Re: Prosím o kontrolu
Napsal: 29 dub 2012 14:01
Nastala nejaka zmena?
Stránka 2 z 3
Re: Prosím o kontrolu
Napsal: 29 dub 2012 15:35
Ani nie, stranku stale nenacita ani neprehra videa na niektorych strankach ktore predtym v pohode isli
Re: Prosím o kontrolu
Napsal: 29 dub 2012 15:55
Zkuste pouzit WinsockFix http://www.softpedia.com/get/Tweak/Netw ... kFix.shtml
Pozor, program resetuje protokol tcp/ip. Jestli mate parametry site zadavany rucne, budete je muset znovu nastavit podle smlouvy s poskytovatelem.
Pozor, program resetuje protokol tcp/ip. Jestli mate parametry site zadavany rucne, budete je muset znovu nastavit podle smlouvy s poskytovatelem.Re: Prosím o kontrolu
Napsal: 29 dub 2012 16:12
Nepomohlo
Re: Prosím o kontrolu
Napsal: 29 dub 2012 16:14
Kdy se problem objevil? Ktere prohlizece jste zkousel?
Re: Prosím o kontrolu
Napsal: 29 dub 2012 16:17
Problem sa objavil nedavno ked som zmenil providera. Skusal som IE a Mozzilu.
Re: Prosím o kontrolu
Napsal: 29 dub 2012 16:22
Kestli to dela od te zmeny, muze byt problem nekde jinde, nez v pc.
Ale zkusime na to pustit jeste tezky kalibr
Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Kliknete na ComboFix pravym mysidlem a levym na Spustit jako spravce
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte
Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace
Ale zkusime na to pustit jeste tezky kalibr
Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.Vypnete antivir i dalsi pripadne zabezpeceni.
Kliknete na ComboFix pravym mysidlem a levym na Spustit jako spravce
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte
Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfiguraceRe: Prosím o kontrolu
Napsal: 29 dub 2012 17:20
ComboFix 12-04-29.01 - Robo . 04. 2012 18:12:13.1.4 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1250.421.1051.18.3070.2311 [GMT 2:00]
Running from: c:\users\Robo\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\weave\toFetch
c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\weave\toFetch\clients.json
c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\weave\toFetch\tabs.json
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
D:\install.exe
.
.
((((((((((((((((((((((((( Files Created from 2012-03-28 to 2012-04-29 )))))))))))))))))))))))))))))))
.
.
2012-04-29 12:55 . 2012-04-29 12:55 -------- d-----w- C:\_OTL
2012-04-29 12:16 . 2012-04-29 12:16 -------- d-----w- c:\users\Robo\AppData\Roaming\Malwarebytes
2012-04-29 12:16 . 2012-04-29 12:16 -------- d-----w- c:\programdata\Malwarebytes
2012-04-29 11:21 . 2012-04-29 11:21 -------- d-----w- c:\program files\Common Files\Java
2012-04-29 11:20 . 2012-04-13 07:36 6734704 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{907C4B7D-F0A8-4587-BD8D-E2C2314DF967}\mpengine.dll
2012-04-29 11:20 . 2012-04-29 11:20 -------- d-----w- c:\program files\Java
2012-04-29 10:48 . 2012-04-29 10:48 512 ----a-w- C:\PhysicalMBR.bin
2012-04-28 14:26 . 2012-04-28 14:26 -------- d-----w- C:\_OTM
2012-04-28 08:37 . 2012-04-28 08:39 -------- d-----w- c:\users\Robo\AppData\Roaming\GHISLER
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\UC.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\RAR.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\NOCLOSE.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\LHA.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\ARJ.PIF
2012-04-26 12:54 . 2012-03-01 05:46 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-04-26 12:54 . 2012-03-01 05:37 172544 ----a-w- c:\windows\system32\wintrust.dll
2012-04-26 12:54 . 2012-03-01 05:33 159232 ----a-w- c:\windows\system32\imagehlp.dll
2012-04-26 12:54 . 2012-03-01 05:29 5120 ----a-w- c:\windows\system32\wmi.dll
2012-04-26 12:50 . 2012-03-06 05:59 3968368 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-04-26 12:50 . 2012-03-06 05:59 3913072 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-03-31 10:08 . 2012-04-18 20:49 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-04-29 11:20 . 2011-08-31 10:43 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-04-18 20:49 . 2011-12-05 20:42 458064 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-04-11 20:47 . 2011-09-27 10:17 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-04-11 20:47 . 2011-09-27 10:17 458064 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-03-09 11:21 . 2011-08-09 09:02 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-02-23 08:18 . 2011-08-09 08:24 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-02-17 18:09 . 2012-02-17 17:41 137416 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-02-17 05:34 . 2012-03-15 07:10 826880 ----a-w- c:\windows\system32\rdpcore.dll
2012-02-17 04:14 . 2012-03-15 07:10 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-02-17 04:13 . 2012-03-15 07:10 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-02-10 05:38 . 2012-03-15 07:10 1077248 ----a-w- c:\windows\system32\DWrite.dll
2012-02-10 04:13 . 2012-02-21 15:49 61248 ----a-w- c:\windows\system32\OpenCL.dll
2012-02-10 04:13 . 2012-02-21 15:49 5892928 ----a-w- c:\windows\system32\nvcuda.dll
2012-02-10 04:13 . 2012-02-21 15:49 2517312 ----a-w- c:\windows\system32\nvcuvid.dll
2012-02-10 04:13 . 2012-02-21 15:49 2437440 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-02-10 04:13 . 2012-02-21 15:49 19443520 ----a-w- c:\windows\system32\nvoglv32.dll
2012-02-10 04:13 . 2012-02-21 15:49 17543488 ----a-w- c:\windows\system32\nvcompiler.dll
2012-02-10 04:13 . 2012-02-21 15:49 15009600 ----a-w- c:\windows\system32\nvd3dum.dll
2012-02-10 04:13 . 2012-02-21 15:49 10816832 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2012-02-10 04:13 . 2011-12-25 11:34 881984 ----a-w- c:\windows\system32\nvgenco32.dll
2012-02-10 04:13 . 2011-12-25 11:34 1000256 ----a-w- c:\windows\system32\nvdispco32.dll
2012-02-10 04:13 . 2011-05-21 04:01 2301248 ----a-w- c:\windows\system32\nvapi.dll
2012-02-10 04:13 . 2009-07-13 22:09 7713088 ----a-w- c:\windows\system32\nvwgf2um.dll
2012-02-10 03:02 . 2011-08-09 09:56 3881792 ----a-w- c:\windows\system32\nvcpl.dll
2012-02-10 03:00 . 2011-08-09 09:56 2719040 ----a-w- c:\windows\system32\nvsvc.dll
2012-02-10 03:00 . 2011-08-09 09:56 645440 ----a-w- c:\windows\system32\nvvsvc.exe
2012-02-10 03:00 . 2011-08-09 09:56 62272 ----a-w- c:\windows\system32\nvshext.dll
2012-02-10 03:00 . 2011-08-09 09:56 108352 ----a-w- c:\windows\system32\nvmctray.dll
2012-02-10 03:00 . 2011-08-09 09:56 2561344 ----a-w- c:\windows\system32\nvsvcr.dll
2012-02-09 19:05 . 2012-02-09 19:05 416064 ----a-w- c:\windows\system32\nvStreaming.exe
2012-02-03 03:54 . 2012-03-15 07:10 2343424 ----a-w- c:\windows\system32\win32k.sys
2010-01-26 09:11 . 2012-03-15 15:34 444283 ----a-w- c:\program files\Common Files\WinPcapNmap.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"DAEMON Tools Lite"="c:\programy\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"B2C_AGENT"="c:\programdata\LGMOBILEAX\B2C_Client\B2CNotiAgent.exe" [2011-09-27 404568]
"AmIcoSinglun"="c:\program files\AmIcoSingLun\AmIcoSinglun.exe" [2010-05-03 237568]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-12-13 11487848]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-09-23 258512]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
c:\users\Robo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
VDownloader.lnk - c:\programy\VDownloader\VDownloader.exe [2012-3-15 875008]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
2012-03-14 15:14 446136 ----a-w- c:\program files\Sony\Sony PC Companion\PCCompanion.exe
.
