VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Divná mechanika

https://forum.viry.cz:443/viewtopic.php?t=110584

Stránka 1 z 2

Divná mechanika

Napsal: 27 bře 2011 16:08
od Tomik6566
Dobrý den,
Prosím o pomoc s menším problémem, minulý týden jsem si myslel že mam své pc v pořádku ale asi ne.
Dnes ráno kliknu na Tento počítač a zmizela mi mechanika cd, (místo toho tam mám uplně jinou mechaniku kterou neznám) a moje dvd mechanika nenačítá ani cd,dvd.
Zde je log Rsit.
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:09:43, on 27.3.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Tomáš.TOM-C03959D6696\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Tomáš.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = socks=
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files\CentrumczToolbar\IEToolbar.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files\CentrumczToolbar\IEToolbar.dll
O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O3 - Toolbar: Centrum.cz Toolbar - {D5D47440-0750-463D-BAEF-A47D02414806} - C:\Program Files\CentrumczToolbar\IEToolbar.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: QIP 2005 - {1EF681F7-A04B-4D6D-9012-A307CCA55610} - C:\Program Files\QIP\qip.exe (file missing) (HKCU)
O18 - Protocol: centrumcztoolbar - {61A97628-7C82-4315-957A-C74C2CDD85DF} - C:\Program Files\CentrumczToolbar\IEToolbar.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

--
End of file - 4643 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A}]
CentrumczToolbar BHO - C:\Program Files\CentrumczToolbar\IEToolbar.dll [2010-02-12 1274160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{68F9551E-0411-48E4-9AAF-4BC42A6A46BE}]
EWPBrowseObject Class - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll [2006-04-18 34304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2011-02-23 814160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D5D47440-0750-463D-BAEF-A47D02414806} - Centrum.cz Toolbar - C:\Program Files\CentrumczToolbar\IEToolbar.dll [2010-02-12 1274160]
{327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2006-04-18 552960]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2011-02-23 814160]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ATICCC"=C:\Program Files\ATI Technologies\ATI.ACE\cli.exe [2005-08-06 61440]
"OpwareSE4"=C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe [2006-03-21 69632]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2011-02-23 3451496]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-01-31 35760]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2005-08-04 46080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutorun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe"="C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2011-03-24 09:19:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2524375$
2011-03-16 13:14:17 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2011-03-09 23:33:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
2011-03-09 23:30:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$

======List of files/folders modified in the last 1 months======

2011-03-27 17:09:35 ----D---- C:\Program Files\trend micro
2011-03-27 17:02:40 ----HD---- C:\WINDOWS\inf
2011-03-27 17:02:39 ----D---- C:\WINDOWS
2011-03-27 17:02:24 ----D---- C:\WINDOWS\temp
2011-03-27 17:02:23 ----D---- C:\WINDOWS\system32\CatRoot2
2011-03-27 16:45:41 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-03-27 13:08:10 ----D---- C:\WINDOWS\system32
2011-03-27 13:08:10 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-03-24 23:13:13 ----SHD---- C:\WINDOWS\Installer
2011-03-24 23:13:12 ----D---- C:\Config.Msi
2011-03-24 18:19:36 ----D---- C:\Program Files\Mozilla Firefox
2011-03-24 09:17:11 ----HD---- C:\WINDOWS\$hf_mig$
2011-03-23 23:24:22 ----RD---- C:\Program Files
2011-03-23 23:24:20 ----D---- C:\WINDOWS\system32\drivers
2011-03-16 13:14:21 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-03-13 20:40:03 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Bluetooth
2011-03-10 15:41:27 ----D---- C:\WINDOWS\Debug
2011-03-09 23:30:23 ----A---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 agp440;Filtr Intel sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-13 42368]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2006-03-26 51200]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2006-03-13 6656]
R0 sfsync04;StarForce Protection Synchronization Driver (version 4.x); C:\WINDOWS\System32\drivers\sfsync04.sys [2006-03-24 50176]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-04-07 691696]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-02-23 30680]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-02-23 25432]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2011-02-23 371544]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-02-23 301528]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-02-23 49240]
R1 InCDPass;InCDPass; C:\WINDOWS\System32\DRIVERS\InCDPass.sys [2004-09-07 28544]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-02-23 19544]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-02-23 102232]
R2 irda;Protokol IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-08-04 1273344]
R3 cmuda;C-Media WDM Audio Interface; C:\WINDOWS\system32\drivers\cmuda.sys [2003-11-06 755392]
R3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-12-05 10368]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R4 InCDfs;InCD File System; C:\WINDOWS\system32\drivers\InCDfs.sys [2004-09-07 91136]
S0 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\System32\Drivers\vbtenum.sys []
S0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys []
S3 ahxw7t0d;ahxw7t0d; C:\WINDOWS\system32\drivers\ahxw7t0d.sys []
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys []
S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys []
S3 catchme;catchme; \??\C:\DOCUME~1\TOM~1.TOM\LOCALS~1\Temp\catchme.sys []
S3 CFcatchme;CFcatchme; \??\C:\DOCUME~1\TOM~1.TOM\LOCALS~1\Temp\CFcatchme.sys []
S3 pcouffin;Low level access layer for CD devices; C:\WINDOWS\System32\Drivers\pcouffin.sys []
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2001-10-25 5888]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-08-04 380928]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-02-23 42184]
R2 Irmon;Sledování infračerveného přenosu; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2005-08-05 516096]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 InCDsrv;InCD Helper; C:\Program Files\Ahead\InCD\InCDsrv.exe [2004-09-07 1151090]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

Re: Divná mechanika

Napsal: 27 bře 2011 16:19
od Tomik6566
Přikladám ještě log z MBAM.
Typ kontroly: Rychlý test
Testované objekty: 186336
Uplynulý čas: 6 minut, 47 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

Re: Divná mechanika

Napsal: 27 bře 2011 16:56
od Rudy
Mechanika, která se vám nyní zobrazuje, bude patrně emulovaná pomocí DaemonTools. Restartujte PC, vstupte do biosu a přesvědčte se, zda ji bios vidí.

