Notebook ztratil schopnost se připojit k Internetu

[Ivošisko]

Takže šmejdi jsou mimo hru......ovšem log.txt jsem z Comba nevyrazil

Ale zato mám jednu dobrou zprávu: vzpomněl jsem si, co jsem ještě po Vás pochtíval, ale to se týká stolního PC, takže se jdu přesunout tam

[motji]

Poprosím log ze rsitu, co počítač, změnilo se něco?

[Ivošisko]

Sorry....byl jsem mimo - za chvíli se do toho pustím

[motji]

[Ivošisko]

Hm, z chvilky byl razem týden - omlouvám se.......

Notebook je stále takové líné ptáče a s připojováním k internetu potíže přetrvávají - když udělam restart routeru, tak se připojí (ale přitom na onom routeru visí více zařízení a ta nemají potíže tohoto typu)

Zde je log:

Logfile of random's system information tool 1.08 (written by random/random)
Run by uzivatel at 2011-01-10 21:10:43
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 1 GB (3%) free of 45 GB
Total RAM: 895 MB (56% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Low Battery Alarm Program.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{855F3B16-6D32-4FE6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2010-09-06 1048888]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HControl"=C:\WINDOWS\ATK0100\HControl.exe [2005-05-12 102400]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2005-04-14 77824]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]
"nmctxth"=C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe [2009-04-07 642856]
"nmapp"=C:\Program Files\Pure Networks\Network Magic\nmapp.exe [2010-12-28 467240]
"Multiplicity"=C:\PROGRA~1\Stardock\THINKD~1\MULTIP~1\multipl.exe [2005-07-13 2682937]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2010-12-31 3395600]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
ASUS ChkMail.lnk - C:\Program Files\Asus\Asus ChkMail\ChkMail.exe
Mozilla Thunderbird.lnk - C:\Program Files\Mozilla Thunderbird\thunderbird.exe

C:\Documents and Settings\uzivatel\Nabídka Start\Programy\Po spuštění
YoWindow.lnk - C:\Program Files\YoWindow\yowindow.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Multi]
C:\Program Files\Stardock\ThinkDesk\Multiplicity\MultiWin32.dll [2005-04-17 90112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Asus\ASUS Live Update\LiveUpdt.exe"="C:\Program Files\Asus\ASUS Live Update\LiveUpdt.exe:*:Disabled:LiveUpdt"
"C:\Program Files\ICQ7.0\ICQ.exe"="C:\Program Files\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"C:\Program Files\ICQ7.0\aolload.exe"="C:\Program Files\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:uTorrent.exe"
"C:\Program Files\Spiceworks\ruby\bin\spiceworks.exe"="C:\Program Files\Spiceworks\ruby\bin\spiceworks.exe:*:Enabled:Ruby used by Spiceworks"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\ICQ7.2\ICQ.exe"="C:\Program Files\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2"
"C:\Program Files\ICQ7.2\aolload.exe"="C:\Program Files\ICQ7.2\aolload.exe:*:Enabled:aolload.exe"
"C:\Program Files\Dude\dude.exe"="C:\Program Files\Dude\dude.exe:*:Enabled:dude"
"C:\Program Files\Stardock\ThinkDesk\Multiplicity\Multipl.exe"="C:\Program Files\Stardock\ThinkDesk\Multiplicity\Multipl.exe:*:Enabled:Stardock Multiplicity (Primary)"
"C:\Program Files\Stardock\ThinkDesk\Multiplicity\MultiSrv32.exe"="C:\Program Files\Stardock\ThinkDesk\Multiplicity\MultiSrv32.exe:*:Enabled:Stardock Multiplicity (Secondary)"
"C:\WINDOWS\system32\rserver30\rserver3.exe"="C:\WINDOWS\system32\rserver30\rserver3.exe:*:Enabled:Radmin Server 3"
"MULTIPL.EXE"="MULTIPL.EXE:LocalSubNet:Enabled:Multiplicity"
"MULTISRV32.EXE"="MULTISRV32.EXE:LocalSubNet:Enabled:Multiplicity Service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ7.0\ICQ.exe"="C:\Program Files\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"C:\Program Files\ICQ7.0\aolload.exe"="C:\Program Files\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"
"C:\Program Files\ICQ7.2\ICQ.exe"="C:\Program Files\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2"
"C:\Program Files\ICQ7.2\aolload.exe"="C:\Program Files\ICQ7.2\aolload.exe:*:Enabled:aolload.exe"

