VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o kontrolu logu

https://forum.viry.cz:443/viewtopic.php?t=99719

Stránka 2 z 2

Re: Prosím o kontrolu logu

Napsal: 06 dub 2010 00:50
od Unlimited_Killer
Dočistíme tedy.

1) Skript do ComboFix-u
  • Otevřete si Poznámkový blok [Start → Spustit → notepad → Enter].
  • Do něj vkopírujte následující text:

    Kód: Vybrat vše

    KillAll::

File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk

Registry::
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
"Adobe Reader Speed Launcher"=-
"Adobe ARM"=-

Reboot::
  • Uložte tento soubor na Plochu pod jménem CFScript (koncovka .txt).
  • Přetáhněte tento soubor nad ComboFix a pusťte ho.
  • I tento soubor, i ComboFix musí být na Ploše!
    Obrázek
  • ComboFix se spustí a vykoná příkazy ze skriptu.
  • Počítač bude pravděpodobně restartován.
  • Po restartu na Vás vyskočí okno s logem, který mi vkopírujete sem ve formě textu.

Re: Prosím o kontrolu logu

Napsal: 06 dub 2010 08:39
od bača
ještě než sem vložím log tak:
při přetažení zadaného souboru CFScript.txt nad Combofix a následného spuštění vyskočilo
okno ve kterém soubor mbr.cfxxe chtěl ukončit Combofixem spuštěný proces.To jsem vykřížkoval.Chtěl jsem udělat screen
toho okna,ale obrázek se uložil jako soubor mbr.cfxxe.
onen soubor jsem pak projel ve http://www.virustotal.com/cs/,i v AntiMalware kde nebylo nalezeno nic.tak nevím co to je
byl-li to vir tak mám podezření,že jsem ho uložil tím sreenem do složky obrázky.
snad jsem to popsal dobře,ikdyž... :) log je dóle,děkuji

Obrázek

Obrázek

Re: Prosím o kontrolu logu

Napsal: 06 dub 2010 08:40
od bača
ComboFix 10-04-04.01 - Uživatel 06.04.2010 8:56.3.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.3326.2266 [GMT 2:00]
Spuštěný z: c:\users\Uživatel\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Uživatel\Desktop\CFScript.txt
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

FILE ::
"c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-03-06 do 2010-04-06 )))))))))))))))))))))))))))))))
.