R0 vmci;VMware VMCI Bus Driver;c:\windows\system32\DRIVERS\vmci.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 Andbus;LGE Android Platform Composite USB Device;c:\windows\system32\DRIVERS\lgandbus.sys [x]
R3 AndDiag;LGE Android Platform USB Serial Port;c:\windows\system32\DRIVERS\lganddiag.sys [x]
R3 AndGps;LGE Android Platform USB GPS NMEA Port;c:\windows\system32\DRIVERS\lgandgps.sys [x]
R3 ANDModem;LGE Android Platform USB Modem;c:\windows\system32\DRIVERS\lgandmodem.sys [x]
R3 BthAvrcp;Bluetooth AVRCP Profile;c:\windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 22528]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2011-08-31 13224]
R3 netr73;RT73 USB Extensible Wireless LAN Card Driver;c:\windows\system32\DRIVERS\netr73.sys [2011-10-05 564800]
R3 Sony PC Companion;Sony PC Companion;c:\program files\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2011-08-09 1343400]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2011-09-15 36000]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-08-10 232512]
S1 SASDIFSV;SASDIFSV;c:\programy\SuperAntispyware\SASDIFSV.SYS [2011-07-22 12880]
S1 SASKUTIL;SASKUTIL;c:\programy\SuperAntispyware\SASKUTIL.SYS [2011-07-12 67664]
S1 TsLwWfF;WiFi Capture Driver;c:\windows\system32\DRIVERS\TsLwWfF.sys [2011-05-12 22632]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 !SASCORE;SAS Core Service;c:\programy\SuperAntispyware\SASCORE.EXE [2011-08-11 116608]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [2011-09-23 86224]
S2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2010-01-27 50704]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-02-10 2348352]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-02-09 382272]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2011-09-29 490088]
.
.
.
------- Supplementary Scan -------
.
IE: E&xportovať do programu Microsoft Excel - c:\programy\MICROS~1\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - google.sk
FF - user.js: extensions.BabylonToolbar_i.id - 9451ff03000000000000001fd05f0179
FF - user.js: extensions.BabylonToolbar_i.hardId - 9451ff03000000000000001fd05f0179
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15387
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1711:19
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
FF - user.js: extensions.BabylonToolbar_i.newTab - false
FF - user.js: extensions.BabylonToolbar_i.babTrack - tt=090212_noffx
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-04-29 18:17:42
ComboFix-quarantined-files.txt 2012-04-29 16:17
.
Pre-Run: 61 043 097 600 bytes free
Post-Run: 60 705 218 560 bytes free
.
- - End Of File - - 0C4328EC0D425E7D9BAED002011115FF
Microsoft Windows 7 Professional 6.1.7601.1.1250.421.1051.18.3070.2311 [GMT 2:00]
Running from: c:\users\Robo\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\weave\toFetch
c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\weave\toFetch\clients.json
c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\weave\toFetch\tabs.json
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
D:\install.exe
.
.
((((((((((((((((((((((((( Files Created from 2012-03-28 to 2012-04-29 )))))))))))))))))))))))))))))))
.
.
2012-04-29 12:55 . 2012-04-29 12:55 -------- d-----w- C:\_OTL
2012-04-29 12:16 . 2012-04-29 12:16 -------- d-----w- c:\users\Robo\AppData\Roaming\Malwarebytes
2012-04-29 12:16 . 2012-04-29 12:16 -------- d-----w- c:\programdata\Malwarebytes
2012-04-29 11:21 . 2012-04-29 11:21 -------- d-----w- c:\program files\Common Files\Java
2012-04-29 11:20 . 2012-04-13 07:36 6734704 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{907C4B7D-F0A8-4587-BD8D-E2C2314DF967}\mpengine.dll
2012-04-29 11:20 . 2012-04-29 11:20 -------- d-----w- c:\program files\Java
2012-04-29 10:48 . 2012-04-29 10:48 512 ----a-w- C:\PhysicalMBR.bin
2012-04-28 14:26 . 2012-04-28 14:26 -------- d-----w- C:\_OTM
2012-04-28 08:37 . 2012-04-28 08:39 -------- d-----w- c:\users\Robo\AppData\Roaming\GHISLER
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\UC.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\RAR.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\NOCLOSE.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\LHA.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\ARJ.PIF
2012-04-26 12:54 . 2012-03-01 05:46 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-04-26 12:54 . 2012-03-01 05:37 172544 ----a-w- c:\windows\system32\wintrust.dll
2012-04-26 12:54 . 2012-03-01 05:33 159232 ----a-w- c:\windows\system32\imagehlp.dll
2012-04-26 12:54 . 2012-03-01 05:29 5120 ----a-w- c:\windows\system32\wmi.dll
2012-04-26 12:50 . 2012-03-06 05:59 3968368 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-04-26 12:50 . 2012-03-06 05:59 3913072 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-03-31 10:08 . 2012-04-18 20:49 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-04-29 11:20 . 2011-08-31 10:43 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-04-18 20:49 . 2011-12-05 20:42 458064 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-04-11 20:47 . 2011-09-27 10:17 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-04-11 20:47 . 2011-09-27 10:17 458064 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-03-09 11:21 . 2011-08-09 09:02 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-02-23 08:18 . 2011-08-09 08:24 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-02-17 18:09 . 2012-02-17 17:41 137416 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-02-17 05:34 . 2012-03-15 07:10 826880 ----a-w- c:\windows\system32\rdpcore.dll
2012-02-17 04:14 . 2012-03-15 07:10 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-02-17 04:13 . 2012-03-15 07:10 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-02-10 05:38 . 2012-03-15 07:10 1077248 ----a-w- c:\windows\system32\DWrite.dll
2012-02-10 04:13 . 2012-02-21 15:49 61248 ----a-w- c:\windows\system32\OpenCL.dll
2012-02-10 04:13 . 2012-02-21 15:49 5892928 ----a-w- c:\windows\system32\nvcuda.dll
2012-02-10 04:13 . 2012-02-21 15:49 2517312 ----a-w- c:\windows\system32\nvcuvid.dll
2012-02-10 04:13 . 2012-02-21 15:49 2437440 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-02-10 04:13 . 2012-02-21 15:49 19443520 ----a-w- c:\windows\system32\nvoglv32.dll
2012-02-10 04:13 . 2012-02-21 15:49 17543488 ----a-w- c:\windows\system32\nvcompiler.dll
2012-02-10 04:13 . 2012-02-21 15:49 15009600 ----a-w- c:\windows\system32\nvd3dum.dll
2012-02-10 04:13 . 2012-02-21 15:49 10816832 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2012-02-10 04:13 . 2011-12-25 11:34 881984 ----a-w- c:\windows\system32\nvgenco32.dll
2012-02-10 04:13 . 2011-12-25 11:34 1000256 ----a-w- c:\windows\system32\nvdispco32.dll
2012-02-10 04:13 . 2011-05-21 04:01 2301248 ----a-w- c:\windows\system32\nvapi.dll
2012-02-10 04:13 . 2009-07-13 22:09 7713088 ----a-w- c:\windows\system32\nvwgf2um.dll
2012-02-10 03:02 . 2011-08-09 09:56 3881792 ----a-w- c:\windows\system32\nvcpl.dll
2012-02-10 03:00 . 2011-08-09 09:56 2719040 ----a-w- c:\windows\system32\nvsvc.dll
2012-02-10 03:00 . 2011-08-09 09:56 645440 ----a-w- c:\windows\system32\nvvsvc.exe
2012-02-10 03:00 . 2011-08-09 09:56 62272 ----a-w- c:\windows\system32\nvshext.dll
2012-02-10 03:00 . 2011-08-09 09:56 108352 ----a-w- c:\windows\system32\nvmctray.dll
2012-02-10 03:00 . 2011-08-09 09:56 2561344 ----a-w- c:\windows\system32\nvsvcr.dll
2012-02-09 19:05 . 2012-02-09 19:05 416064 ----a-w- c:\windows\system32\nvStreaming.exe
2012-02-03 03:54 . 2012-03-15 07:10 2343424 ----a-w- c:\windows\system32\win32k.sys
2010-01-26 09:11 . 2012-03-15 15:34 444283 ----a-w- c:\program files\Common Files\WinPcapNmap.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"DAEMON Tools Lite"="c:\programy\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"B2C_AGENT"="c:\programdata\LGMOBILEAX\B2C_Client\B2CNotiAgent.exe" [2011-09-27 404568]
"AmIcoSinglun"="c:\program files\AmIcoSingLun\AmIcoSinglun.exe" [2010-05-03 237568]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-12-13 11487848]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-09-23 258512]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
c:\users\Robo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
VDownloader.lnk - c:\programy\VDownloader\VDownloader.exe [2012-3-15 875008]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
2012-03-14 15:14 446136 ----a-w- c:\program files\Sony\Sony PC Companion\PCCompanion.exe
.