Re: Divná mechanika

Napsal: 27 bře 2011 17:18
od Tomik6566
Ano , vidí ji , ale mechanika vůbec nereaguje.

Re: Divná mechanika

Napsal: 27 bře 2011 17:39
od Rudy
Zkuste v ovl. panelech přidat nový hardware. Pokud nebude nový hw nalezen, zkuste obnovu systému k datu, kdy byla ještě mechanika pro windows viditelná.

Re: Divná mechanika

Napsal: 27 bře 2011 17:44
od Tomik6566
Taky jsem zkoušel , ale vůbec nic ukazuje mi to dvě mechaniky které neznám, obnovu jsem zkoušel a nepomohlo to.

Re: Divná mechanika

Napsal: 27 bře 2011 17:49
od Rudy
Odinstalujte DaemonTools a zkuste znovu načíst.

Re: Divná mechanika

Napsal: 27 bře 2011 19:09
od Tomik6566
NIc, vůbec nefunguje.

Re: Divná mechanika

Napsal: 27 bře 2011 19:39
od Rudy
Zkuste opravu pomocí XPManageru: http://www.viry.cz/forum/viewtopic.php?f=46&t=17549 .

Re: Divná mechanika

Napsal: 27 bře 2011 20:24
od Tomik6566
Ted mi odešla i druhá mechanika , myslíte že to může být vir???
Posílam combofix log



