Prosím o kontrolu logu

[joe55]

U zadne hry mi nejde multiplayer.

Na zacatku HJT mi vyjela hlaska:
For some reason your system denied write access to the Hosts file. If any hijacked domains are in this file, hijackThis my NOT be able to fix this.
If that happens, you need to edit the file yourself. To this, click Start, Run and type:
notepad C:/ a ted sem to omylem vypnul a uz se to nechce spustit, ze uz to jednou probehlo, tak snad vite co s tim, diky

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:18:40, on 20.4.2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18226)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\Steam\steam.exe
C:\Windows\ehome\ehmsas.exe
D:\skola R\Nokia\Nokia PC Suite 7\PcSync2.exe
D:\skola R\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Common Files\Nokia\MPAPI\MPAPI3s.exe
C:\Program Files\Internet Explorer\ieuser.exe
D:\Programy\hijackthis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [Nokia.PCSync] "D:\skola R\Nokia\Nokia PC Suite 7\PCSync2.exe" /NoDialog
O4 - HKCU\..\Run: [PC Suite Tray] "D:\skola R\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-18\..\Run: [fsc-reg] C:\ProgramData\fsc-reg\fscreg.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [fsc-reg] C:\ProgramData\fsc-reg\fscreg.exe (User 'Default user')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\Programy\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\Programy\ICQLite\ICQLite.exe (file missing)
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O13 - Gopher Prefix:
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: Fujitsu Siemens Computers Diagnostic Testhandler (TestHandler) - Fujitsu Siemens Computers - C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe

--
End of file - 6385 bytes

[Reklama]

[jaro3]

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

[joe55]

Malwarebytes' Anti-Malware 1.36
Verze databáze: 2015
Windows 6.0.6001 Service Pack 1

20.4.2009 22:06:27
mbam-log-2009-04-20 (22-06-11).txt

Typ skenu: Rychlý sken
Objektu skenováno: 65399
Uplynulý cas: 2 minute(s), 30 second(s)

Infikované procesy pameti: 0
Infikované pametové moduly: 0
Infikované klíce registru: 3
Infikované hodnoty registru: 0
Infikované položky dat registru: 0
Infikované složky: 0
Infikované soubory: 1

Infikované procesy pameti:
(Žádné zákerné položky nebyly zjišteny)

Infikované pametové moduly:
(Žádné zákerné položky nebyly zjišteny)

Infikované klíce registru:
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\oreans32 (Rootkit.Agent) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\oreans32 (Rootkit.Agent) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\oreans32 (Rootkit.Agent) -> No action taken.

Infikované hodnoty registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované položky dat registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované složky:
(Žádné zákerné položky nebyly zjišteny)

Infikované soubory:
C:\Windows\System32\drivers\oreans32.sys (Rootkit.Agent) -> No action taken.

[jaro3]

. Takže spusť znovu MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Ukaž výsledky
- ujistit se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Odstranit označené
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit

Můžeš sem pak vložit log z MbAM.

Vypni rez. ochranu u Avastu.

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah

[joe55]

Malwarebytes' Anti-Malware 1.36
Verze databáze: 2015
Windows 6.0.6001 Service Pack 1

21.4.2009 14:58:05
mbam-log-2009-04-21 (14-58-05).txt

Typ skenu: Rychlý sken
Objektu skenováno: 65324
Uplynulý cas: 2 minute(s), 36 second(s)

Infikované procesy pameti: 0
Infikované pametové moduly: 0
Infikované klíce registru: 3
Infikované hodnoty registru: 0
Infikované položky dat registru: 0
Infikované složky: 0
Infikované soubory: 1

Infikované procesy pameti:
(Žádné zákerné položky nebyly zjišteny)

Infikované pametové moduly:
(Žádné zákerné položky nebyly zjišteny)

Infikované klíce registru:
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\oreans32 (Rootkit.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\oreans32 (Rootkit.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\oreans32 (Rootkit.Agent) -> Quarantined and deleted successfully.