R0 vmci;VMware VMCI Bus Driver;c:\windows\system32\DRIVERS\vmci.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 Andbus;LGE Android Platform Composite USB Device;c:\windows\system32\DRIVERS\lgandbus.sys [x]
R3 AndDiag;LGE Android Platform USB Serial Port;c:\windows\system32\DRIVERS\lganddiag.sys [x]
R3 AndGps;LGE Android Platform USB GPS NMEA Port;c:\windows\system32\DRIVERS\lgandgps.sys [x]
R3 ANDModem;LGE Android Platform USB Modem;c:\windows\system32\DRIVERS\lgandmodem.sys [x]
R3 BthAvrcp;Bluetooth AVRCP Profile;c:\windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 22528]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2011-08-31 13224]
R3 netr73;RT73 USB Extensible Wireless LAN Card Driver;c:\windows\system32\DRIVERS\netr73.sys [2011-10-05 564800]
R3 Sony PC Companion;Sony PC Companion;c:\program files\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2011-08-09 1343400]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2011-09-15 36000]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-08-10 232512]
S1 SASDIFSV;SASDIFSV;c:\programy\SuperAntispyware\SASDIFSV.SYS [2011-07-22 12880]
S1 SASKUTIL;SASKUTIL;c:\programy\SuperAntispyware\SASKUTIL.SYS [2011-07-12 67664]
S1 TsLwWfF;WiFi Capture Driver;c:\windows\system32\DRIVERS\TsLwWfF.sys [2011-05-12 22632]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 !SASCORE;SAS Core Service;c:\programy\SuperAntispyware\SASCORE.EXE [2011-08-11 116608]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [2011-09-23 86224]
S2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2010-01-27 50704]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-02-10 2348352]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-02-09 382272]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2011-09-29 490088]
.
.
.
------- Supplementary Scan -------
.
IE: E&xportovať do programu Microsoft Excel - c:\programy\MICROS~1\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - google.sk
FF - user.js: extensions.BabylonToolbar_i.id - 9451ff03000000000000001fd05f0179
FF - user.js: extensions.BabylonToolbar_i.hardId - 9451ff03000000000000001fd05f0179
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15387
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1711:19
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
FF - user.js: extensions.BabylonToolbar_i.newTab - false
FF - user.js: extensions.BabylonToolbar_i.babTrack - tt=090212_noffx
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-04-29 18:17:42
ComboFix-quarantined-files.txt 2012-04-29 16:17
.
Pre-Run: 61 043 097 600 bytes free
Post-Run: 60 705 218 560 bytes free
.
- - End Of File - - 0C4328EC0D425E7D9BAED002011115FF
Re: Prosím o kontrolu
Napsal: 29 dub 2012 17:46
Otevrete si poznamkovy blok a zkopirujte do nej tento skript
Kód: Vybrat vše
KillAll::
Firefox::
FF - ProfilePath - c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\
FF - user.js: extensions.BabylonToolbar_i.id - 9451ff03000000000000001fd05f0179
FF - user.js: extensions.BabylonToolbar_i.hardId - 9451ff03000000000000001fd05f0179
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15387
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1711:19
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
FF - user.js: extensions.BabylonToolbar_i.newTab - false
FF - user.js: extensions.BabylonToolbar_i.babTrack - tt=090212_noffx
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
RegLock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
Reboot::Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev CFScript a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni a ukoncete vsechny spustene programy
Pretahntete mysi tento vytvoreny textovy dokument nad ikonu ComboFix a pustte.
ComboFix by se mel spustit a vykonat prikazy.
Az skonci (muze dojit k restartu pc), mel by se objevit novy log, ten mi sem zase zkopirujte.
Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfiguraceRe: Prosím o kontrolu
Napsal: 29 dub 2012 18:26
ComboFix 12-04-29.01 - Robo . 04. 2012 19:06:11.2.4 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1250.421.1051.18.3070.2177 [GMT 2:00]
Running from: c:\users\Robo\Desktop\ComboFix.exe
Command switches used :: c:\users\Robo\Desktop\CFScript.txt
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2012-03-28 to 2012-04-29 )))))))))))))))))))))))))))))))
.
.