((((((((((((((((((((((((( Soubory vytvořené od 2011-02-27 do 2011-03-27 )))))))))))))))))))))))))))))))
.
.
2011-03-27 19:02 . 2011-03-27 19:01 390144 ----a-w- c:\windows\system32\CF21750.exe
2011-03-27 18:23 . 2011-03-27 18:23 218688 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-03-27 18:22 . 2011-03-27 18:23 -------- d-----w- c:\program files\DAEMON Tools Lite
2011-03-24 16:19 . 2011-03-18 17:55 142296 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll
2011-03-24 16:19 . 2011-03-18 17:55 781272 ----a-w- c:\program files\Mozilla Firefox\mozsqlite3.dll
2011-03-24 16:19 . 2011-03-18 17:55 728024 ----a-w- c:\program files\Mozilla Firefox\libGLESv2.dll
2011-03-24 16:19 . 2011-03-18 17:55 1893336 ----a-w- c:\program files\Mozilla Firefox\d3dx9_42.dll
2011-03-24 16:19 . 2011-03-18 17:55 1874904 ----a-w- c:\program files\Mozilla Firefox\mozjs.dll
2011-03-24 16:19 . 2011-03-18 17:55 15832 ----a-w- c:\program files\Mozilla Firefox\mozalloc.dll
2011-03-24 16:19 . 2011-03-18 17:55 142296 ----a-w- c:\program files\Mozilla Firefox\libEGL.dll
2011-03-24 16:19 . 2011-03-18 17:55 1975768 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_42.dll
2011-03-12 11:28 . 2011-03-12 11:28 103864 ----a-w- c:\program files\Mozilla Firefox\plugins\nppdf32.dll
2011-03-12 11:28 . 2011-03-12 11:28 103864 ----a-w- c:\program files\Internet Explorer\PLUGINS\nppdf32.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-02-23 15:04 . 2010-10-13 11:22 40648 ----a-w- c:\windows\avastSS.scr
2011-02-23 15:04 . 2010-10-13 11:22 190016 ----a-w- c:\windows\system32\aswBoot.exe
2011-02-23 14:56 . 2011-02-25 16:53 371544 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-02-23 14:56 . 2010-10-13 11:22 301528 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-02-23 14:55 . 2010-10-13 11:22 49240 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-02-23 14:55 . 2010-10-13 11:22 102232 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-02-23 14:55 . 2010-10-13 11:22 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-02-23 14:55 . 2010-10-13 11:22 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-02-23 14:54 . 2010-10-13 11:22 30680 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-02-23 14:54 . 2010-10-13 11:22 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-02-09 13:53 . 2004-08-17 14:49 270848 ----a-w- c:\windows\system32\sbe.dll
2011-02-09 13:53 . 2004-08-17 14:49 186880 ----a-w- c:\windows\system32\encdec.dll
2011-02-02 07:58 . 2010-04-02 15:21 2067456 ----a-w- c:\windows\system32\mstscax.dll
2011-01-27 11:57 . 2010-04-02 15:21 677888 ----a-w- c:\windows\system32\mstsc.exe
2011-01-21 14:44 . 2004-08-17 14:49 440320 ----a-w- c:\windows\system32\shimgvw.dll
2011-01-07 14:09 . 2004-08-17 14:48 290048 ----a-w- c:\windows\system32\atmfd.dll
2010-12-31 14:04 . 2004-08-17 14:44 1854976 ----a-w- c:\windows\system32\win32k.sys
2004-03-11 11:27 . 2010-02-20 10:03 40960 ----a-w- c:\program files\Uninstall_CDS.exe
2011-03-18 17:55 . 2011-03-24 16:19 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-02-03_09.36.27 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-12-11 10:14 . 2010-07-05 13:13 18296 c:\windows\system32\spmsg.dll
- 2010-12-11 10:14 . 2010-02-22 14:20 18296 c:\windows\system32\spmsg.dll
- 2001-10-25 11:00 . 2010-12-13 19:33 71196 c:\windows\system32\perfc009.dat
+ 2001-10-25 11:00 . 2011-03-27 19:03 71196 c:\windows\system32\perfc009.dat
- 2001-10-25 11:00 . 2010-12-13 19:33 83532 c:\windows\system32\perfc005.dat
+ 2001-10-25 11:00 . 2011-03-27 19:03 83532 c:\windows\system32\perfc005.dat
+ 2004-08-17 14:49 . 2010-12-20 23:52 66560 c:\windows\system32\mshtmled.dll
- 2004-08-17 14:49 . 2010-11-06 00:23 66560 c:\windows\system32\mshtmled.dll
+ 2009-03-08 02:31 . 2010-12-20 23:52 55296 c:\windows\system32\msfeedsbs.dll
- 2009-03-08 02:31 . 2010-11-06 00:23 55296 c:\windows\system32\msfeedsbs.dll
+ 2004-08-17 14:49 . 2010-12-20 23:52 43520 c:\windows\system32\licmgr10.dll
- 2004-08-17 14:49 . 2010-11-06 00:23 43520 c:\windows\system32\licmgr10.dll
+ 2004-08-17 14:49 . 2010-12-20 23:52 25600 c:\windows\system32\jsproxy.dll
- 2004-08-17 14:49 . 2010-11-06 00:23 25600 c:\windows\system32\jsproxy.dll
- 2010-04-04 16:29 . 2010-11-06 00:23 12800 c:\windows\system32\dllcache\xpshims.dll
+ 2010-04-04 16:29 . 2010-12-20 23:52 12800 c:\windows\system32\dllcache\xpshims.dll
+ 2004-08-17 14:49 . 2010-12-20 23:52 66560 c:\windows\system32\dllcache\mshtmled.dll
- 2004-08-17 14:49 . 2010-11-06 00:23 66560 c:\windows\system32\dllcache\mshtmled.dll
- 2010-04-04 16:29 . 2010-11-06 00:23 55296 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2010-04-04 16:29 . 2010-12-20 23:52 55296 c:\windows\system32\dllcache\msfeedsbs.dll
- 2004-08-17 14:49 . 2010-11-06 00:23 43520 c:\windows\system32\dllcache\licmgr10.dll