======List of files/folders created in the last 1 months======

2011-01-10 21:10:43 ----D---- C:\rsit
2011-01-10 10:33:33 ----A---- C:\WINDOWS\ModemLog_AC97 SoftV92 Data Fax Modem with SmartCP.txt
2011-01-06 18:35:37 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\YoWindow
2011-01-06 18:35:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\YoWindow
2011-01-06 18:35:00 ----D---- C:\Program Files\YoWindow
2011-01-05 17:17:19 ----D---- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
2011-01-04 01:27:22 ----D---- C:\WINDOWS\system32\rserver30
2011-01-04 01:07:40 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\Radmin
2011-01-04 01:02:54 ----D---- C:\Program Files\Radmin Viewer 3
2011-01-02 11:35:18 ----D---- C:\Program Files\ffdshow
2011-01-02 11:34:27 ----D---- C:\Program Files\Mv2Player
2011-01-02 11:33:44 ----A---- C:\WINDOWS\iun6002.exe
2011-01-02 11:33:36 ----D---- C:\Program Files\Codec Pack - All In 1
2011-01-02 00:12:06 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\inkscape
2011-01-02 00:07:05 ----D---- C:\Program Files\Inkscape
2011-01-01 23:22:46 ----D---- C:\Program Files\Dude
2011-01-01 14:47:50 ----D---- C:\Program Files\RocketDock
2011-01-01 14:40:53 ----A---- C:\WINDOWS\_MSRSTRT.EXE
2011-01-01 13:21:33 ----D---- C:\Program Files\Stardock
2011-01-01 13:21:33 ----D---- C:\Program Files\Common Files\Stardock
2011-01-01 03:05:15 ----A---- C:\ASWL2K.ini
2010-12-29 18:30:27 ----D---- C:\Program Files\ICQ7.2
2010-12-28 23:43:37 ----D---- C:\Program Files\Google
2010-12-28 23:42:52 ----D---- C:\Program Files\Common Files\Skype
2010-12-28 23:42:49 ----RD---- C:\Program Files\Skype
2010-12-28 21:02:27 ----D---- C:\Program Files\FPinger
2010-12-28 16:58:47 ----D---- C:\Program Files\NetworkView36
2010-12-28 13:23:58 ----D---- C:\Program Files\Pure Networks
2010-12-28 13:21:57 ----D---- C:\Program Files\WebEx
2010-12-28 13:21:22 ----A---- C:\WINDOWS\system32\drivers\pnarp.sys
2010-12-28 13:21:18 ----A---- C:\WINDOWS\system32\drivers\purendis.sys
2010-12-28 13:21:04 ----D---- C:\Program Files\Common Files\Pure Networks Shared
2010-12-28 11:48:31 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-12-28 11:47:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\Pure Networks
2010-12-28 11:17:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\PassMark
2010-12-28 11:17:45 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2010-12-28 11:17:38 ----D---- C:\Program Files\WirelessMon
2010-12-25 02:33:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2296199$
2010-12-25 02:32:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2010-12-25 02:32:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$
2010-12-25 02:32:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2443685$
2010-12-25 02:32:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2436673$
2010-12-25 02:31:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2010-12-25 02:30:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2010-12-24 21:32:24 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\skypePM
2010-12-24 21:20:39 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\Skype
2010-12-24 21:15:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype

======List of files/folders modified in the last 1 months======

2011-01-10 21:10:13 ----D---- C:\WINDOWS\Prefetch
2011-01-10 21:09:30 ----D---- C:\WINDOWS\Temp
2011-01-10 21:08:48 ----D---- C:\WINDOWS
2011-01-10 18:21:17 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-01-10 18:21:15 ----D---- C:\WINDOWS\system32\CatRoot2
2011-01-10 18:19:03 ----D---- C:\WINDOWS\Debug
2011-01-10 17:39:32 ----D---- C:\WINDOWS\system32
2011-01-10 17:39:32 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-01-10 17:38:18 ----D---- C:\WINDOWS\system32\drivers
2011-01-10 17:38:17 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-01-10 17:36:18 ----D---- C:\Program Files\PowerArchiver
2011-01-10 10:35:54 ----HD---- C:\WINDOWS\inf
2011-01-09 12:30:53 ----SD---- C:\WINDOWS\Tasks
2011-01-09 12:21:48 ----SHD---- C:\WINDOWS\Installer
2011-01-06 18:35:00 ----RD---- C:\Program Files
2011-01-06 17:44:54 ----A---- C:\WINDOWS\NeroDigital.ini
2011-01-06 08:55:05 ----D---- C:\INSTALL
2011-01-05 17:22:18 ----D---- C:\Program Files\Alwil Software
2011-01-05 17:18:45 ----D---- C:\WINDOWS\WinSxS
2011-01-05 15:13:02 ----D---- C:\Program Files\CCleaner
2011-01-04 01:27:33 ----D---- C:\WINDOWS\system32\CatRoot
2011-01-03 04:55:48 ----D---- C:\Program Files\Mozilla Thunderbird
2011-01-02 01:29:43 ----A---- C:\WINDOWS\win.ini
2011-01-01 23:56:26 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2011-01-01 23:54:00 ----D---- C:\Program Files\Common Files\Adobe
2011-01-01 14:19:54 ----D---- C:\Program Files\Mozilla Firefox
2011-01-01 13:45:41 ----D---- C:\WINDOWS\Cursors
2011-01-01 13:21:33 ----D---- C:\Program Files\Common Files
2010-12-31 21:06:33 ----A---- C:\WINDOWS\system32\aswBoot.exe
2010-12-31 20:46:57 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\ICQ
2010-12-29 18:31:16 ----D---- C:\Program Files\ICQ6Toolbar
2010-12-29 18:31:09 ----D---- C:\Documents and Settings\All Users\Data aplikací\ICQ
2010-12-28 22:56:23 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\uTorrent
2010-12-27 20:41:54 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\Adobe
2010-12-27 20:15:10 ----D---- C:\WINDOWS\Media
2010-12-25 02:33:02 ----RSHD---- C:\WINDOWS\system32\dllcache
2010-12-25 02:32:43 ----D---- C:\Program Files\Internet Explorer
2010-12-25 02:32:26 ----D---- C:\WINDOWS\ie8updates
2010-12-25 02:32:20 ----HD---- C:\WINDOWS\$hf_mig$
2010-12-25 02:30:10 ----D---- C:\Program Files\Outlook Express
2010-12-24 15:00:12 ----HD---- C:\Program Files\InstallShield Installation Information
2010-12-24 14:59:39 ----D---- C:\Program Files\Asus
2010-12-24 14:49:57 ----D---- C:\WINDOWS\SiS

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 gagp30kx;Filtr Microsoft Generic AGPv3.0 pro procesorovou platformu K8; C:\WINDOWS\system32\DRIVERS\gagp30kx.sys [2008-04-13 46464]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 rmedia;Ricoh MediaCard Driver; C:\WINDOWS\system32\DRIVERS\rmedia.sys [2004-10-27 67456]
R0 SISAGP;SiS AGP Filter; C:\WINDOWS\system32\DRIVERS\SISAGPX.sys [2003-07-17 36992]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2010-12-31 29264]
R1 AmdK8;Ovladač procesoru AMD Athlon64; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2004-11-23 38400]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2010-12-31 23632]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2010-12-31 293968]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2010-12-31 47440]
R1 raddrvv3;raddrvv3; \??\C:\WINDOWS\system32\rserver30\raddrvv3.sys []
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2010-12-31 17744]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2010-12-31 100176]
R2 irda;Protokol IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]
R2 MDC8021X;AEGIS Protocol (IEEE 802.1x) v2.3.1.9; C:\WINDOWS\system32\DRIVERS\mdc8021x.sys [2009-02-19 15781]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2004-03-16 13059]
R2 pnarp;Pure Networks Device Discovery Driver; C:\WINDOWS\system32\DRIVERS\pnarp.sys [2009-04-07 23984]
R2 purendis;Pure Networks Wireless Driver; C:\WINDOWS\system32\DRIVERS\purendis.sys [2009-04-07 25264]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-04-18 2317504]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ASNDIS5;ASNDIS5 Protocol Driver; \??\C:\WINDOWS\system32\ASNDIS5.SYS []
R3 BCM43XX;ASUS 802.11 ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2005-02-11 371712]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 HSF_DP;HSF_DP; C:\WINDOWS\system32\DRIVERS\HSF_DP.sys [2004-05-12 1037056]
R3 HSFHWSIS;HSFHWSIS; C:\WINDOWS\system32\DRIVERS\HSFHWSIS.sys [2004-06-16 193280]
R3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 mirrorv3;mirrorv3; C:\WINDOWS\system32\DRIVERS\rminiv3.sys [2009-10-09 3328]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-18 12160]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ATKACPI.sys [2005-02-17 5632]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2004-05-12 685312]
S3 ASFWHide;ASFWHide; \??\C:\Documents and Settings\uzivatel\Local Settings\TEMP\ASFWHide []
S3 Asushwio;Asushwio; \??\C:\WINDOWS\system32\drivers\Asushwio.sys []
S3 catchme;catchme; \??\C:\DOCUME~1\uzivatel\LOCALS~1\Temp\catchme.sys []
S3 CVirtA;Cisco Systems VPN Adapter; C:\WINDOWS\system32\DRIVERS\CVirtA.sys [2007-01-18 5275]
S3 DrvFltIp;DrvFltIp; \??\C:\Documents and Settings\uzivatel\Local Settings\TEMP\DrvFltIp []
S3 gHidPnp;USB Device Enhanced Function Driver; C:\WINDOWS\System32\Drivers\gHidPnp.Sys []
S3 gMouUsb16;USB 16-bit Mouse Device Drv; C:\WINDOWS\system32\DRIVERS\gMouUsb16.sys []
S3 IpwP;IPWireless 3G Network Adapter; C:\WINDOWS\system32\DRIVERS\ipw3gnet.sys [2008-10-10 51040]
S3 RTL8023xp;Realtek RTL8139/810x/8169/8110 all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2004-08-08 70144]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 vsdatant;vsdatant; \??\C:\WINDOWS\system32\vsdatant.sys []
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-12-31 40384]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2010-09-06 247096]
R2 Irmon;Sledování infračerveného přenosu; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2005-06-20 53248]
R2 Multiplicity;Stardock Multiplicity; C:\Program Files\Stardock\ThinkDesk\Multiplicity\MULTISRV32.EXE [2005-04-17 208896]
R2 nmservice;Pure Networks Platform Service; C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe [2009-04-07 642856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-12-28 136176]
S2 Synergy+ Client;Synergy+ Client; C:\Program Files\Synergy+\bin\synergyc.exe []
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 RServer3;Radmin Server V3; C:\WINDOWS\system32\rserver30\RServer3.exe [2009-10-09 1242504]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[motji]

Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
-uložte ho na plochu a spustte soubor OTL.exe.
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

netsvcs
drivers32
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
c:\windows\*.* /U
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys
ndis.sys
winlogon.exe
explorer.exe
userinit.exe
lsass.exe
svchost.exe
smss.exe
hal.dll
ws2_32.dll
tcpip.sys
cryptsvc.dll
Changer.sys
JakNDis.sys
isapnp.sys
cdrom.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
CREATERESTOREPOINT 

- zaškrtněte okénko Pro všechny uživatele.
-označte okénka Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
- Klikněte na tlačítko Prohledat
-po dokončení skenu se objeví logy OTL.Txt a Extras.txt, vložte je zde




Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

[Ivošisko]

Nevejde se to zde, takto přikládám jako soubory v zipu

[motji]

to si ze mě děláte srandu,ne? Keygen na mbam? Nezlobte se na mě, ale mít keygen na bezpečnostní program, to je ale opravdu blbost

Infikované soubory:
c:\INSTALL\VIRY\MBAM\keygen fff[h33t][espns].exe (Trojan.Dropper) -> No action taken.

Smažte to



Spustte OTL
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
IE - HKLM\..\URLSearchHook:  - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
  IE - HKU\.DEFAULT\..\URLSearchHook:  - Reg Error: Key error. File not found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\S-1-5-21-3261284213-1193750560-2973554239-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-3261284213-1193750560-2973554239-1005\..\URLSearchHook:  - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-3261284213-1193750560-2973554239-1005\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C}  (Reg Error: Value error.)
 @Alternate Data Stream - 165 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:6724CB45
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:3AC4C770

:files
C:\WINDOWS\system32\*.tmp.dll /s
C:\WINDOWS\system32\SET*.tmp /s
C:\WINDOWS\*.tmp /s

:commands
[resethosts]
[emptytemp]
[EMPTYFLASH]
[Reboot]

-klikněte na tlačítko opravit.
-Následně se pc restartuje.
- Log vložte zde


Tohle znáte?
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254