Infikované hodnoty registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované položky dat registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované složky:
(Žádné zákerné položky nebyly zjišteny)

Infikované soubory:
C:\Windows\System32\drivers\oreans32.sys (Rootkit.Agent) -> Quarantined and deleted successfully.

[joe55]

ComboFix 09-04-21.A1 - joe 21.04.2009 15:16.1 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1250.420.1029.18.1791.1086 [GMT 2:00]
Spuštěný z: c:\users\joe\Desktop\ComboFix.exe
AV: avast! antivirus 4.7.1296 [VPS 090105-0] *On-access scanning enabled* (Updated)
* Vytvořen nový Bod Obnovení
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_OREANS32


((((((((((((((((((((((((( Soubory vytvořené od 2009-03-21 do 2009-04-21 )))))))))))))))))))))))))))))))
.

2009-04-20 20:01 . 2009-04-20 20:01 -------- d-----w c:\users\joe\AppData\Roaming\Malwarebytes
2009-04-20 20:01 . 2009-04-06 13:32 15504 ----a-w c:\windows\system32\drivers\mbam.sys
2009-04-20 20:01 . 2009-04-06 13:32 38496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys
2009-04-20 20:01 . 2009-04-20 20:01 -------- d-----w c:\users\All Users\Malwarebytes
2009-04-20 20:01 . 2009-04-20 20:01 -------- d-----w c:\programdata\Malwarebytes
2009-04-19 17:44 . 2008-06-20 01:14 97800 ----a-w c:\windows\system32\infocardapi.dll
2009-04-19 17:44 . 2008-06-20 01:14 43544 ----a-w c:\windows\system32\PresentationHostProxy.dll
2009-04-19 17:44 . 2008-06-20 01:14 105016 ----a-w c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-04-19 17:44 . 2008-06-20 01:14 37384 ----a-w c:\windows\system32\infocardcpl.cpl
2009-04-19 17:44 . 2008-06-20 01:14 11264 ----a-w c:\windows\system32\icardres.dll
2009-04-19 17:44 . 2008-06-20 01:14 622080 ----a-w c:\windows\system32\icardagt.exe
2009-04-19 17:44 . 2008-06-20 01:14 781344 ----a-w c:\windows\system32\PresentationNative_v0300.dll
2009-04-19 17:44 . 2008-06-20 01:14 326160 ----a-w c:\windows\system32\PresentationHost.exe
2009-04-19 17:38 . 2008-07-27 18:03 96760 ----a-w c:\windows\system32\dfshim.dll
2009-04-19 17:38 . 2008-07-27 18:03 282112 ----a-w c:\windows\system32\mscoree.dll
2009-04-19 17:38 . 2008-07-27 18:03 41984 ----a-w c:\windows\system32\netfxperf.dll
2009-04-19 17:38 . 2008-07-27 18:03 158720 ----a-w c:\windows\system32\mscorier.dll
2009-04-19 17:38 . 2008-07-27 18:03 83968 ----a-w c:\windows\system32\mscories.dll
2009-04-15 15:55 . 2009-02-13 08:49 1255936 ----a-w c:\windows\system32\lsasrv.dll
2009-04-15 15:55 . 2009-03-17 03:38 13824 ----a-w c:\windows\system32\apilogen.dll
2009-04-15 15:55 . 2009-03-17 03:38 24064 ----a-w c:\windows\system32\amxread.dll
2009-04-15 15:55 . 2009-02-13 08:49 72704 ----a-w c:\windows\system32\secur32.dll
2009-04-12 16:02 . 2009-04-12 16:04 -------- d-----w c:\program files\GameSpy Arcade
2009-03-27 15:41 . 2009-03-27 15:41 -------- d-----w c:\program files\VideoLAN