+ 2004-08-17 14:49 . 2010-12-20 23:52 43520 c:\windows\system32\dllcache\licmgr10.dll
- 2004-08-17 14:49 . 2010-11-06 00:23 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2004-08-17 14:49 . 2010-12-20 23:52 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2009-12-14 07:10 . 2010-12-09 14:30 33280 c:\windows\system32\dllcache\csrsrv.dll
- 2009-12-14 07:10 . 2009-12-14 07:10 33280 c:\windows\system32\dllcache\csrsrv.dll
- 2004-08-17 14:49 . 2009-12-14 07:10 33280 c:\windows\system32\csrsrv.dll
+ 2004-08-17 14:49 . 2010-12-09 14:30 33280 c:\windows\system32\csrsrv.dll
+ 2010-09-23 02:47 . 2010-09-23 02:47 35760 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\reader_sl.exe
+ 2010-09-23 01:03 . 2010-09-23 01:03 99776 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\eula.exe
+ 2010-09-23 00:52 . 2010-09-23 00:52 27048 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\acrotextextractor.exe
+ 2010-09-22 16:12 . 2010-09-22 16:12 15800 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\AcroRd32Info.exe
+ 2011-02-09 11:47 . 2010-11-06 00:23 12800 c:\windows\ie8updates\KB2482017-IE8\xpshims.dll
+ 2011-02-09 11:47 . 2010-11-06 00:23 66560 c:\windows\ie8updates\KB2482017-IE8\mshtmled.dll
+ 2011-02-09 11:47 . 2010-11-06 00:23 55296 c:\windows\ie8updates\KB2482017-IE8\msfeedsbs.dll
+ 2011-02-09 11:47 . 2010-11-06 00:23 43520 c:\windows\ie8updates\KB2482017-IE8\licmgr10.dll
+ 2011-02-09 11:47 . 2010-11-06 00:23 25600 c:\windows\ie8updates\KB2482017-IE8\jsproxy.dll
+ 2011-02-09 11:46 . 2009-12-14 07:10 33280 c:\windows\$NtUninstallKB2476687$\csrsrv.dll
+ 2011-02-09 11:54 . 2010-07-05 13:13 26488 c:\windows\$hf_mig$\KB2485376\update\spcustom.dll
+ 2011-02-09 11:54 . 2010-07-05 13:13 18296 c:\windows\$hf_mig$\KB2485376\spmsg.dll
+ 2011-02-09 11:53 . 2010-02-22 14:20 26488 c:\windows\$hf_mig$\KB2483185\update\spcustom.dll
+ 2011-02-09 11:53 . 2010-02-22 14:20 18296 c:\windows\$hf_mig$\KB2483185\spmsg.dll
+ 2011-02-09 11:48 . 2010-07-05 13:13 26488 c:\windows\$hf_mig$\KB2482017-IE8\update\spcustom.dll
+ 2011-02-09 11:48 . 2010-07-05 13:13 18296 c:\windows\$hf_mig$\KB2482017-IE8\spmsg.dll
+ 2011-02-09 11:40 . 2010-12-20 23:51 12800 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\xpshims.dll
+ 2011-02-09 11:40 . 2010-12-20 23:51 66560 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\mshtmled.dll
+ 2011-02-09 11:40 . 2010-12-20 23:51 55296 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\msfeedsbs.dll
+ 2011-02-09 11:40 . 2010-12-20 23:51 43520 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\licmgr10.dll
+ 2011-02-09 11:40 . 2010-12-20 23:51 25600 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\jsproxy.dll
+ 2011-02-09 11:54 . 2010-02-22 14:20 26488 c:\windows\$hf_mig$\KB2479628\update\spcustom.dll
+ 2011-02-09 11:54 . 2010-02-22 14:20 18296 c:\windows\$hf_mig$\KB2479628\spmsg.dll
+ 2011-02-09 11:55 . 2010-02-22 14:20 26488 c:\windows\$hf_mig$\KB2478971\update\spcustom.dll
+ 2011-02-09 11:55 . 2010-02-22 14:20 18296 c:\windows\$hf_mig$\KB2478971\spmsg.dll
+ 2011-02-09 11:46 . 2010-07-05 13:13 26488 c:\windows\$hf_mig$\KB2478960\update\spcustom.dll
+ 2011-02-09 11:46 . 2010-07-05 13:13 18296 c:\windows\$hf_mig$\KB2478960\spmsg.dll
+ 2011-02-09 11:46 . 2010-07-05 13:13 26488 c:\windows\$hf_mig$\KB2476687\update\spcustom.dll
+ 2011-02-09 11:46 . 2010-07-05 13:13 18296 c:\windows\$hf_mig$\KB2476687\spmsg.dll
+ 2010-12-09 14:28 . 2010-12-09 14:28 33280 c:\windows\$hf_mig$\KB2476687\SP3QFE\csrsrv.dll
+ 2011-02-09 11:45 . 2010-07-05 13:13 26488 c:\windows\$hf_mig$\KB2393802\update\spcustom.dll
+ 2011-02-09 11:38 . 2010-12-10 05:42 16896 c:\windows\$hf_mig$\KB2393802\update\mpsyschk.dll
+ 2011-02-09 11:45 . 2010-07-05 13:13 18296 c:\windows\$hf_mig$\KB2393802\spmsg.dll
- 2004-08-17 14:49 . 2010-11-06 00:23 916480 c:\windows\system32\wininet.dll
+ 2004-08-17 14:49 . 2010-12-20 23:52 916480 c:\windows\system32\wininet.dll
- 2004-08-17 14:49 . 2008-04-14 03:21 135168 c:\windows\system32\shsvcs.dll
+ 2004-08-17 14:49 . 2009-07-27 23:19 135168 c:\windows\system32\shsvcs.dll
+ 2001-10-25 11:00 . 2011-03-27 19:03 441260 c:\windows\system32\perfh009.dat
- 2001-10-25 11:00 . 2010-12-13 19:33 441260 c:\windows\system32\perfh009.dat
+ 2001-10-25 11:00 . 2011-03-27 19:03 443664 c:\windows\system32\perfh005.dat
- 2001-10-25 11:00 . 2010-12-13 19:33 443664 c:\windows\system32\perfh005.dat
+ 2004-08-17 14:49 . 2010-12-20 23:52 206848 c:\windows\system32\occache.dll
- 2004-08-17 14:49 . 2010-11-06 00:23 206848 c:\windows\system32\occache.dll
+ 2004-08-17 14:48 . 2010-12-09 15:15 713216 c:\windows\system32\ntdll.dll
- 2004-08-17 14:49 . 2010-11-06 00:23 611840 c:\windows\system32\mstime.dll
+ 2004-08-17 14:49 . 2010-12-20 23:52 611840 c:\windows\system32\mstime.dll
