windows\system32\ko-KR
2010-09-12 21:31:57 ----D---- C:\Windows\system32\ja-JP
2010-09-12 21:31:57 ----D---- C:\Windows\system32\it-IT
2010-09-12 21:31:57 ----D---- C:\Windows\system32\fr-FR
2010-09-12 21:31:56 ----D---- C:\Windows\system32\fi-FI
2010-09-12 21:31:56 ----D---- C:\Windows\system32\es-ES
2010-09-12 21:31:56 ----D---- C:\Windows\system32\en-US
2010-09-12 21:31:56 ----D---- C:\Windows\system32\de-DE
2010-09-12 21:31:56 ----D---- C:\Windows\system32\da-DK
2010-09-12 18:09:18 ----SD---- C:\Users\HP-1020\AppData\Roaming\Microsoft
2010-09-11 14:14:02 ----D---- C:\Windows\system32\wbem
2010-09-11 14:14:02 ----D---- C:\Windows\system32\spool
2010-09-11 14:14:02 ----D---- C:\Windows\system32\Msdtc
2010-09-11 14:14:02 ----D---- C:\Windows\system32\catroot2
2010-09-11 14:14:02 ----D---- C:\Windows\registration
2010-09-11 14:14:02 ----D---- C:\ProgramData\HP Product Assistant
2010-09-02 16:54:29 ----D---- C:\Windows\Microsoft.NET
2010-09-01 14:44:08 ----D---- C:\Program Files\Internet Explorer
2010-09-01 14:44:06 ----D---- C:\Windows\system32\migration
2010-09-01 14:44:01 ----D---- C:\Program Files\Movie Maker
2010-09-01 14:43:48 ----D---- C:\Program Files\Windows Mail
2010-08-29 17:44:18 ----D---- C:\Windows\system32\CodeIntegrity
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ahcix86s;ahcix86s; C:\Windows\system32\DRIVERS\ahcix86s.sys [2008-04-15 170000]
R0 Amddfltr;Amd Disk Lower Filter Driver; C:\Windows\system32\DRIVERS\Amddfltr.sys [2008-01-07 15416]
R0 AtiPcie;ATI PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2006-10-29 7680]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2008-03-27 24424]
R0 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2010-05-06 23376]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2010-05-06 164048]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2010-05-06 46672]
R1 SymIM;Symantec Network Security Intermediate Filter Driver; C:\Windows\system32\DRIVERS\SymIMv.sys [2009-02-19 24112]
R1 SYMTDI;SYMTDI; C:\Windows\System32\Drivers\SYMTDI.SYS [2009-02-19 184496]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2010-05-06 19024]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2010-05-06 51792]
R3 Accelerometer;HP Accelerometer; C:\Windows\system32\DRIVERS\Accelerometer.sys [2008-03-27 34664]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2008-04-27 909824]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2008-03-28 3544064]
R3 enecir;ENE CIR Receiver; C:\Windows\system32\DRIVERS\enecir.sys [2008-01-23 52736]
R3 HdAudAddService;OvladaŔ funkce Microsoft 1.1 UAA pro slu×bu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-18 16768]
R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2008-04-01 81296]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2008-04-14 118784]
R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt.sys [2008-04-16 379904]
R3 SYMDNS;SYMDNS; C:\Windows\System32\Drivers\SYMDNS.SYS [2009-02-19 13616]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [2009-03-19 124464]
R3 SYMFW;SYMFW; C:\Windows\System32\Drivers\SYMFW.SYS [2009-02-19 96560]
R3 SYMNDISV;SYMNDISV; C:\Windows\System32\Drivers\SYMNDISV.SYS [2009-02-19 41008]
R3 SYMREDRV;SYMREDRV; C:\Windows\System32\Drivers\SYMREDRV.SYS [2009-02-19 22320]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2008-01-17 196784]
R3 usbvideo;ZobrazovacÝ za°ÝzenÝ USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
R3 vfs101x;vfs101x; C:\Windows\system32\drivers\vfs101x.sys [2008-03-26 40752]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys []
S3 BCM43XV;Broadcom Extensible 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2006-11-02 464384]
S3 BthEnum;Slu×ba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2008-01-21 19456]
S3 BthPan;Za°ÝzenÝ Bluetooth (sÝŁ PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
S3 BTHPORT;OvladaŔ portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2008-04-29 220160]
S3 BTHUSB;OvladaŔ rozhranÝ USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2008-04-29 29184]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2008-02-01 80424]
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2008-02-01 80936]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2008-02-01 16168]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 Dot4;OvladaŔ MS IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-21 131584]