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-04-21 13:22 . 2009-03-01 08:51 -------- d-----w c:\program files\Steam
2009-04-21 13:14 . 2008-04-14 13:47 635756 ----a-w c:\windows\System32\perfh005.dat
2009-04-21 13:14 . 2008-04-14 13:47 134582 ----a-w c:\windows\System32\perfc005.dat
2009-04-19 17:42 . 2009-02-03 09:19 -------- d-----w c:\users\joe\AppData\Roaming\uTorrent
2009-04-19 17:29 . 2009-03-01 09:04 -------- d-----w c:\programdata\Media Center Programs
2009-04-18 08:22 . 2009-03-01 08:51 -------- d-----w c:\program files\Common Files\Steam
2009-04-15 18:38 . 2006-11-02 11:18 -------- d-----w c:\program files\Windows Mail
2009-04-12 08:48 . 2009-02-16 13:31 -------- d-----w c:\users\joe\AppData\Roaming\Hamachi
2009-04-10 08:48 . 2008-12-27 10:42 -------- d-----w c:\program files\DAEMON Tools Lite
2009-04-10 07:50 . 2008-12-27 22:26 -------- d--h--w c:\program files\InstallShield Installation Information
2009-03-27 15:48 . 2008-12-24 22:00 -------- d-----w c:\users\joe\AppData\Roaming\vlc
2009-03-22 15:49 . 2006-11-02 10:25 86016 ----a-w c:\windows\Inf\infstrng.dat
2009-03-22 15:49 . 2006-11-02 10:25 51200 ----a-w c:\windows\Inf\infpub.dat
2009-03-17 03:38 . 2009-04-15 15:55 40960 ----a-w c:\windows\AppPatch\apihex86.dll
2009-03-13 12:39 . 2008-12-31 10:09 -------- d-----w c:\program files\ICQ6
2009-03-09 17:28 . 2009-03-09 17:28 91 ----a-w c:\users\joe\AppData\Local\fusioncache.dat
2009-03-08 11:01 . 2009-03-08 11:01 -------- d-----w c:\users\joe\AppData\Roaming\InstallShield
2009-03-05 07:19 . 2009-03-05 07:18 -------- d-----w c:\users\joe\AppData\Roaming\PC Suite
2009-03-05 07:19 . 2009-03-05 07:19 0 ---ha-w c:\windows\system32\drivers\Msft_User_PCCSWpdDriver_01_05_00.Wdf
2009-03-05 07:19 . 2009-03-05 07:17 -------- d-----w c:\programdata\PC Suite
2009-03-05 07:19 . 2009-03-05 07:17 -------- d-----w c:\users\joe\AppData\Roaming\Nokia
2009-03-05 06:50 . 2006-11-02 10:25 86016 ----a-w c:\windows\Inf\infstor.dat
2009-03-05 06:49 . 2009-03-05 06:49 -------- d-----w c:\program files\Common Files\PCSuite
2009-03-05 06:49 . 2009-03-05 06:49 -------- d-----w c:\program files\Common Files\Nokia
2009-03-05 06:49 . 2009-03-05 06:49 -------- d-----w c:\program files\DIFX
2009-03-05 06:48 . 2009-03-05 06:48 -------- d-----w c:\program files\PC Connectivity Solution
2009-03-05 06:45 . 2009-03-05 06:45 -------- d-----w c:\programdata\Installations
2009-03-05 06:33 . 2009-03-05 06:33 0 ---ha-w c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01005.Wdf
2009-03-03 04:46 . 2009-04-15 15:54 3599328 ----a-w c:\windows\System32\ntkrnlpa.exe
2009-03-03 04:46 . 2009-04-15 15:54 3547632 ----a-w c:\windows\System32\ntoskrnl.exe
2009-03-03 04:40 . 2009-04-15 15:54 827392 ----a-w c:\windows\System32\wininet.dll
2009-03-03 04:39 . 2009-04-15 15:54 183296 ----a-w c:\windows\System32\sdohlp.dll
2009-03-03 04:39 . 2009-04-15 15:54 551424 ----a-w c:\windows\System32\rpcss.dll
2009-03-03 04:39 . 2009-04-15 15:54 26112 ----a-w c:\windows\System32\printfilterpipelineprxy.dll
2009-03-03 04:37 . 2009-04-15 15:54 78336 ----a-w c:\windows\System32\ieencode.dll
2009-03-03 04:37 . 2009-04-15 15:54 98304 ----a-w c:\windows\System32\iasrecst.dll
2009-03-03 04:37 . 2009-04-15 15:54 54784 ----a-w c:\windows\System32\iasads.dll
2009-03-03 04:37 . 2009-04-15 15:54 44032 ----a-w c:\windows\System32\iasdatastore.dll
2009-03-03 03:04 . 2009-04-15 15:54 666624 ----a-w c:\windows\System32\printfilterpipelinesvc.exe
2009-03-03 02:38 . 2009-04-15 15:54 17408 ----a-w c:\windows\System32\iashost.exe
2009-03-03 02:28 . 2009-04-15 15:54 26624 ----a-w c:\windows\System32\ieUnatt.exe
2009-03-01 12:10 . 2009-03-01 12:10 -------- d-----w c:\users\joe\AppData\Roaming\The Creative Assembly
2009-02-22 20:53 . 2008-12-24 22:31 -------- d-----w c:\users\joe\AppData\Roaming\BSplayer
2009-02-10 14:35 . 2008-12-24 19:33 59296 ----a-w c:\users\joe\AppData\Local\GDIPFONTCACHEV1.DAT
2009-02-09 03:10 . 2009-03-11 10:21 2033152 ----a-w c:\windows\System32\win32k.sys
2009-01-04 12:45 . 2009-01-04 11:40 22328 ----a-w c:\users\joe\AppData\Roaming\PnkBstrK.sys
2008-01-21 02:43 . 2006-11-02 12:50 174 --sha-w c:\program files\desktop.ini
2008-12-24 19:27 . 2008-12-24 19:27 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012008122420081225\index.dat
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-21 1233920]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2007-12-29 486856]
"Steam"="c:\program files\Steam\Steam.exe" [2009-03-01 1410296]
"Nokia.PCSync"="d:\skola r\Nokia\Nokia PC Suite 7\PCSync2.exe" [2008-06-17 1249280]
"PC Suite Tray"="d:\skola r\Nokia\Nokia PC Suite 7\PCSuite.exe" [2008-10-02 1124352]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-01-21 61440]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
"NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 153136]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2008-11-26 81000]
"RtHDVCpl"="RtHDVCpl.exe" - c:\windows\RtHDVCpl.exe [2008-03-26 5369856]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"fsc-reg"="c:\programdata\fsc-reg\fscreg.exe" [2007-11-08 519440]