2010-04-06 07:04 . 2010-04-06 07:04 -------- d-----w- c:\users\Public\AppData\Local\temp
2010-04-06 07:04 . 2010-04-06 07:04 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-04-05 14:02 . 2010-03-09 10:12 162640 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-04-05 14:02 . 2010-03-09 10:09 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-04-05 14:02 . 2010-03-09 10:08 19024 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-04-05 14:02 . 2010-03-09 10:12 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-04-05 14:02 . 2010-03-09 10:08 51792 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2010-04-05 14:01 . 2010-03-09 10:24 38848 ----a-w- c:\windows\system32\avastSS.scr
2010-04-05 14:01 . 2010-03-09 10:24 153184 ----a-w- c:\windows\system32\aswBoot.exe
2010-04-05 14:01 . 2010-04-05 14:01 -------- d-----w- c:\programdata\Alwil Software
2010-04-05 12:44 . 2010-04-05 12:44 -------- d-----w- c:\program files\ESET
2010-04-05 12:25 . 2010-03-29 13:24 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-05 12:24 . 2010-04-05 12:24 -------- d-----w- c:\programdata\Malwarebytes
2010-04-05 12:24 . 2010-03-29 13:24 20824 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-04 17:06 . 2010-04-04 17:07 -------- d-----w- C:\rsit
2010-04-02 13:06 . 2010-04-02 13:06 1232496 ----a-w- c:\programdata\Google\Google Toolbar\Component\GoogleCld_D9AEC8D4D1915047.dll
2010-04-02 13:05 . 2010-04-02 13:05 -------- d-----w- c:\program files\Google
2010-04-01 11:08 . 2010-04-01 11:08 -------- d-----w- c:\program files\ActiveURLs
2010-04-01 08:19 . 2010-04-01 08:25 -------- d-----w- c:\program files\Internet Research Scout
2010-03-31 18:22 . 2010-03-31 18:22 -------- d-sh--w- c:\windows\ftpcache
2010-03-31 17:43 . 2010-03-31 17:43 -------- d-----w- c:\windows\Downloaded Installations
2010-03-31 08:00 . 2010-03-09 15:42 834048 ----a-w- c:\windows\system32\wininet.dll
2010-03-31 07:59 . 2010-03-09 16:25 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-03-10 16:34 . 2010-02-20 23:06 24064 ----a-w- c:\windows\system32\nshhttp.dll
2010-03-10 16:34 . 2010-02-20 20:53 411648 ----a-w- c:\windows\system32\drivers\http.sys
2010-03-10 16:34 . 2010-02-20 23:05 30720 ----a-w- c:\windows\system32\httpapi.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-06 07:06 . 2009-06-24 15:10 35180 ----a-w- c:\programdata\nvModes.dat
2010-04-06 06:28 . 2007-01-08 21:09 598600 ----a-w- c:\windows\system32\perfh005.dat
2010-04-06 06:28 . 2007-01-08 21:09 114808 ----a-w- c:\windows\system32\perfc005.dat
2010-04-05 16:28 . 2010-02-25 15:07 -------- d-----w- c:\program files\trend micro
2010-04-05 14:01 . 2009-06-26 16:02 -------- d-----w- c:\program files\Alwil Software
2010-04-04 17:35 . 2009-06-24 15:05 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2010-03-30 20:52 . 2009-06-29 11:28 -------- d-----w- c:\program files\Common Files\Java
2010-03-30 20:47 . 2009-06-29 11:28 -------- d-----w- c:\program files\Java
2010-03-10 17:33 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2010-03-09 02:28 . 2009-06-29 16:14 411368 ----a-w- c:\windows\system32\deploytk.dll
2010-02-24 09:16 . 2009-10-03 08:28 181632 ------w- c:\windows\system32\MpSigStub.exe
2010-02-14 08:37 . 2009-06-24 15:06 -------- d-----w- c:\programdata\NVIDIA
2010-02-14 08:36 . 2010-02-14 08:36 -------- d-----w- c:\program files\NVIDIA Corporation
2010-02-12 10:32 . 2010-03-06 22:20 293376 ----a-w- c:\windows\system32\browserchoice.exe
2010-02-04 12:45 . 2010-02-04 12:45 56 ---ha-w- c:\programdata\ezsidmv.dat
2010-02-01 20:13 . 2009-07-15 17:03 737280 ----a-w- c:\windows\iun6002.exe
2010-01-25 12:00 . 2010-02-24 07:34 471552 ----a-w- c:\windows\system32\secproc_isv.dll
2010-01-25 12:00 . 2010-02-24 07:33 152576 ----a-w- c:\windows\system32\secproc_ssp_isv.dll
2010-01-25 12:00 . 2010-02-24 07:33 152064 ----a-w- c:\windows\system32\secproc_ssp.dll
2010-01-25 12:00 . 2010-02-24 07:34 471552 ----a-w- c:\windows\system32\secproc.dll
2010-01-25 11:58 . 2010-02-24 07:33 332288 ----a-w- c:\windows\system32\msdrm.dll
2010-01-25 08:21 . 2010-02-24 07:33 526336 ----a-w- c:\windows\system32\RMActivate_isv.exe
2010-01-25 08:21 . 2010-02-24 07:33 346624 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe
2010-01-25 08:21 . 2010-02-24 07:33 347136 ----a-w- c:\windows\system32\RMActivate_ssp.exe
2010-01-25 08:21 . 2010-02-24 07:33 518144 ----a-w- c:\windows\system32\RMActivate.exe
2010-01-23 09:26 . 2010-02-24 07:35 2048 ----a-w- c:\windows\system32\tzres.dll
2010-01-11 21:18 . 2010-01-11 21:18 962664 ----a-w- c:\windows\system32\nvsvc.dll
2010-01-11 21:18 . 2010-01-11 21:18 13679720 ----a-w- c:\windows\system32\nvcpl.dll
2010-01-11 21:18 . 2010-01-11 21:18 129640 ----a-w- c:\windows\system32\nvvsvc.exe
2010-01-11 21:18 . 2010-01-11 21:18 110696 ----a-w- c:\windows\system32\nvmctray.dll
2010-01-06 15:39 . 2010-02-24 07:33 1696256 ----a-w- c:\windows\system32\gameux.dll
2010-01-06 15:38 . 2010-02-24 07:33 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2010-01-06 15:38 . 2010-02-24 07:33 173056 ----a-w- c:\windows\AppPatch\AcXtrnal.dll
2010-01-06 15:38 . 2010-02-24 07:33 2159616 ----a-w- c:\windows\AppPatch\AcGenral.dll
2010-01-06 15:38 . 2010-02-24 07:33 542720 ----a-w- c:\windows\AppPatch\AcLayers.dll
2010-01-06 15:38 . 2010-02-24 07:33 458752 ----a-w- c:\windows\AppPatch\AcSpecfc.dll
2010-01-06 13:30 . 2010-02-24 07:33 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-18 125952]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-18 202240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-18 1008184]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2009-02-17 6793760]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-03-09 2769336]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):26,1f,a7,75,23,fe,c9,01