2012-04-29 17:09 . 2012-04-29 17:09 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-04-29 17:09 . 2012-04-29 17:09 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-04-29 17:05 . 2012-04-29 17:05 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{907C4B7D-F0A8-4587-BD8D-E2C2314DF967}\offreg.dll
2012-04-29 16:17 . 2012-04-29 17:11 -------- d-----w- c:\users\Robo\AppData\Local\temp
2012-04-29 12:55 . 2012-04-29 12:55 -------- d-----w- C:\_OTL
2012-04-29 12:16 . 2012-04-29 12:16 -------- d-----w- c:\users\Robo\AppData\Roaming\Malwarebytes
2012-04-29 12:16 . 2012-04-29 12:16 -------- d-----w- c:\programdata\Malwarebytes
2012-04-29 11:21 . 2012-04-29 11:21 -------- d-----w- c:\program files\Common Files\Java
2012-04-29 11:20 . 2012-04-13 07:36 6734704 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{907C4B7D-F0A8-4587-BD8D-E2C2314DF967}\mpengine.dll
2012-04-29 11:20 . 2012-04-29 11:20 -------- d-----w- c:\program files\Java
2012-04-29 10:48 . 2012-04-29 10:48 512 ----a-w- C:\PhysicalMBR.bin
2012-04-28 14:26 . 2012-04-28 14:26 -------- d-----w- C:\_OTM
2012-04-28 08:37 . 2012-04-28 08:39 -------- d-----w- c:\users\Robo\AppData\Roaming\GHISLER
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\UC.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\RAR.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\NOCLOSE.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\LHA.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\ARJ.PIF
2012-04-26 12:54 . 2012-03-01 05:46 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-04-26 12:54 . 2012-03-01 05:37 172544 ----a-w- c:\windows\system32\wintrust.dll
2012-04-26 12:54 . 2012-03-01 05:33 159232 ----a-w- c:\windows\system32\imagehlp.dll
2012-04-26 12:54 . 2012-03-01 05:29 5120 ----a-w- c:\windows\system32\wmi.dll
2012-04-26 12:50 . 2012-03-06 05:59 3968368 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-04-26 12:50 . 2012-03-06 05:59 3913072 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-03-31 10:08 . 2012-04-18 20:49 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-04-29 11:20 . 2011-08-31 10:43 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-04-18 20:49 . 2011-12-05 20:42 458064 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-04-11 20:47 . 2011-09-27 10:17 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-04-11 20:47 . 2011-09-27 10:17 458064 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-03-09 11:21 . 2011-08-09 09:02 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-02-23 08:18 . 2011-08-09 08:24 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-02-17 18:09 . 2012-02-17 17:41 137416 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-02-17 05:34 . 2012-03-15 07:10 826880 ----a-w- c:\windows\system32\rdpcore.dll
2012-02-17 04:14 . 2012-03-15 07:10 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-02-17 04:13 . 2012-03-15 07:10 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-02-10 05:38 . 2012-03-15 07:10 1077248 ----a-w- c:\windows\system32\DWrite.dll
2012-02-10 04:13 . 2012-02-21 15:49 61248 ----a-w- c:\windows\system32\OpenCL.dll
2012-02-10 04:13 . 2012-02-21 15:49 5892928 ----a-w- c:\windows\system32\nvcuda.dll
2012-02-10 04:13 . 2012-02-21 15:49 2517312 ----a-w- c:\windows\system32\nvcuvid.dll
2012-02-10 04:13 . 2012-02-21 15:49 2437440 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-02-10 04:13 . 2012-02-21 15:49 19443520 ----a-w- c:\windows\system32\nvoglv32.dll
2012-02-10 04:13 . 2012-02-21 15:49 17543488 ----a-w- c:\windows\system32\nvcompiler.dll
2012-02-10 04:13 . 2012-02-21 15:49 15009600 ----a-w- c:\windows\system32\nvd3dum.dll
2012-02-10 04:13 . 2012-02-21 15:49 10816832 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2012-02-10 04:13 . 2011-12-25 11:34 881984 ----a-w- c:\windows\system32\nvgenco32.dll
2012-02-10 04:13 . 2011-12-25 11:34 1000256 ----a-w- c:\windows\system32\nvdispco32.dll
2012-02-10 04:13 . 2011-05-21 04:01 2301248 ----a-w- c:\windows\system32\nvapi.dll
2012-02-10 04:13 . 2009-07-13 22:09 7713088 ----a-w- c:\windows\system32\nvwgf2um.dll
2012-02-10 03:02 . 2011-08-09 09:56 3881792 ----a-w- c:\windows\system32\nvcpl.dll
2012-02-10 03:00 . 2011-08-09 09:56 2719040 ----a-w- c:\windows\system32\nvsvc.dll
2012-02-10 03:00 . 2011-08-09 09:56 645440 ----a-w- c:\windows\system32\nvvsvc.exe
2012-02-10 03:00 . 2011-08-09 09:56 62272 ----a-w- c:\windows\system32\nvshext.dll
2012-02-10 03:00 . 2011-08-09 09:56 108352 ----a-w- c:\windows\system32\nvmctray.dll
2012-02-10 03:00 . 2011-08-09 09:56 2561344 ----a-w- c:\windows\system32\nvsvcr.dll
2012-02-09 19:05 . 2012-02-09 19:05 416064 ----a-w- c:\windows\system32\nvStreaming.exe
2012-02-03 03:54 . 2012-03-15 07:10 2343424 ----a-w- c:\windows\system32\win32k.sys
2010-01-26 09:11 . 2012-03-15 15:34 444283 ----a-w- c:\program files\Common Files\WinPcapNmap.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"DAEMON Tools Lite"="c:\programy\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"B2C_AGENT"="c:\programdata\LGMOBILEAX\B2C_Client\B2CNotiAgent.exe" [2011-09-27 404568]
"AmIcoSinglun"="c:\program files\AmIcoSingLun\AmIcoSinglun.exe" [2010-05-03 237568]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-12-13 11487848]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-09-23 258512]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
c:\users\Robo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
VDownloader.lnk - c:\programy\VDownloader\VDownloader.exe [2012-3-15 875008]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
2012-03-14 15:14 446136 ----a-w- c:\program files\Sony\Sony PC Companion\PCCompanion.exe
.
R0 vmci;VMware VMCI Bus Driver;c:\windows\system32\DRIVERS\vmci.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 Andbus;LGE Android Platform Composite USB Device;c:\windows\system32\DRIVERS\lgandbus.sys [x]
R3 AndDiag;LGE Android Platform USB Serial Port;c:\windows\system32\DRIVERS\lganddiag.sys [x]
R3 AndGps;LGE Android Platform USB GPS NMEA Port;c:\windows\system32\DRIVERS\lgandgps.sys [x]
R3 ANDModem;LGE Android Platform USB Modem;c:\windows\system32\DRIVERS\lgandmodem.sys [x]
R3 BthAvrcp;Bluetooth AVRCP Profile;c:\windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 22528]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2011-08-31 13224]
R3 netr73;RT73 USB Extensible Wireless LAN Card Driver;c:\windows\system32\DRIVERS\netr73.sys [2011-10-05 564800]
R3 Sony PC Companion;Sony PC Companion;c:\program files\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2011-08-09 1343400]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2011-09-15 36000]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-08-10 232512]
S1 SASDIFSV;SASDIFSV;c:\programy\SuperAntispyware\SASDIFSV.SYS [2011-07-22 12880]
S1 SASKUTIL;SASKUTIL;c:\programy\SuperAntispyware\SASKUTIL.SYS [2011-07-12 67664]
S1 TsLwWfF;WiFi Capture Driver;c:\windows\system32\DRIVERS\TsLwWfF.sys [2011-05-12 22632]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 !SASCORE;SAS Core Service;c:\programy\SuperAntispyware\SASCORE.EXE [2011-08-11 116608]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [2011-09-23 86224]
S2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2010-01-27 50704]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-02-10 2348352]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-02-09 382272]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2011-09-29 490088]
.
.
.
------- Supplementary Scan -------
.
IE: E&xportovať do programu Microsoft Excel - c:\programy\MICROS~1\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - google.sk
FF - user.js: extensions.BabylonToolbar_i.id - 9451ff03000000000000001fd05f0179
FF - user.js: extensions.BabylonToolbar_i.hardId - 9451ff03000000000000001fd05f0179
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15387
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1711:19
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
FF - user.js: extensions.BabylonToolbar_i.newTab - false
FF - user.js: extensions.BabylonToolbar_i.babTrack - tt=090212_noffx
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
.
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\windows\system32\taskhost.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\windows\system32\conhost.exe
c:\windows\system32\conhost.exe
c:\windows\system32\WUDFHost.exe
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\program files\Windows Media Player\wmplayer.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\avira\antivir desktop\ipmGui.exe
c:\windows\system32\sppsvc.exe
.
**************************************************************************
.
Completion time: 2012-04-29 19:13:40 - machine was rebooted
ComboFix-quarantined-files.txt 2012-04-29 17:13
ComboFix2.txt 2012-04-29 16:17
.
Pre-Run: 60 705 910 784 bytes free
Post-Run: 60 607 553 536 bytes free
.
- - End Of File - - E5255E8EAF49738ED9262C67FC1936EF
Microsoft Windows 7 Professional 6.1.7601.1.1250.421.1051.18.3070.2177 [GMT 2:00]
Running from: c:\users\Robo\Desktop\ComboFix.exe
Command switches used :: c:\users\Robo\Desktop\CFScript.txt
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2012-03-28 to 2012-04-29 )))))))))))))))))))))))))))))))
.
.