S3 Dot4Print;OvladaŔ t°Ýdy tiskßrny standardu IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-21 16384]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-21 36864]
S3 drmkaud;DekodÚr zvuk¨ DRM jßdra spoleŔnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S3 HpqRemHid;HP Remote Control HID Device; C:\Windows\system32\DRIVERS\HpqRemHid.sys [2007-07-11 7168]
S3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2008-01-21 987648]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2008-01-21 200704]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2007-05-26 101376]
S3 MSKSSRV;Server proxy slu×by datovřch proud¨ Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Server proxy hodin datovřch proud¨ Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Server proxy sprßvce kvality datovřch proud¨ Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Konvertor jÝmka-jÝmka typu T datovřch proud¨ Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm60x32.sys [2006-11-02 429056]
S3 RFCOMM;Za°ÝzenÝ Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2008-01-21 49664]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-21 88576]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgusbbus.sys [2007-07-11 12416]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgusbdiag.sys [2005-05-26 38144]
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgusbmodem.sys [2007-07-11 21632]
S3 usbscan;OvladaŔ skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328]
S3 winachsf;winachsf; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2008-01-21 654336]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f691e717\aestsrv.exe [2008-02-12 73728]
R2 Automatic LiveUpdate Scheduler;PlßnovaŔ automatickÚ aktualizace LiveUpdate; c:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe [2008-02-10 238968]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-05-06 40384]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 DpHost;Biometric Authentication Service; C:\Program Files\DigitalPersona\Bin\DpHostW.exe [2008-03-12 302144]
R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2008-04-15 94208]
R2 hpqddsvc;Slu×ba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2008-03-18 19456]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2010-01-03 246520]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-02-26 73728]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 QPCapSvc;QuickPlay Background Capture Service (QBCS); C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe [2008-05-14 292248]
R2 QPSched;QuickPlay Task Scheduler (QTS); C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe [2008-05-14 116112]
R2 Recovery Service for Windows;Recovery Service for Windows; C:\Windows\SMINST\BLService.exe [2008-03-26 341328]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2007-01-09 272024]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f691e717\STacSV.exe [2008-04-16 221239]
R2 vfsFPService;Validity Fingerprint Service; C:\Windows\system32\vfsFPService.exe [2008-03-26 595248]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-05-06 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-05-06 40384]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2008-01-25 148832]
S2 gupdate;Slu×ba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-05-15 136176]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-08-01 136120]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 LiveUpdate;LiveUpdate; c:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE [2008-09-05 3220856]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 TuneUp.Defrag;@%SystemRoot%\System32\TuneUpDefragService.exe,-1; C:\Windows\System32\TuneUpDefragService.exe [2010-09-12 354560]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
nejde pripojit na net
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: nejde pripojit na net
Dělal jste sken ComboFix. ¨Dejte z něj log.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: nejde pripojit na net
chcel som tam naistalovat comodo firewal ale instalacia sa zrusila pre nejaku systemovu chybu
lebo komunikacia nejaka sietova bezi a chcel som vediet co vlastne komunikuje...
ComboFix 10-09-13.02 - HP-1020 14.09.2010 8:25.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1250.420.1029.18.2045.1219 [GMT 2:00]
Spuštěný z: c:\users\HP-1020\Desktop\ComboFix.exe
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Service_usnjsvc
((((((((((((((((((((((((( Soubory vytvořené od 2010-08-14 do 2010-09-14 )))))))))))))))))))))))))))))))
.