c:\users\joe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Věýezy obrazovky a spuçtŘnˇ aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2006-10-26 98632]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"TCP Query User{CC046080-9712-474D-B68F-B3F590D8276A}d:\\hry\\wk40 000\\w40kwa.exe"= UDP:d:\hry\wk40 000\w40kwa.exe:W40kWA
"UDP Query User{7800559B-3B6C-4F25-9DDD-9EE564808648}d:\\hry\\wk40 000\\w40kwa.exe"= TCP:d:\hry\wk40 000\w40kwa.exe:W40kWA
"TCP Query User{FB46BC5A-EA4A-40AB-8246-6F58E987CD3C}d:\\hry\\warcraft iii\\warcraft iii\\war3.exe"= UDP:d:\hry\warcraft iii\warcraft iii\war3.exe:Warcraft III
"UDP Query User{E39CE55F-E48C-4415-BC19-1DAF2DAD72CD}d:\\hry\\warcraft iii\\warcraft iii\\war3.exe"= TCP:d:\hry\warcraft iii\warcraft iii\war3.exe:Warcraft III
"TCP Query User{38DF6FE9-F7E7-4B4A-A80F-BF34AEC3D89E}d:\\hry\\battlestation midway\\bm\\battlestationsmidway.exe"= UDP:d:\hry\battlestation midway\bm\battlestationsmidway.exe:Battlestationsmidway
"UDP Query User{7DD178C8-CA0A-42BE-8970-5788A018CCA1}d:\\hry\\battlestation midway\\bm\\battlestationsmidway.exe"= TCP:d:\hry\battlestation midway\bm\battlestationsmidway.exe:Battlestationsmidway
"TCP Query User{F03660E6-BF56-460A-91D2-1D0B9B38377B}d:\\hry\\kopie - call of duty 2\\cod2mp_s.exe"= UDP:d:\hry\kopie - call of duty 2\cod2mp_s.exe:CoD2MP_s
"UDP Query User{6BD1B69C-FECE-4210-8797-82EB4906F202}d:\\hry\\kopie - call of duty 2\\cod2mp_s.exe"= TCP:d:\hry\kopie - call of duty 2\cod2mp_s.exe:CoD2MP_s
"TCP Query User{16D18D3C-AC01-4C59-BCAF-5D096C97245D}c:\\program files\\activision\\call of duty 2\\cod2mp_s.exe"= UDP:c:\program files\activision\call of duty 2\cod2mp_s.exe:CoD2MP_s
"UDP Query User{79DF90FB-B520-482B-8C6A-E4F8F4DECFB6}c:\\program files\\activision\\call of duty 2\\cod2mp_s.exe"= TCP:c:\program files\activision\call of duty 2\cod2mp_s.exe:CoD2MP_s
"TCP Query User{B8636698-1B57-4D91-8058-0BD175136CE6}d:\\hry\\call of duty 2\\cod2mp_s.exe"= UDP:d:\hry\call of duty 2\cod2mp_s.exe:CoD2MP_s
"UDP Query User{A11FE38F-4FC5-49FB-BEC7-247A813E699E}d:\\hry\\call of duty 2\\cod2mp_s.exe"= TCP:d:\hry\call of duty 2\cod2mp_s.exe:CoD2MP_s
"TCP Query User{F7667837-FDD7-432C-99EB-0B67B138DB9D}d:\\hry\\empire interactive\\flatout2\\flatout2.exe"= UDP:d:\hry\empire interactive\flatout2\flatout2.exe:FlatOut2