2012-04-29 17:09 . 2012-04-29 17:09 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-04-29 17:09 . 2012-04-29 17:09 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-04-29 17:05 . 2012-04-29 17:05 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{907C4B7D-F0A8-4587-BD8D-E2C2314DF967}\offreg.dll
2012-04-29 16:17 . 2012-04-29 17:11 -------- d-----w- c:\users\Robo\AppData\Local\temp
2012-04-29 12:55 . 2012-04-29 12:55 -------- d-----w- C:\_OTL
2012-04-29 12:16 . 2012-04-29 12:16 -------- d-----w- c:\users\Robo\AppData\Roaming\Malwarebytes
2012-04-29 12:16 . 2012-04-29 12:16 -------- d-----w- c:\programdata\Malwarebytes
2012-04-29 11:21 . 2012-04-29 11:21 -------- d-----w- c:\program files\Common Files\Java
2012-04-29 11:20 . 2012-04-13 07:36 6734704 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{907C4B7D-F0A8-4587-BD8D-E2C2314DF967}\mpengine.dll
2012-04-29 11:20 . 2012-04-29 11:20 -------- d-----w- c:\program files\Java
2012-04-29 10:48 . 2012-04-29 10:48 512 ----a-w- C:\PhysicalMBR.bin
2012-04-28 14:26 . 2012-04-28 14:26 -------- d-----w- C:\_OTM
2012-04-28 08:37 . 2012-04-28 08:39 -------- d-----w- c:\users\Robo\AppData\Roaming\GHISLER
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\UC.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\RAR.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\NOCLOSE.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\LHA.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\ARJ.PIF
2012-04-26 12:54 . 2012-03-01 05:46 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-04-26 12:54 . 2012-03-01 05:37 172544 ----a-w- c:\windows\system32\wintrust.dll
2012-04-26 12:54 . 2012-03-01 05:33 159232 ----a-w- c:\windows\system32\imagehlp.dll
2012-04-26 12:54 . 2012-03-01 05:29 5120 ----a-w- c:\windows\system32\wmi.dll
2012-04-26 12:50 . 2012-03-06 05:59 3968368 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-04-26 12:50 . 2012-03-06 05:59 3913072 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-03-31 10:08 . 2012-04-18 20:49 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-04-29 11:20 . 2011-08-31 10:43 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-04-18 20:49 . 2011-12-05 20:42 458064 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-04-11 20:47 . 2011-09-27 10:17 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-04-11 20:47 . 2011-09-27 10:17 458064 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-03-09 11:21 . 2011-08-09 09:02 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-02-23 08:18 . 2011-08-09 08:24 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-02-17 18:09 . 2012-02-17 17:41 137416 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-02-17 05:34 . 2012-03-15 07:10 826880 ----a-w- c:\windows\system32\rdpcore.dll
2012-02-17 04:14 . 2012-03-15 07:10 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-02-17 04:13 . 2012-03-15 07:10 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-02-10 05:38 . 2012-03-15 07:10 1077248 ----a-w- c:\windows\system32\DWrite.dll
2012-02-10 04:13 . 2012-02-21 15:49 61248 ----a-w- c:\windows\system32\OpenCL.dll
2012-02-10 04:13 . 2012-02-21 15:49 5892928 ----a-w- c:\windows\system32\nvcuda.dll
2012-02-10 04:13 . 2012-02-21 15:49 2517312 ----a-w- c:\windows\system32\nvcuvid.dll
2012-02-10 04:13 . 2012-02-21 15:49 2437440 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-02-10 04:13 . 2012-02-21 15:49 19443520 ----a-w- c:\windows\system32\nvoglv32.dll
2012-02-10 04:13 . 2012-02-21 15:49 17543488 ----a-w- c:\windows\system32\nvcompiler.dll
2012-02-10 04:13 . 2012-02-21 15:49 15009600 ----a-w- c:\windows\system32\nvd3dum.dll
2012-02-10 04:13 . 2012-02-21 15:49 10816832 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2012-02-10 04:13 . 2011-12-25 11:34 881984 ----a-w- c:\windows\system32\nvgenco32.dll
2012-02-10 04:13 . 2011-12-25 11:34 1000256 ----a-w- c:\windows\system32\nvdispco32.dll
2012-02-10 04:13 . 2011-05-21 04:01 2301248 ----a-w- c:\windows\system32\nvapi.dll
2012-02-10 04:13 . 2009-07-13 22:09 7713088 ----a-w- c:\windows\system32\nvwgf2um.dll
2012-02-10 03:02 . 2011-08-09 09:56 3881792 ----a-w- c:\windows\system32\nvcpl.dll
2012-02-10 03:00 . 2011-08-09 09:56 2719040 ----a-w- c:\windows\system32\nvsvc.dll
2012-02-10 03:00 . 2011-08-09 09:56 645440 ----a-w- c:\windows\system32\nvvsvc.exe
2012-02-10 03:00 . 2011-08-09 09:56 62272 ----a-w- c:\windows\system32\nvshext.dll
2012-02-10 03:00 . 2011-08-09 09:56 108352 ----a-w- c:\windows\system32\nvmctray.dll
2012-02-10 03:00 . 2011-08-09 09:56 2561344 ----a-w- c:\windows\system32\nvsvcr.dll
2012-02-09 19:05 . 2012-02-09 19:05 416064 ----a-w- c:\windows\system32\nvStreaming.exe
2012-02-03 03:54 . 2012-03-15 07:10 2343424 ----a-w- c:\windows\system32\win32k.sys
2010-01-26 09:11 . 2012-03-15 15:34 444283 ----a-w- c:\program files\Common Files\WinPcapNmap.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"DAEMON Tools Lite"="c:\programy\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"B2C_AGENT"="c:\programdata\LGMOBILEAX\B2C_Client\B2CNotiAgent.exe" [2011-09-27 404568]
"AmIcoSinglun"="c:\program files\AmIcoSingLun\AmIcoSinglun.exe" [2010-05-03 237568]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-12-13 11487848]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-09-23 258512]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
c:\users\Robo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
VDownloader.lnk - c:\programy\VDownloader\VDownloader.exe [2012-3-15 875008]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
2012-03-14 15:14 446136 ----a-w- c:\program files\Sony\Sony PC Companion\PCCompanion.exe
.
R0 vmci;VMware VMCI Bus Driver;c:\windows\system32\DRIVERS\vmci.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 Andbus;LGE Android Platform Composite USB Device;c:\windows\system32\DRIVERS\lgandbus.sys [x]
R3 AndDiag;LGE Android Platform USB Serial Port;c:\windows\system32\DRIVERS\lganddiag.sys [x]
R3 AndGps;LGE Android Platform USB GPS NMEA Port;c:\windows\system32\DRIVERS\lgandgps.sys [x]
R3 ANDModem;LGE Android Platform USB Modem;c:\windows\system32\DRIVERS\lgandmodem.sys [x]
R3 BthAvrcp;Bluetooth AVRCP Profile;c:\windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 22528]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2011-08-31 13224]
R3 netr73;RT73 USB Extensible Wireless LAN Card Driver;c:\windows\system32\DRIVERS\netr73.sys [2011-10-05 564800]
R3 Sony PC Companion;Sony PC Companion;c:\program files\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2011-08-09 1343400]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2011-09-15 36000]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-08-10 232512]
S1 SASDIFSV;SASDIFSV;c:\programy\SuperAntispyware\SASDIFSV.SYS [2011-07-22 12880]
S1 SASKUTIL;SASKUTIL;c:\programy\SuperAntispyware\SASKUTIL.SYS [2011-07-12 67664]
S1 TsLwWfF;WiFi Capture Driver;c:\windows\system32\DRIVERS\TsLwWfF.sys [2011-05-12 22632]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 !SASCORE;SAS Core Service;c:\programy\SuperAntispyware\SASCORE.EXE [2011-08-11 116608]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [2011-09-23 86224]
S2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2010-01-27 50704]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-02-10 2348352]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-02-09 382272]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2011-09-29 490088]
.