2010-09-13 08:26 . 2010-09-13 08:31 14521114 ----a-w- c:\windows\REGBK00.ZIP
2010-09-13 08:26 . 2010-09-13 08:26 -------- d---a-w- c:\windows\VDLL.DLL
2010-09-13 08:26 . 2010-09-13 08:26 -------- d---a-w- c:\windows\system32\runouce.exe
2010-09-13 08:26 . 2010-09-13 08:26 -------- d---a-w- c:\windows\rundll16.exe
2010-09-13 08:26 . 2010-09-13 08:26 -------- d---a-w- c:\windows\RUNDL132.EXE
2010-09-13 08:26 . 2010-09-13 08:26 -------- d---a-w- c:\windows\logo1_.exe
2010-09-13 08:26 . 2010-09-13 08:26 -------- d---a-w- c:\windows\logo_1.exe
2010-09-13 08:21 . 2010-09-13 08:21 34048 ----a-w- c:\windows\system32\eEmpty.exe
2010-09-13 08:21 . 2010-09-13 07:54 626688 ----a-w- c:\windows\system32\msvcr80.dll
2010-09-13 08:21 . 2010-09-13 07:54 548864 ----a-w- c:\windows\system32\msvcp80.dll
2010-09-13 08:21 . 2010-09-13 08:21 -------- d-----w- c:\program files\Common Files\MicroWorld
2010-09-13 07:59 . 2010-09-13 07:59 -------- d-----w- c:\program files\CCleaner
2010-09-13 07:54 . 2010-09-13 08:21 -------- d-----w- c:\programdata\Kaspersky SDK
2010-09-13 07:53 . 2010-09-13 08:21 -------- d-----w- c:\programdata\MicroWorld
2010-09-13 07:51 . 2010-09-13 08:19 -------- d-----w- C:\sku
2010-09-13 05:56 . 2010-09-13 05:57 -------- d-----w- c:\windows\system32\cs
2010-09-12 20:25 . 2010-05-06 20:33 19024 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-09-12 20:25 . 2010-05-06 20:39 164048 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-09-12 20:25 . 2010-05-06 20:34 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-09-12 20:25 . 2010-05-06 20:39 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-09-12 20:25 . 2010-05-06 20:34 51792 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2010-09-12 20:24 . 2010-05-06 20:59 38848 ----a-w- c:\windows\system32\avastSS.scr
2010-09-12 20:24 . 2010-05-06 20:59 165032 ----a-w- c:\windows\system32\aswBoot.exe
2010-09-12 20:21 . 2010-09-12 20:21 -------- d-----w- c:\program files\ATI Technologies
2010-09-12 19:52 . 2010-09-12 19:52 -------- d-----w- c:\program files\ATI
2010-09-12 19:48 . 2010-09-12 19:48 -------- d-----w- c:\users\HP-1020\AppData\Local\Apps
2010-09-12 19:32 . 2008-02-01 06:41 80936 ----a-w- c:\windows\system32\drivers\btwavdt.sys
2010-09-12 19:32 . 2008-02-01 06:41 80424 ----a-w- c:\windows\system32\drivers\btwaudio.sys
2010-09-12 19:32 . 2008-02-01 06:41 16168 ----a-w- c:\windows\system32\drivers\btwrchid.sys
2010-09-12 19:32 . 2008-02-01 06:41 233472 ----a-w- c:\windows\system32\BtwRSupport.dll
2010-09-12 19:31 . 2010-09-12 19:31 -------- d-----w- c:\windows\system32\es-MX
2010-09-12 19:31 . 2010-09-12 19:31 -------- d-----w- c:\windows\system32\es-AR
2010-09-12 18:37 . 2010-09-12 18:37 -------- d-----w- c:\users\HP-1020\AppData\Local\GHISLER
2010-09-12 18:36 . 2008-04-04 12:51 28416 ----a-w- c:\windows\system32\uxtuneup.dll
2010-09-12 18:36 . 2008-04-04 12:51 16640 ----a-w- c:\windows\system32\authuitu.dll
2010-09-12 18:35 . 2010-09-12 18:35 354560 ----a-w- c:\windows\system32\TuneUpDefragService.exe
2010-09-12 18:35 . 2010-09-12 18:35 -------- d-----w- c:\users\HP-1020\AppData\Roaming\TuneUp Software
2010-09-12 18:35 . 2010-09-12 18:35 -------- d-----w- c:\programdata\TuneUp Software
2010-09-12 18:34 . 2010-09-12 18:38 -------- d-----w- c:\program files\TuneUp Utilities 2008
2010-09-12 18:33 . 2010-09-12 18:33 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2010-09-12 18:32 . 2010-09-12 18:32 -------- d-----w- c:\program files\Total Commander
2010-09-12 16:56 . 2010-09-12 16:56 105804 ---ha-w- c:\windows\system32\mlfcache.dat
2010-09-12 16:06 . 2010-09-12 16:06 -------- d-----w- c:\windows\system32\EventProviders
2010-09-09 15:51 . 2010-09-09 15:51 -------- d-----w- c:\programdata\Alwil Software
2010-09-09 15:51 . 2010-09-09 15:51 -------- d-----w- c:\program files\Alwil Software
2010-09-01 09:39 . 2010-06-21 13:18 2036736 ----a-w- c:\windows\system32\win32k.sys
2010-09-01 09:37 . 2010-06-08 17:00 3598216 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-09-01 09:37 . 2010-06-08 17:00 3545992 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-09-01 09:37 . 2010-06-11 15:30 1257472 ----a-w- c:\windows\system32\msxml3.dll
2010-09-01 09:37 . 2010-06-16 15:59 898952 ----a-w- c:\windows\system32\drivers\tcpip.sys
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-14 06:48 . 2009-03-06 13:21 -------- d-----w- c:\users\HP-1020\AppData\Roaming\ICQ