R2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-04-02 135664]
S1 aswSP;aswSP; [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2009-05-14 107256]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-03-09 51792]
S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2009-05-14 38240]


[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: Add Link in LinkyCat... - c:\program files\LinkyCat\gale.dll/gale.dll.htm
IE: Save with Internet Research Scout - c:\program files\Internet Research Scout\nnotes.html
IE: WikiKomentáře Google... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
IE: {{46C446D1-0C35-485E-AF7C-ED4E39907C0D} - {8CFF3070-259A-4896-81BE-F2460BF0CDA0} - c:\progra~1\INTERN~2\nnotes.dll
Trusted Zone: mojebanka.cz
FF - ProfilePath - c:\users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\bxkldjwe.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - component: c:\users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\bxkldjwe.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
FF - plugin: c:\program files\Google\Update\1.2.183.23\npGoogleOneClick8.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
.

**************************************************************************
skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory:

**************************************************************************
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\windows\system32\conime.exe
c:\program files\Alwil Software\Avast5\AvastUI.exe
c:\windows\ehome\ehmsas.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\servicing\TrustedInstaller.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
.
**************************************************************************
.
Celkový čas: 2010-04-06 09:11:48 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-04-06 07:11
ComboFix2.txt 2010-04-05 17:52
ComboFix3.txt 2010-04-04 19:25

Před spuštěním: Volných bajtů: 79 014 195 200
Po spuštění: Volných bajtů: 78 998 261 760

- - End Of File - - 7F037A2DD9BFA03170B52A2D59394F68

Re: Prosím o kontrolu logu

Napsal: 06 dub 2010 14:28
od Unlimited_Killer
Vir to není, je součást ComboFixu. :happy:

Prosím nový RSIT log.

Re: Prosím o kontrolu logu

Napsal: 06 dub 2010 15:04
od bača
Logfile of random's system information tool 1.06 (written by random/random)
Run by Uživatel at 2010-04-06 16:03:25
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 74 GB (62%) free of 121 GB
Total RAM: 3326 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:03:28, on 6.4.2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v7.00 (7.00.6002.18005)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\conime.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\Explorer.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Uživatel\Desktop\RSIT.exe
C:\Program Files\trend micro\Uživatel.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Setup\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Internet Research Scout - {75A0D830-27F2-416B-82F7-CB67D0F0611B} - C:\PROGRA~1\INTERN~2\nnotes.dll (file missing)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O8 - Extra context menu item: Add Link in LinkyCat... - res://C:\Program Files\LinkyCat\gale.dll/gale.dll.htm
O8 - Extra context menu item: Save with Internet Research Scout - C:\Program Files\Internet Research Scout\nnotes.html
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
O9 - Extra button: Internet Research Scout - {46C446D1-0C35-485E-AF7C-ED4E39907C0D} - C:\PROGRA~1\INTERN~2\nnotes.dll (file missing)
O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Setup\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Setup\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Setup\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Acronis OS Selector Reinstall Service (AcronisOSSReinstallSvc) - Unknown owner - C:\Program Files\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe (file missing)
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

--
End of file - 5225 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Setup\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2009-08-04 1586472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-04-02 279664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll [2010-04-02 812528]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-03-09 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{75A0D830-27F2-416B-82F7-CB67D0F0611B} - Internet Research Scout - C:\PROGRA~1\INTERN~2\nnotes.dll []
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-04-02 279664]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-18 1008184]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-02-17 6793760]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-03-09 2769336]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-18 125952]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-18 202240]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-04-02 39408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======List of files/folders created in the last 1 months======