+ 2009-03-08 02:32 . 2010-12-20 23:52 602112 c:\windows\system32\msfeeds.dll
- 2009-03-08 02:32 . 2010-11-06 00:23 602112 c:\windows\system32\msfeeds.dll
+ 2011-03-23 12:25 . 2011-03-23 12:25 235168 c:\windows\system32\Macromed\Flash\FlashUtil10o_Plugin.exe
+ 2004-08-17 14:49 . 2010-12-20 17:25 729088 c:\windows\system32\lsasrv.dll
- 2004-08-17 14:49 . 2009-06-25 08:27 729088 c:\windows\system32\lsasrv.dll
- 2004-08-17 14:49 . 2009-06-25 08:27 301568 c:\windows\system32\kerberos.dll
+ 2004-08-17 14:49 . 2010-12-22 12:34 301568 c:\windows\system32\kerberos.dll
+ 2004-08-17 14:49 . 2010-12-20 23:52 184320 c:\windows\system32\iepeers.dll
- 2004-08-17 14:49 . 2010-11-06 00:23 184320 c:\windows\system32\iepeers.dll
+ 2004-08-17 14:49 . 2010-12-20 23:52 387584 c:\windows\system32\iedkcs32.dll
- 2004-08-17 14:49 . 2010-11-06 00:23 387584 c:\windows\system32\iedkcs32.dll
- 2004-08-17 14:49 . 2010-11-03 12:26 173568 c:\windows\system32\ie4uinit.exe
+ 2004-08-17 14:49 . 2010-12-20 12:55 173568 c:\windows\system32\ie4uinit.exe
- 2010-04-02 17:12 . 2010-12-16 18:13 144424 c:\windows\system32\FNTCACHE.DAT
+ 2010-04-02 17:12 . 2011-02-09 11:57 144424 c:\windows\system32\FNTCACHE.DAT
- 2004-08-17 14:49 . 2010-11-06 00:23 916480 c:\windows\system32\dllcache\wininet.dll
+ 2004-08-17 14:49 . 2010-12-20 23:52 916480 c:\windows\system32\dllcache\wininet.dll
+ 2009-07-27 23:19 . 2009-07-27 23:19 135168 c:\windows\system32\dllcache\shsvcs.dll
+ 2011-01-21 14:44 . 2011-01-21 14:44 440320 c:\windows\system32\dllcache\shimgvw.dll
+ 2011-02-09 13:53 . 2011-02-09 13:53 270848 c:\windows\system32\dllcache\sbe.dll
+ 2004-08-17 14:49 . 2010-12-20 23:52 206848 c:\windows\system32\dllcache\occache.dll
- 2004-08-17 14:49 . 2010-11-06 00:23 206848 c:\windows\system32\dllcache\occache.dll
+ 2010-04-02 15:58 . 2010-12-09 15:15 713216 c:\windows\system32\dllcache\ntdll.dll
- 2004-08-17 14:49 . 2010-11-06 00:23 611840 c:\windows\system32\dllcache\mstime.dll
+ 2004-08-17 14:49 . 2010-12-20 23:52 611840 c:\windows\system32\dllcache\mstime.dll
- 2010-04-04 16:29 . 2010-11-06 00:23 602112 c:\windows\system32\dllcache\msfeeds.dll
+ 2010-04-04 16:29 . 2010-12-20 23:52 602112 c:\windows\system32\dllcache\msfeeds.dll
+ 2010-04-02 15:58 . 2010-12-20 17:25 729088 c:\windows\system32\dllcache\lsasrv.dll
- 2010-04-02 15:58 . 2009-06-25 08:27 729088 c:\windows\system32\dllcache\lsasrv.dll
+ 2011-01-27 11:57 . 2011-01-27 11:57 677888 c:\windows\system32\dllcache\lhmstsc.exe
- 2009-06-25 08:27 . 2009-06-25 08:27 301568 c:\windows\system32\dllcache\kerberos.dll
+ 2009-06-25 08:27 . 2010-12-22 12:34 301568 c:\windows\system32\dllcache\kerberos.dll
- 2010-04-04 16:29 . 2010-11-06 00:23 247808 c:\windows\system32\dllcache\ieproxy.dll
+ 2010-04-04 16:29 . 2010-12-20 23:52 247808 c:\windows\system32\dllcache\ieproxy.dll
+ 2004-08-17 14:49 . 2010-12-20 23:52 184320 c:\windows\system32\dllcache\iepeers.dll
- 2004-08-17 14:49 . 2010-11-06 00:23 184320 c:\windows\system32\dllcache\iepeers.dll
+ 2010-06-09 04:38 . 2010-12-20 23:52 743424 c:\windows\system32\dllcache\iedvtool.dll
- 2010-06-09 04:38 . 2010-11-06 00:23 743424 c:\windows\system32\dllcache\iedvtool.dll
+ 2004-08-17 14:49 . 2010-12-20 23:52 387584 c:\windows\system32\dllcache\iedkcs32.dll
- 2004-08-17 14:49 . 2010-11-06 00:23 387584 c:\windows\system32\dllcache\iedkcs32.dll
+ 2004-08-17 14:49 . 2010-12-20 12:55 173568 c:\windows\system32\dllcache\ie4uinit.exe
- 2004-08-17 14:49 . 2010-11-03 12:26 173568 c:\windows\system32\dllcache\ie4uinit.exe
+ 2011-02-09 13:53 . 2011-02-09 13:53 186880 c:\windows\system32\dllcache\encdec.dll
+ 2010-04-20 05:32 . 2011-01-07 14:09 290048 c:\windows\system32\dllcache\atmfd.dll
- 2010-04-20 05:32 . 2010-10-28 13:09 290048 c:\windows\system32\dllcache\atmfd.dll
+ 2010-09-10 16:17 . 2010-09-10 16:17 684032 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\JP2KLib.dll
+ 2010-09-22 18:41 . 2010-09-22 18:41 542168 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\AdobeCollabSync.exe
+ 2010-09-23 02:47 . 2010-09-23 02:47 349616 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\AcroRd32.exe
+ 2010-09-22 16:04 . 2010-09-22 16:04 660912 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\AcroPDF.dll
+ 2010-09-22 17:39 . 2010-09-22 17:39 280024 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\acrobroker.exe
+ 2010-09-22 16:50 . 2010-09-22 16:50 251296 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\a3dutility.exe
+ 2011-02-09 11:47 . 2010-11-06 00:23 916480 c:\windows\ie8updates\KB2482017-IE8\wininet.dll
+ 2011-02-09 11:48 . 2010-07-05 13:13 391032 c:\windows\ie8updates\KB2482017-IE8\spuninst\updspapi.dll
+ 2011-02-09 11:48 . 2010-07-05 13:13 233848 c:\windows\ie8updates\KB2482017-IE8\spuninst\spuninst.exe
+ 2011-02-09 11:47 . 2010-11-06 00:23 206848 c:\windows\ie8updates\KB2482017-IE8\occache.dll