"UDP Query User{FC6F11E7-4F1E-4CCD-A400-7A750034AA2A}d:\\hry\\empire interactive\\flatout2\\flatout2.exe"= TCP:d:\hry\empire interactive\flatout2\flatout2.exe:FlatOut2
"TCP Query User{E8EF2374-AA5F-4E73-8686-C27A7D77F14F}d:\\programy\\icqlite\\icqlite.exe"= UDP:d:\programy\icqlite\icqlite.exe:ICQLite
"UDP Query User{7DF27937-FEA3-4224-8BEC-10215AB37510}d:\\programy\\icqlite\\icqlite.exe"= TCP:d:\programy\icqlite\icqlite.exe:ICQLite
"TCP Query User{0FA62422-AA6D-4815-A09C-69F2144B5A3F}c:\\program files\\icq6\\icq.exe"= UDP:c:\program files\icq6\icq.exe:ICQ Library
"UDP Query User{CA09E4FB-41F0-4B0F-9BEA-A7151A39BDC8}c:\\program files\\icq6\\icq.exe"= TCP:c:\program files\icq6\icq.exe:ICQ Library
"{A48D1FED-3622-4D10-B699-9E013613E777}"= UDP:c:\windows\System32\PnkBstrA.exe:PnkBstrA
"{C6F40A42-B026-4BD4-8C1F-F4044DD51B2B}"= TCP:c:\windows\System32\PnkBstrA.exe:PnkBstrA
"{C1CB7E7C-2C05-42EB-BE00-8EF16D7126B8}"= UDP:c:\windows\System32\PnkBstrB.exe:PnkBstrB
"{9CDF182A-EF22-473E-B844-694A8C8B0CE0}"= TCP:c:\windows\System32\PnkBstrB.exe:PnkBstrB
"TCP Query User{364C9977-95AC-4254-BB21-DD6C906A4DBC}d:\\hry\\cod4\\iw3mp.exe"= UDP:d:\hry\cod4\iw3mp.exe:iw3mp
"UDP Query User{848DD7C2-BC4D-4C57-909A-C85B5FFF820E}d:\\hry\\cod4\\iw3mp.exe"= TCP:d:\hry\cod4\iw3mp.exe:iw3mp
"{DB104B01-3460-4582-A3CA-E0025F2543BB}"= UDP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{0B0BC857-2DA7-423C-B2BA-5C25BCFF58F8}"= TCP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"TCP Query User{90372D44-4FF1-46B4-846A-793344D0F7ED}d:\\programy\\utorrent.exe"= UDP:d:\programy\utorrent.exe:utorrent
"UDP Query User{4B552DBF-6988-4203-8F91-C429E7BC6E81}d:\\programy\\utorrent.exe"= TCP:d:\programy\utorrent.exe:utorrent
"{2EA9FCBB-5F76-4206-AFA9-AC652B7011A0}"= UDP:c:\program files\Steam\steamapps\common\empire total war demo\Empire.exe:Empire: Total War Demo
"{1900B918-D8B3-4B9D-AF8A-DE349D350D0F}"= TCP:c:\program files\Steam\steamapps\common\empire total war demo\Empire.exe:Empire: Total War Demo
"{6BF2F35D-A00F-46C7-90E0-090B47F19479}"= UDP:c:\program files\Steam\steamapps\common\dawn of war ii - spd\DOW2.exe:Warhammer 40,000: Dawn of War II - Single-player Demo
"{9F03C6D3-5045-4DB5-BFC4-6FDA1C2395BF}"= TCP:c:\program files\Steam\steamapps\common\dawn of war ii - spd\DOW2.exe:Warhammer 40,000: Dawn of War II - Single-player Demo

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile]
"EnableFirewall"= 0 (0x0)

S1 aswSP;avast! Self Protection; [x]
S1 PSched;Plánovač paketů technologie QoS;c:\windows\system32\DRIVERS\pacer.sys [2008-04-05 72192]
S2 aswFsBlk;aswFsBlk;c:\windows\system32\DRIVERS\aswFsBlk.sys [2008-11-26 20560]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\DRIVERS\aswMonFlt.sys [2008-11-26 51792]
S2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [2008-06-10 222456]


--- Ostatní služby/ovladače v paměti ---

*Deregistered* - sptd

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c3b33cf2-d400-11dd-b3fd-001d92a97520}]
\shell\AutoRun\command - H:\Launch.exe
.
Obsah adresáře 'Naplánované úlohy'

2009-04-21 c:\windows\Tasks\User_Feed_Synchronization-{C78B3F07-995F-4208-99A3-1E46B8B75D44}.job
- c:\windows\system32\msfeedssync.exe [2008-01-21 02:24]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
mStart Page = hxxp://www.google.com/ig/redirectdomain ... &bmod=FUJD
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-04-21 15:23
Windows 6.0.6001 Service Pack 1 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'Explorer.exe'(4172)
d:\skola r\Nokia\Nokia PC Suite 7\phonebrowser.dll
d:\skola r\Nokia\Nokia PC Suite 7\NGSCM.DLL
d:\skola r\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
d:\skola r\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\System32\Ati2evxx.exe
c:\windows\System32\audiodg.exe
c:\program files\Alwil Software\Avast4\aswUpdSv.exe
c:\program files\Alwil Software\Avast4\ashServ.exe
c:\windows\System32\Ati2evxx.exe
c:\program files\Nero\Nero8\Nero BackItUp\NBService.exe
c:\windows\System32\PnkBstrA.exe
c:\windows\System32\PnkBstrB.exe
c:\program files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
c:\windows\servicing\TrustedInstaller.exe
c:\windows\System32\conime.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\Alwil Software\Avast4\ashDisp.exe
c:\windows\ehome\ehmsas.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\PC Connectivity Solution\ServiceLayer.exe
c:\program files\Common Files\Nokia\MPAPI\MPAPI3s.exe
c:\program files\PC Connectivity Solution\Transports\NclUSBSrv.exe
c:\program files\PC Connectivity Solution\Transports\NclRSSrv.exe
.
**************************************************************************
.
Celkový čas: 2009-04-21 15:25 - počítač byl restartován
ComboFix-quarantined-files.txt 2009-04-21 13:25

Před spuštěním: Volných bajtů: 42 185 498 624
Po spuštění: Volných bajtů: 42 569 764 864

225 --- E O F --- 2009-04-19 17:51



To by melo byt vse, snad sem nic nezapomnel. U toho combofixu ikdyz sem mel avast vyplej tak vyskocila hlaska at ho vypnu, projel sem to jeste jednou a vsechno bylo vypli, tak to snad bude ok.

[jaro3]

jj, ještě nový log z HJT, zítra kouknu..

[joe55]

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 7:15:49, on 22.4.2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18226)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Common Files\Nokia\MPAPI\MPAPI3s.exe
C:\Program Files\Internet Explorer\ieuser.exe
D:\Programy\hijackthis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [Nokia.PCSync] "D:\skola R\Nokia\Nokia PC Suite 7\PCSync2.exe" /NoDialog
O4 - HKCU\..\Run: [PC Suite Tray] "D:\skola R\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-18\..\Run: [fsc-reg] C:\ProgramData\fsc-reg\fscreg.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [fsc-reg] C:\ProgramData\fsc-reg\fscreg.exe (User 'Default user')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\Programy\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\Programy\ICQLite\ICQLite.exe (file missing)
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O13 - Gopher Prefix:
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: Fujitsu Siemens Computers Diagnostic Testhandler (TestHandler) - Fujitsu Siemens Computers - C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe

--
End of file - 5834 bytes

[jaro3]

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:

Kód: Vybrat vše

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\Programy\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\Programy\ICQLite\ICQLite.exe (file missing)
O13 - Gopher Prefix:


ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix[mezera]/u

takže jestli nejsou problémy,tak vyčisti systém CCleanerem
a použij i T-Cleaner
smaže vše po Combu,SDFixu,Avengeru,MWAVu atd.-stáhneš>spustíš

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni select all found, pak klik empty selected.
Pokud chceš zachovat svoje uložená hesla, klikni na No.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Nainstaluj javu:
Java SE Runtime Environment 6u13
Vyber OS ( předpokládám Windows), dej zatržítko agree-continue
Vyber:
Windows Offline Installation
jre-6u13-windows-i586-p.exe
Vše.

[joe55]

Tak sem to v tom HJT fixnul, ale porad mam ten samy problem jako na zacatku.

[jaro3]

Možná založit téma do sekce hry..
Ještě toto , nemám zatím přeloženo:
Download the HostsXpert 4.2 - Hosts File Manager.
http://www.funkytoad.com/download/HostsXpert.zip
Unzip HostsXpert 4.2 - Hosts File Manager to a convenient folder such as C:\HostsXpert 4.2 - Hosts File Manager
Run HostsXpert 4.2 - Hosts File Manager from its new home
Click on "File Handling".
Click on "Restore MS Hosts File".
Click OK on the Confirmation box.
Click on "Make Read Only?"
Click the X to exit the program.
Note: If you were using a custom Hosts file you will need to replace any of those entries yourself.

[joe55]

Tam uz prave zalozeny tema mam a poradili mi hjt. Az dokoncis ten preklad bo co to je tak se ozvi, prozatim diky za snahu.