.
.
------- Supplementary Scan -------
.
IE: E&xportovať do programu Microsoft Excel - c:\programy\MICROS~1\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - google.sk
FF - user.js: extensions.BabylonToolbar_i.id - 9451ff03000000000000001fd05f0179
FF - user.js: extensions.BabylonToolbar_i.hardId - 9451ff03000000000000001fd05f0179
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15387
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1711:19
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
FF - user.js: extensions.BabylonToolbar_i.newTab - false
FF - user.js: extensions.BabylonToolbar_i.babTrack - tt=090212_noffx
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
.
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\windows\system32\taskhost.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\windows\system32\conhost.exe
c:\windows\system32\conhost.exe
c:\windows\system32\WUDFHost.exe
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\program files\Windows Media Player\wmplayer.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\avira\antivir desktop\ipmGui.exe
c:\windows\system32\sppsvc.exe
.
**************************************************************************
.
Completion time: 2012-04-29 19:13:40 - machine was rebooted
ComboFix-quarantined-files.txt 2012-04-29 17:13
ComboFix2.txt 2012-04-29 16:17
.
Pre-Run: 60 705 910 784 bytes free
Post-Run: 60 607 553 536 bytes free
.
- - End Of File - - E5255E8EAF49738ED9262C67FC1936EF
Re: Prosím o kontrolu
Napsal: 29 dub 2012 18:41
Na neco jsem v tom skriptu zapomnel 
, takze prosim jeste jednou, tentokrat s timto skriptem
Otevrete si poznamkovy blok a zkopirujte do nej tento skript
Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev CFScript a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni a ukoncete vsechny spustene programy
Pretahntete mysi tento vytvoreny textovy dokument nad ikonu ComboFix a pustte.
ComboFix by se mel spustit a vykonat prikazy.
Az skonci (muze dojit k restartu pc), mel by se objevit novy log, ten mi sem zase zkopirujte.
Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace
Jelikoz uz tu dneska asi nebudu, napiste pak, jestli se neco zmenilo.
Pokud ne, mate tam jeste jiny pocitac? Chtel bych vedet, jestli to na nem funguje. A zkuste jeste prohlizec google chrome.
Zitra bychom pokracovali.
, takze prosim jeste jednou, tentokrat s timto skriptem Otevrete si poznamkovy blok a zkopirujte do nej tento skript
Kód: Vybrat vše
KillAll::
Firefox::
FF - ProfilePath - c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\
FF - user.js: extensions.BabylonToolbar_i.id - 9451ff03000000000000001fd05f0179
FF - user.js: extensions.BabylonToolbar_i.hardId - 9451ff03000000000000001fd05f0179
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15387
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1711:19
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
FF - user.js: extensions.BabylonToolbar_i.newTab - false
FF - user.js: extensions.BabylonToolbar_i.babTrack - tt=090212_noffx
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
Reboot::Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev CFScript a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni a ukoncete vsechny spustene programy
Pretahntete mysi tento vytvoreny textovy dokument nad ikonu ComboFix a pustte.
ComboFix by se mel spustit a vykonat prikazy.
Az skonci (muze dojit k restartu pc), mel by se objevit novy log, ten mi sem zase zkopirujte.
Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace Jelikoz uz tu dneska asi nebudu, napiste pak, jestli se neco zmenilo.Pokud ne, mate tam jeste jiny pocitac? Chtel bych vedet, jestli to na nem funguje. A zkuste jeste prohlizec google chrome.
Zitra bychom pokracovali.
Re: Prosím o kontrolu
Napsal: 29 dub 2012 18:51
ComboFix 12-04-29.01 - Robo . 04. 2012 19:43:49.3.4 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1250.421.1051.18.3070.2030 [GMT 2:00]
Running from: c:\users\Robo\Desktop\ComboFix.exe
Command switches used :: c:\users\Robo\Desktop\CFScript.txt
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2012-03-28 to 2012-04-29 )))))))))))))))))))))))))))))))
.
.
2012-04-29 17:47 . 2012-04-29 17:47 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-04-29 17:47 . 2012-04-29 17:47 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-04-29 17:05 . 2012-04-29 17:43 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{907C4B7D-F0A8-4587-BD8D-E2C2314DF967}\offreg.dll
2012-04-29 16:17 . 2012-04-29 17:48 -------- d-----w- c:\users\Robo\AppData\Local\temp
2012-04-29 12:55 . 2012-04-29 12:55 -------- d-----w- C:\_OTL
2012-04-29 12:16 . 2012-04-29 12:16 -------- d-----w- c:\users\Robo\AppData\Roaming\Malwarebytes
2012-04-29 12:16 . 2012-04-29 12:16 -------- d-----w- c:\programdata\Malwarebytes
2012-04-29 11:21 . 2012-04-29 11:21 -------- d-----w- c:\program files\Common Files\Java
2012-04-29 11:20 . 2012-04-13 07:36 6734704 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{907C4B7D-F0A8-4587-BD8D-E2C2314DF967}\mpengine.dll
2012-04-29 11:20 . 2012-04-29 11:20 -------- d-----w- c:\program files\Java
2012-04-29 10:48 . 2012-04-29 10:48 512 ----a-w- C:\PhysicalMBR.bin
2012-04-28 14:26 . 2012-04-28 14:26 -------- d-----w- C:\_OTM
2012-04-28 08:37 . 2012-04-28 08:39 -------- d-----w- c:\users\Robo\AppData\Roaming\GHISLER
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\UC.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\RAR.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\NOCLOSE.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\LHA.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\ARJ.PIF
2012-04-26 12:54 . 2012-03-01 05:46 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-04-26 12:54 . 2012-03-01 05:37 172544 ----a-w- c:\windows\system32\wintrust.dll
2012-04-26 12:54 . 2012-03-01 05:33 159232 ----a-w- c:\windows\system32\imagehlp.dll
2012-04-26 12:54 . 2012-03-01 05:29 5120 ----a-w- c:\windows\system32\wmi.dll