2010-04-06 09:11:49 ----A---- C:\ComboFix.txt
2010-04-06 09:11:10 ----SHD---- C:\$RECYCLE.BIN
2010-04-06 08:51:11 ----D---- C:\ComboFix
2010-04-06 08:50:52 ----A---- C:\Windows\SWXCACLS.exe
2010-04-05 16:01:31 ----A---- C:\Windows\system32\aswBoot.exe
2010-04-05 16:01:25 ----D---- C:\ProgramData\Alwil Software
2010-04-05 14:44:52 ----D---- C:\Program Files\ESET
2010-04-05 14:25:06 ----D---- C:\Users\Uživatel\AppData\Roaming\Malwarebytes
2010-04-05 14:24:59 ----D---- C:\ProgramData\Malwarebytes
2010-04-04 21:25:53 ----D---- C:\Windows\temp
2010-04-04 21:04:46 ----A---- C:\Windows\zip.exe
2010-04-04 21:04:46 ----A---- C:\Windows\SWSC.exe
2010-04-04 21:04:46 ----A---- C:\Windows\SWREG.exe
2010-04-04 21:04:46 ----A---- C:\Windows\sed.exe
2010-04-04 21:04:46 ----A---- C:\Windows\PEV.exe
2010-04-04 21:04:46 ----A---- C:\Windows\NIRCMD.exe
2010-04-04 21:04:46 ----A---- C:\Windows\MBR.exe
2010-04-04 21:04:46 ----A---- C:\Windows\grep.exe
2010-04-04 21:04:40 ----D---- C:\Windows\ERDNT
2010-04-04 20:54:17 ----D---- C:\Qoobox
2010-04-04 19:06:43 ----D---- C:\rsit
2010-04-02 15:06:11 ----D---- C:\Users\Uživatel\AppData\Roaming\Google
2010-04-02 15:05:47 ----D---- C:\ProgramData\Google
2010-04-02 15:05:47 ----D---- C:\Program Files\Google
2010-04-01 13:08:50 ----D---- C:\Program Files\ActiveURLs
2010-04-01 10:19:56 ----D---- C:\Program Files\Internet Research Scout
2010-03-31 20:22:36 ----SHD---- C:\Windows\ftpcache
2010-03-31 19:45:00 ----D---- C:\Users\Uživatel\AppData\Roaming\5D bookmarks
2010-03-31 19:43:23 ----D---- C:\Windows\Downloaded Installations
2010-03-31 10:00:11 ----A---- C:\Windows\system32\mshtml.dll
2010-03-31 10:00:07 ----A---- C:\Windows\system32\wininet.dll
2010-03-31 10:00:05 ----A---- C:\Windows\system32\urlmon.dll
2010-03-31 10:00:00 ----A---- C:\Windows\system32\ieframe.dll
2010-03-31 09:59:48 ----A---- C:\Windows\system32\ieui.dll
2010-03-31 09:59:47 ----A---- C:\Windows\system32\mshtmled.dll
2010-03-31 09:59:38 ----A---- C:\Windows\system32\iepeers.dll
2010-03-31 09:59:35 ----A---- C:\Windows\system32\ieencode.dll
2010-03-31 09:59:28 ----A---- C:\Windows\system32\ieapfltr.dll
2010-03-30 22:52:14 ----D---- C:\ProgramData\Sun
2010-03-30 22:47:43 ----A---- C:\Windows\system32\javaws.exe
2010-03-30 22:47:42 ----A---- C:\Windows\system32\javaw.exe
2010-03-30 22:47:42 ----A---- C:\Windows\system32\java.exe
2010-03-10 18:34:55 ----A---- C:\Windows\system32\nshhttp.dll
2010-03-10 18:34:49 ----A---- C:\Windows\system32\httpapi.dll
2010-03-07 00:39:28 ----D---- C:\Program Files\Mozilla Firefox
2010-03-07 00:20:13 ----A---- C:\Windows\system32\browserchoice.exe