+ 2011-02-09 11:47 . 2010-11-06 00:23 611840 c:\windows\ie8updates\KB2482017-IE8\mstime.dll
+ 2011-02-09 11:47 . 2010-11-06 00:23 602112 c:\windows\ie8updates\KB2482017-IE8\msfeeds.dll
+ 2011-02-09 11:47 . 2010-11-06 00:23 247808 c:\windows\ie8updates\KB2482017-IE8\ieproxy.dll
+ 2011-02-09 11:47 . 2010-11-06 00:23 184320 c:\windows\ie8updates\KB2482017-IE8\iepeers.dll
+ 2011-02-09 11:47 . 2010-11-06 00:23 743424 c:\windows\ie8updates\KB2482017-IE8\iedvtool.dll
+ 2011-02-09 11:47 . 2010-11-06 00:23 387584 c:\windows\ie8updates\KB2482017-IE8\iedkcs32.dll
+ 2011-02-09 11:47 . 2010-11-03 12:26 173568 c:\windows\ie8updates\KB2482017-IE8\ie4uinit.exe
+ 2011-02-09 11:54 . 2010-07-05 13:13 391032 c:\windows\$NtUninstallKB2485376$\spuninst\updspapi.dll
+ 2011-02-09 11:54 . 2010-07-05 13:13 233848 c:\windows\$NtUninstallKB2485376$\spuninst\spuninst.exe
+ 2011-02-09 11:54 . 2010-10-28 13:09 290048 c:\windows\$NtUninstallKB2485376$\atmfd.dll
+ 2011-02-09 11:53 . 2010-02-22 14:21 391032 c:\windows\$NtUninstallKB2483185$\spuninst\updspapi.dll
+ 2011-02-09 11:53 . 2010-02-22 14:20 233848 c:\windows\$NtUninstallKB2483185$\spuninst\spuninst.exe
+ 2011-02-09 11:53 . 2008-04-14 03:21 439296 c:\windows\$NtUninstallKB2483185$\shimgvw.dll
+ 2011-02-09 11:54 . 2010-02-22 14:21 391032 c:\windows\$NtUninstallKB2479628$\spuninst\updspapi.dll
+ 2011-02-09 11:54 . 2010-02-22 14:20 233848 c:\windows\$NtUninstallKB2479628$\spuninst\spuninst.exe
+ 2011-02-09 11:55 . 2010-02-22 14:21 391032 c:\windows\$NtUninstallKB2478971$\spuninst\updspapi.dll
+ 2011-02-09 11:55 . 2010-02-22 14:20 233848 c:\windows\$NtUninstallKB2478971$\spuninst\spuninst.exe
+ 2011-02-09 11:55 . 2009-06-25 08:27 301568 c:\windows\$NtUninstallKB2478971$\kerberos.dll
+ 2011-02-09 11:46 . 2010-07-05 13:13 391032 c:\windows\$NtUninstallKB2478960$\spuninst\updspapi.dll
+ 2011-02-09 11:46 . 2010-07-05 13:13 233848 c:\windows\$NtUninstallKB2478960$\spuninst\spuninst.exe
+ 2011-02-09 11:46 . 2009-06-25 08:27 729088 c:\windows\$NtUninstallKB2478960$\lsasrv.dll
+ 2011-02-09 11:46 . 2010-07-05 13:13 391032 c:\windows\$NtUninstallKB2476687$\spuninst\updspapi.dll
+ 2011-02-09 11:46 . 2010-07-05 13:13 233848 c:\windows\$NtUninstallKB2476687$\spuninst\spuninst.exe
+ 2011-02-09 11:45 . 2010-07-05 13:13 391032 c:\windows\$NtUninstallKB2393802$\spuninst\updspapi.dll
+ 2011-02-09 11:45 . 2010-07-05 13:13 233848 c:\windows\$NtUninstallKB2393802$\spuninst\spuninst.exe
+ 2011-02-09 11:45 . 2009-02-09 10:56 709632 c:\windows\$NtUninstallKB2393802$\ntdll.dll
+ 2011-02-09 11:54 . 2010-07-05 13:13 391032 c:\windows\$hf_mig$\KB2485376\update\updspapi.dll
+ 2011-02-09 11:54 . 2010-07-05 13:13 759160 c:\windows\$hf_mig$\KB2485376\update\update.exe
+ 2011-02-09 11:54 . 2010-07-05 13:13 233848 c:\windows\$hf_mig$\KB2485376\spuninst.exe
+ 2011-01-07 14:09 . 2011-01-07 14:09 290048 c:\windows\$hf_mig$\KB2485376\SP3QFE\atmfd.dll
+ 2011-02-09 11:53 . 2010-02-22 14:21 391032 c:\windows\$hf_mig$\KB2483185\update\updspapi.dll
+ 2011-02-09 11:53 . 2010-02-22 14:21 759160 c:\windows\$hf_mig$\KB2483185\update\update.exe
+ 2011-02-09 11:53 . 2010-02-22 14:20 233848 c:\windows\$hf_mig$\KB2483185\spuninst.exe
+ 2011-01-21 14:42 . 2011-01-21 14:42 440832 c:\windows\$hf_mig$\KB2483185\SP3QFE\shimgvw.dll
+ 2011-02-09 11:48 . 2010-07-05 13:13 391032 c:\windows\$hf_mig$\KB2482017-IE8\update\updspapi.dll
+ 2011-02-09 11:48 . 2010-07-05 13:13 759160 c:\windows\$hf_mig$\KB2482017-IE8\update\update.exe
+ 2011-02-09 11:48 . 2010-07-05 13:13 233848 c:\windows\$hf_mig$\KB2482017-IE8\spuninst.exe
+ 2011-02-09 11:40 . 2010-12-20 23:51 919552 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\wininet.dll
+ 2011-02-09 11:40 . 2010-12-20 23:51 206848 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\occache.dll
+ 2011-02-09 11:40 . 2010-12-20 23:51 611840 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\mstime.dll
+ 2011-02-09 11:40 . 2010-12-20 23:51 602112 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\msfeeds.dll
+ 2011-02-09 11:40 . 2010-12-20 23:51 247808 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\ieproxy.dll
+ 2011-02-09 11:40 . 2010-12-20 23:51 184320 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\iepeers.dll
+ 2011-02-09 11:40 . 2010-12-20 23:51 743424 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\iedvtool.dll
+ 2011-02-09 11:40 . 2010-12-20 23:51 387584 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\iedkcs32.dll
+ 2011-02-09 11:40 . 2010-12-20 12:48 173568 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\ie4uinit.exe
+ 2011-02-09 11:54 . 2010-02-22 14:21 391032 c:\windows\$hf_mig$\KB2479628\update\updspapi.dll
+ 2011-02-09 11:54 . 2010-02-22 14:21 759160 c:\windows\$hf_mig$\KB2479628\update\update.exe
+ 2011-02-09 11:54 . 2010-02-22 14:20 233848 c:\windows\$hf_mig$\KB2479628\spuninst.exe