2010-09-14 06:43 . 2009-02-24 13:50 12 ----a-w- c:\windows\bthservsdp.dat
2010-09-14 06:03 . 2009-09-05 11:03 -------- d-----w- c:\program files\DAEMON Tools Toolbar
2010-09-13 08:32 . 2008-06-11 03:59 -------- d-----w- c:\programdata\AOL
2010-09-13 07:52 . 2008-06-11 12:25 598832 ----a-w- c:\windows\system32\perfh005.dat
2010-09-13 07:52 . 2008-06-11 12:25 114992 ----a-w- c:\windows\system32\perfc005.dat
2010-09-12 18:55 . 2009-02-24 14:36 84120 ----a-w- c:\users\HP-1020\AppData\Local\GDIPFONTCACHEV1.DAT
2010-09-11 12:14 . 2009-03-11 19:31 -------- d-----w- c:\programdata\HP Product Assistant
2010-09-01 12:43 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2010-06-26 06:05 . 2010-09-01 09:38 916480 ----a-w- c:\windows\system32\wininet.dll
2010-06-26 06:02 . 2010-09-01 09:38 109056 ----a-w- c:\windows\system32\iesysprep.dll
2010-06-26 06:02 . 2010-09-01 09:38 71680 ----a-w- c:\windows\system32\iesetup.dll
2010-06-26 04:25 . 2010-09-01 09:38 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2010-06-18 16:43 . 2010-09-01 09:38 36352 ----a-w- c:\windows\system32\rtutils.dll
2010-06-18 14:43 . 2010-09-01 09:38 302080 ----a-w- c:\windows\system32\drivers\srv.sys
2010-06-18 14:43 . 2010-09-01 09:38 144896 ----a-w- c:\windows\system32\drivers\srv2.sys
2010-06-16 14:30 . 2009-04-03 15:38 6944 ----a-w- c:\users\HP-1020\AppData\Local\d3d9caps.dat
2008-08-30 10:40 . 2009-02-24 14:35 22 --sha-w- c:\windows\SMINST\HPCD.SYS
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
2008-08-26 09:32 279944 ----a-w- c:\program files\AskBarDis\bar\bin\askBar.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]
2010-03-25 11:31 2355296 ----a-w- c:\program files\DVDVideoSoftTB\tbDVDV.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}]
2009-11-09 17:38 2331672 ----a-w- c:\program files\DVDVideoSoft\tbDVDV.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-08-26 279944]
"{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}"= "c:\program files\DVDVideoSoft\tbDVDV.dll" [2009-11-09 2331672]
"{872b5b88-9db5-4310-bdd0-ac189557e5f5}"= "c:\program files\DVDVideoSoftTB\tbDVDV.dll" [2010-03-25 2355296]
[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]
[HKEY_CLASSES_ROOT\clsid\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}]
[HKEY_CLASSES_ROOT\clsid\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{872B5B88-9DB5-4310-BDD0-AC189557E5F5}"= "c:\program files\DVDVideoSoftTB\tbDVDV.dll" [2010-03-25 2355296]
"{E9911EC6-1BCC-40B0-9993-E0EEA7F6953F}"= "c:\program files\DVDVideoSoft\tbDVDV.dll" [2009-11-09 2331672]
"{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-08-26 279944]
[HKEY_CLASSES_ROOT\clsid\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]
[HKEY_CLASSES_ROOT\clsid\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}]
[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-21 1233920]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"Camfrog"="c:\program files\Camfrog\Camfrog Video Chat\CamfrogNet.exe" [2003-09-29 36352]
"ICQ"="c:\program files\ICQ7.1\ICQ.exe" [2010-03-28 133368]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-01-17 1033512]
"SysTrayApp"="c:\program files\IDT\WDM\sttray.exe" [2008-04-16 442433]
"UCam_Menu"="c:\program files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2007-12-24 222504]
"DpAgent"="c:\program files\DigitalPersona\Bin\dpagent.exe" [2008-03-12 699456]
"QPService"="c:\program files\HP\QuickPlay\QPService.exe" [2008-05-14 468264]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-21 1008184]
"QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2008-03-14 202032]
"OnScreenDisplay"="c:\program files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe" [2007-11-01 554288]
"HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2008-04-15 70912]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-10-14 49152]
"hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2007-11-20 488752]
"SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 144784]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 40048]
"hpqSRMon"="c:\program files\HP\Digital Imaging\bin\hpqSRMon.exe" [2007-08-22 80896]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-05-06 2815192]
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2008-1-16 727592]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2007-10-14 214360]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli DPPWDFLT