2012-04-26 12:50 . 2012-03-06 05:59 3968368 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-04-26 12:50 . 2012-03-06 05:59 3913072 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-03-31 10:08 . 2012-04-18 20:49 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-04-29 11:20 . 2011-08-31 10:43 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-04-18 20:49 . 2011-12-05 20:42 458064 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-04-11 20:47 . 2011-09-27 10:17 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-04-11 20:47 . 2011-09-27 10:17 458064 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-03-09 11:21 . 2011-08-09 09:02 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-02-23 08:18 . 2011-08-09 08:24 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-02-17 18:09 . 2012-02-17 17:41 137416 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-02-17 05:34 . 2012-03-15 07:10 826880 ----a-w- c:\windows\system32\rdpcore.dll
2012-02-17 04:14 . 2012-03-15 07:10 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-02-17 04:13 . 2012-03-15 07:10 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-02-10 05:38 . 2012-03-15 07:10 1077248 ----a-w- c:\windows\system32\DWrite.dll
2012-02-10 04:13 . 2012-02-21 15:49 61248 ----a-w- c:\windows\system32\OpenCL.dll
2012-02-10 04:13 . 2012-02-21 15:49 5892928 ----a-w- c:\windows\system32\nvcuda.dll
2012-02-10 04:13 . 2012-02-21 15:49 2517312 ----a-w- c:\windows\system32\nvcuvid.dll
2012-02-10 04:13 . 2012-02-21 15:49 2437440 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-02-10 04:13 . 2012-02-21 15:49 19443520 ----a-w- c:\windows\system32\nvoglv32.dll
2012-02-10 04:13 . 2012-02-21 15:49 17543488 ----a-w- c:\windows\system32\nvcompiler.dll
2012-02-10 04:13 . 2012-02-21 15:49 15009600 ----a-w- c:\windows\system32\nvd3dum.dll
2012-02-10 04:13 . 2012-02-21 15:49 10816832 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2012-02-10 04:13 . 2011-12-25 11:34 881984 ----a-w- c:\windows\system32\nvgenco32.dll
2012-02-10 04:13 . 2011-12-25 11:34 1000256 ----a-w- c:\windows\system32\nvdispco32.dll
2012-02-10 04:13 . 2011-05-21 04:01 2301248 ----a-w- c:\windows\system32\nvapi.dll
2012-02-10 04:13 . 2009-07-13 22:09 7713088 ----a-w- c:\windows\system32\nvwgf2um.dll
2012-02-10 03:02 . 2011-08-09 09:56 3881792 ----a-w- c:\windows\system32\nvcpl.dll
2012-02-10 03:00 . 2011-08-09 09:56 2719040 ----a-w- c:\windows\system32\nvsvc.dll
2012-02-10 03:00 . 2011-08-09 09:56 645440 ----a-w- c:\windows\system32\nvvsvc.exe
2012-02-10 03:00 . 2011-08-09 09:56 62272 ----a-w- c:\windows\system32\nvshext.dll
2012-02-10 03:00 . 2011-08-09 09:56 108352 ----a-w- c:\windows\system32\nvmctray.dll
2012-02-10 03:00 . 2011-08-09 09:56 2561344 ----a-w- c:\windows\system32\nvsvcr.dll
2012-02-09 19:05 . 2012-02-09 19:05 416064 ----a-w- c:\windows\system32\nvStreaming.exe
2012-02-03 03:54 . 2012-03-15 07:10 2343424 ----a-w- c:\windows\system32\win32k.sys
2010-01-26 09:11 . 2012-03-15 15:34 444283 ----a-w- c:\program files\Common Files\WinPcapNmap.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"DAEMON Tools Lite"="c:\programy\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"B2C_AGENT"="c:\programdata\LGMOBILEAX\B2C_Client\B2CNotiAgent.exe" [2011-09-27 404568]
"AmIcoSinglun"="c:\program files\AmIcoSingLun\AmIcoSinglun.exe" [2010-05-03 237568]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-12-13 11487848]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-09-23 258512]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
c:\users\Robo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
VDownloader.lnk - c:\programy\VDownloader\VDownloader.exe [2012-3-15 875008]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
2012-03-14 15:14 446136 ----a-w- c:\program files\Sony\Sony PC Companion\PCCompanion.exe
.
R0 vmci;VMware VMCI Bus Driver;c:\windows\system32\DRIVERS\vmci.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-02-10 2348352]
R3 Andbus;LGE Android Platform Composite USB Device;c:\windows\system32\DRIVERS\lgandbus.sys [x]
R3 AndDiag;LGE Android Platform USB Serial Port;c:\windows\system32\DRIVERS\lganddiag.sys [x]
R3 AndGps;LGE Android Platform USB GPS NMEA Port;c:\windows\system32\DRIVERS\lgandgps.sys [x]
R3 ANDModem;LGE Android Platform USB Modem;c:\windows\system32\DRIVERS\lgandmodem.sys [x]
R3 BthAvrcp;Bluetooth AVRCP Profile;c:\windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 22528]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2011-08-31 13224]
R3 netr73;RT73 USB Extensible Wireless LAN Card Driver;c:\windows\system32\DRIVERS\netr73.sys [2011-10-05 564800]
R3 Sony PC Companion;Sony PC Companion;c:\program files\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2011-08-09 1343400]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2011-09-15 36000]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-08-10 232512]
S1 SASDIFSV;SASDIFSV;c:\programy\SuperAntispyware\SASDIFSV.SYS [2011-07-22 12880]
S1 SASKUTIL;SASKUTIL;c:\programy\SuperAntispyware\SASKUTIL.SYS [2011-07-12 67664]
S1 TsLwWfF;WiFi Capture Driver;c:\windows\system32\DRIVERS\TsLwWfF.sys [2011-05-12 22632]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 !SASCORE;SAS Core Service;c:\programy\SuperAntispyware\SASCORE.EXE [2011-08-11 116608]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [2011-09-23 86224]
S2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2010-01-27 50704]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-02-09 382272]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2011-09-29 490088]
.
.
.
------- Supplementary Scan -------
.
IE: E&xportovať do programu Microsoft Excel - c:\programy\MICROS~1\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - google.sk
.
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\windows\system32\taskhost.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\windows\system32\conhost.exe
c:\windows\system32\WUDFHost.exe
c:\windows\system32\conhost.exe
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\avira\antivir desktop\ipmGui.exe
.
**************************************************************************
.
Completion time: 2012-04-29 19:50:40 - machine was rebooted
ComboFix-quarantined-files.txt 2012-04-29 17:50
ComboFix2.txt 2012-04-29 17:13
ComboFix3.txt 2012-04-29 16:17
.
Pre-Run: 60 675 461 120 bytes free
Post-Run: 60 586 512 384 bytes free
.
- - End Of File - - 74496DCB06605B227B6F5171B26FC074
Microsoft Windows 7 Professional 6.1.7601.1.1250.421.1051.18.3070.2030 [GMT 2:00]
Running from: c:\users\Robo\Desktop\ComboFix.exe
Command switches used :: c:\users\Robo\Desktop\CFScript.txt
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2012-03-28 to 2012-04-29 )))))))))))))))))))))))))))))))
.
.
