VIRY.CZ

Dobrý den , občas čtu toto forum , ale nic kloudného jsem nevymyslel . Myslel jsem , po MBAM vyčistění přes přetrvávající problém, že mám špatné připojení (instalace nové anteny, potom ,že jde o vadnou síťovou kartou tedy HW (vyměnili jsme,přenastavili účty) taky ne. Použití MBAM a Combofix bylo provedeno v režimu admin , přitom vyplá antiwirová,antispywarová ochrana.Combofix něco zmazal , ale asi bude potřeba něco fikanějšího, protože problém je stále stejný. Po spuštění prohlížeč buď najde jenom nějakou adresu nebo její část a po nějaké době připojení ztratí . CMD hlásí , při zapinkání na síť že prohlížeč nemůže najít připojení. Zde mám log dnešní z RSIT. Prosím zkušené harcovníky o radu . Předem děkuji.

Logfile of random's system information tool 1.09 (written by random/random)
Run by administrátor at 2011-11-28 08:14:28
Systém Microsoft Windows XP Professional Service Pack 3
System drive D: has 3 GB (5%) free of 66 GB
Total RAM: 767 MB (29% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:14:49, on 28.11.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\Program Files\AVAST Software\Avast\AvastSvc.exe
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\Application Updater\ApplicationUpdater.exe
C:\ComplexWebServer\apache\bin\apache.exe
C:\ComplexWebServer\mysql\bin\mysqld.exe
D:\Program Files\Firebird\Firebird_2_0\bin\fbguard.exe
D:\Program Files\Java\jre6\bin\jqs.exe
D:\Program Files\Spyware Terminator\sp_rsser.exe
D:\WINDOWS\System32\svchost.exe
D:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\ComplexWebServer\apache\bin\apache.exe
D:\Program Files\Firebird\Firebird_2_0\bin\fbserver.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\internet explorer\iexplore.exe
D:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
D:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe
D:\WINDOWS\FixCamera.exe
D:\WINDOWS\system32\rundll32.exe
D:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb02.exe
C:\ComplexWebServer\bin\ServiceDirect.exe
D:\WINDOWS\system32\ctfmon.exe
D:\WINDOWS\vsnp325.exe
D:\PROGRA~1\COMMON~1\PCSuite\DATALA~1\DATALA~1.EXE
D:\PROGRA~1\Nokia\NOKIAP~1\TRAYAP~1.EXE
D:\Program Files\internet explorer\iexplore.exe
D:\Program Files\HP\HP Software Update\HPWuSchd2.exe
D:\Program Files\ABBYY FineReader 5.0\CAgent.exe
D:\PROGRA~1\COMMON~1\PCSuite\Services\SERVIC~1.EXE
D:\Program Files\AVAST Software\Avast\avastUI.exe
D:\Program Files\Ask.com\Updater\Updater.exe
D:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe
D:\Program Files\internet explorer\iexplore.exe
D:\Documents and Settings\administrátor\Plocha\RSIT.exe
D:\Program Files\trend micro\administrátor.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.igeared.com/dispatcher.aspx?i=63
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://toolbar.inbox.com/search/ie.aspx ... =11&lng=cs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://toolbar.inbox.com/help/sa_custom ... tbid=80093
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: SpeedUpToolbar BHO - {0D52B2CA-C02E-4EC1-8E80-0A5CD2A640BD} - D:\Program Files\SpeedUpToolbar\IEToolbar.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - D:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: SpeedUpToolbar BHO - {0D52B2CA-C02E-4EC1-8E80-0A5CD2A640BD} - D:\Program Files\SpeedUpToolbar\IEToolbar.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - D:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - D:\Program Files\Google\GoogleToolbarNotifier\5.7.7018.1622\swg.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - D:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - D:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - D:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: SpeedUp Toolbar - {005B8FC3-0F7E-45DD-8A2F-E352D67EDBFC} - D:\Program Files\SpeedUpToolbar\IEToolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - D:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [SpywareTerminator] "D:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [RemoteControl] "D:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] D:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [FixCamera] D:\WINDOWS\FixCamera.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] D:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb02.exe
O4 - HKLM\..\Run: [ComplexWebServer] "C:\ComplexWebServer\bin\ServiceDirect.exe" /RUNHIDE /CONF="C:\ComplexWebServer\bin\ServiceDirect.conf"
O4 - HKLM\..\Run: [snp325] D:\WINDOWS\vsnp325.exe
O4 - HKLM\..\Run: [DataLayer] D:\PROGRA~1\COMMON~1\PCSuite\DATALA~1\DATALA~1.EXE
O4 - HKLM\..\Run: [PCSuiteTrayApplication] D:\PROGRA~1\Nokia\NOKIAP~1\TRAYAP~1.EXE
O4 - HKLM\..\Run: [HP Software Update] D:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [ABBYY Community Agent] D:\Program Files\ABBYY FineReader 5.0\CAgent.exe
O4 - HKLM\..\Run: [AtiPTA] atiptaxx.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "D:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [avast] "D:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [ApnUpdater] "D:\Program Files\Ask.com\Updater\Updater.exe"
O4 - HKLM\..\Run: [SearchSettings] "D:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe"
O4 - HKCU\..\Run: [SpywareTerminatorUpdate] "D:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"
O4 - HKCU\..\Run: [swg] "D:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-1993962763-1343024091-854245398-1003\..\Run: [NBJ] "D:\Program Files\Ahead\Nero BackItUp\NBJ.exe" (User 'milan')
O4 - HKUS\S-1-5-21-1993962763-1343024091-854245398-1003\..\Run: [TomTomHOME.exe] "D:\Program Files\TomTom HOME 2\HOMERunner.exe" (User 'milan')
O4 - HKUS\S-1-5-21-1993962763-1343024091-854245398-1003\..\Run: [SpywareTerminatorUpdate] "D:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe" (User 'milan')
O4 - HKUS\S-1-5-21-1993962763-1343024091-854245398-1003\..\Run: [swg] "D:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" (User 'milan')
O4 - HKUS\S-1-5-21-1993962763-1343024091-854245398-1003\..\Run: [MediaGet2] D:\Documents and Settings\milan\Local Settings\Data aplikací\MediaGet2\mediaget.exe --minimized (User 'milan')
O4 - HKUS\S-1-5-21-1993962763-1343024091-854245398-1003\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe (User 'milan')
O4 - HKUS\S-1-5-21-1993962763-1343024091-854245398-1003\..\Run: [MSMSGS] "D:\Program Files\Messenger\msmsgs.exe" /background (User 'milan')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - Cmdmapping - (no file) (HKCU)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - D:\Program Files\Yahoo!\Common\Yinsthelper200711281.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftup ... 3993650883
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 3993638796
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: speeduptoolbar - {A59E71FA-63AB-4695-B7B0-7B97BAA3CF9E} - D:\Program Files\SpeedUpToolbar\IEToolbar.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - D:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - D:\WINDOWS\System32\browseui.dll
O23 - Service: Application Updater - Spigot, Inc. - D:\Program Files\Application Updater\ApplicationUpdater.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - D:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - D:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - AVAST Software - D:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: CWS_Apache_80 - Apache Software Foundation - C:\ComplexWebServer\apache\bin\apache.exe
O23 - Service: CWS_MySQL_3306 - Unknown owner - C:\ComplexWebServer\mysql\bin\mysqld.exe
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - FirebirdSQL Project - D:\Program Files\Firebird\Firebird_2_0\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - FirebirdSQL Project - D:\Program Files\Firebird\Firebird_2_0\bin\fbserver.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - D:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - D:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - D:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - D:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - D:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: TomTomHOMEService - TomTom - D:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

--
End of file - 11328 bytes

======Scheduled tasks folder======

D:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
D:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
D:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
D:\WINDOWS\tasks\User_Feed_Synchronization-{E6517C50-CAE8-4F2C-9061-2B655B8E2AB2}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
Yahoo! Toolbar Helper - D:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-10-26 440384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0D52B2CA-C02E-4EC1-8E80-0A5CD2A640BD}]
SpeedUpToolbar BHO - D:\Program Files\SpeedUpToolbar\IEToolbar.dll [2011-11-08 2376792]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-07-04 820864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - D:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-11-22 342192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - D:\Program Files\Google\GoogleToolbarNotifier\5.7.7018.1622\swg.dll [2011-11-22 1003576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - D:\Program Files\Ask.com\GenericAskToolbar.dll [2011-08-23 1515688]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - D:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-05-27 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-05-27 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - D:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-10-26 440384]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - D:\Program Files\Ask.com\GenericAskToolbar.dll [2011-08-23 1515688]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-07-04 820864]
{005B8FC3-0F7E-45DD-8A2F-E352D67EDBFC} - SpeedUp Toolbar - D:\Program Files\SpeedUpToolbar\IEToolbar.dll [2011-11-08 2376792]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - D:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-11-22 342192]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SpywareTerminator"=D:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2011-11-24 2216960]
"RemoteControl"=D:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe [2004-11-02 32768]
"NeroFilterCheck"=D:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"FixCamera"=D:\WINDOWS\FixCamera.exe [2007-02-12 20480]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"HPDJ Taskbar Utility"=D:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb02.exe [2001-04-11 192512]
"ComplexWebServer"=C:\ComplexWebServer\bin\ServiceDirect.exe [2006-09-17 686080]
"snp325"=D:\WINDOWS\vsnp325.exe [2007-04-25 835584]
"DataLayer"=D:\PROGRA~1\COMMON~1\PCSuite\DATALA~1\DATALA~1.EXE [2004-05-06 1159168]
"PCSuiteTrayApplication"=D:\PROGRA~1\Nokia\NOKIAP~1\TRAYAP~1.EXE [2004-03-23 147968]
"HP Software Update"=D:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2010-06-09 49208]
"ABBYY Community Agent"=D:\Program Files\ABBYY FineReader 5.0\CAgent.exe [2002-03-20 253952]
"AtiPTA"=D:\WINDOWS\system32\atiptaxx.exe [2000-08-31 180224]
"Adobe Reader Speed Launcher"=D:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-09-07 37296]
"Adobe ARM"=D:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-30 937920]
"avast"=D:\Program Files\AVAST Software\Avast\avastUI.exe [2011-07-04 3493720]
"ApnUpdater"=D:\Program Files\Ask.com\Updater\Updater.exe [2011-08-23 887976]
"SearchSettings"=D:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe [2011-09-27 894304]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SpywareTerminatorUpdate"=D:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2011-11-24 3318784]
"swg"=D:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-04-12 68856]
"ctfmon.exe"=D:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
D:\WINDOWS\system32\Ati2evxx.dll [2006-05-03 61440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
D:\WINDOWS\system32\WgaLogon.dll [2009-02-12 190976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - D:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\WINDOWS\system32\dpvsetup.exe"="D:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"D:\Program Files\Metin2_TESTER\metin2.bin"="D:\Program Files\Metin2_TESTER\metin2.bin:*:Enabled:metin2"
"D:\Bluetooh\Btoes_V2.54\Spylite.exe"="D:\Bluetooh\Btoes_V2.54\Spylite.exe:*:Enabled:WIDCOMM BTServer Spy"
"C:\ComplexWebServer\apache\bin\Apache.exe"="C:\ComplexWebServer\apache\bin\Apache.exe:*:Enabled:Apache HTTP Server"
"C:\totalcmd\TOTALCMD.EXE"="C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"D:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="D:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"D:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe"="D:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe"
"D:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="D:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"D:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe"="D:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe"
"D:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe"="D:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe"
"D:\Program Files\HP\HP Software Update\HPWUCli.exe"="D:\Program Files\HP\HP Software Update\HPWUCli.exe:*:Enabled:hpwucli.exe"
"D:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"="D:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Disabled:Crawler Spyware Terminator"
"D:\Program Files\BitTorrent\BitTorrent.exe"="D:\Program Files\BitTorrent\BitTorrent.exe:*:Enabled:BitTorrent"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="D:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"D:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe"="D:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe"
"D:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="D:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"D:\Program Files\Common Files\HP\Digital Imaging\Bin\hpqPhotoCrm.exe"="D:\Program Files\Common Files\HP\Digital Imaging\Bin\hpqPhotoCrm.exe:*:Enabled:hpqphotocrm.exe"
"D:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe"="D:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe:*:Enabled:hpqsudi.exe"
"D:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe"="D:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe:*:Enabled:hpqpsapp.exe"
"D:\Program Files\HP\Digital Imaging\bin\hpqpse.exe"="D:\Program Files\HP\Digital Imaging\bin\hpqpse.exe:*:Enabled:hpqpse.exe"
"D:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe"="D:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe"
"D:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe"="D:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe"
"D:\Program Files\HP\HP Software Update\HPWUCli.exe"="D:\Program Files\HP\HP Software Update\HPWUCli.exe:*:Enabled:hpwucli.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=ctwdm32.dll
"MSVideo8"=VfWWDM32.dll
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.l3acm"=D:\WINDOWS\system32\l3codeca.acm
"VIDC.MPG4"=mpg4c32.dll
"VIDC.MP42"=mpg4c32.dll

======List of files/folders created in the last 1 month======

2011-11-27 22:54:46 ----A---- D:\ComboFix.txt
2011-11-27 22:04:17 ----D---- D:\Documents and Settings\administrátor\Data aplikací\Malwarebytes
2011-11-25 12:17:24 ----HDC---- D:\Documents and Settings\All Users.WINDOWS\Data aplikací\{08E30618-5D06-461B-BBD3-4ADFB0810824}
2011-11-25 12:16:40 ----D---- D:\Program Files\iLivid
2011-11-24 19:43:08 ----RA---- D:\WINDOWS\system32\RtNicProp32.dll
2011-11-24 19:43:07 ----RA---- D:\WINDOWS\system32\drivers\Rtnicxp.sys
2011-11-24 06:09:57 ----ASH---- D:\pagefile.sys
2011-11-20 21:47:10 ----D---- D:\Documents and Settings\administrátor\Data aplikací\Google
2011-11-20 21:46:46 ----D---- D:\Documents and Settings\administrátor\Data aplikací\BabylonToolbar
2011-11-11 22:13:36 ----HDC---- D:\WINDOWS\$NtUninstallKB2641690$
2011-11-09 22:09:22 ----HDC---- D:\WINDOWS\$NtUninstallKB2544893-v2$

======List of files/folders modified in the last 1 month======

2011-11-28 08:14:38 ----D---- D:\Program Files\trend micro
2011-11-28 07:20:16 ----D---- D:\WINDOWS\network diagnostic
2011-11-28 07:13:25 ----D---- D:\WINDOWS\Temp
2011-11-28 06:33:37 ----A---- D:\WINDOWS\SchedLgU.Txt
2011-11-27 23:02:54 ----D---- D:\WINDOWS\system32\CatRoot2
2011-11-27 22:54:54 ----D---- D:\Qoobox
2011-11-27 22:54:49 ----D---- D:\WINDOWS\Prefetch
2011-11-27 22:48:31 ----D---- D:\WINDOWS
2011-11-27 22:48:31 ----A---- D:\WINDOWS\system.ini
2011-11-27 22:47:48 ----D---- D:\WINDOWS\system32\drivers\etc
2011-11-27 22:39:12 ----D---- D:\WINDOWS\system32\drivers
2011-11-27 22:39:12 ----D---- D:\WINDOWS\system32
2011-11-27 22:39:11 ----D---- D:\WINDOWS\AppPatch
2011-11-27 22:39:03 ----D---- D:\Program Files\Common Files
2011-11-26 08:02:08 ----D---- D:\Program Files
2011-11-26 08:00:51 ----D---- D:\Config.Msi
2011-11-25 22:38:06 ----D---- D:\409
2011-11-25 22:10:25 ----SHD---- D:\WINDOWS\Installer
2011-11-25 19:43:45 ----A---- D:\WINDOWS\NeroDigital.ini
2011-11-25 17:11:43 ----D---- D:\Program Files\Spyware Terminator
2011-11-25 13:04:17 ----D---- D:\Documents and Settings\All Users.WINDOWS\Data aplikací\Spyware Terminator
2011-11-24 20:16:04 ----D---- D:\WINDOWS\Debug
2011-11-24 19:43:07 ----HD---- D:\WINDOWS\inf
2011-11-24 17:06:59 ----A---- D:\WINDOWS\WTRAN32.INI
2011-11-23 11:02:08 ----D---- D:\WINDOWS\Minidump
2011-11-22 11:00:01 ----HDC---- D:\WINDOWS\$NtUninstallKB2378111_WM9$
2011-11-22 10:57:24 ----D---- D:\Program Files\Malwarebytes' Anti-Malware
2011-11-20 21:45:49 ----D---- D:\Documents and Settings\administrátor\Data aplikací\Spyware Terminator
2011-11-18 07:19:48 ----SD---- D:\Documents and Settings\All Users.WINDOWS\Data aplikací\Microsoft
2011-11-16 06:13:01 ----D---- D:\Program Files\SpeedUpToolbar
2011-11-12 10:26:34 ----D---- D:\Documents and Settings\administrátor\Data aplikací\Adobe
2011-11-11 22:13:39 ----RSHDC---- D:\WINDOWS\system32\dllcache
2011-11-11 06:54:34 ----HD---- D:\WINDOWS\$hf_mig$
2011-11-10 06:43:17 ----AC---- D:\WINDOWS\system32\PerfStringBackup.INI
2011-11-09 22:03:56 ----AC---- D:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; D:\WINDOWS\System32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 sisagp;Filtr SIS sběrnice AGP ; D:\WINDOWS\System32\DRIVERS\sisagp.sys [2008-04-13 40960]
R1 Aavmker4;avast! Asynchronous Virus Monitor; D:\WINDOWS\system32\drivers\Aavmker4.sys [2011-09-06 30808]
R1 aswRdr;aswRdr; D:\WINDOWS\system32\drivers\aswRdr.sys [2011-09-06 34392]
R1 aswSnx;aswSnx; D:\WINDOWS\system32\drivers\aswSnx.sys [2011-09-06 442200]
R1 aswSP;aswSP; D:\WINDOWS\system32\drivers\aswSP.sys [2011-09-06 320856]
R1 aswTdi;avast! Network Shield Support; D:\WINDOWS\system32\drivers\aswTdi.sys [2011-09-06 52568]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\D:\WINDOWS\System32\drivers\sp_rsdrv2.sys []
R1 StarOpen;StarOpen; D:\WINDOWS\system32\drivers\StarOpen.sys [2009-07-26 5632]
R2 Aspi32;Aspi32; D:\WINDOWS\System32\drivers\aspi32.sys [2001-11-30 15360]
R2 aswFsBlk;aswFsBlk; D:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-09-06 20568]
R2 aswMon2;avast! Standard Shield Support; D:\WINDOWS\system32\drivers\aswMon2.sys [2011-09-06 110552]
R3 ati2mtag;ati2mtag; D:\WINDOWS\System32\DRIVERS\ati2mtag.sys [2006-05-03 1540608]
R3 atinrvxx;ATI WDM Rage Theater Video; D:\WINDOWS\System32\DRIVERS\atinrvxx.sys [2004-08-04 105984]
R3 ATITUNEP;ATI WDM TV Tuner; D:\WINDOWS\System32\DRIVERS\atintuxx.sys [2004-08-04 78336]
R3 ativraxx;ATI WDM Rage Theater Audio; D:\WINDOWS\System32\DRIVERS\atinraxx.sys [2004-08-04 53760]
R3 ATIXSAudio;ATI WDM TV Audio Crossbar; D:\WINDOWS\System32\DRIVERS\atinxsxx.sys [2004-08-04 64512]
R3 BthEnum;Ovladač pro Bluetooth Request Block; D:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
R3 BTHMODEM;Ovladač pro sériovou komunikaci protokolem Bluetooth; D:\WINDOWS\system32\DRIVERS\bthmodem.sys [2008-04-13 37888]
R3 BthPan;Bluetooth Device (Personal Area Network); D:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; D:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-14 18944]
R3 ctljystk;Game port pro zařízení Creative SB Live!; D:\WINDOWS\System32\DRIVERS\ctljystk.sys [2001-08-17 3712]
R3 emu10k;Creative SB Live! (WDM); D:\WINDOWS\system32\drivers\emu10k1m.sys [2001-08-17 283904]
R3 emu10k1;Creative Interface Manager Driver (WDM); D:\WINDOWS\system32\drivers\ctlfacem.sys [2001-08-17 6912]
R3 MVDCODEC;ATI WDM Specialized MVD Codec; D:\WINDOWS\System32\DRIVERS\atinmdxx.sys [2004-08-04 13824]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); D:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; D:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2009-03-25 130432]
R3 sfman;Creative SoundFont Manager Driver (WDM); D:\WINDOWS\system32\drivers\sfmanm.sys [2001-08-17 36480]
R3 SISNIC;SiS PCI Fast Ethernet Adapter Driver; D:\WINDOWS\System32\DRIVERS\sisnic.sys [2008-04-13 32768]
R3 TTDec;ATI WDM Teletext Decoder; D:\WINDOWS\System32\DRIVERS\ATINTTXX.sys [2004-08-04 13824]
R3 usbscan;Ovladač skeneru USB; D:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; D:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 Arp1394;Protokol 1394 ARP Client; D:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 BTHPORT;Ovladač portu Bluetooth; D:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; D:\WINDOWS\System32\Drivers\btwusb.sys []
S3 catchme;catchme; \??\D:\DOCUME~1\ADMINI~2\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; D:\WINDOWS\System32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 hamachi;Hamachi Network Interface; D:\WINDOWS\system32\DRIVERS\hamachi.sys [2008-09-27 25280]
S3 hidgame;Microsoft Hid to Joystick Port Enabler; D:\WINDOWS\system32\DRIVERS\hidgame.sys [2001-08-17 8576]
S3 hidusb;Ovladač třídy standardu HID; D:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 mouhid;Ovladač myši standardu HID; D:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-10-25 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; D:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; D:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; D:\WINDOWS\System32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NIC1394;1394 Net Driver; D:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 SLIP;BDA Slip De-Framer; D:\WINDOWS\System32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 SNP325;USB PC Camera (SNPSTD325); D:\WINDOWS\system32\DRIVERS\snp325.sys [2007-04-26 10343168]
S3 snpmi03;VideoCAM NB 300; D:\WINDOWS\system32\DRIVERS\snpmi03.sys []
S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); D:\WINDOWS\system32\DRIVERS\ss_bus.sys [2007-05-02 83592]
S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; D:\WINDOWS\system32\DRIVERS\ss_mdfl.sys [2007-05-02 15112]
S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; D:\WINDOWS\system32\DRIVERS\ss_mdm.sys [2007-05-02 109704]
S3 streamip;BDA IPSink; D:\WINDOWS\System32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbprint;Třída USB Printer; D:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; D:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WSTCODEC;Dálnopisný kodek světového standardu; D:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; D:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; D:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Application Updater;Application Updater; D:\Program Files\Application Updater\ApplicationUpdater.exe [2011-09-27 745880]
R2 Ati HotKey Poller;Ati HotKey Poller; D:\WINDOWS\system32\Ati2evxx.exe [2006-05-03 413696]
R2 avast! Antivirus;avast! Antivirus; D:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-07-04 42184]
R2 BthServ;Bluetooth Support Service; D:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 CWS_Apache_80;CWS_Apache_80; C:\ComplexWebServer\apache\bin\apache.exe [2005-10-09 20541]
R2 CWS_MySQL_3306;CWS_MySQL_3306; C:\ComplexWebServer\mysql\bin\mysqld.exe [2008-11-15 6447744]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; D:\Program Files\Firebird\Firebird_2_0\bin\fbguard.exe [2008-11-11 81920]
R2 JavaQuickStarterService;Java Quick Starter; D:\Program Files\Java\jre6\bin\jqs.exe [2010-04-12 153376]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; D:\Program Files\Spyware Terminator\sp_rsser.exe [2011-11-24 496128]
R2 TomTomHOMEService;TomTomHOMEService; D:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2010-08-24 92008]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; D:\Program Files\Firebird\Firebird_2_0\bin\fbserver.exe [2008-11-11 2015232]
S2 ATI Smart;ATI Smart; D:\WINDOWS\system32\ati2sgag.exe [2006-05-03 520192]
S2 gupdate;Služba Google Update (gupdate); D:\Program Files\Google\Update\GoogleUpdate.exe [2011-03-06 136176]
S3 aspnet_state;ASP.NET State Service; D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; D:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); D:\Program Files\Google\Update\GoogleUpdate.exe [2011-03-06 136176]
S3 gusvc;Google Software Updater; D:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-05-04 182768]
S3 hpqcxs08;hpqcxs08; D:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 idsvc;Windows CardSpace; D:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; D:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; D:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; D:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

ahoj,
ak citas toto forum urcite Ti neuniklo, ze ComboFix sa ma pouzivat az na radu radcu/moda

Presun ComboFix
na plochu (ak tam este nie je)

otvor si Poznamkovy blok - notepad

do neho zkopiruj skript z nasledujiceho okna:

Kód: Vybrat vše

Registry::
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ApnUpdater"=-
"SearchSettings"=-

uloz vytvoreny textovy soubor ako CFScript.txt na plochu

po ulozeni uchop vytvoreny skript lavym tlacitkom mysi a presun ho nad ikonu Combofixu, nad nim skript upust:

Obrázek

po aplikacii by mal vzniknut dalsi log, ten vloz sem

Ano omlouvám se výtka je namístě.Tady je log z Combofixu dle Vašeho doporučení.

ComboFix 11-11-28.02 - administrátor 28.11.2011 14:46:52.7.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.767.427 [GMT 1:00]
Spuštěný z: d:\documents and settings\administrátor\Plocha\ComboFix.exe
Použité ovládací přepínače :: d:\documents and settings\administrátor\Plocha\CFScript.txt.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-28 do 2011-11-28 )))))))))))))))))))))))))))))))
.
.
2011-11-28 13:36 . 2011-11-28 13:36 -------- d-sh--w- d:\documents and settings\administrátor\IECompatCache
2011-11-27 21:04 . 2011-11-27 21:04 -------- d-----w- d:\documents and settings\administrátor\Data aplikací\Malwarebytes
2011-11-25 11:27 . 2011-11-25 11:27 -------- d-----w- d:\documents and settings\milan\Local Settings\Data aplikací\Ilivid Player
2011-11-25 11:20 . 2011-11-25 11:20 -------- d-----w- d:\documents and settings\Milan\AppData
2011-11-25 11:20 . 2011-11-25 11:20 -------- d-----w- d:\documents and settings\milan\Data aplikací\searchquband
2011-11-25 11:17 . 2011-11-25 11:17 -------- dc-h--w- d:\documents and settings\All Users.WINDOWS\Data aplikací\{08E30618-5D06-461B-BBD3-4ADFB0810824}
2011-11-25 11:16 . 2011-11-25 11:18 -------- d-----w- d:\program files\iLivid
2011-11-25 11:14 . 2011-11-25 11:14 -------- d-----w- d:\documents and settings\milan\Local Settings\Data aplikací\PackageAware
2011-11-24 18:43 . 2009-03-03 20:18 73728 ----a-r- d:\windows\system32\RtNicProp32.dll
2011-11-24 18:43 . 2009-03-25 14:29 130432 ----a-r- d:\windows\system32\drivers\Rtnicxp.sys
2011-11-20 20:47 . 2011-11-28 12:11 -------- d-----w- d:\documents and settings\administrátor\Local Settings\Data aplikací\AskToolbar
2011-11-20 20:47 . 2011-11-27 21:58 -------- d-----w- d:\documents and settings\administrátor\Local Settings\Data aplikací\Google
2011-11-20 20:46 . 2011-11-20 20:46 -------- d-----w- d:\documents and settings\administrátor\Data aplikací\BabylonToolbar
2011-11-12 09:26 . 2011-11-12 10:14 -------- d-----w- d:\documents and settings\administrátor\Local Settings\Data aplikací\Adobe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-10 14:22 . 2008-06-13 13:36 692736 ----a-w- d:\windows\system32\inetcomm.dll
2011-09-28 07:06 . 2002-09-20 18:03 602112 ----a-w- d:\windows\system32\crypt32.dll
2011-09-26 09:41 . 2008-07-29 17:59 613376 ----a-w- d:\windows\system32\uiautomationcore.dll
2011-09-26 09:41 . 2001-10-25 14:00 22528 ----a-w- d:\windows\system32\oleaccrc.dll
2011-09-26 09:41 . 2001-10-25 14:00 220160 ----a-w- d:\windows\system32\oleacc.dll
2011-09-16 17:56 . 2011-09-04 15:36 404640 ----a-w- d:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-06 20:45 . 2011-03-06 20:36 41184 ----a-w- d:\windows\avastSS.scr
2011-09-06 20:45 . 2011-03-06 20:36 199304 ----a-w- d:\windows\system32\aswBoot.exe
2011-09-06 20:38 . 2011-03-06 20:39 442200 ----a-w- d:\windows\system32\drivers\aswSnx.sys
2011-09-06 20:37 . 2011-03-06 20:39 320856 ----a-w- d:\windows\system32\drivers\aswSP.sys
2011-09-06 20:36 . 2011-03-06 20:39 34392 ----a-w- d:\windows\system32\drivers\aswRdr.sys
2011-09-06 20:36 . 2011-03-06 20:39 52568 ----a-w- d:\windows\system32\drivers\aswTdi.sys
2011-09-06 20:36 . 2011-03-06 20:39 110552 ----a-w- d:\windows\system32\drivers\aswmon2.sys
2011-09-06 20:36 . 2011-03-06 20:39 104536 ----a-w- d:\windows\system32\drivers\aswmon.sys
2011-09-06 20:36 . 2011-03-06 20:40 20568 ----a-w- d:\windows\system32\drivers\aswFsBlk.sys
2011-09-06 20:33 . 2011-03-06 20:39 30808 ----a-w- d:\windows\system32\drivers\aavmker4.sys
2011-09-06 14:10 . 2002-09-20 17:41 1858944 ----a-w- d:\windows\system32\win32k.sys
2011-08-31 16:00 . 2010-06-23 10:43 22216 ----a-w- d:\windows\system32\drivers\mbam.sys
2004-10-01 13:00 . 2008-06-13 16:34 40960 ----a-w- d:\program files\Uninstall_CDS.exe
2008-06-11 05:02 . 2008-04-03 16:10 67696 -c--a-w- d:\program files\mozilla firefox\components\jar50.dll
2008-06-11 05:02 . 2008-04-03 16:10 54376 -c--a-w- d:\program files\mozilla firefox\components\jsd3250.dll
2008-06-11 05:02 . 2008-04-03 16:10 34952 -c--a-w- d:\program files\mozilla firefox\components\myspell.dll
2008-06-11 05:02 . 2008-04-03 16:10 46720 -c--a-w- d:\program files\mozilla firefox\components\spellchk.dll
2008-06-11 05:02 . 2008-04-03 16:10 172144 -c--a-w- d:\program files\mozilla firefox\components\xpinstal.dll
.
.
((((((((((((((((((((((((((((( SnapShot_2011-11-22_11.29.58 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-11-28 13:34 . 2011-11-28 13:34 16384 d:\windows\Temp\Perflib_Perfdata_b2c.dat
+ 2011-11-25 11:17 . 2011-11-25 11:17 262656 d:\windows\Installer\12063dc.msi
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{0D52B2CA-C02E-4EC1-8E80-0A5CD2A640BD}"= "d:\program files\SpeedUpToolbar\IEToolbar.dll" [2011-11-08 2376792]
.
[HKEY_CLASSES_ROOT\clsid\{0d52b2ca-c02e-4ec1-8e80-0a5cd2a640bd}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0D52B2CA-C02E-4EC1-8E80-0A5CD2A640BD}]
2011-11-08 01:45 2376792 ----a-w- d:\program files\SpeedUpToolbar\IEToolbar.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2011-08-23 19:20 1515688 ----a-w- d:\program files\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "d:\program files\Ask.com\GenericAskToolbar.dll" [2011-08-23 1515688]
"{005B8FC3-0F7E-45DD-8A2F-E352D67EDBFC}"= "d:\program files\SpeedUpToolbar\IEToolbar.dll" [2011-11-08 2376792]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CLASSES_ROOT\clsid\{005b8fc3-0f7e-45dd-8a2f-e352d67edbfc}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{005B8FC3-0F7E-45DD-8A2F-E352D67EDBFC}"= "d:\program files\SpeedUpToolbar\IEToolbar.dll" [2011-11-08 2376792]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "d:\program files\Ask.com\GenericAskToolbar.dll" [2011-08-23 1515688]
.
[HKEY_CLASSES_ROOT\clsid\{005b8fc3-0f7e-45dd-8a2f-e352d67edbfc}]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-07-04 11:43 122512 ------w- d:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpywareTerminatorUpdate"="d:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe" [2011-11-24 3318784]
"swg"="d:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-04-12 68856]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpywareTerminator"="d:\program files\Spyware Terminator\SpywareTerminatorShield.exe" [2011-11-24 2216960]
"RemoteControl"="d:\program files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe" [2004-11-02 32768]
"NeroFilterCheck"="d:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"FixCamera"="d:\windows\FixCamera.exe" [2007-02-12 20480]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"HPDJ Taskbar Utility"="d:\windows\system32\spool\drivers\w32x86\3\hpztsb02.exe" [2001-04-11 192512]
"ComplexWebServer"="c:\complexwebserver\bin\ServiceDirect.exe" [2006-09-17 686080]
"snp325"="d:\windows\vsnp325.exe" [2007-04-25 835584]
"HP Software Update"="d:\program files\HP\HP Software Update\HPWuSchd2.exe" [2010-06-09 49208]
"ABBYY Community Agent"="d:\program files\ABBYY FineReader 5.0\CAgent.exe" [2002-03-20 253952]
"AtiPTA"="atiptaxx.exe" [2000-08-30 180224]
"Adobe Reader Speed Launcher"="d:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-09-07 37296]
"Adobe ARM"="d:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]
"avast"="d:\program files\AVAST Software\Avast\avastUI.exe" [2011-07-04 3493720]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="d:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"d:\\WINDOWS\\system32\\dpvsetup.exe"=
"d:\\Program Files\\Metin2_TESTER\\metin2.bin"=
"d:\\Bluetooh\\Btoes_V2.54\\Spylite.exe"=
"c:\\ComplexWebServer\\apache\\bin\\Apache.exe"=
"c:\\totalcmd\\TOTALCMD.EXE"=
"d:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"d:\\Program Files\\HP\\Digital Imaging\\bin\\hpfcCopy.exe"=
"d:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"=
"d:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"=
"d:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"=
"d:\\Program Files\\HP\\HP Software Update\\HPWUCli.exe"=
"d:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe"=
"d:\\Program Files\\BitTorrent\\BitTorrent.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowOutboundDestinationUnreachable"= 1 (0x1)
"AllowRedirect"= 1 (0x1)
.
R1 aswSnx;aswSnx;d:\windows\system32\drivers\aswSnx.sys [6.3.2011 21:39 442200]
R1 aswSP;aswSP;d:\windows\system32\drivers\aswSP.sys [6.3.2011 21:39 320856]
R1 sp_rsdrv2;Spyware Terminator Driver 2;d:\windows\system32\drivers\sp_rsdrv2.sys [13.6.2008 16:04 142592]
R2 Application Updater;Application Updater;d:\program files\Application Updater\ApplicationUpdater.exe [27.9.2011 19:08 745880]
R2 aswFsBlk;aswFsBlk;d:\windows\system32\drivers\aswFsBlk.sys [6.3.2011 21:40 20568]
R2 CWS_Apache_80;CWS_Apache_80;c:\complexwebserver\apache\bin\Apache.exe [21.1.2009 22:41 20541]
R2 CWS_MySQL_3306;CWS_MySQL_3306;c:\complexwebserver\mysql\bin\mysqld.exe --defaults-file=c:\complexwebserver\mysql\conf\mysqld.conf CWS_MySQL_3306 --> c:\complexwebserver\mysql\bin\mysqld.exe --defaults-file=c:\complexwebserver\mysql\conf\mysqld.conf CWS_MySQL_3306 [?]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;d:\program files\Firebird\Firebird_2_0\bin\fbguard.exe -s --> d:\program files\Firebird\Firebird_2_0\bin\fbguard.exe -s [?]
R2 TomTomHOMEService;TomTomHOMEService;d:\program files\TomTom HOME 2\TomTomHOMEService.exe [24.8.2010 10:38 92008]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;d:\program files\Firebird\Firebird_2_0\bin\fbserver.exe -s --> d:\program files\Firebird\Firebird_2_0\bin\fbserver.exe -s [?]
R3 TTDec;ATI WDM Teletext Decoder;d:\windows\system32\drivers\atinttxx.sys [13.6.2008 16:17 13824]
S2 gupdate;Služba Google Update (gupdate);d:\program files\Google\Update\GoogleUpdate.exe [6.3.2011 21:40 136176]
S3 gupdatem;Služba Google Update (gupdatem);d:\program files\Google\Update\GoogleUpdate.exe [6.3.2011 21:40 136176]
S3 SNP325;USB PC Camera (SNPSTD325);d:\windows\system32\drivers\snp325.sys [18.3.2009 8:07 10343168]
S3 snpmi03;VideoCAM NB 300;d:\windows\system32\DRIVERS\snpmi03.sys --> d:\windows\system32\DRIVERS\snpmi03.sys [?]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08
.
Obsah adresáře 'Naplánované úlohy'
.
2011-11-28 d:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- d:\program files\Google\Update\GoogleUpdate.exe [2011-03-06 20:40]
.
2011-11-28 d:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- d:\program files\Google\Update\GoogleUpdate.exe [2011-03-06 20:40]
.
2011-11-28 d:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- d:\program files\Ask.com\UpdateTask.exe [2011-08-23 19:20]
.
2011-11-28 d:\windows\Tasks\User_Feed_Synchronization-{E6517C50-CAE8-4F2C-9061-2B655B8E2AB2}.job
- d:\windows\system32\msfeedssync.exe [2009-03-08 03:31]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://search.igeared.com/dispatcher.aspx?i=63
TCP: DhcpNameServer = 192.168.60.60
Handler: speeduptoolbar - {A59E71FA-63AB-4695-B7B0-7B97BAA3CF9E} - d:\program files\SpeedUpToolbar\IEToolbar.dll
DPF: DirectAnimation Java Classes - file://d:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://d:\windows\Java\classes\xmldso.cab
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-28 15:10
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(848)
d:\windows\system32\Ati2evxx.dll
.
- - - - - - - > 'explorer.exe'(2920)
d:\windows\system32\webcheck.dll
d:\windows\system32\WPDShServiceObj.dll
d:\windows\system32\PortableDeviceTypes.dll
d:\windows\system32\PortableDeviceApi.dll
.
Celkový čas: 2011-11-28 15:16:12
ComboFix-quarantined-files.txt 2011-11-28 14:16
ComboFix2.txt 2011-11-27 21:54
ComboFix3.txt 2011-11-22 11:37
ComboFix4.txt 2010-11-11 21:34
ComboFix5.txt 2011-11-28 12:20
.
Před spuštěním: 2 345 861 120
Po spuštění: 2 345 828 352
.
- - End Of File - - FB89DE6D463C5D0398FECF2D21687026

toto d:\program files\Ask.com odinstaluj

Provedl jsem,chvíli se zdálo, že je to pryč, ale během nějaké doby stále stejné. Prohlížeč nenajde webovou adresu.

pouzi http://www.viry.cz/forum/viewtopic.php? ... 05#p981205 volby 2-4-5

díky zkusím co to udělá. Problém je že, na tom compu , už nepřipojím žádnou adresu ani v nouzovém režimu. To je síla, to je intenzita nevídaná. Budu to muset nějak jinak stáhnout.

idealne by bolo pozicat si NTB resp. iny PC a odskusat spojenie ,,, problem moze byt v routri apod. ,,,
+
citat Rudy:
Zkuste restartovat modem, příp. další síť. prvek v datové cestě. Dále zkuste použít WinsockFix: http://www.spyware.cz/go.php?p=spyware&t=aplikace&id=22 . Utilita reinstaluje protokol TCP/IP. Máte-li parametry sítě zadány ručně, budete je muset po restartu znovu zadat.

HW je v pořádku, prevetivně (zbytečně) jsem minulý týden vyměnil providera, dal silnější anténu , novou síťovou kartu. Cmd pokyn ping ukazuje připojení adresy bez problému, tedy v režimu, kdy připojení browseru nenajde všechno (momentálně) nebo vůbec nic (což asi bude za chvíli). Samozřejmě další kompy v síti bez problému . Po použití poslední pomoci šel 5 minut v pohodě. Teď nepřejde přes nějaký zaheslovaný protokol .Základní adresy najde. Zatím.

OKi - odskusaj ten WSF a napis ako

provedl jsem radost trvala tak 10 minut. Opět vše při starém nenajde připojení. Něco dělám asi blbě.

JaRon píše:pouzi http://www.viry.cz/forum/viewtopic.php? ... 05#p981205 volby 2-4-5

pockam na logy

Díky za trpělivost.Nejraději bych to vyhodil oknem. Který log mám dodat ? Už jsem z toho jelen.

logy z RogueKiller

Už vidím ,že nedorazily, sorry .

zde je úloha č. 4

RogueKiller V6.1.10 [11/18/2011] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/fi ... guekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User: administrátor [Admin rights]
Mode: ProxyFix -- Date : 11/29/2011 09:18:58

¤¤¤ Bad processes: 0 ¤¤¤

¤¤¤ Driver: [LOADED] ¤¤¤

¤¤¤ Registry Entries: 0 ¤¤¤

Finished : << RKreport[2].txt >>
RKreport[1].txt ; RKreport[2].txt

zde č. 2

RogueKiller V6.1.10 [11/18/2011] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/fi ... guekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User: administrátor [Admin rights]
Mode: Remove -- Date : 11/29/2011 09:18:32

¤¤¤ Bad processes: 2 ¤¤¤
[SUSP PATH] FixCamera.exe -- D:\WINDOWS\FixCamera.exe -> KILLED [TermProc]
[SUSP PATH] vsnp325.exe -- D:\WINDOWS\vsnp325.exe -> KILLED [TermProc]

¤¤¤ Registry Entries: 3 ¤¤¤
[SUSP PATH] HKLM\[...]\Run : FixCamera (D:\WINDOWS\FixCamera.exe) -> DELETED
[SUSP PATH] HKLM\[...]\Run : snp325 (D:\WINDOWS\vsnp325.exe) -> DELETED
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver: [LOADED] ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
127.0.0.1 localhost

Finished : << RKreport[1].txt >>
RKreport[1].txt

a zde č. 5

RogueKiller V6.1.10 [11/18/2011] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/fi ... guekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User: administrátor [Admin rights]
Mode: DNSFix -- Date : 11/29/2011 09:19:17

¤¤¤ Bad processes: 0 ¤¤¤

¤¤¤ Driver: [LOADED] ¤¤¤

¤¤¤ Registry Entries: 0 ¤¤¤

Finished : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt

VIRY.CZ

Blokování webového prohlížeče

Blokování webového prohlížeče

Re: Blokování webového prohlížeče

Re: Blokování webového prohlížeče

Re: Blokování webového prohlížeče

Re: Blokování webového prohlížeče

Re: Blokování webového prohlížeče

Re: Blokování webového prohlížeče

Re: Blokování webového prohlížeče

Re: Blokování webového prohlížeče

Re: Blokování webového prohlížeče

Re: Blokování webového prohlížeče

Re: Blokování webového prohlížeče

Re: Blokování webového prohlížeče

Re: Blokování webového prohlížeče

Re: Blokování webového prohlížeče