jsem úplnej nováček a mám problém.PC píše při spuštění windows Turegot not found atd.
Prosím moc o pomoc a nějakej návod jak pro začátečníka.
Předem moc děkuji.
Na fóru jsem zjistil,že mám udělat kontrolu logu.
Prosím o kontrolu logu.
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.3036.1693 [GMT 1:00]
Spuštěný z: c:\users\ondro\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\Config.ini
c:\windows\system32\miccyhook.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-11-08 do 2011-12-08 )))))))))))))))))))))))))))))))
.
.
2011-12-08 10:48 . 2011-12-08 10:48 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-12-08 10:12 . 2011-12-08 10:12 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-12-08 10:12 . 2011-12-08 10:12 -------- d-----w- c:\users\ondro\AppData\Roaming\Malwarebytes
2011-12-08 10:12 . 2011-12-08 10:12 -------- d-----w- c:\programdata\Malwarebytes
2011-12-08 10:11 . 2011-12-08 10:12 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-12-08 10:11 . 2011-08-31 16:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-12-08 10:05 . 2011-12-08 10:05 29904 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D5D5B907-8B87-4BE7-9919-ACDCFEED777F}\MpKsla5ccea1f.sys
2011-12-08 10:05 . 2011-12-08 10:05 56200 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D5D5B907-8B87-4BE7-9919-ACDCFEED777F}\offreg.dll
2011-12-08 10:05 . 2011-11-21 10:47 6823496 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D5D5B907-8B87-4BE7-9919-ACDCFEED777F}\mpengine.dll
2011-12-08 10:01 . 2011-12-08 10:01 -------- d-----w- c:\program files\CCleaner
2011-12-08 09:50 . 2011-12-08 09:50 29904 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{53FBCF17-5A86-49CF-B503-0368681E3AE7}\MpKsld21ef873.sys
2011-12-07 14:05 . 2011-11-21 10:47 6823496 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{53FBCF17-5A86-49CF-B503-0368681E3AE7}\mpengine.dll
2011-12-06 10:37 . 2011-12-07 20:52 -------- d-----w- c:\program files\Call of Duty- Modern Warfare 3
2011-11-30 21:42 . 2011-11-30 21:42 -------- d-----w- c:\program files\PC Connectivity Solution
2011-11-23 08:30 . 2011-11-23 08:32 -------- d-----w- c:\program files\Rossmann Foto-Shop Software
2011-11-15 08:03 . 2011-11-15 08:03 -------- d-----w- c:\windows\system32\SPReview
2011-11-11 12:03 . 2011-11-11 12:03 -------- d-----w- c:\program files\MSXML 4.0
2011-11-10 11:44 . 2011-11-10 12:05 -------- d-----w- c:\program files\Battlefield 3
2011-11-09 18:02 . 2011-09-29 15:43 1285488 ----a-w- c:\windows\system32\drivers\tcpip.sys
2011-11-09 18:02 . 2011-10-01 04:43 708608 ----a-w- c:\program files\Common Files\System\wab32.dll
2011-11-09 18:02 . 2011-09-29 04:20 2339840 ----a-w- c:\windows\system32\win32k.sys
2011-11-09 15:44 . 2011-11-09 15:44 -------- d--h--w- c:\program files\Common Files\EAInstaller
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-21 10:47 . 2010-05-24 20:50 6823496 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-11-14 17:01 . 2011-05-19 18:30 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-10-11 18:49 . 2011-10-11 18:49 703824 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DBE9623B-AA4E-4B41-B677-E4D780891036}\gapaengine.dll
2011-10-11 18:39 . 2011-10-11 18:39 232512 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-10-11 18:13 . 2010-06-02 11:43 443448 ----a-w- c:\windows\system32\drivers\sptd.sys
2011-11-08 19:44 . 2011-03-27 19:38 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2007-09-02 495616]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2011-03-27 399736]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-10-13 17351304]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-08-04 98304]
"hpqSRMon"="c:\program files\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-07-22 150528]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2009-05-18 1314816]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 997920]
"Microsoft Default Manager"="c:\program files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2010-05-10 439568]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2010-06-04 1791272]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2009-9-20 270336]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0autocheck turegopt
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"HP Software Update"=c:\program files\HP\HP Software Update\HPWuSchd2.exe
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
.
R1 MpKsl59d5a487;MpKsl59d5a487;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{7D71FC62-F08F-41BF-A153-089D3AD8D9C0}\MpKsl59d5a487.sys [x]
R1 MpKsl8790c36c;MpKsl8790c36c;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{B5824821-DB0C-41F0-97BC-1EA2D9705011}\MpKsl8790c36c.sys [x]
R1 MpKslc5b97853;MpKslc5b97853;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{E151D65B-D518-41CE-8E8F-0E1C6BAAD6E9}\MpKslc5b97853.sys [x]
R1 MpKslff1c39db;MpKslff1c39db;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{321C2DE2-455B-4D11-84EE-4B1DF60A9653}\MpKslff1c39db.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 KMWDFilter1X;KM DRIVER;c:\windows\system32\DRIVERS\RP24GV1.sys [2009-10-28 16896]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2011-04-27 65024]
R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-04-27 208944]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-24 1343400]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-10-11 232512]
S1 MpKsl9460b7a4;MpKsl9460b7a4;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{53FBCF17-5A86-49CF-B503-0368681E3AE7}\MpKsl9460b7a4.sys [2011-12-08 29904]
S1 MpKsla5ccea1f;MpKsla5ccea1f;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D5D5B907-8B87-4BE7-9919-ACDCFEED777F}\MpKsla5ccea1f.sys [2011-12-08 29904]
S1 MpKsld21ef873;MpKsld21ef873;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{53FBCF17-5A86-49CF-B503-0368681E3AE7}\MpKsld21ef873.sys [2011-12-08 29904]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-08-04 176128]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [2010-06-15 26168]
S2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [2010-03-28 246520]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-08-31 22216]
S3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [2011-04-18 43392]
S3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [2010-06-25 47360]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x86.sys [2009-09-28 315392]
S4 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2011-12-08 41272]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMPROTECTOR
*NewlyCreated* - MBAMSWISSARMY
*NewlyCreated* - MPKSL9460B7A4
*NewlyCreated* - MPKSLA5CCEA1F
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
HPService REG_MULTI_SZ HPSLPSVC
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
mStart Page = hxxp://home.sweetim.com
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\ondro\AppData\Roaming\Mozilla\Firefox\Profiles\yo4qeifv.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.sweetim.com/search.asp?src=2&q=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
AddRemove-LSI Soft Modem - c:\windows\agrsmdel
AddRemove-3421873964.www.pcspeedup.com - c:\program files\Microsoft Silverlight\4.0.60531.0\Silverlight.Configuration.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2011-12-08 11:55:25
ComboFix-quarantined-files.txt 2011-12-08 10:55
.
Před spuštěním: Volných bajtů: 324 309 934 080
Po spuštění: Volných bajtů: 339 045 429 248
.
- - End Of File - - C045F6E2A6EF4901A725E6ED8F90D17E
Přispějete na provoz fóra?