2012-04-29 17:47 . 2012-04-29 17:47 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-04-29 17:47 . 2012-04-29 17:47 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-04-29 17:05 . 2012-04-29 17:43 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{907C4B7D-F0A8-4587-BD8D-E2C2314DF967}\offreg.dll
2012-04-29 16:17 . 2012-04-29 17:48 -------- d-----w- c:\users\Robo\AppData\Local\temp
2012-04-29 12:55 . 2012-04-29 12:55 -------- d-----w- C:\_OTL
2012-04-29 12:16 . 2012-04-29 12:16 -------- d-----w- c:\users\Robo\AppData\Roaming\Malwarebytes
2012-04-29 12:16 . 2012-04-29 12:16 -------- d-----w- c:\programdata\Malwarebytes
2012-04-29 11:21 . 2012-04-29 11:21 -------- d-----w- c:\program files\Common Files\Java
2012-04-29 11:20 . 2012-04-13 07:36 6734704 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{907C4B7D-F0A8-4587-BD8D-E2C2314DF967}\mpengine.dll
2012-04-29 11:20 . 2012-04-29 11:20 -------- d-----w- c:\program files\Java
2012-04-29 10:48 . 2012-04-29 10:48 512 ----a-w- C:\PhysicalMBR.bin
2012-04-28 14:26 . 2012-04-28 14:26 -------- d-----w- C:\_OTM
2012-04-28 08:37 . 2012-04-28 08:39 -------- d-----w- c:\users\Robo\AppData\Roaming\GHISLER
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\UC.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\RAR.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\NOCLOSE.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\LHA.PIF
2012-04-28 08:37 . 2012-03-09 05:57 545 ----a-w- c:\windows\ARJ.PIF
2012-04-26 12:54 . 2012-03-01 05:46 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-04-26 12:54 . 2012-03-01 05:37 172544 ----a-w- c:\windows\system32\wintrust.dll
2012-04-26 12:54 . 2012-03-01 05:33 159232 ----a-w- c:\windows\system32\imagehlp.dll
2012-04-26 12:54 . 2012-03-01 05:29 5120 ----a-w- c:\windows\system32\wmi.dll
2012-04-26 12:50 . 2012-03-06 05:59 3968368 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-04-26 12:50 . 2012-03-06 05:59 3913072 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-03-31 10:08 . 2012-04-18 20:49 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-04-29 11:20 . 2011-08-31 10:43 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-04-18 20:49 . 2011-12-05 20:42 458064 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-04-11 20:47 . 2011-09-27 10:17 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-04-11 20:47 . 2011-09-27 10:17 458064 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-03-09 11:21 . 2011-08-09 09:02 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-02-23 08:18 . 2011-08-09 08:24 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-02-17 18:09 . 2012-02-17 17:41 137416 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-02-17 05:34 . 2012-03-15 07:10 826880 ----a-w- c:\windows\system32\rdpcore.dll
2012-02-17 04:14 . 2012-03-15 07:10 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-02-17 04:13 . 2012-03-15 07:10 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-02-10 05:38 . 2012-03-15 07:10 1077248 ----a-w- c:\windows\system32\DWrite.dll
2012-02-10 04:13 . 2012-02-21 15:49 61248 ----a-w- c:\windows\system32\OpenCL.dll
2012-02-10 04:13 . 2012-02-21 15:49 5892928 ----a-w- c:\windows\system32\nvcuda.dll
2012-02-10 04:13 . 2012-02-21 15:49 2517312 ----a-w- c:\windows\system32\nvcuvid.dll
2012-02-10 04:13 . 2012-02-21 15:49 2437440 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-02-10 04:13 . 2012-02-21 15:49 19443520 ----a-w- c:\windows\system32\nvoglv32.dll
2012-02-10 04:13 . 2012-02-21 15:49 17543488 ----a-w- c:\windows\system32\nvcompiler.dll
2012-02-10 04:13 . 2012-02-21 15:49 15009600 ----a-w- c:\windows\system32\nvd3dum.dll
2012-02-10 04:13 . 2012-02-21 15:49 10816832 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2012-02-10 04:13 . 2011-12-25 11:34 881984 ----a-w- c:\windows\system32\nvgenco32.dll
2012-02-10 04:13 . 2011-12-25 11:34 1000256 ----a-w- c:\windows\system32\nvdispco32.dll
2012-02-10 04:13 . 2011-05-21 04:01 2301248 ----a-w- c:\windows\system32\nvapi.dll
2012-02-10 04:13 . 2009-07-13 22:09 7713088 ----a-w- c:\windows\system32\nvwgf2um.dll
2012-02-10 03:02 . 2011-08-09 09:56 3881792 ----a-w- c:\windows\system32\nvcpl.dll
2012-02-10 03:00 . 2011-08-09 09:56 2719040 ----a-w- c:\windows\system32\nvsvc.dll
2012-02-10 03:00 . 2011-08-09 09:56 645440 ----a-w- c:\windows\system32\nvvsvc.exe
2012-02-10 03:00 . 2011-08-09 09:56 62272 ----a-w- c:\windows\system32\nvshext.dll
2012-02-10 03:00 . 2011-08-09 09:56 108352 ----a-w- c:\windows\system32\nvmctray.dll
2012-02-10 03:00 . 2011-08-09 09:56 2561344 ----a-w- c:\windows\system32\nvsvcr.dll
2012-02-09 19:05 . 2012-02-09 19:05 416064 ----a-w- c:\windows\system32\nvStreaming.exe
2012-02-03 03:54 . 2012-03-15 07:10 2343424 ----a-w- c:\windows\system32\win32k.sys
2010-01-26 09:11 . 2012-03-15 15:34 444283 ----a-w- c:\program files\Common Files\WinPcapNmap.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"DAEMON Tools Lite"="c:\programy\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"B2C_AGENT"="c:\programdata\LGMOBILEAX\B2C_Client\B2CNotiAgent.exe" [2011-09-27 404568]
"AmIcoSinglun"="c:\program files\AmIcoSingLun\AmIcoSinglun.exe" [2010-05-03 237568]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-12-13 11487848]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-09-23 258512]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
c:\users\Robo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
VDownloader.lnk - c:\programy\VDownloader\VDownloader.exe [2012-3-15 875008]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
2012-03-14 15:14 446136 ----a-w- c:\program files\Sony\Sony PC Companion\PCCompanion.exe
.
R0 vmci;VMware VMCI Bus Driver;c:\windows\system32\DRIVERS\vmci.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-02-10 2348352]
R3 Andbus;LGE Android Platform Composite USB Device;c:\windows\system32\DRIVERS\lgandbus.sys [x]
R3 AndDiag;LGE Android Platform USB Serial Port;c:\windows\system32\DRIVERS\lganddiag.sys [x]
R3 AndGps;LGE Android Platform USB GPS NMEA Port;c:\windows\system32\DRIVERS\lgandgps.sys [x]
R3 ANDModem;LGE Android Platform USB Modem;c:\windows\system32\DRIVERS\lgandmodem.sys [x]
R3 BthAvrcp;Bluetooth AVRCP Profile;c:\windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 22528]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2011-08-31 13224]
R3 netr73;RT73 USB Extensible Wireless LAN Card Driver;c:\windows\system32\DRIVERS\netr73.sys [2011-10-05 564800]
R3 Sony PC Companion;Sony PC Companion;c:\program files\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2011-08-09 1343400]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2011-09-15 36000]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-08-10 232512]
S1 SASDIFSV;SASDIFSV;c:\programy\SuperAntispyware\SASDIFSV.SYS [2011-07-22 12880]
S1 SASKUTIL;SASKUTIL;c:\programy\SuperAntispyware\SASKUTIL.SYS [2011-07-12 67664]
S1 TsLwWfF;WiFi Capture Driver;c:\windows\system32\DRIVERS\TsLwWfF.sys [2011-05-12 22632]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 !SASCORE;SAS Core Service;c:\programy\SuperAntispyware\SASCORE.EXE [2011-08-11 116608]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [2011-09-23 86224]
S2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2010-01-27 50704]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-02-09 382272]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2011-09-29 490088]
.
.
.
------- Supplementary Scan -------
.
IE: E&xportovať do programu Microsoft Excel - c:\programy\MICROS~1\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Robo\AppData\Roaming\Mozilla\Firefox\Profiles\f19w8u7m.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - google.sk
.
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\windows\system32\taskhost.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\windows\system32\conhost.exe
c:\windows\system32\WUDFHost.exe
c:\windows\system32\conhost.exe
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\avira\antivir desktop\ipmGui.exe
.
**************************************************************************
.
Completion time: 2012-04-29 19:50:40 - machine was rebooted
ComboFix-quarantined-files.txt 2012-04-29 17:50
ComboFix2.txt 2012-04-29 17:13
ComboFix3.txt 2012-04-29 16:17
.
Pre-Run: 60 675 461 120 bytes free
Post-Run: 60 586 512 384 bytes free
.
- - End Of File - - 74496DCB06605B227B6F5171B26FC074
Re: Prosím o kontrolu
Napsal: 29 dub 2012 19:15
Fajn, ted uz to udelalo, co jsem chtel 
Márty84 píše:... napiste pak, jestli se neco zmenilo.
Pokud ne, mate tam jeste jiny pocitac? Chtel bych vedet, jestli to na nem funguje. A zkuste jeste prohlizec google chrome.
Zitra bychom pokracovali.
Re: Prosím o kontrolu
Napsal: 29 dub 2012 20:30
Nezmenilo sa nic, stale to nejde skusal som na druhom pc a na tom to tiez nejde.
skusal som na druhom pc a na tom to tiez nejde.Re: Prosím o kontrolu
Napsal: 30 dub 2012 09:21
Tohle nevypada na problem s haveti, ja uz tam nic nevidim 
Jake mate pripojeni? Router, wifi, kabel...
Jake mate pripojeni? Router, wifi, kabel...