======List of files/folders modified in the last 1 months======

2010-04-06 16:03:26 ----D---- C:\Program Files\trend micro
2010-04-06 15:59:47 ----D---- C:\Windows\Prefetch
2010-04-06 10:53:04 ----D---- C:\Users\Uživatel\AppData\Roaming\vlc
2010-04-06 09:13:00 ----D---- C:\Windows\System32
2010-04-06 09:13:00 ----D---- C:\Windows\inf
2010-04-06 09:13:00 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-04-06 09:11:51 ----D---- C:\Windows\system32\drivers
2010-04-06 09:06:17 ----D---- C:\Windows
2010-04-06 09:06:17 ----A---- C:\Windows\system.ini
2010-04-06 09:03:44 ----D---- C:\Windows\Tasks
2010-04-06 09:00:46 ----D---- C:\Windows\AppPatch
2010-04-06 09:00:44 ----D---- C:\Program Files\Common Files
2010-04-06 08:53:16 ----SHD---- C:\System Volume Information
2010-04-05 17:40:30 ----A---- C:\Windows\ntbtlog.txt
2010-04-05 16:02:02 ----SHD---- C:\Windows\Installer
2010-04-05 16:02:02 ----D---- C:\Windows\winsxs
2010-04-05 16:02:02 ----D---- C:\Config.Msi
2010-04-05 16:01:25 ----D---- C:\ProgramData
2010-04-05 16:01:25 ----D---- C:\Program Files\Alwil Software
2010-04-05 15:58:04 ----RD---- C:\Setup
2010-04-05 15:50:45 ----D---- C:\Windows\system32\catroot
2010-04-05 14:44:52 ----RD---- C:\Program Files
2010-04-05 12:56:21 ----D---- C:\Windows\system32\catroot2
2010-04-04 22:46:16 ----D---- C:\Users\Uživatel\AppData\Roaming\ESET
2010-04-04 21:16:13 ----D---- C:\Windows\system32\config
2010-04-04 19:35:08 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-04-04 17:22:30 ----D---- C:\Windows\system32\Tasks
2010-04-01 21:17:17 ----D---- C:\Users\Uživatel\AppData\Roaming\Mozilla
2010-04-01 13:44:04 ----SD---- C:\Users\Uživatel\AppData\Roaming\Microsoft
2010-04-01 07:41:47 ----D---- C:\Windows\system32\WDI
2010-03-30 22:52:12 ----D---- C:\Program Files\Common Files\Java
2010-03-30 22:47:41 ----D---- C:\Program Files\Java
2010-03-28 00:30:02 ----D---- C:\Users\Uživatel\AppData\Roaming\dvdcss
2010-03-26 14:31:46 ----D---- C:\Users\Uživatel\AppData\Roaming\ZoomBrowser EX
2010-03-26 14:31:35 ----D---- C:\Users\Uživatel\AppData\Roaming\CameraWindowDC
2010-03-24 22:50:19 ----D---- C:\Users\Uživatel\AppData\Roaming\Skype
2010-03-24 22:02:56 ----D---- C:\Users\Uživatel\AppData\Roaming\skypePM
2010-03-10 19:33:08 ----D---- C:\Program Files\Windows Mail
2010-03-10 19:33:08 ----D---- C:\Program Files\Movie Maker
2010-03-09 04:28:20 ----A---- C:\Windows\system32\deploytk.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2010-03-09 23376]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2010-03-09 162640]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2010-03-09 46672]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2009-05-14 107256]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2010-03-09 19024]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2010-03-09 51792]
R2 eamon;eamon; C:\Windows\system32\DRIVERS\eamon.sys [2009-05-14 114472]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2009-05-14 133000]
R2 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2009-05-14 38240]
R3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-02-17 2323488]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2010-01-12 11586280]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2009-03-17 140288]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-18 5632]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 mbr;mbr; \??\C:\Users\UIVATE~1\AppData\Local\Temp\mbr.sys []
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-18 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-18 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-18 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-18 6016]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-18 83328]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-03-09 40384]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-01-11 129640]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-03-09 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-03-09 40384]
S2 AcronisOSSReinstallSvc;Acronis OS Selector Reinstall Service; C:\Program Files\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe []
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-02 135664]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-18 21504]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-04-02 182768]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe []

-----------------EOF-----------------

Re: Prosím o kontrolu logu

Napsal: 07 dub 2010 09:39
od bača
jak prosím dopadla ta poslední kontrola logu?
je PC v pořádku?dík

Re: Prosím o kontrolu logu

Napsal: 09 dub 2010 10:39
od Unlimited_Killer
Omlouvám se za prodlevu. :oops:

1) Fixnutí v HJT
  • Spusťte přejmenované HijackThis - C:\Program Files\Trend Micro\HijackThis\jmeno_uzivatele.exe
  • Následně klikněte na 'Do a system scan only'.
  • U níže uvedených položek udělejte fajfku do čtverečku a poté klikněte na 'Fix Checked'.

    Kód: Vybrat vše

    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Setup\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O3 - Toolbar: Internet Research Scout - {75A0D830-27F2-416B-82F7-CB67D0F0611B} - C:\PROGRA~1\INTERN~2\nnotes.dll (file missing)
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O9 - Extra button: Internet Research Scout - {46C446D1-0C35-485E-AF7C-ED4E39907C0D} - C:\PROGRA~1\INTERN~2\nnotes.dll (file missing)
O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Setup\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Setup\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Setup\Toolbars\Internet Explorer\SkypeIEPlugin.dll
  • Pokud by tam nějaká položka nebyla, vynechte ji.
2) Reg soubor
  • Spusťte Poznámkový blok [Start → Spustit → notepad → Enter].
  • Do něj vkopírujte následující text:

    Kód: Vybrat vše

    Windows Registry Editor Version 5.00 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=-
  • Uložte tento soubor například na Plochu jako oprava.reg (vizte obrázek).
    Obrázek
  • Dvojklikem tento soubor spusťte.
  • Restartujte PC a po restartu tento soubor smažte.
3) Odinstalace ComboFixu
  • Proklikejte se přes Start do Spustit [klávesová zkratka je Win+R].
  • Do textového pole napište:

    Kód: Vybrat vše

    ComboFix /Uninstall
  • Stiskněte Enter.
  • Spustí se odinstalace ComboFixu, která smaže všechny jeho součásti.
4) OTCleaner
  • Stáhněte OTC a dvojklikem ho spusťte.
  • Vyskočí okénko, kde kliknete na 'CleanUp!'.
  • Potvrdíte kliknutím na 'Yes'.
  • Poté se ještě zeptá, zda chcete restartovat PC - to proveďte opět kliknutím na 'Yes'.
5) CCleaner
  • Stáhněte si program jménem CCleaner.
  • Normálně nainstalujte, jen dávejte pozor a odškrtněte položku 'Instalovat Yahoo! Toolbar'.
  • Spusťte ho.
    • Záložka Čistič → nechte zatrženo vše, jak je, a klikněte na 'Spustit CCleaner'.
    • Záložka Registry → klikněte na 'Hledej problémy'. Vyhledá problémy v registru, až dokončí analyzování, klikněte na 'Opravit vybrané problémy'. Nabídne Vám vytvoření zálohy - pro jistotu ji vytvořte a uložte například na Plochu.
  • CCleaner doporučuji používat pravidelně, celkem rapidně dokáže zrychlit PC.
6) Defragmentace
  • Defragmentujte disk.
  • Lze to udělat několika způsoby ↓
    • Přes defragmentaci integrovanou ve Windows [Start → Spustit → dfrg.msc → Enter]. Toto není příliš účinný způsob.
    • Přes jednoduchý a přehledný program jménem Defraggler.
    • Přes geniální program, který se nemusí instalovat a je hodně jednoduchý - JKDefrag.
7) FileHippo.com UpdateChecker
  • Abyste měl/a přehled o aktualizacích, doporučuji stáhnout program FileHippo.com UpdateChecker.
    • Běžně ho nainstalujte.
    • Spouštějte ho například jednou až dvakrát týdně.
    • Přehledně zobrazí všechny programy, které jsou neaktualizované, nabídne stažení novější verze (což doporučuji).
    • Dávejte si pozor,co dané aplikace instalují 's sebou' → například zbytečné toolbary (lišty).
      • Proto se nevyplatí bezmyšlenkovitě klikat na 'Next', popřípadě 'Další'.
8) Nový RSIT log

Re: Prosím o kontrolu logu

Napsal: 09 dub 2010 12:54
od bača
Ahoj omlouvám se,ale v domnění,že je vše s Pc ok jsem používané programy včera odinstaloval
a teď po upozornění,že je zde nový příspěvek následně opět nainstaloval
tak doufám,že to nebude v opravě Pc vadit.
Problém je ale v tom,že bod 1) nesvedu,protože jsem to ještě nikdy nedělal.
Večer příjde kamarád,který to sem vše vloží jak to má být.
dík za trpělivost

Re: Prosím o kontrolu logu

Napsal: 09 dub 2010 14:38
od Unlimited_Killer
0K.

Re: Prosím o kontrolu logu

Napsal: 09 dub 2010 17:35
od bača
Logfile of random's system information tool 1.06 (written by random/random)
Run by Uživatel at 2010-04-09 18:25:42
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 74 GB (61%) free of 121 GB
Total RAM: 3326 MB (71% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:25:47, on 9.4.2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v7.00 (7.00.6002.18005)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Smart Security\egui.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Uživatel\Desktop\RSIT.exe
C:\Program Files\trend micro\Uživatel.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {75A0D830-27F2-416B-82F7-CB67D0F0611B} - (no file)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\Smart Security\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O8 - Extra context menu item: Add Link in LinkyCat... - res://C:\Program Files\LinkyCat\gale.dll/gale.dll.htm
O8 - Extra context menu item: Save with Internet Research Scout - C:\Program Files\Internet Research Scout\nnotes.html
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
O9 - Extra button: Internet Research Scout - {46C446D1-0C35-485E-AF7C-ED4E39907C0D} - (no file)
O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - (no file)
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - (no file)
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - (no file)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Acronis OS Selector Reinstall Service (AcronisOSSReinstallSvc) - Unknown owner - C:\Program Files\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\Smart Security\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