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
R2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-05-15 136176]
S0 Amddfltr;Amd Disk Lower Filter Driver;c:\windows\system32\DRIVERS\Amddfltr.sys [2008-01-07 15416]
S1 aswSP;aswSP; [x]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt.inf_f691e717\aestsrv.exe [2008-02-12 73728]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-05-06 51792]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [2008-03-18 19456]
S2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [2010-01-03 246520]
S2 Recovery Service for Windows;Recovery Service for Windows;c:\windows\SMINST\BLService.exe [2008-03-26 341328]
S2 vfsFPService;Validity Fingerprint Service;c:\windows\system32\vfsFPService.exe [2008-03-26 595248]
S3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840]
S3 enecir;ENE CIR Receiver;c:\windows\system32\DRIVERS\enecir.sys [2008-01-23 52736]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [2008-04-01 81296]
S3 SYMNDISV;SYMNDISV;c:\windows\System32\Drivers\SYMNDISV.SYS [2009-02-19 41008]
S3 vfs101x;vfs101x;c:\windows\system32\drivers\vfs101x.sys [2008-03-26 40752]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-02-26 13:06 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
2010-09-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-15 11:30]
2010-09-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-15 11:30]
2010-09-13 c:\windows\Tasks\User_Feed_Synchronization-{BF76BDC5-359E-4461-ABD8-3FBCF1F8180B}.job
- c:\windows\system32\msfeedssync.exe [2010-09-01 04:24]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=cs_cz&c=83&bd=Pavilion&pf=cnnb
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=cs_cz&c=83&bd=Pavilion&pf=cnnb
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: {{71BFC818-0CED-42D6-9C87-5142918957EE} - c:\program files\ICQ7.1\ICQ.exe
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
Toolbar-Locked - (no file)
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-09-14 08:47
Windows 6.0.6001 Service Pack 1 NTFS
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0007\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0008\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0009\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0010\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'lsass.exe'(672)
c:\windows\system32\DPPWDFLT.dll
- - - - - - - > 'Explorer.exe'(3212)
c:\program files\DigitalPersona\Bin\DpoFeedb.dll
c:\windows\system32\btmmhook.dll
c:\windows\system32\btncopy.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\System32\DriverStore\FileRepository\stwrt.inf_f691e717\STacSV.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\windows\system32\WLANExt.exe
c:\program files\DigitalPersona\Bin\DpHostW.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
c:\program files\HP\QuickPlay\Kernel\TV\QPSched.exe
c:\program files\CyberLink\Shared Files\RichVideo.exe
c:\windows\system32\conime.exe
c:\program files\Alwil Software\Avast5\AvastUI.exe
c:\windows\system32\wbem\unsecapp.exe
c:\windows\ehome\ehmsas.exe
c:\program files\Synaptics\SynTP\SynTPHelper.exe
c:\windows\servicing\TrustedInstaller.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\program files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE
c:\program files\Hewlett-Packard\Shared\HpqToaster.exe
c:\program files\HP\Digital Imaging\bin\hpqSTE08.exe
c:\program files\HP\Digital Imaging\bin\hpqbam08.exe
c:\program files\HP\Digital Imaging\bin\hpqgpc01.exe
c:\program files\Symantec\LiveUpdate\AluSchedulerSvc.exe
c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe
.
**************************************************************************
.
Celkový čas: 2010-09-14 08:57:12 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-09-14 06:57
Před spuštěním: Volných bajtů: 56 748 441 600
Po spuštění: Volných bajtů: 56 542 347 264
- - End Of File - - 9A071A79554B0708483277D0311F968C
lebo komunikacia nejaka sietova bezi a chcel som vediet co vlastne komunikuje...
ComboFix 10-09-13.02 - HP-1020 14.09.2010 8:25.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1250.420.1029.18.2045.1219 [GMT 2:00]
Spuštěný z: c:\users\HP-1020\Desktop\ComboFix.exe
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Service_usnjsvc
((((((((((((((((((((((((( Soubory vytvořené od 2010-08-14 do 2010-09-14 )))))))))))))))))))))))))))))))
.
2010-09-13 08:26 . 2010-09-13 08:31 14521114 ----a-w- c:\windows\REGBK00.ZIP
2010-09-13 08:26 . 2010-09-13 08:26 -------- d---a-w- c:\windows\VDLL.DLL
2010-09-13 08:26 . 2010-09-13 08:26 -------- d---a-w- c:\windows\system32\runouce.exe
2010-09-13 08:26 . 2010-09-13 08:26 -------- d---a-w- c:\windows\rundll16.exe
2010-09-13 08:26 . 2010-09-13 08:26 -------- d---a-w- c:\windows\RUNDL132.EXE
2010-09-13 08:26 . 2010-09-13 08:26 -------- d---a-w- c:\windows\logo1_.exe
2010-09-13 08:26 . 2010-09-13 08:26 -------- d---a-w- c:\windows\logo_1.exe
2010-09-13 08:21 . 2010-09-13 08:21 34048 ----a-w- c:\windows\system32\eEmpty.exe
2010-09-13 08:21 . 2010-09-13 07:54 626688 ----a-w- c:\windows\system32\msvcr80.dll
2010-09-13 08:21 . 2010-09-13 07:54 548864 ----a-w- c:\windows\system32\msvcp80.dll
2010-09-13 08:21 . 2010-09-13 08:21 -------- d-----w- c:\program files\Common Files\MicroWorld
2010-09-13 07:59 . 2010-09-13 07:59 -------- d-----w- c:\program files\CCleaner
2010-09-13 07:54 . 2010-09-13 08:21 -------- d-----w- c:\programdata\Kaspersky SDK
2010-09-13 07:53 . 2010-09-13 08:21 -------- d-----w- c:\programdata\MicroWorld
2010-09-13 07:51 . 2010-09-13 08:19 -------- d-----w- C:\sku
2010-09-13 05:56 . 2010-09-13 05:57 -------- d-----w- c:\windows\system32\cs
2010-09-12 20:25 . 2010-05-06 20:33 19024 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-09-12 20:25 . 2010-05-06 20:39 164048 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-09-12 20:25 . 2010-05-06 20:34 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-09-12 20:25 . 2010-05-06 20:39 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-09-12 20:25 . 2010-05-06 20:34 51792 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2010-09-12 20:24 . 2010-05-06 20:59 38848 ----a-w- c:\windows\system32\avastSS.scr
2010-09-12 20:24 . 2010-05-06 20:59 165032 ----a-w- c:\windows\system32\aswBoot.exe
2010-09-12 20:21 . 2010-09-12 20:21 -------- d-----w- c:\program files\ATI Technologies
2010-09-12 19:52 . 2010-09-12 19:52 -------- d-----w- c:\program files\ATI
2010-09-12 19:48 . 2010-09-12 19:48 -------- d-----w- c:\users\HP-1020\AppData\Local\Apps
2010-09-12 19:32 . 2008-02-01 06:41 80936 ----a-w- c:\windows\system32\drivers\btwavdt.sys
2010-09-12 19:32 . 2008-02-01 06:41 80424 ----a-w- c:\windows\system32\drivers\btwaudio.sys
2010-09-12 19:32 . 2008-02-01 06:41 16168 ----a-w- c:\windows\system32\drivers\btwrchid.sys
2010-09-12 19:32 . 2008-02-01 06:41 233472 ----a-w- c:\windows\system32\BtwRSupport.dll
2010-09-12 19:31 . 2010-09-12 19:31 -------- d-----w- c:\windows\system32\es-MX
2010-09-12 19:31 . 2010-09-12 19:31 -------- d-----w- c:\windows\system32\es-AR
2010-09-12 18:37 . 2010-09-12 18:37 -------- d-----w- c:\users\HP-1020\AppData\Local\GHISLER
2010-09-12 18:36 . 2008-04-04 12:51 28416 ----a-w- c:\windows\system32\uxtuneup.dll
2010-09-12 18:36 . 2008-04-04 12:51 16640 ----a-w- c:\windows\system32\authuitu.dll
2010-09-12 18:35 . 2010-09-12 18:35 354560 ----a-w- c:\windows\system32\TuneUpDefragService.exe
2010-09-12 18:35 . 2010-09-12 18:35 -------- d-----w- c:\users\HP-1020\AppData\Roaming\TuneUp Software
2010-09-12 18:35 . 2010-09-12 18:35 -------- d-----w- c:\programdata\TuneUp Software
2010-09-12 18:34 . 2010-09-12 18:38 -------- d-----w- c:\program files\TuneUp Utilities 2008
2010-09-12 18:33 . 2010-09-12 18:33 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2010-09-12 18:32 . 2010-09-12 18:32 -------- d-----w- c:\program files\Total Commander
2010-09-12 16:56 . 2010-09-12 16:56 105804 ---ha-w- c:\windows\system32\mlfcache.dat
2010-09-12 16:06 . 2010-09-12 16:06 -------- d-----w- c:\windows\system32\EventProviders
2010-09-09 15:51 . 2010-09-09 15:51 -------- d-----w- c:\programdata\Alwil Software
2010-09-09 15:51 . 2010-09-09 15:51 -------- d-----w- c:\program files\Alwil Software
2010-09-01 09:39 . 2010-06-21 13:18 2036736 ----a-w- c:\windows\system32\win32k.sys
2010-09-01 09:37 . 2010-06-08 17:00 3598216 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-09-01 09:37 . 2010-06-08 17:00 3545992 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-09-01 09:37 . 2010-06-11 15:30 1257472 ----a-w- c:\windows\system32\msxml3.dll
2010-09-01 09:37 . 2010-06-16 15:59 898952 ----a-w- c:\windows\system32\drivers\tcpip.sys
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-14 06:48 . 2009-03-06 13:21 -------- d-----w- c:\users\HP-1020\AppData\Roaming\ICQ
2010-09-14 06:43 . 2009-02-24 13:50 12 ----a-w- c:\windows\bthservsdp.dat
2010-09-14 06:03 . 2009-09-05 11:03 -------- d-----w- c:\program files\DAEMON Tools Toolbar
2010-09-13 08:32 . 2008-06-11 03:59 -------- d-----w- c:\programdata\AOL
2010-09-13 07:52 . 2008-06-11 12:25 598832 ----a-w- c:\windows\system32\perfh005.dat
2010-09-13 07:52 . 2008-06-11 12:25 114992 ----a-w- c:\windows\system32\perfc005.dat
2010-09-12 18:55 . 2009-02-24 14:36 84120 ----a-w- c:\users\HP-1020\AppData\Local\GDIPFONTCACHEV1.DAT
2010-09-11 12:14 . 2009-03-11 19:31 -------- d-----w- c:\programdata\HP Product Assistant
2010-09-01 12:43 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2010-06-26 06:05 . 2010-09-01 09:38 916480 ----a-w- c:\windows\system32\wininet.dll
2010-06-26 06:02 . 2010-09-01 09:38 109056 ----a-w- c:\windows\system32\iesysprep.dll
2010-06-26 06:02 . 2010-09-01 09:38 71680 ----a-w- c:\windows\system32\iesetup.dll
2010-06-26 04:25 . 2010-09-01 09:38 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2010-06-18 16:43 . 2010-09-01 09:38 36352 ----a-w- c:\windows\system32\rtutils.dll
2010-06-18 14:43 . 2010-09-01 09:38 302080 ----a-w- c:\windows\system32\drivers\srv.sys
2010-06-18 14:43 . 2010-09-01 09:38 144896 ----a-w- c:\windows\system32\drivers\srv2.sys
2010-06-16 14:30 . 2009-04-03 15:38 6944 ----a-w- c:\users\HP-1020\AppData\Local\d3d9caps.dat
2008-08-30 10:40 . 2009-02-24 14:35 22 --sha-w- c:\windows\SMINST\HPCD.SYS
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
2008-08-26 09:32 279944 ----a-w- c:\program files\AskBarDis\bar\bin\askBar.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]
2010-03-25 11:31 2355296 ----a-w- c:\program files\DVDVideoSoftTB\tbDVDV.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}]
2009-11-09 17:38 2331672 ----a-w- c:\program files\DVDVideoSoft\tbDVDV.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-08-26 279944]
"{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}"= "c:\program files\DVDVideoSoft\tbDVDV.dll" [2009-11-09 2331672]
"{872b5b88-9db5-4310-bdd0-ac189557e5f5}"= "c:\program files\DVDVideoSoftTB\tbDVDV.dll" [2010-03-25 2355296]
[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]
[HKEY_CLASSES_ROOT\clsid\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}]
[HKEY_CLASSES_ROOT\clsid\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{872B5B88-9DB5-4310-BDD0-AC189557E5F5}"= "c:\program files\DVDVideoSoftTB\tbDVDV.dll" [2010-03-25 2355296]
"{E9911EC6-1BCC-40B0-9993-E0EEA7F6953F}"= "c:\program files\DVDVideoSoft\tbDVDV.dll" [2009-11-09 2331672]
"{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-08-26 279944]
[HKEY_CLASSES_ROOT\clsid\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]
[HKEY_CLASSES_ROOT\clsid\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}]
[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-21 1233920]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"Camfrog"="c:\program files\Camfrog\Camfrog Video Chat\CamfrogNet.exe" [2003-09-29 36352]
"ICQ"="c:\program files\ICQ7.1\ICQ.exe" [2010-03-28 133368]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-01-17 1033512]
"SysTrayApp"="c:\program files\IDT\WDM\sttray.exe" [2008-04-16 442433]
"UCam_Menu"="c:\program files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2007-12-24 222504]
"DpAgent"="c:\program files\DigitalPersona\Bin\dpagent.exe" [2008-03-12 699456]
"QPService"="c:\program files\HP\QuickPlay\QPService.exe" [2008-05-14 468264]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-21 1008184]
"QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2008-03-14 202032]
"OnScreenDisplay"="c:\program files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe" [2007-11-01 554288]
"HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2008-04-15 70912]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-10-14 49152]
"hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2007-11-20 488752]
"SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 144784]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 40048]
"hpqSRMon"="c:\program files\HP\Digital Imaging\bin\hpqSRMon.exe" [2007-08-22 80896]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-05-06 2815192]
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2008-1-16 727592]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2007-10-14 214360]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli DPPWDFLT
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
R2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-05-15 136176]
S0 Amddfltr;Amd Disk Lower Filter Driver;c:\windows\system32\DRIVERS\Amddfltr.sys [2008-01-07 15416]
S1 aswSP;aswSP; [x]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt.inf_f691e717\aestsrv.exe [2008-02-12 73728]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-05-06 51792]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [2008-03-18 19456]
S2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [2010-01-03 246520]
S2 Recovery Service for Windows;Recovery Service for Windows;c:\windows\SMINST\BLService.exe [2008-03-26 341328]
S2 vfsFPService;Validity Fingerprint Service;c:\windows\system32\vfsFPService.exe [2008-03-26 595248]
S3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840]
S3 enecir;ENE CIR Receiver;c:\windows\system32\DRIVERS\enecir.sys [2008-01-23 52736]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [2008-04-01 81296]
S3 SYMNDISV;SYMNDISV;c:\windows\System32\Drivers\SYMNDISV.SYS [2009-02-19 41008]
S3 vfs101x;vfs101x;c:\windows\system32\drivers\vfs101x.sys [2008-03-26 40752]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-02-26 13:06 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
2010-09-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-15 11:30]
2010-09-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-15 11:30]
2010-09-13 c:\windows\Tasks\User_Feed_Synchronization-{BF76BDC5-359E-4461-ABD8-3FBCF1F8180B}.job
- c:\windows\system32\msfeedssync.exe [2010-09-01 04:24]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=cs_cz&c=83&bd=Pavilion&pf=cnnb
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=cs_cz&c=83&bd=Pavilion&pf=cnnb
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: {{71BFC818-0CED-42D6-9C87-5142918957EE} - c:\program files\ICQ7.1\ICQ.exe
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
Toolbar-Locked - (no file)
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-09-14 08:47
Windows 6.0.6001 Service Pack 1 NTFS
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0007\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0008\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0009\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0010\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'lsass.exe'(672)
c:\windows\system32\DPPWDFLT.dll
- - - - - - - > 'Explorer.exe'(3212)
c:\program files\DigitalPersona\Bin\DpoFeedb.dll
c:\windows\system32\btmmhook.dll
c:\windows\system32\btncopy.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\System32\DriverStore\FileRepository\stwrt.inf_f691e717\STacSV.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\windows\system32\WLANExt.exe
c:\program files\DigitalPersona\Bin\DpHostW.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
c:\program files\HP\QuickPlay\Kernel\TV\QPSched.exe
c:\program files\CyberLink\Shared Files\RichVideo.exe
c:\windows\system32\conime.exe
c:\program files\Alwil Software\Avast5\AvastUI.exe
c:\windows\system32\wbem\unsecapp.exe
c:\windows\ehome\ehmsas.exe
c:\program files\Synaptics\SynTP\SynTPHelper.exe
c:\windows\servicing\TrustedInstaller.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\program files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE
c:\program files\Hewlett-Packard\Shared\HpqToaster.exe
c:\program files\HP\Digital Imaging\bin\hpqSTE08.exe
c:\program files\HP\Digital Imaging\bin\hpqbam08.exe
c:\program files\HP\Digital Imaging\bin\hpqgpc01.exe
c:\program files\Symantec\LiveUpdate\AluSchedulerSvc.exe
c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe
.
**************************************************************************
.
Celkový čas: 2010-09-14 08:57:12 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-09-14 06:57
Před spuštěním: Volných bajtů: 56 748 441 600
Po spuštění: Volných bajtů: 56 542 347 264
- - End Of File - - 9A071A79554B0708483277D0311F968C
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: nejde pripojit na net
Ještě dočistíme. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.Folder::
c:\program files\AskBarDis
Registry::
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"=-
[-HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{3041D03E-FD4B-44E0-B742-2D9B88305F98}"=-
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?