VIRY.CZ

vyosek - Tak som založil nové téma,snád tam kde má byť a ak nie tak sa omlúvam.Skopíroval som predošlé.

Dobrý deň,chcel by som vás poprosiť o radu.Nejde mi spustiť centrum zabezpečení vo Windows 7.Z ničoho nič mi to začalo robiť - asi nejaký vir

Som tu úplne nový a neviem si z tým už rady.Skúsil som to preskenovať ESET Smart Security,Malwarebytes Antimalware,Spybot Search and Destroy,OTL,Microsoft Safety Security,proste nič nepomáha.
Skúsil som to takto -
1.START
2.NÁSTROJE NA SPRÁVU
3.SLUŽBY
4.CENTRUM ZABEZPĚČENÍ
5.TYP SPUŠTĚNÍ-AUTOMATICKY(ZPOŽDĚNÉ SPUŠTĚNÍ)
6.POUŽÍT a potvrdit OK
Ono to na chvílku účinkuje,ale po chvíli tam mám zasa zakázano,tak proste neviem vôbec čo mám robiť.
Skúsil som to aj cez tieto linky,rôzne návody,ale to nejde a nejde spustit.
http://www.zive.cz/poradna/nefunguje-ce ... tanswers=1
http://www.stealthsettings.com/cs/error ... arted.html
http://www.viry.cz/forum/viewtopic.php?f=13&t=111660
a ešte tento váš,ten som zatiaľ neskúšal,ale neviem ako to mám podľa vášho postupu robiť,niesom nijaký odborník na PC,nerozumiem tomu-
http://www.viry.cz/forum/viewtopic.php?f=13&t=110798
Dalo by sa to nejak opraviť,ale tak aby som ako bežný užívateľ vedel ako na to,MOC Vám ĎAKUJEM za pomoc.

Zdravim a pekny den preji

Poprosim o log z RSIT - viz muj podpis

Pekný deň,tuná je ten log RSIT.Vopred DAKUJEM za pomoc.

Logfile of random's system information tool 1.08 (written by random/random)
Run by Kostík a Irenka at 2011-06-12 13:22:17
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 26 GB (51%) free of 50 GB
Total RAM: 3070 MB (62% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:22:25, on 12.6.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe
C:\Program Files\Real\RealPlayer\Update\realsched.exe
C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Start Menu 7\StartMenu7.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\NETGATE\Black Hawk\blackhawk.exe
C:\Program Files\NETGATE\Black Hawk\blackhawk.exe
C:\Program Files\NETGATE\Black Hawk\blackhawk.exe
C:\Program Files\NETGATE\Black Hawk\blackhawk.exe
C:\Program Files\NETGATE\Black Hawk\blackhawk.exe
C:\Program Files\NETGATE\Black Hawk\blackhawk.exe
C:\Program Files\NETGATE\Black Hawk\blackhawk.exe
C:\Program Files\NETGATE\Black Hawk\blackhawk.exe
C:\Program Files\NETGATE\Black Hawk\blackhawk.exe
C:\Program Files\NETGATE\Black Hawk\blackhawk.exe
C:\Program Files\NETGATE\Black Hawk\blackhawk.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\NETGATE\Black Hawk\blackhawk.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Kostík a Irenka\Desktop\RSIT.exe
C:\Program Files\trend micro\Kostík a Irenka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/?pc=AVBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/sk27211/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: MyAshampoo Toolbar - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\prxtbMyAs.dll
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: MyAshampoo - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\prxtbMyAs.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: PandoraTV Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: MyAshampoo Toolbar - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\prxtbMyAs.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Real\RealPlayer\Update\realsched.exe" -osboot
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [StartMenu7] "C:\Program Files\Start Menu 7\StartMenu7.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: GeniusMouseService - Unknown owner - C:\Genius\ioCentre\GMouseService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: IS360service - IObit - C:\Program Files\IObit\IObit Security 360\IS360srv.exe
O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe

--
End of file - 9568 bytes

======Scheduled tasks folder======

C:\Windows\tasks\biaxjqse.job
C:\Windows\tasks\DriverScanner.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20 328248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2011-05-02 386776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine - C:\Program Files\ConduitEngine\prxConduitEngine.dll [2011-01-17 175912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]
MyAshampoo Toolbar - C:\Program Files\MyAshampoo\prxtbMyAs.dll [2011-01-17 175912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-05-16 1164680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
PandoraTV Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2011-05-17 1490312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-05-04 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20 509496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D4027C7F-154A-4066-A1AD-4243D8127440} - PandoraTV Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2011-05-17 1490312]
{855F3B16-6D32-4FE6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2011-02-28 1048888]
{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - MyAshampoo Toolbar - C:\Program Files\MyAshampoo\prxtbMyAs.dll [2011-01-17 175912]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files\ConduitEngine\prxConduitEngine.dll [2011-01-17 175912]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-01-31 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-21 932288]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
"hpqSRMon"=C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [2008-07-22 150528]
"TkBellExe"=C:\Program Files\Real\RealPlayer\Update\realsched.exe [2011-05-02 273544]
"CloneCDTray"=C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [2009-01-30 57344]
"NokiaMServer"=C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
"TaskTray"= []
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2011-05-29 449584]
""= []
"ApnUpdater"=C:\Program Files\Ask.com\Updater\Updater.exe [2011-05-17 395144]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2011-01-12 2219184]
"Malwarebytes' Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2011-05-29 1047656]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"StartMenu7"=C:\Program Files\Start Menu 7\StartMenu7.exe [2011-05-24 4067224]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-06-12 13:22:17 ----D---- C:\rsit
2011-06-12 13:22:17 ----D---- C:\Program Files\trend micro
2011-06-11 22:01:38 ----D---- C:\ProgramData\Spybot - Search & Destroy
2011-06-11 22:01:38 ----D---- C:\Program Files\Spybot - Search & Destroy
2011-06-11 21:57:35 ----D---- C:\Program Files\Includes
2011-06-11 16:59:34 ----D---- C:\Program Files\ESET
2011-06-11 16:59:33 ----D---- C:\ProgramData\ESET
2011-06-11 13:25:01 ----A---- C:\Windows\system32\DevComponents.DotNetBar2.dll
2011-06-11 12:31:51 ----A---- C:\Windows\ntbtlog.txt
2011-06-11 12:23:16 ----D---- C:\Program Files\Smarty Uninstaller
2011-06-11 12:06:19 ----RASH---- C:\Windows\system32\msscph.dll
2011-06-10 15:35:51 ----A---- C:\Windows\system32\javaws.exe
2011-06-10 15:35:51 ----A---- C:\Windows\system32\javaw.exe
2011-06-10 15:35:51 ----A---- C:\Windows\system32\java.exe
2011-06-10 14:05:51 ----D---- C:\Users\Kostík a Irenka\AppData\Roaming\DVDFab
2011-06-01 15:46:53 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2011-06-01 15:46:49 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-06-01 15:46:49 ----A---- C:\Windows\system32\drivers\mbam.sys
2011-05-29 15:12:21 ----D---- C:\Users\Kostík a Irenka\AppData\Roaming\Smarty Uninstaller
2011-05-29 15:07:01 ----D---- C:\ProgramData\IsolatedStorage
2011-05-29 14:37:49 ----A---- C:\Windows\system32\drivers\gMouUsb.sys
2011-05-29 14:37:49 ----A---- C:\Windows\system32\drivers\gHidPnp.sys
2011-05-29 14:36:14 ----D---- C:\Genius
2011-05-29 14:35:52 ----D---- C:\Users\Kostík a Irenka\AppData\Roaming\InstallShield
2011-05-29 14:31:06 ----D---- C:\Windows\system32\RTCOM
2011-05-29 14:30:19 ----A---- C:\Windows\system32\WavesLib.dll
2011-05-29 14:30:19 ----A---- C:\Windows\system32\WavesGUILib.dll
2011-05-29 14:30:18 ----A---- C:\Windows\system32\SRSWOW.dll
2011-05-29 14:30:18 ----A---- C:\Windows\system32\SRSTSXT.dll
2011-05-29 14:30:18 ----A---- C:\Windows\system32\SRSTSHD.dll
2011-05-29 14:30:18 ----A---- C:\Windows\system32\SRSHP360.dll
2011-05-29 14:30:18 ----A---- C:\Windows\system32\SFNHK.dll
2011-05-29 14:30:18 ----A---- C:\Windows\system32\SFCOM.dll
2011-05-29 14:30:18 ----A---- C:\Windows\system32\SFAPO.dll
2011-05-29 14:30:18 ----A---- C:\Windows\system32\RtkPgExt.dll
2011-05-29 14:30:18 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2011-05-29 14:30:17 ----A---- C:\Windows\system32\RtkCoInst.dll
2011-05-29 14:30:17 ----A---- C:\Windows\system32\RtkApoApi.dll
2011-05-29 14:30:16 ----A---- C:\Windows\system32\RtkAPO.dll
2011-05-29 14:30:16 ----A---- C:\Windows\system32\RTEEP32A.dll
2011-05-29 14:30:16 ----A---- C:\Windows\system32\RTEEL32A.dll
2011-05-29 14:30:16 ----A---- C:\Windows\system32\RTEEG32A.dll
2011-05-29 14:30:16 ----A---- C:\Windows\system32\RTEED32A.dll
2011-05-29 14:30:16 ----A---- C:\Windows\system32\RP3DHT32.dll
2011-05-29 14:30:16 ----A---- C:\Windows\system32\RP3DAA32.dll
2011-05-29 14:30:16 ----A---- C:\Windows\system32\R4EEP32A.dll
2011-05-29 14:30:16 ----A---- C:\Windows\system32\R4EEL32A.dll
2011-05-29 14:30:16 ----A---- C:\Windows\system32\R4EEG32A.dll
2011-05-29 14:30:16 ----A---- C:\Windows\system32\R4EED32A.dll
2011-05-29 14:30:16 ----A---- C:\Windows\system32\R4EEA32A.dll
2011-05-29 14:30:16 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2011-05-29 14:30:16 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2011-05-29 14:30:16 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2011-05-29 14:30:16 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2011-05-29 14:30:16 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2011-05-29 14:30:16 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2011-05-29 14:30:15 ----A---- C:\Windows\system32\FMAPO.dll
2011-05-29 14:30:15 ----A---- C:\Windows\system32\DTSVoiceClarityDLL.dll
2011-05-29 14:30:15 ----A---- C:\Windows\system32\DTSSymmetryDLL.dll
2011-05-29 14:30:15 ----A---- C:\Windows\system32\DTSS2SpeakerDLL.dll
2011-05-29 14:30:15 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL.dll
2011-05-29 14:30:15 ----A---- C:\Windows\system32\DTSNeoPCDLL.dll
2011-05-29 14:30:15 ----A---- C:\Windows\system32\DTSLimiterDLL.dll
2011-05-29 14:30:15 ----A---- C:\Windows\system32\DTSLFXAPO.dll
2011-05-29 14:30:15 ----A---- C:\Windows\system32\DTSGFXAPONS.dll
2011-05-29 14:30:14 ----D---- C:\Program Files\Realtek
2011-05-29 14:30:14 ----A---- C:\Windows\system32\DTSGFXAPO.dll
2011-05-29 14:30:14 ----A---- C:\Windows\system32\DTSGainCompensatorDLL.dll
2011-05-29 14:30:14 ----A---- C:\Windows\system32\DTSBoostDLL.dll
2011-05-29 14:30:14 ----A---- C:\Windows\system32\DTSBassEnhancementDLL.dll
2011-05-29 14:30:14 ----A---- C:\Windows\system32\AERTARen.dll
2011-05-29 14:30:14 ----A---- C:\Windows\system32\AERTACap.dll
2011-05-29 14:30:12 ----HD---- C:\Program Files\Temp
2011-05-29 14:30:12 ----A---- C:\Windows\RtlExUpd.dll
2011-05-29 14:30:05 ----D---- C:\Program Files\Common Files\InstallShield
2011-05-29 14:19:55 ----D---- C:\Program Files\Intel
2011-05-29 14:19:55 ----A---- C:\Windows\system32\CSVer.dll
2011-05-29 14:19:34 ----D---- C:\Intel
2011-05-29 14:06:09 ----D---- C:\Program Files\Driver-Soft
2011-05-27 16:40:52 ----A---- C:\Windows\system32\OpenCL.dll
2011-05-27 16:40:52 ----A---- C:\Windows\system32\nvoglv32.dll
2011-05-27 16:40:50 ----A---- C:\Windows\system32\nvgenco322060.dll
2011-05-27 16:40:50 ----A---- C:\Windows\system32\nvdispco3220140.dll
2011-05-27 16:40:50 ----A---- C:\Windows\system32\nvd3dum.dll
2011-05-27 16:40:50 ----A---- C:\Windows\system32\nvcuvid.dll
2011-05-27 16:40:50 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2011-05-27 16:40:49 ----A---- C:\Windows\system32\nvcuvenc.dll
2011-05-27 16:40:49 ----A---- C:\Windows\system32\nvcuda.dll
2011-05-27 16:40:49 ----A---- C:\Windows\system32\nvcompiler.dll
2011-05-27 10:52:35 ----D---- C:\Program Files\SUPERAntiSpyware
2011-05-27 10:29:33 ----D---- C:\Users\Kostík a Irenka\AppData\Roaming\Start Menu 7
2011-05-27 10:29:22 ----D---- C:\Program Files\Start Menu 7
2011-05-27 10:17:01 ----A---- C:\Windows\unins000.exe
2011-05-27 10:13:15 ----D---- C:\Program Files\PC Connectivity Solution
2011-05-27 09:28:29 ----D---- C:\Program Files\YouTube Downloader
2011-05-25 13:52:44 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2011-05-20 14:23:09 ----A---- C:\Users\Kostík a Irenka\AppData\Roaming\ex_log.txt
2011-05-19 17:14:57 ----D---- C:\Program Files\BitTorrent
2011-05-19 17:10:55 ----A---- C:\Windows\system32\sipr3260.dll
2011-05-19 17:10:55 ----A---- C:\Windows\system32\drv43260.dll
2011-05-19 17:10:55 ----A---- C:\Windows\system32\drv33260.dll
2011-05-19 17:10:55 ----A---- C:\Windows\system32\drv23260.dll
2011-05-19 17:10:55 ----A---- C:\Windows\system32\cook3260.dll
2011-05-19 17:10:54 ----A---- C:\Windows\system32\wvc1dmod.dll
2011-05-19 17:10:54 ----A---- C:\Windows\system32\vp7vfw.dll
2011-05-19 17:10:50 ----D---- C:\Program Files\VSO

======List of files/folders modified in the last 1 months======

2011-06-12 13:22:18 ----D---- C:\Windows\Temp
2011-06-12 13:22:17 ----RD---- C:\Program Files
2011-06-12 11:24:19 ----D---- C:\Windows\system32\config
2011-06-12 11:15:19 ----D---- C:\Windows\System32
2011-06-12 11:15:18 ----D---- C:\Windows\inf
2011-06-12 11:15:18 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-06-11 22:01:38 ----HD---- C:\ProgramData
2011-06-11 19:46:46 ----D---- C:\Windows\system32\drivers
2011-06-11 19:46:05 ----D---- C:\Windows\debug
2011-06-11 19:45:57 ----D---- C:\Windows\Tasks
2011-06-11 19:45:57 ----D---- C:\Windows\system32\Tasks
2011-06-11 18:36:14 ----D---- C:\Windows\registration
2011-06-11 17:42:40 ----SHD---- C:\System Volume Information
2011-06-11 17:25:47 ----D---- C:\Program Files\TNod User & Password Finder
2011-06-11 17:24:07 ----D---- C:\Program Files\Ashampoo
2011-06-11 17:00:14 ----SHD---- C:\Windows\Installer
2011-06-11 17:00:14 ----HD---- C:\Config.Msi
2011-06-11 17:00:05 ----D---- C:\Windows\system32\DriverStore
2011-06-11 17:00:05 ----D---- C:\Windows\system32\catroot
2011-06-11 16:50:41 ----D---- C:\Windows
2011-06-11 13:25:02 ----RSD---- C:\Windows\assembly
2011-06-11 12:56:41 ----D---- C:\Windows\Logs
2011-06-11 10:55:08 ----D---- C:\Users\Kostík a Irenka\AppData\Roaming\The Bat!
2011-06-10 16:12:10 ----D---- C:\USB záloha
2011-06-10 15:39:25 ----D---- C:\Program Files\The Bat!
2011-06-10 15:37:12 ----D---- C:\Program Files\FreeRapid-0.85upd1-build566
2011-06-10 15:35:50 ----D---- C:\Program Files\Java
2011-06-10 14:05:12 ----D---- C:\Program Files\Ask.com
2011-06-10 14:04:26 ----D---- C:\Program Files\DVDFab 8 Qt
2011-06-10 13:31:44 ----SD---- C:\ProgramData\Microsoft
2011-06-10 12:50:15 ----D---- C:\Windows\system32\NDF
2011-06-10 10:57:23 ----D---- C:\Windows\Prefetch
2011-06-03 17:17:10 ----D---- C:\Windows\system32\catroot2
2011-06-01 16:00:44 ----D---- C:\Users\Kostík a Irenka\AppData\Roaming\BitTorrent
2011-05-31 14:30:10 ----D---- C:\ProgramData\ashampoo
2011-05-31 10:54:41 ----D---- C:\Users\Kostík a Irenka\AppData\Roaming\Skype
2011-05-29 14:36:13 ----HD---- C:\Program Files\InstallShield Installation Information
2011-05-29 14:30:05 ----D---- C:\Program Files\Common Files
2011-05-27 16:42:11 ----D---- C:\ProgramData\NVIDIA
2011-05-27 16:40:52 ----A---- C:\Windows\system32\nvwgf2um.dll
2011-05-27 16:40:49 ----A---- C:\Windows\system32\nvapi.dll
2011-05-27 16:19:04 ----D---- C:\Users\Kostík a Irenka\AppData\Roaming\BSplayer PRO
2011-05-27 16:18:15 ----D---- C:\Program Files\Webteh
2011-05-27 10:44:12 ----RD---- C:\Program Files\Skype
2011-05-27 10:44:11 ----D---- C:\ProgramData\Skype
2011-05-27 10:13:19 ----DC---- C:\Windows\system32\DRVSTORE
2011-05-27 09:24:34 ----D---- C:\ProgramData\Skype Extras
2011-05-27 09:24:28 ----D---- C:\Users\Kostík a Irenka\AppData\Roaming\skypePM
2011-05-25 13:53:07 ----D---- C:\Windows\winsxs
2011-05-20 14:20:34 ----D---- C:\Users\Kostík a Irenka\AppData\Roaming\ICQ
2011-05-19 17:11:13 ----D---- C:\Users\Kostík a Irenka\AppData\Roaming\Vso
2011-05-17 11:55:23 ----D---- C:\Program Files\WinRAR
2011-05-17 11:34:54 ----D---- C:\Program Files\Opera

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;ATI PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2011-04-25 14352]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2005-04-25 20640]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-03-18 436792]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-12-21 115008]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2010-12-17 31088]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2010-04-12 59388]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-12-21 137144]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2010-12-21 134000]
R2 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2010-12-21 41336]
R3 AnyDVD;AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [2011-03-25 117752]
R3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 131072]
R3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 16384]
R3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 36864]
R3 ElbyCDFL;ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760]
R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2010-12-21 33120]
R3 gHidPnp;USB Device Enhanced Function Driver; C:\Windows\System32\Drivers\gHidPnp.Sys [2009-11-02 20480]
R3 gMouUsb;USB Mouse Device Drv; C:\Windows\system32\DRIVERS\gMouUsb.sys [2009-11-02 11520]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2011-05-03 3484712]
R3 LVUSBSta;Logitech USB Monitor Filter; C:\Windows\system32\DRIVERS\LVUSBSta.sys [2005-01-19 22016]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2011-05-29 22712]
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2011-03-18 47360]
R3 PID_0928;Labtec WebCam(PID_0928); C:\Windows\system32\DRIVERS\LV561AV.SYS [2005-01-19 211712]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2011-03-21 362600]
R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S1 bcbus;BestCrypt bus driver; C:\Windows\system32\DRIVERS\bcbus.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 DrvAgent32;DrvAgent32; \??\C:\Windows\system32\Drivers\DrvAgent32.sys [2011-04-25 23456]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\mbamswissarmy.sys [2011-05-29 39984]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2010-12-02 18304]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2010-12-02 23168]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2010-12-02 8192]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-20 27648]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2010-12-02 8192]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2011-01-12 810144]
R2 GeniusMouseService;GeniusMouseService; C:\Genius\ioCentre\GMouseService.exe [2010-03-11 12288]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2011-02-28 247096]
R2 IS360service;IS360service; C:\Program Files\IObit\IObit Security 360\IS360srv.exe [2010-06-11 312152]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-05-29 366640]
R2 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2010-05-04 503080]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-04-07 612456]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 TeamViewer6;TeamViewer 6; C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe [2011-06-01 2337144]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S2 KMService;KMService; C:\Windows\system32\srvany.exe [2011-03-20 8192]
S2 SBSDWSCService;SBSD Security Center Service; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2011-01-12 33584]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-02-08 136120]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2011-03-21 632832]

-----------------EOF-----------------

Stahnete RKill http://download.bleepingcomputer.com/grinler/rkill.com

Pokud ho havet blokuje, pouzijte jeden z nasledujicich
motji píše: Rkill EXE:
http://download.bleepingcomputer.com/grinler/rkill.exe

Rkill SCR:
http://download.bleepingcomputer.com/grinler/rkill.scr

Rkill PIF:
http://download.bleepingcomputer.com/grinler/rkill.pif
Ulozte nejlepena plochu a ukoncete vsechny aplikace (jinak to udela RKill za Vas)
Spustte tradicne dvojklikem - program probehne temer okamzite a ukonci i svou cinnost
RKill ukonci vsechny ne-systemove procesy - tedy i procesy, pod kterymi bezi havet
Ted nerestartujte PC - prisli byste o ucinek RKillu

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK

Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
Pokud mate Win XP spustte pod uctem Spravce\Administratora
Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

Pekný deň vyosek,vyzerá to,že ste mi pomohli.MOC Vám dakujem za POMOC.Je to fajn ked sa nájde ešte niekto kto dokáže pomôcť.
Inak tu je ten log súbor po skene ComboFixu -

ComboFix 11-06-11.01 - Kostík a Irenka 12.06.2011 14:29:35.1.2 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3070.2193 [GMT 2:00]
Spuštěný z: c:\users\Kostík a Irenka\Desktop\ComboFix.exe
AV: ESET Smart Security 4.2 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 4.2 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: IObit Security 360 *Disabled/Updated* {FAE2835A-B90A-9E7A-85DA-82DBDA7C1E3A}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Kostík a Irenka\AppData\Roaming\EurekaLog
c:\users\Kostík a Irenka\AppData\Roaming\EurekaLog\StartMenu7\StartMenu7.elf
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-05-12 do 2011-06-12 )))))))))))))))))))))))))))))))
.
.
2011-06-12 12:35 . 2011-06-12 12:36 -------- d-----w- c:\users\Kostík a Irenka\AppData\Local\temp
2011-06-12 12:35 . 2011-06-12 12:35 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-06-12 12:19 . 2011-06-12 12:19 -------- d-----w- c:\users\Kostík a Irenka\AppData\Roaming\ESET
2011-06-12 11:22 . 2011-06-12 11:22 -------- d-----w- C:\rsit
2011-06-12 11:22 . 2011-06-12 11:22 -------- d-----w- c:\program files\trend micro
2011-06-12 09:26 . 2011-06-12 09:26 512 ----a-w- C:\PhysicalMBR.bin
2011-06-11 19:57 . 2011-06-11 19:57 -------- d-----w- c:\program files\Includes
2011-06-11 15:47 . 2011-06-11 15:47 -------- d-----w- c:\users\Kostík a Irenka\AppData\Local\Microsoft_Corporation
2011-06-11 11:25 . 2011-04-25 08:25 4603616 ----a-w- c:\windows\system32\DevComponents.DotNetBar2.dll
2011-06-11 10:35 . 2011-06-11 10:36 -------- d-----w- c:\users\Kostík a Irenka\AppData\Local\ElevatedDiagnostics
2011-06-11 10:23 . 2011-06-11 11:25 -------- d-----w- c:\program files\Smarty Uninstaller
2011-06-11 10:06 . 2011-06-11 10:06 166400 --sha-r- c:\windows\system32\msscph.dll
2011-06-10 13:31 . 2011-05-09 20:46 6962000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{04450400-5C24-432E-9901-ADD9956D665B}\mpengine.dll
2011-06-10 12:05 . 2011-06-10 12:05 -------- d-----w- c:\users\Kostík a Irenka\AppData\Roaming\DVDFab
2011-06-10 09:59 . 2011-06-10 09:59 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2011-06-10 09:59 . 2011-06-10 09:59 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2011-06-01 13:46 . 2011-05-29 07:11 39984 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-06-01 13:46 . 2011-06-01 13:46 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-06-01 13:46 . 2011-05-29 07:11 22712 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-05-29 13:12 . 2011-06-12 12:14 -------- d-----w- c:\users\Kostík a Irenka\AppData\Roaming\Smarty Uninstaller
2011-05-29 13:07 . 2011-05-29 13:07 -------- d-----w- c:\programdata\IsolatedStorage
2011-05-29 12:37 . 2009-11-02 15:47 11520 ----a-w- c:\windows\system32\drivers\gMouUsb.sys
2011-05-29 12:37 . 2009-11-02 15:43 20480 ----a-w- c:\windows\system32\drivers\gHidPnp.sys
2011-05-29 12:36 . 2011-05-29 12:36 -------- d-----w- C:\Genius
2011-05-29 12:35 . 2011-05-29 12:35 -------- d-----w- c:\users\Kostík a Irenka\AppData\Roaming\InstallShield
2011-05-29 12:31 . 2011-05-29 12:31 -------- d-----w- c:\windows\system32\RTCOM
2011-05-29 12:19 . 2011-05-29 12:19 -------- d-----w- c:\program files\Intel
2011-05-29 12:19 . 2011-04-15 14:00 53248 ----a-w- c:\windows\system32\CSVer.dll
2011-05-29 12:19 . 2011-05-29 12:19 -------- d-----w- C:\Intel
2011-05-29 12:06 . 2011-05-29 12:06 -------- d-----w- c:\program files\Driver-Soft
2011-05-27 14:40 . 2011-05-27 14:40 57960 ----a-w- c:\windows\system32\OpenCL.dll
2011-05-27 14:40 . 2011-05-27 14:40 15227496 ----a-w- c:\windows\system32\nvoglv32.dll
2011-05-27 14:40 . 2011-05-27 14:40 944232 ----a-w- c:\windows\system32\nvdispco3220140.dll
2011-05-27 14:40 . 2011-05-27 14:40 855656 ----a-w- c:\windows\system32\nvgenco322060.dll
2011-05-27 14:40 . 2011-05-27 14:40 2765928 ----a-w- c:\windows\system32\nvcuvid.dll
2011-05-27 14:40 . 2011-05-27 14:40 10690024 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2011-05-27 14:40 . 2011-05-27 14:40 10071656 ----a-w- c:\windows\system32\nvd3dum.dll
2011-05-27 14:40 . 2011-05-27 14:40 2074216 ----a-w- c:\windows\system32\nvcuvenc.dll
2011-05-27 14:40 . 2011-05-27 14:40 5180824 ----a-w- c:\windows\system32\nvcuda.dll
2011-05-27 14:40 . 2011-05-27 14:40 13007464 ----a-w- c:\windows\system32\nvcompiler.dll
2011-05-27 08:52 . 2011-05-27 08:54 -------- d-----w- c:\program files\SUPERAntiSpyware
2011-05-27 08:29 . 2011-06-12 12:12 -------- d-----w- c:\users\Kostík a Irenka\AppData\Roaming\Start Menu 7
2011-05-27 08:29 . 2011-05-27 08:30 -------- d-----w- c:\program files\Start Menu 7
2011-05-27 08:17 . 2011-05-27 08:16 720784 ----a-w- c:\windows\unins000.exe
2011-05-27 08:13 . 2011-05-27 08:13 -------- d-----w- c:\program files\PC Connectivity Solution
2011-05-27 07:28 . 2011-05-27 07:28 -------- d-----w- c:\program files\YouTube Downloader
2011-05-25 11:52 . 2011-04-22 19:14 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2011-05-19 15:14 . 2011-05-19 15:14 -------- d-----w- c:\program files\BitTorrent
2011-05-19 15:10 . 2009-09-02 11:44 65602 ----a-w- c:\windows\system32\cook3260.dll
2011-05-19 15:10 . 2009-09-02 11:44 217127 ----a-w- c:\windows\system32\drv43260.dll
2011-05-19 15:10 . 2009-09-02 11:44 208935 ----a-w- c:\windows\system32\drv33260.dll
2011-05-19 15:10 . 2009-09-02 11:44 176165 ----a-w- c:\windows\system32\drv23260.dll
2011-05-19 15:10 . 2009-09-02 11:44 102439 ----a-w- c:\windows\system32\sipr3260.dll
2011-05-19 15:10 . 2009-09-02 11:44 626688 ----a-w- c:\windows\system32\vp7vfw.dll
2011-05-19 15:10 . 2009-09-02 11:44 1184984 ----a-w- c:\windows\system32\wvc1dmod.dll
2011-05-19 15:10 . 2011-05-19 15:10 -------- d-----w- c:\program files\VSO
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-10 13:43 . 2011-04-17 17:47 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-05-27 14:40 . 2010-07-10 04:37 6299752 ----a-w- c:\windows\system32\nvwgf2um.dll
2011-05-27 14:40 . 2011-05-27 14:40 10920 ----a-w- c:\windows\system32\drivers\nvBridge.kmd
2011-05-27 14:40 . 2010-07-10 04:37 2034280 ----a-w- c:\windows\system32\nvapi.dll
2011-05-04 02:52 . 2011-03-20 19:43 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-05-02 10:28 . 2011-02-02 13:31 499712 ----a-w- c:\windows\system32\msvcp71.dll
2011-05-02 10:28 . 2011-02-02 13:31 348160 ----a-w- c:\windows\system32\msvcr71.dll
2011-04-25 11:02 . 2011-04-25 11:02 23456 ----a-w- c:\windows\system32\drivers\DrvAgent32.sys
2011-04-25 10:20 . 2011-04-25 10:20 14352 ----a-w- c:\windows\system32\drivers\AtiPcie.sys
2011-04-18 09:36 . 2011-04-18 09:36 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2011-04-18 09:36 . 2011-04-18 09:36 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2011-04-13 22:40 . 2011-04-13 22:40 4284416 ----a-w- c:\windows\system32\GPhotos.scr
2011-04-13 15:42 . 2011-04-13 15:42 1060864 ----a-w- c:\windows\system32\mfc71.dll
2011-04-09 06:02 . 2011-05-11 11:28 3967872 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-04-09 06:02 . 2011-05-11 11:28 3912576 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-04-09 05:56 . 2011-05-11 11:28 123904 ----a-w- c:\windows\system32\poqexec.exe
2011-04-07 20:43 . 2011-04-07 20:43 580200 ----a-w- c:\windows\system32\easyUpdatusAPIU.dll
2011-04-07 20:43 . 2011-04-07 20:43 612456 ----a-w- c:\windows\system32\nvvsvc.exe
2011-04-07 20:43 . 2011-04-07 20:43 2582120 ----a-w- c:\windows\system32\nvsvcr.dll
2011-04-07 20:43 . 2011-04-07 20:43 111208 ----a-w- c:\windows\system32\nvmctray.dll
2011-04-07 20:43 . 2011-04-07 20:43 3701352 ----a-w- c:\windows\system32\nvcpl.dll
2011-04-07 20:43 . 2011-04-07 20:43 2565224 ----a-w- c:\windows\system32\nvsvc.dll
2011-03-25 13:54 . 2011-03-25 13:54 117752 ----a-w- c:\windows\system32\drivers\AnyDVD.sys
2011-03-25 02:58 . 2011-05-11 11:28 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys
2011-03-25 02:58 . 2011-05-11 11:28 284672 ----a-w- c:\windows\system32\drivers\usbport.sys
2011-03-25 02:58 . 2011-05-11 11:28 75776 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2011-03-25 02:57 . 2011-05-11 11:28 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys
2011-03-25 02:57 . 2011-05-11 11:28 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys
2011-03-25 02:57 . 2011-05-11 11:28 24064 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2011-03-25 02:57 . 2011-05-11 11:28 5888 ----a-w- c:\windows\system32\drivers\usbd.sys
2011-03-24 19:35 . 2011-04-05 13:43 243200 ----a-w- c:\windows\system32\xvidvfw.dll
2011-03-24 19:28 . 2011-04-05 13:43 631808 ----a-w- c:\windows\system32\xvidcore.dll
2011-03-21 11:22 . 2011-03-21 11:22 80416 ----a-w- c:\windows\system32\RtNicProp32.dll
2011-03-21 11:22 . 2011-03-21 11:22 362600 ----a-w- c:\windows\system32\drivers\Rt86win7.sys
2011-03-21 11:22 . 2009-07-21 02:24 100896 ----a-w- c:\windows\system32\RTNUninst32.dll
2011-03-20 16:36 . 2011-03-20 16:36 8192 ----a-w- c:\windows\system32\srvany.exe
2011-03-19 19:00 . 2011-03-17 22:10 151552 ----a-w- c:\windows\system32\ac3acm.acm
2011-03-18 12:33 . 2011-03-18 12:33 436792 ----a-w- c:\windows\system32\drivers\sptd.sys
2011-03-18 11:56 . 2011-03-18 11:56 87608 ----a-w- c:\users\Kostík a Irenka\AppData\Roaming\inst.exe
2011-03-18 11:56 . 2011-03-18 11:56 87608 ----a-w- c:\users\Kostík a Irenka\AppData\Roaming\inst.exe
2011-03-18 11:56 . 2011-03-18 11:38 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys
2011-03-18 11:56 . 2011-03-18 11:38 47360 ----a-w- c:\users\Kostík a Irenka\AppData\Roaming\pcouffin.sys
2011-03-18 11:56 . 2011-03-18 11:38 47360 ----a-w- c:\users\Kostík a Irenka\AppData\Roaming\pcouffin.sys
2011-03-18 11:38 . 2011-03-18 11:38 81920 ----a-w- c:\users\Kostík a Irenka\AppData\Roaming\ezpinst.exe
2011-03-18 11:38 . 2011-03-18 11:38 81920 ----a-w- c:\users\Kostík a Irenka\AppData\Roaming\ezpinst.exe
2011-03-18 11:23 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2011-03-18 10:52 . 2011-03-18 10:52 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2011-03-18 10:52 . 2011-03-18 10:52 161792 ----a-w- c:\windows\system32\msls31.dll
2011-03-18 10:52 . 2011-03-18 10:52 1126912 ----a-w- c:\windows\system32\wininet.dll
2011-03-18 10:52 . 2011-03-18 10:52 86528 ----a-w- c:\windows\system32\iesysprep.dll
2011-03-18 10:52 . 2011-03-18 10:52 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2011-03-18 10:52 . 2011-03-18 10:52 74752 ----a-w- c:\windows\system32\iesetup.dll
2011-03-18 10:52 . 2011-03-18 10:52 63488 ----a-w- c:\windows\system32\tdc.ocx
2011-03-18 10:52 . 2011-03-18 10:52 48640 ----a-w- c:\windows\system32\mshtmler.dll
2011-03-18 10:52 . 2011-03-18 10:52 420864 ----a-w- c:\windows\system32\vbscript.dll
2011-03-18 10:52 . 2011-03-18 10:52 367104 ----a-w- c:\windows\system32\html.iec
2011-03-18 10:52 . 2011-03-18 10:52 35840 ----a-w- c:\windows\system32\imgutil.dll
2011-03-18 10:52 . 2011-03-18 10:52 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-03-18 10:52 . 2011-03-18 10:52 23552 ----a-w- c:\windows\system32\licmgr10.dll
2011-03-18 10:52 . 2011-03-18 10:52 1797632 ----a-w- c:\windows\system32\jscript9.dll
2011-03-18 10:52 . 2011-03-18 10:52 152064 ----a-w- c:\windows\system32\wextract.exe
2011-03-18 10:52 . 2011-03-18 10:52 150528 ----a-w- c:\windows\system32\iexpress.exe
2011-03-18 10:52 . 2011-03-18 10:52 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2011-03-18 10:52 . 2011-03-18 10:52 1427456 ----a-w- c:\windows\system32\inetcpl.cpl
2011-03-18 10:52 . 2011-03-18 10:52 11776 ----a-w- c:\windows\system32\mshta.exe
2011-03-18 10:52 . 2011-03-18 10:52 110592 ----a-w- c:\windows\system32\IEAdvpack.dll
2011-03-18 10:52 . 2011-03-18 10:52 101888 ----a-w- c:\windows\system32\admparse.dll
2011-03-15 13:46 . 2011-03-15 13:46 97648 ----a-w- c:\windows\system32\ElbyCDIO.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}"= "c:\program files\MyAshampoo\prxtbMyAs.dll" [2011-01-17 175912]
.
[HKEY_CLASSES_ROOT\clsid\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2011-01-17 15:54 175912 ----a-w- c:\program files\ConduitEngine\prxConduitEngine.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]
2011-01-17 15:54 175912 ----a-w- c:\program files\MyAshampoo\prxtbMyAs.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2011-05-17 11:29 1490312 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2011-05-17 1490312]
"{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}"= "c:\program files\MyAshampoo\prxtbMyAs.dll" [2011-01-17 175912]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\prxConduitEngine.dll" [2011-01-17 175912]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CLASSES_ROOT\clsid\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]
.
[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2011-05-17 1490312]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartMenu7"="c:\program files\Start Menu 7\StartMenu7.exe" [2011-05-24 4067224]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NokiaMServer"="c:\program files\Common Files\Nokia\MPlatform\NokiaMServer" [X]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-01-31 35760]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"hpqSRMon"="c:\program files\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-07-22 150528]
"TkBellExe"="c:\program files\Real\RealPlayer\Update\realsched.exe" [2011-05-02 273544]
"CloneCDTray"="c:\program files\SlySoft\CloneCD\CloneCDTray.exe" [2009-01-29 57344]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-05-29 449584]
"ApnUpdater"="c:\program files\Ask.com\Updater\Updater.exe" [2011-05-17 395144]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
"Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2011-05-29 1047656]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
R1 bcbus;BestCrypt bus driver;c:\windows\system32\DRIVERS\bcbus.sys [x]
R2 GeniusMouseService;GeniusMouseService;c:\genius\ioCentre\GMouseService.exe [2010-03-11 12288]
R2 KMService;KMService;c:\windows\system32\srvany.exe [2011-03-20 8192]
R3 DrvAgent32;DrvAgent32;c:\windows\system32\Drivers\DrvAgent32.sys [2011-04-25 23456]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2011-05-29 39984]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2011-03-18 436792]
S2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [2011-02-28 247096]
S2 IS360service;IS360service;c:\program files\IObit\IObit Security 360\IS360srv.exe [2010-06-11 312152]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-05-29 366640]
S2 NAUpdate;Nero Update;c:\program files\Nero\Update\NASvc.exe [2010-05-04 503080]
S2 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [2011-06-01 2337144]
S3 gHidPnp;USB Device Enhanced Function Driver;c:\windows\system32\Drivers\gHidPnp.Sys [2009-11-02 20480]
S3 gMouUsb;USB Mouse Device Drv;c:\windows\system32\DRIVERS\gMouUsb.sys [2009-11-02 11520]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-05-29 22712]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2011-03-21 362600]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
HPService REG_MULTI_SZ HPSLPSVC
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-06-17 11:11 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2011-06-12 c:\windows\Tasks\DriverScanner.job
- c:\program files\Uniblue\DriverScanner\dsmonitor.exe [2011-03-20 09:20]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://start.icq.com/sk27211/
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: {{7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - c:\program files\ICQ7.5\ICQ.exe
TCP: DhcpNameServer = 84.16.103.65 84.16.96.2
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-Run-TaskTray - (no file)
AddRemove-DVD Decrypter - c:\users\KOSTKA~1\AppData\Local\Temp\Rar$EX73.856\uninstall.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2011-06-12 14:38:32
ComboFix-quarantined-files.txt 2011-06-12 12:38
.
Před spuštěním: Volných bajtů: 28 317 601 792
Po spuštění: Volných bajtů: 28 195 926 016
.
- - End Of File - - 202F00A9515C7E0DAA19A95B328BAE74

Odinstalujte ten nelegalni ESET Smart Security a dejte si tam free variantu (Avast, Avira, MSE) - pokud bude v dalsim logu ESET tak bude zle

Pak se nedivte, ze mate zavirovane PC kdyz si cracknete i antivir.
Uvedomte si, ze jste na bezpecnostnim foru - podpora warezu (zvlaste bezp. programu), by byla zcela proti logice fora

Pokud nemate, tak presunte Combofix na plochu

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

KillAll::

Folder::
c:\program files\Ask.com
c:\program files\ICQ6Toolbar
C:\Program Files\IObit
C:\Program Files\Spybot - Search & Destroy
C:\Program Files\TNod User & Password Finder

File::
c:\program files\MyAshampoo\prxtbMyAs.dll
c:\windows\Tasks\DriverScanner.job
C:\Windows\tasks\biaxjqse.job

Registry::
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
{53707962-6F74-2D53-2644-206D7942484F}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"=-
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}"=-
"{855F3B16-6D32-4fe6-8A56-BBB695989046}"=-
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"=-
"{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}"=-
"{855F3B16-6D32-4FE6-8A56-BBB695989046}"=-
[-HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[-HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[-HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[-HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
[-HKEY_CLASSES_ROOT\clsid\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NokiaMServer"=-
"Adobe Reader Speed Launcher"=-
"Adobe ARM"=-
"HP Software Update"=-
"TkBellExe"=-
"CloneCDTray"=-
"Malwarebytes' Anti-Malware"=-
"ApnUpdater"=-
"SunJavaUpdateSched"=-
"Malwarebytes' Anti-Malware (reboot)"=-

DDS::
uStart Page = hxxp://start.icq.com/sk27211/

Driver::
ICQ Service
IS360service

RegLock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

Reboot::

Ulozte vytvoreny TXT jako CFScript.txt
Pretahnete vytvoreny CFScript.txt nad Combofix a pustte (viz obrazek nize)
Po aplikaci skriptu (a pripadnem restartu) na Vas vypadne log, jeho obsah sem vlozte

Muze se stat, ze po aplikaci skriptu nenabehnou windows, v tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci

Dobrý deň,ale ja nemám craknutý ESET Smart Security

Kde ste to preboha zistili,že mám craknutý ESET ked to nieje vôbec pravda.Teraz ste ma teda prekvapili.

Ak myslíte TNod User & Password Finder tak ten už nepoužívam kedže mám legálne kúpený ESET Smart Security koncom minulého roku.Asi som to neodinštaloval tak vás to asi zmiatlo.

Ano z toho jsem vychazel...Provedte tedy aplikovani skriptu pro ComboFix

Inak moc dakujem za pomoc,máte to u mňa.Želám vám krásny deň a ešte raz MOC dakujem,že nemusím zbytočne preinštalovávať Windows 7.Naschle.

Jeste prosim provedte ten skript pro ComboFix, je potreba jeste vymazat zbytek haveti...

Tuná to je -

ComboFix 11-06-11.01 - Kostík a Irenka 12.06.2011 16:13:58.2.2 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3070.2136 [GMT 2:00]
Spuštěný z: g:\programy,keygens,cracky\vyosek - když nejde zapnout Služba Centrum zabezpečení systému Windows nelze spustit\ComboFix.exe
Použité ovládací přepínače :: c:\users\Kostík a Irenka\Desktop\CFScript.txt
AV: ESET Smart Security 4.2 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 4.2 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: IObit Security 360 *Disabled/Updated* {FAE2835A-B90A-9E7A-85DA-82DBDA7C1E3A}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Rezidentní štít AV je zapnutý
.
.
FILE ::
"c:\program files\MyAshampoo\prxtbMyAs.dll"
"c:\windows\tasks\biaxjqse.job"
"c:\windows\Tasks\DriverScanner.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Ask.com
c:\program files\Ask.com\assets\oobe\b.png
c:\program files\Ask.com\assets\oobe\bl.png
c:\program files\Ask.com\assets\oobe\br.png
c:\program files\Ask.com\assets\oobe\l.png
c:\program files\Ask.com\assets\oobe\pointer.png
c:\program files\Ask.com\assets\oobe\r.png
c:\program files\Ask.com\assets\oobe\t.png
c:\program files\Ask.com\assets\oobe\tl.png
c:\program files\Ask.com\assets\oobe\tr.png
c:\program files\Ask.com\cobrand.ico
c:\program files\Ask.com\config.xml
c:\program files\Ask.com\favicon.ico
c:\program files\Ask.com\fv_bfb6.ico
c:\program files\Ask.com\GenericAskToolbar.dll
c:\program files\Ask.com\mupcfg.xml
c:\program files\Ask.com\precache.exe
c:\program files\Ask.com\SaUpdate.exe
c:\program files\Ask.com\Updater\config.xml
c:\program files\Ask.com\Updater\Updater.exe
c:\program files\Ask.com\UpdateTask.exe
c:\program files\ICQ6Toolbar
c:\program files\ICQ6Toolbar\config.xml
c:\program files\ICQ6Toolbar\Icons.bmp
c:\program files\ICQ6Toolbar\ICQ Service.exe
c:\program files\ICQ6Toolbar\icq6Toolbar.ico
c:\program files\ICQ6Toolbar\ICQToolBar.dll
c:\program files\ICQ6Toolbar\ICQUnToolbar.exe
c:\program files\ICQ6Toolbar\logo_small.gif
c:\program files\ICQ6Toolbar\ServiceStarter.exe
c:\program files\ICQ6Toolbar\short.wav
c:\program files\ICQ6Toolbar\Version.txt
c:\program files\ICQ6Toolbar\voucher.bmp
c:\program files\ICQ6Toolbar\voucher2.bmp
c:\program files\IObit
c:\program files\IObit\IObit Security 360\a_hijackscan.exe
c:\program files\IObit\IObit Security 360\Addition.def
c:\program files\IObit\IObit Security 360\b_securityholes.exe
c:\program files\IObit\IObit Security 360\c_passivedefense.exe
c:\program files\IObit\IObit Security 360\core.def
c:\program files\IObit\IObit Security 360\d_powerfuldelete.exe
c:\program files\IObit\IObit Security 360\data.dat
c:\program files\IObit\IObit Security 360\e_privacysweeper.exe
c:\program files\IObit\IObit Security 360\eo_passwordgenerator.exe
c:\program files\IObit\IObit Security 360\Error_Log.txt
c:\program files\IObit\IObit Security 360\EULA.rtf
c:\program files\IObit\IObit Security 360\f_pctuneup.exe
c:\program files\IObit\IObit Security 360\fav.ico
c:\program files\IObit\IObit Security 360\ffsweep.dll
c:\program files\IObit\IObit Security 360\filesweep.dll
c:\program files\IObit\IObit Security 360\Freeware\Check.dll
c:\program files\IObit\IObit Security 360\Freeware\IS360_FreeSoftwareDownloader.exe
c:\program files\IObit\IObit Security 360\g_portable.exe
c:\program files\IObit\IObit Security 360\help.html
c:\program files\IObit\IObit Security 360\holesscan.bpl
c:\program files\IObit\IObit Security 360\Images\main_pro.jpg
c:\program files\IObit\IObit Security 360\Images\main_upgrade.jpg
c:\program files\IObit\IObit Security 360\Images\overview.jpg
c:\program files\IObit\IObit Security 360\Images\protection.jpg
c:\program files\IObit\IObit Security 360\Images\scan.jpg
c:\program files\IObit\IObit Security 360\Images\scan_main.jpg
c:\program files\IObit\IObit Security 360\Images\tools.jpg
c:\program files\IObit\IObit Security 360\information.ini
c:\program files\IObit\IObit Security 360\is360.exe
c:\program files\IObit\IObit Security 360\IS360DataBase.db
c:\program files\IObit\IObit Security 360\is360ext.dll
c:\program files\IObit\IObit Security 360\IS360Init.exe
c:\program files\IObit\IObit Security 360\is360mon.dll
c:\program files\IObit\IObit Security 360\is360srv.exe
c:\program files\IObit\IObit Security 360\is360tray.exe
c:\program files\IObit\IObit Security 360\is360updater.exe
c:\program files\IObit\IObit Security 360\IWsIS360.exe
c:\program files\IObit\IObit Security 360\language\Arabic.lng
c:\program files\IObit\IObit Security 360\language\Czech.lng
c:\program files\IObit\IObit Security 360\language\Danish.lng
c:\program files\IObit\IObit Security 360\language\Dutch.lng
c:\program files\IObit\IObit Security 360\language\English.lng
c:\program files\IObit\IObit Security 360\language\Estonian.lng
c:\program files\IObit\IObit Security 360\language\French.lng
c:\program files\IObit\IObit Security 360\language\German.lng
c:\program files\IObit\IObit Security 360\language\Hungarian.lng
c:\program files\IObit\IObit Security 360\language\ChineseSimp.lng
c:\program files\IObit\IObit Security 360\language\ChineseTrad.lng
c:\program files\IObit\IObit Security 360\language\Italian.lng
c:\program files\IObit\IObit Security 360\language\Japanese.lng
c:\program files\IObit\IObit Security 360\language\Korean.lng
c:\program files\IObit\IObit Security 360\language\Polish.lng
c:\program files\IObit\IObit Security 360\language\Portuguese(PT-BR).lng
c:\program files\IObit\IObit Security 360\language\Portuguese.lng
c:\program files\IObit\IObit Security 360\language\Romanian.lng
c:\program files\IObit\IObit Security 360\language\Russian.lng
c:\program files\IObit\IObit Security 360\language\Slovak.lng
c:\program files\IObit\IObit Security 360\language\Slovenian.lng
c:\program files\IObit\IObit Security 360\language\Spanish.lng
c:\program files\IObit\IObit Security 360\language\Swedish.lng
c:\program files\IObit\IObit Security 360\language\Turkish.lng
c:\program files\IObit\IObit Security 360\language\Vietnamese.lng
c:\program files\IObit\IObit Security 360\license.dat
c:\program files\IObit\IObit Security 360\log\Scan\2011-05-05 15-43-57.log
c:\program files\IObit\IObit Security 360\log\Scan\2011-05-10 18-25-7.log
c:\program files\IObit\IObit Security 360\log\Scan\2011-05-10 18-39-15.log
c:\program files\IObit\IObit Security 360\log\Scan\2011-05-13 20-7-12.log
c:\program files\IObit\IObit Security 360\log\Scan\2011-05-17 19-8-26.log
c:\program files\IObit\IObit Security 360\madbasic_.bpl
c:\program files\IObit\IObit Security 360\maddisAsm_.bpl
c:\program files\IObit\IObit Security 360\madexcept_.bpl
c:\program files\IObit\IObit Security 360\Quarantine Zone\info.db
c:\program files\IObit\IObit Security 360\readme.txt
c:\program files\IObit\IObit Security 360\rtl120.bpl
c:\program files\IObit\IObit Security 360\SecurityHoles.db
c:\program files\IObit\IObit Security 360\SecurityHoles.ini
c:\program files\IObit\IObit Security 360\shellextdll.dll
c:\program files\IObit\IObit Security 360\sqlite3.dll
c:\program files\IObit\IObit Security 360\taskdll.dll
c:\program files\IObit\IObit Security 360\unins000.dat
c:\program files\IObit\IObit Security 360\unins000.exe
c:\program files\IObit\IObit Security 360\unins000.msg
c:\program files\IObit\IObit Security 360\update.dat
c:\program files\IObit\IObit Security 360\UpdateLog.txt
c:\program files\IObit\IObit Security 360\vcl120.bpl
c:\program files\IObit\IObit Security 360\vclx120.bpl
c:\program files\MyAshampoo\prxtbMyAs.dll
c:\windows\Tasks\DriverScanner.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_ICQ Service
-------\Service_IS360service
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-05-12 do 2011-06-12 )))))))))))))))))))))))))))))))
.
.
2011-06-12 14:21 . 2011-06-12 14:23 -------- d-----w- c:\users\Kostík a Irenka\AppData\Local\temp
2011-06-12 14:21 . 2011-06-12 14:21 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-06-12 13:15 . 2011-06-12 13:15 -------- d-----w- c:\program files\ESET
2011-06-12 12:55 . 2011-06-12 12:55 -------- d-sh--w- c:\programdata\$RECYCLE.BIN
2011-06-12 12:19 . 2011-06-12 12:19 -------- d-----w- c:\users\Kostík a Irenka\AppData\Roaming\ESET
2011-06-12 11:22 . 2011-06-12 11:22 -------- d-----w- c:\programdata\rsit
2011-06-12 11:22 . 2011-06-12 11:22 -------- d-----w- c:\program files\trend micro
2011-06-12 09:26 . 2011-06-12 09:26 512 ----a-w- c:\programdata\PhysicalMBR.bin
2011-06-11 19:57 . 2011-06-11 19:57 -------- d-----w- c:\program files\Includes
2011-06-11 15:47 . 2011-06-11 15:47 -------- d-----w- c:\users\Kostík a Irenka\AppData\Local\Microsoft_Corporation
2011-06-11 11:25 . 2011-04-25 08:25 4603616 ----a-w- c:\windows\system32\DevComponents.DotNetBar2.dll
2011-06-11 10:35 . 2011-06-11 10:36 -------- d-----w- c:\users\Kostík a Irenka\AppData\Local\ElevatedDiagnostics
2011-06-11 10:23 . 2011-06-11 11:25 -------- d-----w- c:\program files\Smarty Uninstaller
2011-06-11 10:06 . 2011-06-11 10:06 166400 --sha-r- c:\windows\system32\msscph.dll
2011-06-10 13:31 . 2011-05-09 20:46 6962000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{04450400-5C24-432E-9901-ADD9956D665B}\mpengine.dll
2011-06-10 12:05 . 2011-06-10 12:05 -------- d-----w- c:\users\Kostík a Irenka\AppData\Roaming\DVDFab
2011-06-10 09:59 . 2011-06-10 09:59 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2011-06-10 09:59 . 2011-06-10 09:59 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2011-06-01 13:46 . 2011-05-29 07:11 39984 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-06-01 13:46 . 2011-06-01 13:46 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-06-01 13:46 . 2011-05-29 07:11 22712 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-05-29 13:12 . 2011-06-12 12:14 -------- d-----w- c:\users\Kostík a Irenka\AppData\Roaming\Smarty Uninstaller
2011-05-29 13:07 . 2011-05-29 13:07 -------- d-----w- c:\programdata\IsolatedStorage
2011-05-29 12:37 . 2009-11-02 15:47 11520 ----a-w- c:\windows\system32\drivers\gMouUsb.sys
2011-05-29 12:37 . 2009-11-02 15:43 20480 ----a-w- c:\windows\system32\drivers\gHidPnp.sys
2011-05-29 12:36 . 2011-05-29 12:36 -------- d-----w- C:\Genius
2011-05-29 12:35 . 2011-05-29 12:35 -------- d-----w- c:\users\Kostík a Irenka\AppData\Roaming\InstallShield
2011-05-29 12:31 . 2011-05-29 12:31 -------- d-----w- c:\windows\system32\RTCOM
2011-05-29 12:19 . 2011-05-29 12:19 -------- d-----w- c:\program files\Intel
2011-05-29 12:19 . 2011-04-15 14:00 53248 ----a-w- c:\windows\system32\CSVer.dll
2011-05-29 12:19 . 2011-05-29 12:19 -------- d-----w- C:\Intel
2011-05-29 12:06 . 2011-05-29 12:06 -------- d-----w- c:\program files\Driver-Soft
2011-05-27 14:40 . 2011-05-27 14:40 57960 ----a-w- c:\windows\system32\OpenCL.dll
2011-05-27 14:40 . 2011-05-27 14:40 15227496 ----a-w- c:\windows\system32\nvoglv32.dll
2011-05-27 14:40 . 2011-05-27 14:40 944232 ----a-w- c:\windows\system32\nvdispco3220140.dll
2011-05-27 14:40 . 2011-05-27 14:40 855656 ----a-w- c:\windows\system32\nvgenco322060.dll
2011-05-27 14:40 . 2011-05-27 14:40 2765928 ----a-w- c:\windows\system32\nvcuvid.dll
2011-05-27 14:40 . 2011-05-27 14:40 10690024 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2011-05-27 14:40 . 2011-05-27 14:40 10071656 ----a-w- c:\windows\system32\nvd3dum.dll
2011-05-27 14:40 . 2011-05-27 14:40 2074216 ----a-w- c:\windows\system32\nvcuvenc.dll
2011-05-27 14:40 . 2011-05-27 14:40 5180824 ----a-w- c:\windows\system32\nvcuda.dll
2011-05-27 14:40 . 2011-05-27 14:40 13007464 ----a-w- c:\windows\system32\nvcompiler.dll
2011-05-27 08:52 . 2011-05-27 08:54 -------- d-----w- c:\program files\SUPERAntiSpyware
2011-05-27 08:29 . 2011-06-12 14:09 -------- d-----w- c:\users\Kostík a Irenka\AppData\Roaming\Start Menu 7
2011-05-27 08:29 . 2011-05-27 08:30 -------- d-----w- c:\program files\Start Menu 7
2011-05-27 08:17 . 2011-05-27 08:16 720784 ----a-w- c:\windows\unins000.exe
2011-05-27 08:13 . 2011-05-27 08:13 -------- d-----w- c:\program files\PC Connectivity Solution
2011-05-27 07:28 . 2011-05-27 07:28 -------- d-----w- c:\program files\YouTube Downloader
2011-05-25 11:52 . 2011-04-22 19:14 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2011-05-19 15:14 . 2011-05-19 15:14 -------- d-----w- c:\program files\BitTorrent
2011-05-19 15:10 . 2009-09-02 11:44 65602 ----a-w- c:\windows\system32\cook3260.dll
2011-05-19 15:10 . 2009-09-02 11:44 217127 ----a-w- c:\windows\system32\drv43260.dll
2011-05-19 15:10 . 2009-09-02 11:44 208935 ----a-w- c:\windows\system32\drv33260.dll
2011-05-19 15:10 . 2009-09-02 11:44 176165 ----a-w- c:\windows\system32\drv23260.dll
2011-05-19 15:10 . 2009-09-02 11:44 102439 ----a-w- c:\windows\system32\sipr3260.dll
2011-05-19 15:10 . 2009-09-02 11:44 626688 ----a-w- c:\windows\system32\vp7vfw.dll
2011-05-19 15:10 . 2009-09-02 11:44 1184984 ----a-w- c:\windows\system32\wvc1dmod.dll
2011-05-19 15:10 . 2011-05-19 15:10 -------- d-----w- c:\program files\VSO
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-10 13:43 . 2011-04-17 17:47 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-05-27 14:40 . 2010-07-10 04:37 6299752 ----a-w- c:\windows\system32\nvwgf2um.dll
2011-05-27 14:40 . 2011-05-27 14:40 10920 ----a-w- c:\windows\system32\drivers\nvBridge.kmd
2011-05-27 14:40 . 2010-07-10 04:37 2034280 ----a-w- c:\windows\system32\nvapi.dll
2011-05-04 02:52 . 2011-03-20 19:43 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-05-02 10:28 . 2011-02-02 13:31 499712 ----a-w- c:\windows\system32\msvcp71.dll
2011-05-02 10:28 . 2011-02-02 13:31 348160 ----a-w- c:\windows\system32\msvcr71.dll
2011-04-25 11:02 . 2011-04-25 11:02 23456 ----a-w- c:\windows\system32\drivers\DrvAgent32.sys
2011-04-25 10:20 . 2011-04-25 10:20 14352 ----a-w- c:\windows\system32\drivers\AtiPcie.sys
2011-04-18 09:36 . 2011-04-18 09:36 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2011-04-18 09:36 . 2011-04-18 09:36 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2011-04-13 22:40 . 2011-04-13 22:40 4284416 ----a-w- c:\windows\system32\GPhotos.scr
2011-04-13 15:42 . 2011-04-13 15:42 1060864 ----a-w- c:\windows\system32\mfc71.dll
2011-04-09 06:02 . 2011-05-11 11:28 3967872 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-04-09 06:02 . 2011-05-11 11:28 3912576 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-04-09 05:56 . 2011-05-11 11:28 123904 ----a-w- c:\windows\system32\poqexec.exe
2011-04-07 20:43 . 2011-04-07 20:43 580200 ----a-w- c:\windows\system32\easyUpdatusAPIU.dll
2011-04-07 20:43 . 2011-04-07 20:43 612456 ----a-w- c:\windows\system32\nvvsvc.exe
2011-04-07 20:43 . 2011-04-07 20:43 2582120 ----a-w- c:\windows\system32\nvsvcr.dll
2011-04-07 20:43 . 2011-04-07 20:43 111208 ----a-w- c:\windows\system32\nvmctray.dll
2011-04-07 20:43 . 2011-04-07 20:43 3701352 ----a-w- c:\windows\system32\nvcpl.dll
2011-04-07 20:43 . 2011-04-07 20:43 2565224 ----a-w- c:\windows\system32\nvsvc.dll
2011-03-25 13:54 . 2011-03-25 13:54 117752 ----a-w- c:\windows\system32\drivers\AnyDVD.sys
2011-03-25 02:58 . 2011-05-11 11:28 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys
2011-03-25 02:58 . 2011-05-11 11:28 284672 ----a-w- c:\windows\system32\drivers\usbport.sys
2011-03-25 02:58 . 2011-05-11 11:28 75776 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2011-03-25 02:57 . 2011-05-11 11:28 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys
2011-03-25 02:57 . 2011-05-11 11:28 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys
2011-03-25 02:57 . 2011-05-11 11:28 24064 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2011-03-25 02:57 . 2011-05-11 11:28 5888 ----a-w- c:\windows\system32\drivers\usbd.sys
2011-03-24 19:35 . 2011-04-05 13:43 243200 ----a-w- c:\windows\system32\xvidvfw.dll
2011-03-24 19:28 . 2011-04-05 13:43 631808 ----a-w- c:\windows\system32\xvidcore.dll
2011-03-21 11:22 . 2011-03-21 11:22 80416 ----a-w- c:\windows\system32\RtNicProp32.dll
2011-03-21 11:22 . 2011-03-21 11:22 362600 ----a-w- c:\windows\system32\drivers\Rt86win7.sys
2011-03-21 11:22 . 2009-07-21 02:24 100896 ----a-w- c:\windows\system32\RTNUninst32.dll
2011-03-20 16:36 . 2011-03-20 16:36 8192 ----a-w- c:\windows\system32\srvany.exe
2011-03-19 19:00 . 2011-03-17 22:10 151552 ----a-w- c:\windows\system32\ac3acm.acm
2011-03-18 12:33 . 2011-03-18 12:33 436792 ----a-w- c:\windows\system32\drivers\sptd.sys
2011-03-18 11:56 . 2011-03-18 11:56 87608 ----a-w- c:\users\Kostík a Irenka\AppData\Roaming\inst.exe
2011-03-18 11:56 . 2011-03-18 11:56 87608 ----a-w- c:\users\Kostík a Irenka\AppData\Roaming\inst.exe
2011-03-18 11:56 . 2011-03-18 11:38 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys
2011-03-18 11:56 . 2011-03-18 11:38 47360 ----a-w- c:\users\Kostík a Irenka\AppData\Roaming\pcouffin.sys
2011-03-18 11:56 . 2011-03-18 11:38 47360 ----a-w- c:\users\Kostík a Irenka\AppData\Roaming\pcouffin.sys
2011-03-18 11:38 . 2011-03-18 11:38 81920 ----a-w- c:\users\Kostík a Irenka\AppData\Roaming\ezpinst.exe
2011-03-18 11:38 . 2011-03-18 11:38 81920 ----a-w- c:\users\Kostík a Irenka\AppData\Roaming\ezpinst.exe
2011-03-18 11:23 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2011-03-18 10:52 . 2011-03-18 10:52 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2011-03-18 10:52 . 2011-03-18 10:52 161792 ----a-w- c:\windows\system32\msls31.dll
2011-03-18 10:52 . 2011-03-18 10:52 1126912 ----a-w- c:\windows\system32\wininet.dll
2011-03-18 10:52 . 2011-03-18 10:52 86528 ----a-w- c:\windows\system32\iesysprep.dll
2011-03-18 10:52 . 2011-03-18 10:52 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2011-03-18 10:52 . 2011-03-18 10:52 74752 ----a-w- c:\windows\system32\iesetup.dll
2011-03-18 10:52 . 2011-03-18 10:52 63488 ----a-w- c:\windows\system32\tdc.ocx
2011-03-18 10:52 . 2011-03-18 10:52 48640 ----a-w- c:\windows\system32\mshtmler.dll
2011-03-18 10:52 . 2011-03-18 10:52 420864 ----a-w- c:\windows\system32\vbscript.dll
2011-03-18 10:52 . 2011-03-18 10:52 367104 ----a-w- c:\windows\system32\html.iec
2011-03-18 10:52 . 2011-03-18 10:52 35840 ----a-w- c:\windows\system32\imgutil.dll
2011-03-18 10:52 . 2011-03-18 10:52 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-03-18 10:52 . 2011-03-18 10:52 23552 ----a-w- c:\windows\system32\licmgr10.dll
2011-03-18 10:52 . 2011-03-18 10:52 1797632 ----a-w- c:\windows\system32\jscript9.dll
2011-03-18 10:52 . 2011-03-18 10:52 152064 ----a-w- c:\windows\system32\wextract.exe
2011-03-18 10:52 . 2011-03-18 10:52 150528 ----a-w- c:\windows\system32\iexpress.exe
2011-03-18 10:52 . 2011-03-18 10:52 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2011-03-18 10:52 . 2011-03-18 10:52 1427456 ----a-w- c:\windows\system32\inetcpl.cpl
2011-03-18 10:52 . 2011-03-18 10:52 11776 ----a-w- c:\windows\system32\mshta.exe
2011-03-18 10:52 . 2011-03-18 10:52 110592 ----a-w- c:\windows\system32\IEAdvpack.dll
2011-03-18 10:52 . 2011-03-18 10:52 101888 ----a-w- c:\windows\system32\admparse.dll
2011-03-15 13:46 . 2011-03-15 13:46 97648 ----a-w- c:\windows\system32\ElbyCDIO.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2011-01-17 15:54 175912 ----a-w- c:\program files\ConduitEngine\prxConduitEngine.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\prxConduitEngine.dll" [2011-01-17 175912]
.
[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartMenu7"="c:\program files\Start Menu 7\StartMenu7.exe" [2011-05-24 4067224]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpqSRMon"="c:\program files\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-07-22 150528]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-01-12 2219184]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
R1 bcbus;BestCrypt bus driver;c:\windows\system32\DRIVERS\bcbus.sys [x]
R2 KMService;KMService;c:\windows\system32\srvany.exe [2011-03-20 8192]
R3 DrvAgent32;DrvAgent32;c:\windows\system32\Drivers\DrvAgent32.sys [2011-04-25 23456]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2011-05-29 39984]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2011-03-18 436792]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2010-12-21 115008]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2010-12-21 137144]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2011-01-12 810144]
S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2010-12-21 41336]
S2 GeniusMouseService;GeniusMouseService;c:\genius\ioCentre\GMouseService.exe [2010-03-11 12288]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-05-29 366640]
S2 NAUpdate;Nero Update;c:\program files\Nero\Update\NASvc.exe [2010-05-04 503080]
S2 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [2011-06-01 2337144]
S3 gHidPnp;USB Device Enhanced Function Driver;c:\windows\system32\Drivers\gHidPnp.Sys [2009-11-02 20480]
S3 gMouUsb;USB Mouse Device Drv;c:\windows\system32\DRIVERS\gMouUsb.sys [2009-11-02 11520]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-05-29 22712]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2011-03-21 362600]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
HPService REG_MULTI_SZ HPSLPSVC
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-06-17 11:11 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
.
------- Doplňkový sken -------
.
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: {{7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - c:\program files\ICQ7.5\ICQ.exe
TCP: DhcpNameServer = 84.16.103.65 84.16.96.2
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-ICQToolbar - c:\program files\ICQ6Toolbar\ICQUnToolbar.exe
AddRemove-IObit Security 360_is1 - c:\program files\IObit\IObit Security 360\unins000.exe
.
.
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'Explorer.exe'(4088)
c:\program files\Start Menu 7\VistaStartMenu.dll
c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL
c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\NVIDIA Corporation\Display\NvXDSync.exe
c:\windows\system32\nvvsvc.exe
c:\windows\system32\taskhost.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Uniblue\DriverScanner\dsmonitor.exe
c:\windows\servicing\TrustedInstaller.exe
c:\windows\system32\WUDFHost.exe
c:\windows\system32\conhost.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\sppsvc.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
.
**************************************************************************
.
Celkový čas: 2011-06-12 16:27:31 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-06-12 14:27
.
Před spuštěním: Volných bajtů: 28 107 853 824
Po spuštění: Volných bajtů: 27 899 994 112
.
- - End Of File - - B2179A16F50933F2E92233D7E5305F1A

Script som spravil ako ste uvádzal,to bol log zo skriptu.Pekný deň a MOC DÍKY.

Tak jeste uklidime

Odinstalujte Combofix

Start - Spustit (nebo pouzijte klavesobou zkratku Win+R)
Napiste ComboFix /Uninstall
Stisknete Enter
Tohle smaze Combofix a jeho slozky

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

¨

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner (viz muj podpis)
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za 14 dni

A pokud nejsou problemy ci dotazy, je to z me strany vse

No panečku,vy ste fakt PROFÍK,to teda poviem.Ak sa mi niečo z PC stane môžem sa na Vás v budúcnosti obrátiť?Ešte raz VELIKÁNSKA VĎAKA za pomoc.MOC ĎAKUJEM.Pekný deň.

VIRY.CZ

Službu centrum zabezpečení systému windows nelze spustit

Službu centrum zabezpečení systému windows nelze spustit

Re: Službu centrum zabezpečení systému windows nelze spustit

Re: Službu centrum zabezpečení systému windows nelze spustit

Re: Službu centrum zabezpečení systému windows nelze spustit

Re: Službu centrum zabezpečení systému windows nelze spustit

Re: Službu centrum zabezpečení systému windows nelze spustit

Re: Službu centrum zabezpečení systému windows nelze spustit

Re: Službu centrum zabezpečení systému windows nelze spustit

Re: Službu centrum zabezpečení systému windows nelze spustit

Re: Službu centrum zabezpečení systému windows nelze spustit

Re: Službu centrum zabezpečení systému windows nelze spustit

Re: Službu centrum zabezpečení systému windows nelze spustit

Re: Službu centrum zabezpečení systému windows nelze spustit

Re: Službu centrum zabezpečení systému windows nelze spustit

Re: Službu centrum zabezpečení systému windows nelze spustit