+ 2011-02-09 11:55 . 2010-02-22 14:21 391032 c:\windows\$hf_mig$\KB2478971\update\updspapi.dll
+ 2011-02-09 11:55 . 2010-02-22 14:21 759160 c:\windows\$hf_mig$\KB2478971\update\update.exe
+ 2011-02-09 11:55 . 2010-02-22 14:20 233848 c:\windows\$hf_mig$\KB2478971\spuninst.exe
+ 2010-12-22 12:32 . 2010-12-22 12:32 301568 c:\windows\$hf_mig$\KB2478971\SP3QFE\kerberos.dll
+ 2011-02-09 11:46 . 2010-07-05 13:13 391032 c:\windows\$hf_mig$\KB2478960\update\updspapi.dll
+ 2011-02-09 11:46 . 2010-07-05 13:13 759160 c:\windows\$hf_mig$\KB2478960\update\update.exe
+ 2011-02-09 11:46 . 2010-07-05 13:13 233848 c:\windows\$hf_mig$\KB2478960\spuninst.exe
+ 2010-12-20 17:24 . 2010-12-20 17:24 729088 c:\windows\$hf_mig$\KB2478960\SP3QFE\lsasrv.dll
+ 2011-02-09 11:46 . 2010-07-05 13:13 391032 c:\windows\$hf_mig$\KB2476687\update\updspapi.dll
+ 2011-02-09 11:46 . 2010-07-05 13:13 759160 c:\windows\$hf_mig$\KB2476687\update\update.exe
+ 2011-02-09 11:46 . 2010-07-05 13:13 233848 c:\windows\$hf_mig$\KB2476687\spuninst.exe
+ 2011-02-09 11:45 . 2010-07-05 13:13 391032 c:\windows\$hf_mig$\KB2393802\update\updspapi.dll
+ 2011-02-09 11:45 . 2010-07-05 13:13 759160 c:\windows\$hf_mig$\KB2393802\update\update.exe
+ 2011-02-09 11:45 . 2010-07-05 13:13 233848 c:\windows\$hf_mig$\KB2393802\spuninst.exe
+ 2011-02-09 11:38 . 2010-12-09 15:15 713216 c:\windows\$hf_mig$\KB2393802\SP3QFE\ntdll.dll
- 2004-08-17 14:49 . 2010-11-06 00:23 1210880 c:\windows\system32\urlmon.dll
+ 2004-08-17 14:49 . 2010-12-20 23:52 1210880 c:\windows\system32\urlmon.dll
+ 2004-08-17 14:49 . 2011-01-21 14:44 8466432 c:\windows\system32\shell32.dll
- 2004-08-17 14:49 . 2010-07-27 06:30 8466432 c:\windows\system32\shell32.dll
+ 2004-08-17 14:45 . 2010-12-09 15:14 2194944 c:\windows\system32\ntoskrnl.exe
+ 2004-08-17 15:45 . 2010-12-09 15:14 2071552 c:\windows\system32\ntkrnlpa.exe
+ 2004-08-17 14:49 . 2010-12-20 23:52 5961216 c:\windows\system32\mshtml.dll
+ 2010-01-27 01:07 . 2011-03-23 12:25 6053536 c:\windows\system32\Macromed\Flash\NPSWF32.dll
- 2009-03-08 02:32 . 2010-11-06 00:23 1991680 c:\windows\system32\iertutil.dll
+ 2009-03-08 02:32 . 2010-12-20 23:52 1991680 c:\windows\system32\iertutil.dll
+ 2009-08-14 15:15 . 2010-12-31 14:04 1854976 c:\windows\system32\dllcache\win32k.sys
+ 2004-08-17 14:49 . 2010-12-20 23:52 1210880 c:\windows\system32\dllcache\urlmon.dll
- 2004-08-17 14:49 . 2010-11-06 00:23 1210880 c:\windows\system32\dllcache\urlmon.dll
- 2008-06-17 19:02 . 2010-07-27 06:30 8466432 c:\windows\system32\dllcache\shell32.dll
+ 2008-06-17 19:02 . 2011-01-21 14:44 8466432 c:\windows\system32\dllcache\shell32.dll
+ 2010-04-02 15:58 . 2010-12-09 15:14 2194944 c:\windows\system32\dllcache\ntoskrnl.exe
+ 2010-04-02 15:58 . 2010-12-09 15:14 2029056 c:\windows\system32\dllcache\ntkrpamp.exe
+ 2009-02-10 17:09 . 2010-12-09 15:14 2071552 c:\windows\system32\dllcache\ntkrnlpa.exe
+ 2010-04-02 15:58 . 2010-12-09 15:14 2150912 c:\windows\system32\dllcache\ntkrnlmp.exe
+ 2004-08-17 14:49 . 2010-12-20 23:52 5961216 c:\windows\system32\dllcache\mshtml.dll
+ 2011-02-02 07:58 . 2011-02-02 07:58 2067456 c:\windows\system32\dllcache\lhmstscx.dll
+ 2010-04-04 16:29 . 2010-12-20 23:52 1991680 c:\windows\system32\dllcache\iertutil.dll
- 2010-04-04 16:29 . 2010-11-06 00:23 1991680 c:\windows\system32\dllcache\iertutil.dll
+ 2010-09-22 16:05 . 2010-09-22 16:05 2405784 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\rt3d.dll
+ 2010-06-19 15:51 . 2010-06-19 15:51 5713920 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\AGM.dll
+ 2011-02-09 11:47 . 2010-11-06 00:23 1210880 c:\windows\ie8updates\KB2482017-IE8\urlmon.dll
+ 2011-02-09 11:47 . 2010-11-06 00:23 5959168 c:\windows\ie8updates\KB2482017-IE8\mshtml.dll
+ 2011-02-09 11:47 . 2010-11-06 00:23 1991680 c:\windows\ie8updates\KB2482017-IE8\iertutil.dll
+ 2010-04-02 15:58 . 2010-12-09 15:14 2194944 c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2010-04-02 15:58 . 2010-12-09 15:14 2029056 c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2009-02-10 17:09 . 2010-12-09 15:14 2071552 c:\windows\Driver Cache\i386\ntkrnlpa.exe
+ 2010-04-02 15:58 . 2010-12-09 15:14 2150912 c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2011-02-09 11:53 . 2010-07-27 06:30 8466432 c:\windows\$NtUninstallKB2483185$\shell32.dll
+ 2011-02-09 11:54 . 2010-10-26 13:58 1853312 c:\windows\$NtUninstallKB2479628$\win32k.sys
+ 2011-02-09 11:45 . 2010-04-28 18:15 2192128 c:\windows\$NtUninstallKB2393802$\ntoskrnl.exe
+ 2011-02-09 11:45 . 2010-04-28 05:45 2026496 c:\windows\$NtUninstallKB2393802$\ntkrpamp.exe
+ 2011-02-09 11:45 . 2010-04-28 05:45 2068992 c:\windows\$NtUninstallKB2393802$\ntkrnlpa.exe
+ 2011-02-09 11:45 . 2010-04-28 05:45 2148352 c:\windows\$NtUninstallKB2393802$\ntkrnlmp.exe
+ 2011-01-21 14:42 . 2011-01-21 14:42 8467456 c:\windows\$hf_mig$\KB2483185\SP3QFE\shell32.dll
+ 2011-02-09 11:40 . 2010-12-20 23:51 1211904 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\urlmon.dll
+ 2011-02-09 11:40 . 2010-12-20 23:51 5962240 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\mshtml.dll
+ 2011-02-09 11:40 . 2010-12-20 23:51 1992192 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\iertutil.dll
+ 2010-12-31 14:02 . 2010-12-31 14:02 1864064 c:\windows\$hf_mig$\KB2479628\SP3QFE\win32k.sys
+ 2011-02-09 11:38 . 2010-12-09 15:14 2194944 c:\windows\$hf_mig$\KB2393802\SP3QFE\ntoskrnl.exe
+ 2011-02-09 11:38 . 2010-12-09 15:14 2029056 c:\windows\$hf_mig$\KB2393802\SP3QFE\ntkrpamp.exe
+ 2010-12-09 19:44 . 2010-12-09 19:44 2071552 c:\windows\$hf_mig$\KB2393802\SP3QFE\ntkrnlpa.exe
+ 2011-02-09 11:38 . 2010-12-09 15:14 2150912 c:\windows\$hf_mig$\KB2393802\SP3QFE\ntkrnlmp.exe
+ 2010-04-04 16:14 . 2011-03-09 21:30 37943240 c:\windows\system32\MRT.exe
- 2009-03-08 02:39 . 2010-11-06 00:23 11080704 c:\windows\system32\ieframe.dll
+ 2009-03-08 02:39 . 2010-12-20 10:52 11080704 c:\windows\system32\ieframe.dll
+ 2010-04-04 16:29 . 2010-12-20 10:52 11080704 c:\windows\system32\dllcache\ieframe.dll
- 2010-04-04 16:29 . 2010-11-06 00:23 11080704 c:\windows\system32\dllcache\ieframe.dll
+ 2011-03-13 01:02 . 2011-03-13 01:02 15139328 c:\windows\Installer\b56fe5.msp
+ 2011-01-31 10:45 . 2011-01-31 10:45 11135488 c:\windows\Installer\55168.msp
+ 2010-09-23 01:03 . 2010-09-23 01:03 20460984 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B7449A0400000010\9.4.0\AcroRd32.dll
+ 2011-02-09 11:47 . 2010-11-06 00:23 11080704 c:\windows\ie8updates\KB2482017-IE8\ieframe.dll
+ 2011-02-09 11:40 . 2010-12-20 23:51 11082752 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\ieframe.dll
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-02-23 15:04 122512 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATICCC"="c:\program files\ATI Technologies\ATI.ACE\cli.exe" [2005-08-06 61440]
"OpwareSE4"="c:\program files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe" [2006-03-21 69632]
"avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2011-02-23 3451496]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-01-31 35760]
.
c:\documents and settings\Tom ç\Nabˇdka Start\Programy\Po spuçtŘnˇ\
CLI.lnk - c:\program files\ATI Technologies\ATI.ACE\CLI.exe [2005-8-6 61440]
DTLite.lnk - c:\program files\DAEMON Tools Lite\DTLite.exe [2011-1-20 1305408]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
.
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [7.4.2010 18:36 691696]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [25.2.2011 18:53 371544]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [13.10.2010 13:22 301528]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [27.3.2011 20:23 218688]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [13.10.2010 13:22 19544]
S3 CFcatchme;CFcatchme;\??\c:\docume~1\TOM~1.TOM\LOCALS~1\Temp\CFcatchme.sys --> c:\docume~1\TOM~1.TOM\LOCALS~1\Temp\CFcatchme.sys [?]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://seznam.cz/
uInternet Settings,ProxyServer = socks=
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
Handler: centrumcztoolbar - {61A97628-7C82-4315-957A-C74C2CDD85DF} - c:\program files\CentrumczToolbar\IEToolbar.dll
FF - ProfilePath - c:\documents and settings\Tomáš.TOM-C03959D6696\Data aplikací\Mozilla\Firefox\Profiles\7tt9owqr.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.centrum.cz/
FF - prefs.js: keyword.URL - hxxp://search.centrum.cz/index.php?toolbar=centrum-1.0.0&q=
FF - prefs.js: network.proxy.type - 4
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-27 21:18
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory:
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(608)
c:\windows\system32\Ati2evxx.dll
.
- - - - - - - > 'explorer.exe'(3024)
c:\program files\ScanSoft\OmniPageSE4.0\OpHookSE4.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.

Re: Divná mechanika

Napsal: 27 bře 2011 20:26
od Tomik6566
Po vhození cd do mechanik(y)
nenačte.
Nevím co to může být.

Re: Divná mechanika

Napsal: 27 bře 2011 20:44
od Rudy
Nechtěl jsem Combofix, nýbrž pokus o opravu pomocí XPManageru. Použití CF laikem může poškodit systém. Log vypadá čistý, tento problém nezpůsobuje vir. Zkoušel jste tu opravu?

Re: Divná mechanika

Napsal: 27 bře 2011 21:08
od Tomik6566
Ano zkoušel nepomáhá to.

Re: Divná mechanika

Napsal: 27 bře 2011 21:25
od Rudy
V ovl. panelech>system>správce zařízení není vidět? Není ani zakázaná?

Re: Divná mechanika

Napsal: 27 bře 2011 22:05
od Tomik6566
Zkoušel jsem všechno, no to nevadí . Nějak to opravím.
Děkuju vám.
Můžete to zamknout
Hezký večer
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz