VIRY.CZ

Zdravím,

Na PC mé přítelkyně jsou pozůstatky ESET NOD 32, které nejdou odstranit. PC hlásí, že nemůže nalézt instalační balíček, který je na jiném síťovém prostředku. Jiný antivir nelze instalovat, dokud nebud odstraněn zbytek starého.

Za každou radu děkuji

Zdravím

Zkuste http://www.viry.cz/forum/viewtopic.php?t=42886

Program odstraněn a problémy s ním. Super stránky a super rada. Mockrát díky.

Nemáte zač

Snad ještě jednu maličkost, nejde mi se připojit k internetu a kdž otevřu ovládací panely a síťová připojení, otevře se jen prázdná složka. Žádná připojení tam nejsou. Smazaly se s tím antivirem?

Vložte sem log z RSIT.

Logfile of random's system information tool 1.06 (written by random/random)
Run by Marťaska at 2010-03-06 12:04:48
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 13 GB (17%) free of 76 GB
Total RAM: 503 MB (45% free)

HijackThis download failed

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1017A80C-6F09-4548-A84D-EDD6AC9525F0}]
Lexmark Panel nástrojů - C:\Program Files\Lexmark Toolbar\toolband.dll [2007-12-01 266240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Smapp"=C:\Program Files\Analog Devices\SoundMAX\SMTray.exe [2003-05-05 143360]
"Adobe Photo Downloader"=C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe [2005-06-06 57344]
"PCSuiteTrayApplication"=C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe [2007-03-23 227328]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2004-11-02 155648]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2004-11-02 126976]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2005-12-14 577536]
"TO2SSM_McciTrayApp"=C:\Program Files\TO2SSM\McciTrayApp.exe [2008-08-15 1473536]
"lxdnmon.exe"=C:\Program Files\Lexmark 2600 Series\lxdnmon.exe [2009-01-29 660136]
"lxdnamon"=C:\Program Files\Lexmark 2600 Series\lxdnamon.exe [2009-01-29 16040]
"FaxCenterServer"=C:\Program Files\Lexmark Fax Solutions\fm3032.exe [2009-01-29 320168]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxsrvc.dll [2004-11-02 348160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\ICQ6\ICQ.exe"="C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\WINDOWS\system32\lxdncoms.exe"="C:\WINDOWS\system32\lxdncoms.exe:*:Enabled:2600 Series Server"
"C:\Program Files\Lexmark 2600 Series\lxdnmon.exe"="C:\Program Files\Lexmark 2600 Series\lxdnmon.exe:*:Enabled:Printer Device Monitor"
"C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdnpswx.exe"="C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdnpswx.exe:*:Enabled:Printer Status Window Interface"
"C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdntime.exe"="C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdntime.exe:*:Enabled:Lexmark Connect Time Executable"
"C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdnjswx.exe"="C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdnjswx.exe:*:Enabled:Job Status Window Interface"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5aaa0370-f5da-11dd-b334-001617904fb9}]
shell\AutoRun\command - wd_windows_tools\WDSetup.exe


======List of files/folders created in the last 1 months======

2010-03-06 12:04:48 ----D---- C:\rsit
2010-03-06 12:04:48 ----D---- C:\Program Files\trend micro
2010-03-06 11:31:47 ----A---- C:\WINDOWS\rafazon.bat
2010-03-06 10:54:24 ----D---- C:\Program Files\VS Revo Group
2010-03-06 10:15:07 ----A---- C:\WINDOWS\ntbtlog.txt
2010-03-05 21:16:33 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Alwil Software
2010-03-05 21:14:00 ----HD---- C:\WINDOWS\system32\CTF
2010-03-04 23:38:21 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2010-03-04 23:38:07 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2010-03-04 17:40:25 ----D---- C:\WINDOWS\RegisteredPackages
2010-03-04 17:39:37 ----A---- C:\WINDOWS\system32\psisdecd.dll
2010-03-04 17:39:32 ----A---- C:\WINDOWS\system32\dxdllreg.exe
2010-03-04 17:18:49 ----D---- C:\Program Files\Lineage II
2010-03-04 17:18:15 ----D---- C:\Documents and Settings\Marťaska.BUDULIN\Data aplikací\InstallShield
2010-03-04 14:43:45 ----D---- C:\logs
2010-03-04 11:08:42 ----D---- C:\Documents and Settings\Marťaska.BUDULIN\Data aplikací\SUPERAntiSpyware.com
2010-03-04 10:26:09 ----D---- C:\Documents and Settings\Marťaska.BUDULIN\Data aplikací\FaxCtr
2010-03-03 22:46:10 ----HDC---- C:\WINDOWS\$NtUninstallKB978262$
2010-03-03 22:46:01 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2010-03-03 22:45:52 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-03-03 22:45:43 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-03-03 22:45:32 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-03-03 22:42:32 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-03-03 22:42:22 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-03-03 22:42:14 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-03-03 22:42:06 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2010-03-03 22:41:58 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-03-03 22:41:50 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-03-03 22:41:41 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-03-03 22:41:33 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2010-03-03 22:41:28 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2010-03-03 22:41:18 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-03-03 22:41:09 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2010-03-03 22:41:00 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-03-03 22:40:45 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2010-03-03 22:40:31 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-03-03 22:40:23 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-03-03 22:40:13 ----HDC---- C:\WINDOWS\$NtUninstallKB978251$
2010-03-03 22:40:05 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-03-03 22:39:56 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-03-03 22:39:44 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2010-03-03 22:39:34 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-03-03 22:39:25 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-03-03 22:39:10 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-03-03 22:39:02 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2010-03-03 22:38:52 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2010-03-03 22:38:43 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2010-03-03 22:38:31 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2010-03-03 22:38:19 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2010-03-03 22:38:12 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-03-03 22:37:46 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-03-03 22:37:30 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-03-03 22:37:19 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$
2010-03-03 22:37:07 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-03-03 22:36:59 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2010-03-03 22:36:49 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-03-03 22:35:56 ----HDC---- C:\WINDOWS\$NtUninstallKB979306$
2010-03-03 22:35:48 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2010-03-03 22:35:40 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2010-03-03 22:35:31 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-03-03 22:35:21 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-03-03 22:35:06 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$
2010-03-03 14:01:27 ----A---- C:\WINDOWS\system32\lxdnvs.dll
2010-03-03 14:01:22 ----A---- C:\WINDOWS\system32\lxdncoin.dll
2010-03-03 13:59:14 ----A---- C:\WINDOWS\system32\wiafbdrv.dll
2010-03-03 13:58:40 ----A---- C:\WINDOWS\system32\lxdndrs.dll
2010-03-03 13:58:40 ----A---- C:\WINDOWS\system32\lxdncnv4.dll
2010-03-03 13:58:40 ----A---- C:\WINDOWS\system32\lxdncaps.dll
2010-03-03 13:57:11 ----A---- C:\WINDOWS\system32\LXF3PMON.DLL
2010-03-03 13:57:11 ----A---- C:\WINDOWS\system32\LXF3FXPU.DLL
2010-03-03 13:56:51 ----A---- C:\WINDOWS\system32\LXF3PMRC.DLL
2010-03-03 13:56:51 ----A---- C:\WINDOWS\system32\lxf3oem.dll
2010-03-03 13:56:51 ----A---- C:\WINDOWS\system32\IMHOST32.DLL
2010-03-03 13:56:51 ----A---- C:\WINDOWS\system32\IMGMAN32.DLL
2010-03-03 13:56:41 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\FaxCtr
2010-03-03 13:56:28 ----D---- C:\Program Files\Lexmark Fax Solutions
2010-03-03 13:55:59 ----D---- C:\Program Files\Abbyy FineReader 6.0 Sprint
2010-03-03 13:54:24 ----A---- C:\WINDOWS\system32\gdiplus.dll
2010-03-03 13:54:23 ----D---- C:\Program Files\Lexmark Toolbar
2010-03-03 13:54:18 ----A---- C:\WINDOWS\system32\lxdnwupd.exe
2010-03-03 13:54:18 ----A---- C:\WINDOWS\system32\lxdnwupd.dll
2010-03-03 13:54:17 ----A---- C:\WINDOWS\system32\lxdnrwrd.ini
2010-03-03 13:54:07 ----A---- C:\WINDOWS\system32\LXDNinst.dll
2010-03-03 13:54:07 ----A---- C:\WINDOWS\system32\lxdninpa.dll
2010-03-03 13:54:07 ----A---- C:\WINDOWS\system32\LXDNhcp.dll
2010-03-03 13:54:06 ----A---- C:\WINDOWS\system32\lxdnutil.dll
2010-03-03 13:54:06 ----A---- C:\WINDOWS\system32\lxdnusb1.dll
2010-03-03 13:54:06 ----A---- C:\WINDOWS\system32\lxdnserv.dll
2010-03-03 13:54:06 ----A---- C:\WINDOWS\system32\lxdnprox.dll
2010-03-03 13:54:06 ----A---- C:\WINDOWS\system32\lxdniesc.dll
2010-03-03 13:54:05 ----A---- C:\WINDOWS\system32\lxdnpmui.dll
2010-03-03 13:54:05 ----A---- C:\WINDOWS\system32\lxdnlmpm.dll
2010-03-03 13:54:05 ----A---- C:\WINDOWS\system32\lxdnjswr.dll
2010-03-03 13:54:05 ----A---- C:\WINDOWS\system32\lxdninsr.dll
2010-03-03 13:54:05 ----A---- C:\WINDOWS\system32\lxdninsb.dll
2010-03-03 13:54:05 ----A---- C:\WINDOWS\system32\lxdnins.dll
2010-03-03 13:54:05 ----A---- C:\WINDOWS\system32\lxdnih.exe
2010-03-03 13:54:05 ----A---- C:\WINDOWS\system32\lxdnhbn3.dll
2010-03-03 13:54:04 ----A---- C:\WINDOWS\system32\lxdngrd.dll
2010-03-03 13:54:04 ----A---- C:\WINDOWS\system32\lxdngf.dll
2010-03-03 13:54:04 ----A---- C:\WINDOWS\system32\lxdncur.dll
2010-03-03 13:54:04 ----A---- C:\WINDOWS\system32\lxdncub.dll
2010-03-03 13:54:04 ----A---- C:\WINDOWS\system32\lxdncu.dll
2010-03-03 13:54:04 ----A---- C:\WINDOWS\system32\lxdncoms.exe
2010-03-03 13:54:03 ----A---- C:\WINDOWS\system32\lxdncomm.dll
2010-03-03 13:54:03 ----A---- C:\WINDOWS\system32\lxdncomc.dll
2010-03-03 13:54:03 ----A---- C:\WINDOWS\system32\lxdncfg.exe
2010-03-03 13:54:03 ----A---- C:\WINDOWS\system32\LXDNcfg.dll
2010-03-03 13:53:45 ----D---- C:\Program Files\Lexmark 2600 Series
2010-03-03 13:16:18 ----D---- C:\Program Files\TO2SSM
2010-03-03 13:07:02 ----D---- C:\Documents and Settings\Marťaska.BUDULIN\Data aplikací\Motive
2010-03-03 13:06:06 ----D---- C:\Program Files\Common Files\Motive
2010-03-03 13:05:43 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Motive

======List of files/folders modified in the last 1 months======

2010-03-06 12:04:48 ----RD---- C:\Program Files
2010-03-06 12:03:37 ----D---- C:\WINDOWS\Prefetch
2010-03-06 12:01:49 ----HD---- C:\WINDOWS\inf
2010-03-06 12:00:17 ----D---- C:\Program Files\Mozilla Firefox
2010-03-06 11:59:49 ----D---- C:\WINDOWS\system32\CatRoot2
2010-03-06 11:44:52 ----D---- C:\WINDOWS\Temp
2010-03-06 11:43:57 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-03-06 11:32:51 ----D---- C:\WINDOWS\system32\drivers
2010-03-06 11:31:47 ----D---- C:\WINDOWS
2010-03-06 10:43:05 ----SHD---- C:\WINDOWS\Installer
2010-03-06 10:16:25 ----D---- C:\WINDOWS\system32
2010-03-06 10:15:21 ----D---- C:\Documents and Settings
2010-03-05 21:17:00 ----D---- C:\WINDOWS\WinSxS
2010-03-05 21:16:33 ----D---- C:\Program Files\Alwil Software
2010-03-05 21:03:40 ----D---- C:\Program Files\ICQ6
2010-03-05 12:53:20 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-03-04 23:38:24 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-03-04 23:38:16 ----A---- C:\WINDOWS\imsins.BAK
2010-03-04 17:39:12 ----D---- C:\WINDOWS\system32\DirectX
2010-03-04 17:18:45 ----HD---- C:\Program Files\InstallShield Installation Information
2010-03-04 16:17:57 ----A---- C:\WINDOWS\NeroDigital.ini
2010-03-04 11:09:36 ----SD---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Microsoft
2010-03-04 11:08:45 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-03-04 11:08:44 ----D---- C:\Program Files\SuperAntiSpyware
2010-03-04 11:04:26 ----D---- C:\Program Files\Canon
2010-03-04 11:02:53 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-03-04 11:02:11 ----SHD---- C:\RECYCLER
2010-03-04 10:17:24 ----HD---- C:\WINDOWS\$hf_mig$
2010-03-04 10:14:45 ----D---- C:\WINDOWS\system32\wbem
2010-03-04 10:14:45 ----D---- C:\WINDOWS\AppPatch
2010-03-03 22:38:54 ----D---- C:\Program Files\Outlook Express
2010-03-03 22:36:30 ----D---- C:\WINDOWS\system32\cs-cz
2010-03-03 22:36:30 ----D---- C:\Program Files\Internet Explorer
2010-03-03 22:36:14 ----D---- C:\WINDOWS\ie7updates
2010-03-03 14:00:20 ----D---- C:\WINDOWS\twain_32
2010-03-03 13:06:06 ----D---- C:\Program Files\Common Files
2010-03-03 13:00:10 ----D---- C:\WINDOWS\Help

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 easdrv;easdrv; C:\WINDOWS\system32\DRIVERS\easdrv.sys [2008-06-10 53256]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R2 aslm75;aslm75; \??\C:\WINDOWS\system32\drivers\aslm75.sys []
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2008-08-23 165376]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2008-08-23 18048]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-12-16 3842560]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2004-11-02 773565]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-18 12160]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys []
S1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys []
S1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys []
S1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys []
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys []
S2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys []
S3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816]
S3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS []
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS []
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []
S3 MSICPL;MSICPL; \??\D:\install4\MSICPL.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\nmwcd.sys [2007-02-22 137216]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\nmwcdc.sys [2007-02-22 8320]
S3 nmwcdcj;Nokia USB Port; C:\WINDOWS\system32\drivers\nmwcdcj.sys [2007-02-22 12288]
S3 nmwcdcm;Nokia USB Modem; C:\WINDOWS\system32\drivers\nmwcdcm.sys [2007-02-22 12288]
S3 NTACCESS;NTACCESS; \??\D:\NTACCESS.sys []
S3 PAC207;USB PC Cam Plus; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2005-02-24 162176]
S3 Revoflt;Revoflt; C:\WINDOWS\system32\DRIVERS\revoflt.sys [2009-12-30 27064]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
S3 SetupNTGLM7X;SetupNTGLM7X; \??\D:\NTGLM7X.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-08-29 578304]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-15 82688]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 IJPLMSVC;PIXMA Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2006-11-10 99936]
R2 lxdn_device;lxdn_device; C:\WINDOWS\system32\lxdncoms.exe [2008-02-28 594600]
R2 McciCMService;McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [2007-10-15 303104]
R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056]
R2 STI Simulator;STI Simulator; C:\WINDOWS\System32\PAStiSvc.exe [2005-01-14 53248]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2007-03-26 292864]
S2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe []
S2 lxdnCATSCustConnectService;lxdnCATSCustConnectService; C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdnserv.exe [2008-02-28 98984]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe []
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe []
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]

-----------------EOF-----------------

Stáhněte HJT a spusťte http://www.stahuj.centrum.cz/internet_a ... ijackthis/

• Klikněte na "Do a system scan and save logfile".
• Log vložte sem.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:25:01, on 6.3.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16981)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
C:\WINDOWS\system32\lxdncoms.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\TO2SSM\McciTrayApp.exe
C:\Program Files\Lexmark 2600 Series\lxdnmon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Lexmark 2600 Series\lxdnMsdMon.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\TO2SSM\McciBrowser.exe
C:\Program Files\TO2SSM\McciBrowser.exe
C:\Program Files\TO2SSM\McciBrowser.exe
C:\Program Files\TO2SSM\McciBrowser.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\componentlauncher.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.qip.ru
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Lexmark Panel nástrojů - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [TO2SSM_McciTrayApp] C:\Program Files\TO2SSM\McciTrayApp.exe
O4 - HKLM\..\Run: [lxdnmon.exe] "C:\Program Files\Lexmark 2600 Series\lxdnmon.exe"
O4 - HKLM\..\Run: [lxdnamon] "C:\Program Files\Lexmark 2600 Series\lxdnamon.exe"
O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (file missing)
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (file missing)
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: lxdnCATSCustConnectService - Lexmark International, Inc. - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdnserv.exe
O23 - Service: lxdn_device - - C:\WINDOWS\system32\lxdncoms.exe
O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

--
End of file - 6988 bytes

Stáhněte a uložte, nejlépe na plochu http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Vypněte všechny rezidentní bezpečnostní programy - firewally, antiviry, antispywary

Spusťte aplikaci pod účtem s oprávněním Administrátora (Správce), ihned po startu se zobrází stránka s licenčnímy podmínkami, pokračujte stisknutím tlačítka "Ano"

Dále postupujte dle pokynů, během scanu nespouštějte jiné aplikace a neklikejte do zobrazujícího se okna

Scan by měl trvat okolo 5 - 10 minut, po dokončení Combofix zobrazí log C:\ComboFix.txt , který sem vložte.

Během skenování může být počítač restartován.

ComboFix 10-03-03.09 - Marťaska 06.03.2010 12:46:58.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.503.225 [GMT 1:00]
Spuštěný z: c:\documents and settings\Marťaska.BUDULIN\Plocha\ComboFix.exe

VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\temp
c:\recycler\S-1-5-21-1757981266-1957994488-725345543-1005
c:\recycler\S-1-5-21-1935655697-879983540-839522115-1005
c:\recycler\S-1-5-21-1935655697-879983540-839522115-500
c:\recycler\S-1-5-21-484763869-329068152-725345543-1004
c:\recycler\S-1-5-21-484763869-329068152-725345543-1005
c:\recycler\S-1-5-21-746137067-682003330-1133161676-1005

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-02-06 do 2010-03-06 )))))))))))))))))))))))))))))))
.

2010-03-06 11:04 . 2010-03-06 11:23 -------- d-----w- c:\program files\trend micro
2010-03-06 11:04 . 2010-03-06 11:04 -------- d-----w- C:\rsit
2010-03-06 10:31 . 2010-03-06 10:31 95 ----a-w- c:\windows\rafazon.bat
2010-03-06 09:54 . 2009-12-30 10:20 27064 ----a-w- c:\windows\system32\drivers\revoflt.sys
2010-03-06 09:54 . 2010-03-06 09:54 -------- d-----w- c:\program files\VS Revo Group
2010-03-05 20:14 . 2010-03-05 20:14 -------- d--h--w- c:\windows\system32\CTF
2010-03-04 16:18 . 2010-03-05 16:55 -------- d-----w- c:\program files\Lineage II
2010-03-04 13:43 . 2010-03-04 13:43 -------- d-----w- C:\logs
2010-03-03 13:03 . 2010-03-03 13:58 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Lx_cats
2010-03-03 13:01 . 2007-11-28 17:51 40960 ----a-w- c:\windows\system32\lxdnvs.dll
2010-03-03 13:01 . 2008-02-15 04:52 348160 ----a-w- c:\windows\system32\lxdncoin.dll
2010-03-03 13:01 . 2008-02-27 11:05 115200 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\lxdndrpp.dll
2010-03-03 13:00 . 2008-04-13 19:45 15104 -c--a-w- c:\windows\system32\dllcache\usbscan.sys
2010-03-03 13:00 . 2008-04-13 19:45 15104 ----a-w- c:\windows\system32\drivers\usbscan.sys
2010-03-03 12:59 . 2001-10-24 11:25 87040 -c--a-w- c:\windows\system32\dllcache\wiafbdrv.dll
2010-03-03 12:59 . 2001-10-24 11:25 87040 ----a-w- c:\windows\system32\wiafbdrv.dll
2010-03-03 12:58 . 2007-11-21 00:02 782336 ----a-w- c:\windows\system32\lxdndrs.dll
2010-03-03 12:58 . 2007-11-20 23:44 81920 ----a-w- c:\windows\system32\lxdncaps.dll
2010-03-03 12:58 . 2007-10-02 22:51 69632 ----a-w- c:\windows\system32\lxdncnv4.dll
2010-03-03 12:57 . 2007-11-01 14:29 45056 ----a-w- c:\windows\system32\LXF3PMON.DLL
2010-03-03 12:57 . 2007-11-01 14:28 32768 ----a-w- c:\windows\system32\LXF3FXPU.DLL
2010-03-03 12:56 . 2007-12-10 19:33 12288 ----a-w- c:\windows\system32\LXF3PMRC.DLL
2010-03-03 12:56 . 2007-08-27 17:44 53248 ----a-w- c:\windows\system32\lxf3oem.dll
2010-03-03 12:56 . 2007-05-02 02:05 98345 ----a-w- c:\windows\system32\IMHOST32.DLL
2010-03-03 12:56 . 2007-05-02 02:05 339968 ----a-w- c:\windows\system32\IMGMAN32.DLL
2010-03-03 12:56 . 2010-03-03 12:58 -------- d-----w- c:\program files\Lexmark Fax Solutions
2010-03-03 12:55 . 2010-03-03 12:56 -------- d-----w- c:\program files\Abbyy FineReader 6.0 Sprint
2010-03-03 12:53 . 2010-03-03 13:04 -------- d-----w- c:\program files\Lexmark 2600 Series
2010-03-03 12:16 . 2010-03-03 12:18 -------- d-----w- c:\program files\TO2SSM
2010-03-03 12:08 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2010-03-03 12:07 . 2009-10-15 16:32 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2010-03-03 12:07 . 2009-10-15 16:32 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2010-03-03 12:07 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2010-03-03 12:07 . 2009-03-06 14:23 284160 -c----w- c:\windows\system32\dllcache\pdh.dll
2010-03-03 12:07 . 2009-02-09 11:25 111104 -c----w- c:\windows\system32\dllcache\services.exe
2010-03-03 12:07 . 2009-02-09 10:56 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2010-03-03 12:07 . 2009-02-09 10:56 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2010-03-03 12:07 . 2009-02-09 10:56 684032 -c----w- c:\windows\system32\dllcache\advapi32.dll
2010-03-03 12:07 . 2009-02-09 10:56 709632 -c----w- c:\windows\system32\dllcache\ntdll.dll
2010-03-03 12:07 . 2009-02-09 10:56 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2010-03-03 12:06 . 2009-06-21 21:48 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2010-03-03 12:06 . 2010-03-03 12:17 -------- d-----w- c:\program files\Common Files\Motive
2010-03-03 12:04 . 2009-07-10 13:28 1315328 -c----w- c:\windows\system32\dllcache\msoe.dll
2010-03-03 12:02 . 2008-04-21 21:15 216576 -c----w- c:\windows\system32\dllcache\wordpad.exe

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-03-05 20:16 . 2008-04-25 18:31 -------- d-----w- c:\program files\Alwil Software
2010-03-05 20:03 . 2008-06-15 17:34 -------- d-----w- c:\program files\ICQ6
2010-03-05 11:53 . 2004-08-18 12:00 74426 ----a-w- c:\windows\system32\perfc005.dat
2010-03-05 11:53 . 2004-08-18 12:00 401726 ----a-w- c:\windows\system32\perfh005.dat
2010-03-04 16:18 . 2008-04-25 18:46 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-03-04 10:08 . 2008-04-26 10:10 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2010-03-04 10:08 . 2008-04-28 19:28 -------- d-----w- c:\program files\SuperAntiSpyware
2010-03-04 10:04 . 2008-04-26 10:18 -------- d-----w- c:\program files\Canon
2010-03-03 12:55 . 2010-03-03 12:54 -------- d-----w- c:\program files\Lexmark Toolbar
2010-01-05 09:58 . 2004-08-18 12:00 832512 ----a-w- c:\windows\system32\wininet.dll
2010-01-05 09:57 . 2004-08-18 12:00 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-01-05 09:57 . 2004-08-18 12:00 17408 ----a-w- c:\windows\system32\corpol.dll
2009-12-31 16:50 . 2004-08-18 12:00 353792 ----a-w- c:\windows\system32\drivers\srv.sys
2009-12-17 07:42 . 2008-06-15 16:18 343552 ----a-w- c:\windows\system32\mspaint.exe
2009-12-14 07:10 . 2004-08-18 12:00 33280 ----a-w- c:\windows\system32\csrsrv.dll
2008-05-25 19:36 . 2008-05-25 19:35 101852 ----a-w- c:\program files\Uninst.isu
2002-04-03 13:01 . 2008-05-25 19:35 286720 ----a-w- c:\program files\PanoViewer.dll
2002-04-02 13:19 . 2008-05-25 19:35 53248 ----a-w- c:\program files\UPanoRc.dll
2002-03-01 14:33 . 2008-05-25 19:35 36864 ----a-w- c:\program files\QTVREXP.dll
2000-10-24 12:24 . 2008-05-25 19:35 20480 ----a-w- c:\program files\u32sn.dll
1999-05-21 15:15 . 2008-05-25 19:35 86016 ----a-w- c:\program files\NPUPano.dll
1999-05-10 13:00 . 2008-05-25 19:35 57344 ----a-w- c:\program files\u32Scan.dll
1999-04-30 14:00 . 2008-05-25 19:35 98304 ----a-w- c:\program files\UPjpeg.dll
1999-04-27 08:50 . 2008-05-25 19:35 32768 ----a-w- c:\program files\UPConst.dll
1999-04-23 20:06 . 2008-05-25 19:35 493401 ----a-w- c:\program files\UPANO.HLP
1999-04-23 20:03 . 2008-05-25 19:35 2328 ----a-w- c:\program files\upano.cnt
1999-03-16 21:05 . 2008-05-25 19:35 33280 ----a-w- c:\program files\IS32Inst.dll
1999-03-10 07:57 . 2008-05-25 19:35 15404 ----a-w- c:\program files\README.HLP
1999-03-10 07:57 . 2008-05-25 19:35 66518 ----a-w- c:\program files\UPVIEWER.HLP
1999-03-05 09:22 . 2008-05-25 19:35 500224 ----a-w- c:\program files\U32CFG.DLL
1999-02-09 20:16 . 2008-05-25 19:35 53248 ----a-w- c:\program files\Stitch.dll
1999-02-09 20:15 . 2008-05-25 19:35 819200 ----a-w- c:\program files\Bmp800.dll
1999-02-09 20:15 . 2008-05-25 19:35 921600 ----a-w- c:\program files\Bmp1024.dll
1999-02-09 09:10 . 2008-05-25 19:35 147456 ----a-w- c:\program files\U32PRINT.DLL
1999-02-08 12:37 . 2008-05-25 19:35 2980 ----a-w- c:\program files\MUp.WAV
1999-02-08 12:36 . 2008-05-25 19:35 1138 ----a-w- c:\program files\MOver.wav
1999-02-08 12:36 . 2008-05-25 19:35 3896 ----a-w- c:\program files\MDown.WAV
1999-02-01 15:14 . 2008-05-25 19:35 69632 ----a-w- c:\program files\u32txEx.dll
1999-02-01 15:14 . 2008-05-25 19:35 118784 ----a-w- c:\program files\U32tx.dll
1999-02-01 15:13 . 2008-05-25 19:35 143360 ----a-w- c:\program files\U32CVT.DLL
1999-02-01 15:12 . 2008-05-25 19:35 139264 ----a-w- c:\program files\u32Clips.dll
1999-02-01 15:11 . 2008-05-25 19:35 53248 ----a-w- c:\program files\U32MISC.DLL
1999-02-01 15:10 . 2008-05-25 19:35 167936 ----a-w- c:\program files\U32FIDO.DLL
1999-02-01 15:10 . 2008-05-25 19:35 28672 ----a-w- c:\program files\u32Spy.dll
1999-02-01 15:09 . 2008-05-25 19:35 122880 ----a-w- c:\program files\u32File.dll
1999-02-01 15:09 . 2008-05-25 19:35 32768 ----a-w- c:\program files\scanres.dll
1999-02-01 15:09 . 2008-05-25 19:35 126976 ----a-w- c:\program files\U32COMM.DLL
1999-02-01 15:08 . 2008-05-25 19:35 212992 ----a-w- c:\program files\U32BASE.DLL
1998-06-11 18:38 . 2008-05-25 19:35 4528 ----a-w- c:\program files\SETBROWS.EXE
1996-09-11 12:33 . 2008-05-25 19:35 48640 ----a-w- c:\program files\INETWH32.DLL
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\snxPluginsShell]
@="{F4B3B0AA-13D1-4a36-BDA2-2055B0F3D5DE}"
[HKEY_CLASSES_ROOT\CLSID\{F4B3B0AA-13D1-4a36-BDA2-2055B0F3D5DE}]
2010-01-28 21:56 135168 ------w- c:\program files\Alwil Software\Avast5\snxPlugins.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Smapp"="c:\program files\Analog Devices\SoundMAX\SMTray.exe" [2003-05-05 143360]
"Adobe Photo Downloader"="c:\program files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" [2005-06-06 57344]
"PCSuiteTrayApplication"="c:\program files\Nokia\Nokia PC Suite 6\LaunchApplication.exe" [2007-03-23 227328]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2004-11-02 155648]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2004-11-02 126976]
"SoundMan"="SOUNDMAN.EXE" [2005-12-14 577536]
"TO2SSM_McciTrayApp"="c:\program files\TO2SSM\McciTrayApp.exe" [2008-08-15 1473536]
"lxdnmon.exe"="c:\program files\Lexmark 2600 Series\lxdnmon.exe" [2009-01-29 660136]
"lxdnamon"="c:\program files\Lexmark 2600 Series\lxdnamon.exe" [2009-01-29 16040]
"FaxCenterServer"="c:\program files\Lexmark Fax Solutions\fm3032.exe" [2009-01-29 320168]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"Nokia.PCSync"="c:\program files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-03-27 1744896]

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\ICQ6\\ICQ.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\LimeWire\\LimeWire.exe"=
"c:\\WINDOWS\\system32\\lxdncoms.exe"=
"c:\\Program Files\\Lexmark 2600 Series\\lxdnmon.exe"=
"c:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxdnpswx.exe"=
"c:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxdntime.exe"=
"c:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxdnjswx.exe"=

R2 lxdn_device;lxdn_device;c:\windows\system32\lxdncoms.exe -service --> c:\windows\system32\lxdncoms.exe -service [?]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 lxdnCATSCustConnectService;lxdnCATSCustConnectService;c:\windows\system32\spool\drivers\w32x86\3\lxdnserv.exe [3.3.2010 14:01 98984]
S3 PAC207;USB PC Cam Plus;c:\windows\system32\drivers\PFC027.sys [24.2.2005 11:29 162176]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [6.3.2010 10:54 27064]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\d:\ntglm7x.sys --> d:\NTGLM7X.sys [?]

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{9B71D88C-C598-4935-C5D1-43AA4DB90836}]
2008-04-14 03:22 58187 ---h--w- c:\windows\system32\CTF\svghost.exe
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://start.qip.ru
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Marťaska.BUDULIN\Data aplikací\Mozilla\Firefox\Profiles\h97c8ko9.default\
FF - prefs.js: browser.search.defaulturl - hxxp://uk.search.yahoo.com/search?ei=UTF-8&fr=ytff-divxd&p=
FF - prefs.js: browser.search.selectedEngine - Yahoo
FF - prefs.js: browser.startup.homepage - http:/www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://uk.search.yahoo.com/search?ei=UTF-8&fr=ytff-divxd&p=
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

Notify-AtiExtEvent - (no file)
AddRemove-ShockwaveFlash - c:\windows\system32\Macromed\Flash\UninstFl.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-03-06 12:54
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'explorer.exe'(2512)
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Celkový čas: 2010-03-06 12:58:41
ComboFix-quarantined-files.txt 2010-03-06 11:58

Před spuštěním: Volných bajtů: 13 968 326 656
Po spuštění: Volných bajtů: 14 829 621 248

- - End Of File - - 7D3689AD2E49AE5C70A3A47D7E49B937

Jak to vypadá s PC

žádná síťová připojení, spustím li O2 centrm podpory, zobrazí se mi tabulka, kde je uvedeno žádná ip adresa atd., jakoby nešla síťová karta. A v této tabulce se mimo jiné píše aktivní NOD 32, přitom jsem ho odstranil

Stáhněte Ccleaner http://viry.cz/forum/viewtopic.php?t=7478

• Nainstalujte a v průběhu instalace odškrtněte, že chcete instalovat yahoo toolbar.
  
  Záložka Čistič
• Dejte analyzovat, po dokončení dejte Spustit Ccleaner.
  
  Záložka Registry
• Klikněte na Hledej problémy, po dokončení klikněte na Opravit problémy, zálohu dělat nemusíte, potom dejte Opravit všechny problémy.
  OK Zavřít

Zkuste přeinstalovat ovladače síťové karty.

Ještě jednou děkuji, ovladače pomohly jsem ťulpas, že jsem to nezkusil hned.