--
End of file - 4548 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-04-02 279664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll [2010-04-02 812528]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-03-09 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{75A0D830-27F2-416B-82F7-CB67D0F0611B}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-04-02 279664]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-18 1008184]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-02-17 6793760]
"egui"=C:\Program Files\Smart Security\egui.exe [2009-05-14 2029640]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-18 125952]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-18 202240]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======List of files/folders created in the last 1 months======

2010-04-09 18:25:42 ----D---- C:\rsit
2010-04-09 18:17:12 ----D---- C:\Program Files\CCleaner
2010-04-09 17:45:41 ----D---- C:\Program Files\trend micro
2010-04-06 19:52:22 ----D---- C:\Program Files\Smart Security
2010-04-06 09:11:10 ----SHD---- C:\$RECYCLE.BIN
2010-04-05 16:01:25 ----D---- C:\ProgramData\Alwil Software
2010-04-05 14:44:52 ----D---- C:\Program Files\ESET
2010-04-05 14:25:06 ----D---- C:\Users\Uživatel\AppData\Roaming\Malwarebytes
2010-04-05 14:24:59 ----D---- C:\ProgramData\Malwarebytes
2010-04-04 21:25:53 ----D---- C:\Windows\temp
2010-04-04 21:04:40 ----D---- C:\Windows\ERDNT
2010-04-02 15:06:11 ----D---- C:\Users\Uživatel\AppData\Roaming\Google
2010-04-02 15:05:47 ----D---- C:\ProgramData\Google
2010-04-02 15:05:47 ----D---- C:\Program Files\Google
2010-04-01 13:08:50 ----D---- C:\Program Files\ActiveURLs
2010-04-01 10:19:56 ----D---- C:\Program Files\Internet Research Scout
2010-03-31 20:22:36 ----SHD---- C:\Windows\ftpcache
2010-03-31 19:45:00 ----D---- C:\Users\Uživatel\AppData\Roaming\5D bookmarks
2010-03-31 19:43:23 ----D---- C:\Windows\Downloaded Installations
2010-03-31 10:00:11 ----A---- C:\Windows\system32\mshtml.dll
2010-03-31 10:00:07 ----A---- C:\Windows\system32\wininet.dll
2010-03-31 10:00:05 ----A---- C:\Windows\system32\urlmon.dll
2010-03-31 10:00:00 ----A---- C:\Windows\system32\ieframe.dll
2010-03-31 09:59:48 ----A---- C:\Windows\system32\ieui.dll
2010-03-31 09:59:47 ----A---- C:\Windows\system32\mshtmled.dll
2010-03-31 09:59:38 ----A---- C:\Windows\system32\iepeers.dll
2010-03-31 09:59:35 ----A---- C:\Windows\system32\ieencode.dll
2010-03-31 09:59:28 ----A---- C:\Windows\system32\ieapfltr.dll
2010-03-30 22:52:14 ----D---- C:\ProgramData\Sun
2010-03-30 22:47:43 ----A---- C:\Windows\system32\javaws.exe
2010-03-30 22:47:42 ----A---- C:\Windows\system32\javaw.exe
2010-03-30 22:47:42 ----A---- C:\Windows\system32\java.exe
2010-03-10 18:34:55 ----A---- C:\Windows\system32\nshhttp.dll
2010-03-10 18:34:49 ----A---- C:\Windows\system32\httpapi.dll

======List of files/folders modified in the last 1 months======

2010-04-09 18:18:36 ----D---- C:\Windows\System32
2010-04-09 18:18:35 ----D---- C:\Windows\inf
2010-04-09 18:18:35 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-04-09 18:17:30 ----D---- C:\Windows\Prefetch
2010-04-09 18:17:12 ----RD---- C:\Program Files
2010-04-09 18:07:26 ----D---- C:\rsit-log
2010-04-09 16:17:53 ----D---- C:\Program Files\rajce
2010-04-09 14:30:54 ----SHD---- C:\System Volume Information
2010-04-09 01:20:47 ----D---- C:\Users\Uživatel\AppData\Roaming\Skype
2010-04-09 00:00:56 ----D---- C:\Users\Uživatel\AppData\Roaming\skypePM
2010-04-08 14:12:31 ----D---- C:\Users\Uživatel\AppData\Roaming\ZoomBrowser EX
2010-04-08 14:07:40 ----D---- C:\Program Files\Canon
2010-04-08 13:53:19 ----D---- C:\Windows
2010-04-07 22:26:39 ----RD---- C:\Setup
2010-04-07 10:51:43 ----D---- C:\Program Files\bacajirka
2010-04-06 23:31:24 ----D---- C:\Users\Uživatel\AppData\Roaming\Mozilla
2010-04-06 23:30:51 ----D---- C:\Program Files\Mozilla Firefox
2010-04-06 20:07:45 ----D---- C:\Config.Msi
2010-04-06 20:06:16 ----A---- C:\Windows\WINCMD.INI
2010-04-06 20:03:40 ----SHD---- C:\Windows\Installer
2010-04-06 19:56:14 ----D---- C:\Users\Uživatel\AppData\Roaming\ESET
2010-04-06 19:56:00 ----D---- C:\Windows\system32\drivers
2010-04-06 10:53:04 ----D---- C:\Users\Uživatel\AppData\Roaming\vlc
2010-04-06 09:06:17 ----A---- C:\Windows\system.ini
2010-04-06 09:03:44 ----D---- C:\Windows\Tasks
2010-04-06 09:00:46 ----D---- C:\Windows\AppPatch
2010-04-06 09:00:44 ----D---- C:\Program Files\Common Files
2010-04-05 17:40:30 ----A---- C:\Windows\ntbtlog.txt
2010-04-05 16:02:02 ----D---- C:\Windows\winsxs
2010-04-05 16:01:25 ----D---- C:\ProgramData
2010-04-05 16:01:25 ----D---- C:\Program Files\Alwil Software
2010-04-05 15:50:45 ----D---- C:\Windows\system32\catroot
2010-04-05 12:56:21 ----D---- C:\Windows\system32\catroot2
2010-04-04 21:16:13 ----D---- C:\Windows\system32\config
2010-04-04 19:35:08 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-04-04 17:22:30 ----D---- C:\Windows\system32\Tasks
2010-04-01 13:44:04 ----SD---- C:\Users\Uživatel\AppData\Roaming\Microsoft
2010-04-01 07:41:47 ----D---- C:\Windows\system32\WDI
2010-03-30 22:52:12 ----D---- C:\Program Files\Common Files\Java
2010-03-30 22:47:41 ----D---- C:\Program Files\Java
2010-03-28 00:30:02 ----D---- C:\Users\Uživatel\AppData\Roaming\dvdcss
2010-03-26 14:31:35 ----D---- C:\Users\Uživatel\AppData\Roaming\CameraWindowDC
2010-03-10 19:33:08 ----D---- C:\Program Files\Windows Mail
2010-03-10 19:33:08 ----D---- C:\Program Files\Movie Maker

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2009-05-14 107256]
R2 eamon;eamon; C:\Windows\system32\DRIVERS\eamon.sys [2009-05-14 114472]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2009-05-14 133000]
R2 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2009-05-14 38240]
R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2009-05-14 33096]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-02-17 2323488]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2010-01-12 11586280]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2009-03-17 140288]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-18 5632]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-18 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-18 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-18 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-18 6016]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-18 83328]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ekrn;ESET Service; C:\Program Files\Smart Security\ekrn.exe [2009-05-14 731840]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-01-11 129640]
S2 AcronisOSSReinstallSvc;Acronis OS Selector Reinstall Service; C:\Program Files\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe []
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-02 135664]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\Smart Security\EHttpSrv.exe [2009-05-14 20680]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-18 21504]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-04-02 182768]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe []

-----------------EOF-----------------

Re: Prosím o kontrolu logu

Napsal: 11 dub 2010 01:04
od Unlimited_Killer
Dokončíme. ↓

1) Fixnutí v HJT
  • Spusťte přejmenované HijackThis - C:\Program Files\Trend Micro\HijackThis\jmeno_uzivatele.exe
  • Následně klikněte na 'Do a system scan only'.
  • U níže uvedených položek udělejte fajfku do čtverečku a poté klikněte na 'Fix Checked'.

    Kód: Vybrat vše

    O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - (no file)
O3 - Toolbar: (no name) - {75A0D830-27F2-416B-82F7-CB67D0F0611B} - (no file)
O9 - Extra button: Internet Research Scout - {46C446D1-0C35-485E-AF7C-ED4E39907C0D} - (no file)
O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - (no file)
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - (no file)
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - (no file)
  • Pokud by tam nějaká položka nebyla, vynechte ji.
2) Toť vše, jak se chová PC?

Re: Prosím o kontrolu logu

Napsal: 11 dub 2010 11:55
od bača
Pc jede dobře,děkuji moc

Re: Prosím o kontrolu logu

Napsal: 11 dub 2010 13:29
od Unlimited_Killer
Super, není zač, děkuji za spolupráci a na shledanou! :thumbsup: :bye: :closed:
Všechny časy jsou v UTC+01:00
Stránka 2 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz