prosím o kontrolu logu

[Davson]

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:04:00, on 25.10.2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18828)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\system32\taskeng.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Hijackthis\hijackthis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\ProgramData\LangSoft\WebIE.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe

--
End of file - 5912 bytes

[Reklama]

[pitimir]

HJT uz nestaci...
Stiahni DDS. Uloz na plochu, ukonci vsetky spustene programy a spust ho. Po skonceni scanu sa otvoria vysledky v 2 oknach - DDS.txt a Attach.txt. Obsah oboch by som rad videl.

[Davson]

Po stažení DDS se mně objevili na obrazovce nějaké nesmysly.
http://www.forospyware.com/sUBs/dds/dds.pif

MZ��������˙˙��¸�������@�����������������������������������€���ş�´ Í!¸
LÍ!This program cannot be run in DOS mode.

$�������PE��L
�+ŤI��������ŕ�

2�n���¦�����������������@����������������������p����%”�������������������������������ÔW�Ź����P�´����������������������������������������������������������������������������������������������������������.code����@�����č����PEC2FO������ ��ŕ.rsrc���� ���P�����ę������������� ��ŕ��������������������������������������������������������¸¨dR�Pd˙5����d‰%����3Ŕ‰PECompact2�VŇËK¬ÇŃžç†ě¸oTN<N<T�#™®=L34w
ül©TS`M6lŠŐŤ[ĐĺNP‘áH�r_0)a�´ăţňŘľ,íf˝úŮ)|‚ü®BĹŁ��¨Ą§3]ËŁoKj„v›©hŐ¸Ş-–…PŰŘw4l4’Ľňĺâ`�޵ľĺ \¤ą3ďnféwp‰"ns„Ĺe€ŹXc�ĺŤÝDgňńϨ«ýÄ|˘0 O�ü·E�öôÄ�JŤ\#2\üÇçbNę\MkĘ(Ő^EKĄ]�m
Ă<Đ_Ŕ@�t˝•‰HŽÓw,K
ÚÄíŘ{˛łY®wCČd•Aýś§Ej]…vWŞbÚ°Í.çĎ“cF�§(C&{ź™;Ůçy U2ř)[)g*ć®uĽ¬ĹŠˇ0Ę«äś�¬Mő•ĺ‘Žs˙Ľ
PKÚź}C’b{/¬p=řžĎ_ŻýI«ĐĹѶ_÷ş˛Ŕ'Ô�Ö�`ăVS™JYg«ŘÇÄąˇąç|�_KwžČD;6ŕĐ�•˘ož†OŞńGŢSĚ·cŹ7äK €Ó
gB-‘6XfvâôžŃ-§pĝǼšŽš]úPméÚUuó ¤;âę’Çď˙&ƲoÉÉYú-00
+—=ďC<%#ÉšxÉuž�ĚńÎC1y4jS†ôT»ł)ĺťđšĹü<HŢçž]Šëđnőť˘ŰwŃčP�â§Čmq*?>ňË?ÍĆ244˝ żi)míŢK‚᪆­Ď+:@óîC
NĎâ>Űt°ě-dŽ·DS[.‰^ÝŹ|ó@‘Ů�tź°śP\R-TčqLA™u\Şăh‘žcýŽ¨Dä4fĆi€’™]6ô€nôlúÁ
čoä@čAFGÜoµŘŢ*ä=łÖÜ”…ŕ|H¨�ŐúĎ—
«~'VRŻŻ¦
î`÷±ďřmŰźÇőIÍÓͬčK1ąUxË>âARÔC)^ŘMÝ.!5Ř�„šé?î‰Sî& €vŚjulB礪`Á2vŽâ˛ĺĹÖb'
ńŹJ:%Æž5,Łŕ
ń°§h•č
Řýľ2ôöžř±­˙3‘gŰ/Cł\Ä.’‚�šŻÖÍţ2ÜÜw«iL—­%głđž�‡Ęji]f—ËŢË“@¸U?ú­żłÍ@.HÓ0ß˝$UwŐëđGBÂÝśŇÔŁ’b]jÚžĄëőşe

[Davson]

Posílám místo toho log RSIT.

Logfile of random's system information tool 1.06 (written by random/random)
Run by Agáta at 2009-10-25 10:59:48
Microsoft® Windows Vista™ Ultimate Service Pack 1
System drive C: has 27 GB (50%) free of 54 GB
Total RAM: 893 MB (33% free)

HijackThis download failed

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\ProgramData\LangSoft\WebIE.dll [2009-06-20 520192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\ProgramData\LangSoft\WebIE.dll [2009-06-20 520192]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-04-19 1008184]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-08-17 81000]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-04-19 1233920]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-04-19 125952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2009-10-25 10:59:50 ----D---- C:\Program Files\trend micro
2009-10-25 10:59:48 ----D---- C:\rsit
2009-10-25 10:58:41 ----D---- C:\Program Files\RSIT
2009-10-24 21:22:36 ----D---- C:\Users\Agáta\AppData\Roaming\PeerNetworking
2009-10-23 18:01:16 ----D---- C:\Users\Agáta\AppData\Roaming\WinRAR
2009-10-21 21:27:29 ----A---- C:\Windows\system32\MFC71.dll
2009-10-21 21:27:29 ----A---- C:\Windows\system32\aswBoot.exe
2009-10-21 21:27:25 ----D---- C:\Program Files\Alwil Software
2009-10-21 21:10:33 ----A---- C:\Windows\system32\tzres.dll
2009-10-21 19:13:21 ----A---- C:\Windows\system32\infocardapi.dll
2009-10-21 19:13:20 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-10-21 19:13:18 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2009-10-21 19:13:18 ----A---- C:\Windows\system32\icardres.dll
2009-10-21 19:13:18 ----A---- C:\Windows\system32\icardagt.exe
2009-10-21 19:13:15 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2009-10-21 19:13:09 ----A---- C:\Windows\system32\PresentationHost.exe
2009-10-21 19:03:47 ----A---- C:\Windows\system32\dfshim.dll
2009-10-21 19:03:43 ----A---- C:\Windows\system32\mscoree.dll
2009-10-21 19:03:41 ----A---- C:\Windows\system32\netfxperf.dll
2009-10-21 19:03:20 ----A---- C:\Windows\system32\mscorier.dll
2009-10-21 19:03:06 ----A---- C:\Windows\system32\mscories.dll
2009-10-21 17:38:44 ----A---- C:\Windows\system32\wlansvc.dll
2009-10-21 17:38:44 ----A---- C:\Windows\system32\wlansec.dll
2009-10-21 17:38:44 ----A---- C:\Windows\system32\wlanmsm.dll
2009-10-21 17:38:44 ----A---- C:\Windows\system32\L2SecHC.dll
2009-10-21 17:38:41 ----A---- C:\Windows\system32\atl.dll
2009-10-21 17:38:22 ----A---- C:\Windows\system32\netiohlp.dll
2009-10-21 17:38:20 ----A---- C:\Windows\system32\TCPSVCS.EXE
2009-10-21 17:38:20 ----A---- C:\Windows\system32\NETSTAT.EXE
2009-10-21 17:38:20 ----A---- C:\Windows\system32\MRINFO.EXE
2009-10-21 17:38:20 ----A---- C:\Windows\system32\HOSTNAME.EXE
2009-10-21 17:38:20 ----A---- C:\Windows\system32\finger.exe
2009-10-21 17:38:20 ----A---- C:\Windows\system32\ARP.EXE
2009-10-21 17:38:19 ----A---- C:\Windows\system32\ROUTE.EXE
2009-10-21 17:38:19 ----A---- C:\Windows\system32\netevent.dll
2009-10-21 17:36:10 ----A---- C:\Windows\system32\EncDec.dll
2009-10-21 17:36:07 ----A---- C:\Windows\system32\psisdecd.dll
2009-10-21 17:35:56 ----A---- C:\Windows\system32\mstscax.dll
2009-10-21 17:35:45 ----A---- C:\Windows\system32\avifil32.dll
2009-10-21 17:35:41 ----A---- C:\Windows\system32\mshtml.dll
2009-10-21 17:35:37 ----A---- C:\Windows\system32\ieframe.dll
2009-10-21 17:35:36 ----A---- C:\Windows\system32\iertutil.dll
2009-10-21 17:35:35 ----A---- C:\Windows\system32\wininet.dll
2009-10-21 17:35:35 ----A---- C:\Windows\system32\urlmon.dll
2009-10-21 17:35:35 ----A---- C:\Windows\system32\msfeeds.dll
2009-10-21 17:35:34 ----A---- C:\Windows\system32\occache.dll
2009-10-21 17:35:34 ----A---- C:\Windows\system32\iedkcs32.dll
2009-10-21 17:35:33 ----A---- C:\Windows\system32\msfeedsbs.dll
2009-10-21 17:35:33 ----A---- C:\Windows\system32\jsproxy.dll
2009-10-21 17:35:33 ----A---- C:\Windows\system32\ieUnatt.exe
2009-10-21 17:35:33 ----A---- C:\Windows\system32\ieui.dll
2009-10-21 17:35:33 ----A---- C:\Windows\system32\iesysprep.dll
2009-10-21 17:35:33 ----A---- C:\Windows\system32\iepeers.dll
2009-10-21 17:35:33 ----A---- C:\Windows\system32\ie4uinit.exe
2009-10-21 17:35:32 ----A---- C:\Windows\system32\msfeedssync.exe
2009-10-21 17:35:32 ----A---- C:\Windows\system32\iesetup.dll
2009-10-21 17:35:32 ----A---- C:\Windows\system32\iernonce.dll
2009-10-21 17:35:26 ----A---- C:\Windows\system32\WMVCORE.DLL
2009-10-21 17:35:25 ----A---- C:\Windows\system32\mf.dll
2009-10-21 17:35:00 ----A---- C:\Windows\system32\wmp.dll
2009-10-21 17:34:59 ----A---- C:\Windows\system32\wmpdxm.dll
2009-10-21 17:34:58 ----A---- C:\Windows\system32\spwmp.dll
2009-10-21 17:34:57 ----A---- C:\Windows\system32\dxmasf.dll
2009-10-21 17:34:55 ----A---- C:\Windows\system32\wmploc.DLL
2009-10-21 17:34:49 ----A---- C:\Windows\system32\msv1_0.dll
2009-10-21 17:34:03 ----A---- C:\Windows\system32\ntkrnlpa.exe
2009-10-21 17:34:02 ----A---- C:\Windows\system32\ntoskrnl.exe
2009-10-21 17:33:57 ----A---- C:\Windows\system32\jscript.dll
2009-10-21 17:33:46 ----A---- C:\Windows\system32\wkssvc.dll
2009-10-21 17:33:05 ----A---- C:\Windows\system32\Apphlpdm.dll
2009-10-21 17:33:02 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2009-10-21 17:29:55 ----A---- C:\Windows\system32\msasn1.dll
2009-10-21 17:22:51 ----A---- C:\Windows\system32\kerberos.dll
2009-10-21 17:22:48 ----A---- C:\Windows\system32\wdigest.dll
2009-10-21 17:22:48 ----A---- C:\Windows\system32\schannel.dll
2009-10-21 17:22:48 ----A---- C:\Windows\system32\lsasrv.dll
2009-10-21 17:22:46 ----A---- C:\Windows\system32\secur32.dll
2009-10-21 17:22:46 ----A---- C:\Windows\system32\lsass.exe
2009-10-21 17:18:26 ----A---- C:\Windows\system32\t2embed.dll
2009-10-21 17:18:25 ----A---- C:\Windows\system32\fontsub.dll
2009-10-21 17:18:25 ----A---- C:\Windows\system32\dciman32.dll
2009-10-21 17:18:25 ----A---- C:\Windows\system32\atmfd.dll
2009-10-21 17:17:13 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2009-10-21 16:52:07 ----D---- C:\Users\Agáta\AppData\Roaming\Macromedia
2009-10-21 16:43:28 ----N---- C:\Windows\system32\MpSigStub.exe
2009-10-21 15:17:08 ----D---- C:\Program Files\Microsoft Silverlight
2009-10-21 15:05:38 ----D---- C:\Windows\system32\Adobe
2009-10-21 14:53:44 ----D---- C:\Users\Agáta\AppData\Roaming\Mozilla
2009-10-21 14:53:31 ----D---- C:\Program Files\Mozilla Firefox
2009-10-20 22:18:36 ----D---- C:\Users\Agáta\AppData\Roaming\Ahead
2009-10-20 22:14:03 ----D---- C:\Users\Agáta\AppData\Roaming\Zoner
2009-10-20 21:46:05 ----D---- C:\Users\Agáta\AppData\Roaming\Adobe
2009-10-20 20:47:02 ----D---- C:\Program Files\CCleaner
2009-10-20 20:01:12 ----A---- C:\Windows\system32\mshtmled.dll
2009-10-20 20:01:11 ----A---- C:\Windows\system32\mshtmler.dll
2009-10-20 20:01:11 ----A---- C:\Windows\system32\icardie.dll
2009-10-20 20:01:11 ----A---- C:\Windows\system32\admparse.dll
2009-10-20 20:01:10 ----A---- C:\Windows\system32\msls31.dll
2009-10-20 20:01:10 ----A---- C:\Windows\system32\corpol.dll
2009-10-20 20:01:09 ----A---- C:\Windows\system32\imgutil.dll
2009-10-20 20:01:09 ----A---- C:\Windows\system32\ieakeng.dll
2009-10-20 20:01:09 ----A---- C:\Windows\system32\dxtrans.dll
2009-10-20 20:01:09 ----A---- C:\Windows\system32\dxtmsft.dll
2009-10-20 20:01:08 ----A---- C:\Windows\system32\licmgr10.dll
2009-10-20 20:01:07 ----A---- C:\Windows\system32\webcheck.dll
2009-10-20 20:01:07 ----A---- C:\Windows\system32\msrating.dll
2009-10-20 20:01:07 ----A---- C:\Windows\system32\inseng.dll
2009-10-20 20:01:07 ----A---- C:\Windows\system32\ieaksie.dll
2009-10-20 20:01:06 ----A---- C:\Windows\system32\WinFXDocObj.exe
2009-10-20 20:01:06 ----A---- C:\Windows\system32\wextract.exe
2009-10-20 20:01:06 ----A---- C:\Windows\system32\ieakui.dll
2009-10-20 20:01:05 ----A---- C:\Windows\system32\pngfilt.dll
2009-10-20 20:01:05 ----A---- C:\Windows\system32\mstime.dll
2009-10-20 20:01:05 ----A---- C:\Windows\system32\advpack.dll
2009-10-20 20:01:04 ----A---- C:\Windows\system32\vbscript.dll
2009-10-20 20:01:04 ----A---- C:\Windows\system32\ieapfltr.dll
2009-10-20 20:01:03 ----A---- C:\Windows\system32\url.dll
2009-10-20 20:01:01 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2009-10-20 20:01:01 ----A---- C:\Windows\system32\SetDepNx.exe
2009-10-20 20:01:01 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2009-10-20 20:01:01 ----A---- C:\Windows\system32\PDMSetup.exe
2009-10-20 20:01:01 ----A---- C:\Windows\system32\mshta.exe
2009-10-20 20:01:01 ----A---- C:\Windows\system32\iexpress.exe
2009-10-20 19:28:33 ----D---- C:\Users\Agáta\AppData\Roaming\LangSoft
2009-10-20 19:27:52 ----D---- C:\Users\Agáta\AppData\Roaming\Identities
2009-10-20 19:27:32 ----SD---- C:\Users\Agáta\AppData\Roaming\Microsoft
2009-10-20 19:27:32 ----D---- C:\Users\Agáta\AppData\Roaming\Media Center Programs
2009-10-20 03:43:56 ----D---- C:\c63e36280038f2748bc0db93701751

======List of files/folders modified in the last 1 months======

2009-10-25 10:59:50 ----RD---- C:\Program Files
2009-10-25 10:59:46 ----D---- C:\Windows\Temp
2009-10-24 21:26:51 ----D---- C:\Windows
2009-10-24 20:00:38 ----SHD---- C:\System Volume Information
2009-10-24 20:00:37 ----D---- C:\Windows\Logs
2009-10-24 18:09:35 ----D---- C:\Windows\Debug
2009-10-24 18:05:52 ----RSD---- C:\Windows\Fonts
2009-10-24 18:05:52 ----D---- C:\Windows\System32
2009-10-24 17:17:45 ----D---- C:\Windows\Prefetch
2009-10-23 17:47:16 ----D---- C:\Windows\inf
2009-10-23 17:47:16 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-10-23 16:07:51 ----RD---- C:\Users
2009-10-22 22:09:47 ----D---- C:\Windows\system32\catroot2
2009-10-22 20:36:53 ----D---- C:\Windows\Microsoft.NET
2009-10-22 20:36:43 ----RSD---- C:\Windows\assembly
2009-10-22 20:13:29 ----D---- C:\Windows\rescache
2009-10-21 21:28:13 ----D---- C:\Windows\system32\drivers
2009-10-21 21:26:18 ----D---- C:\Windows\winsxs
2009-10-21 21:15:45 ----D---- C:\Windows\system32\catroot
2009-10-21 21:12:48 ----D---- C:\Windows\system32\en-US
2009-10-21 21:12:48 ----D---- C:\Windows\system32\cs-CZ
2009-10-21 21:12:45 ----D---- C:\Program Files\Windows Mail
2009-10-21 21:09:36 ----SHD---- C:\Windows\Installer
2009-10-21 21:09:35 ----D---- C:\ProgramData\Microsoft Help
2009-10-21 21:04:07 ----D---- C:\Windows\ehome
2009-10-21 20:50:20 ----D---- C:\Windows\system32\migration
2009-10-21 20:50:20 ----D---- C:\Program Files\Internet Explorer
2009-10-21 20:50:18 ----D---- C:\Program Files\Windows Media Player
2009-10-21 20:50:07 ----D---- C:\Windows\system32\XPSViewer
2009-10-21 20:50:07 ----D---- C:\Windows\system32\wbem
2009-10-21 19:37:12 ----D---- C:\Program Files\Common Files\microsoft shared
2009-10-21 19:34:57 ----D---- C:\Program Files\Microsoft Works
2009-10-21 19:31:52 ----A---- C:\Windows\win.ini
2009-10-21 19:31:51 ----D---- C:\Program Files\Common Files\System
2009-10-21 18:57:38 ----D---- C:\Windows\AppPatch
2009-10-21 15:56:21 ----HD---- C:\ProgramData
2009-10-21 15:56:15 ----SD---- C:\Windows\Downloaded Program Files
2009-10-21 15:55:46 ----D---- C:\Windows\system32\Msdtc
2009-10-21 15:55:09 ----D---- C:\Windows\system32\config
2009-10-21 15:54:34 ----RSD---- C:\Windows\Media
2009-10-21 15:54:34 ----RD---- C:\Windows\Offline Web Pages
2009-10-21 15:54:15 ----D---- C:\Windows\Tasks
2009-10-21 15:54:14 ----D---- C:\Windows\system32\spool
2009-10-21 15:54:14 ----D---- C:\Windows\system32\Macromed
2009-10-21 15:53:53 ----D---- C:\Windows\registration
2009-10-21 15:53:45 ----D---- C:\Windows\PolicyDefinitions
2009-10-21 15:36:01 ----D---- C:\Windows\Minidump
2009-10-20 19:28:13 ----SHD---- C:\$Recycle.Bin
2009-10-20 16:03:11 ----D---- C:\Windows\tmp
2009-10-20 16:03:10 ----D---- C:\Windows\system32\CodeIntegrity
2009-10-20 16:03:00 ----D---- C:\TRANSLAT
2009-10-18 20:38:10 ----HD---- C:\Windows\system32\GroupPolicy
2009-10-16 21:47:30 ----D---- C:\PerfLogs
2009-10-16 19:16:17 ----D---- C:\Windows\system32\WDI
2009-10-16 15:16:52 ----SD---- C:\ProgramData\Microsoft
2009-10-02 10:01:58 ----A---- C:\Windows\system32\mrt.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2009-08-17 23152]
R1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2009-08-17 114768]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2009-08-17 51376]
R1 CSC;Offline Files Driver; C:\Windows\system32\drivers\csc.sys [2008-04-19 350720]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2009-08-17 20560]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2009-08-17 53328]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2006-11-02 467456]
R3 CmBatt;Ovladač baterie Microsoft ACPI Control Method Battery; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-04-19 14208]
R3 EMSCR;EMSCR; C:\Windows\system32\DRIVERS\EMS7SK.sys [2006-02-16 60928]
R3 ESMCR;ESMCR; C:\Windows\system32\DRIVERS\ESM7SK.sys [2006-02-16 74624]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2008-04-19 987648]
R3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2008-04-19 200704]
R3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2006-11-02 2028032]
R3 RTL8023xp;Realtek 10/100 NIC Family NDIS x86 Driver; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2006-11-02 47104]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-04-19 88576]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2008-04-19 654336]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-04-19 11264]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-04-19 83328]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-04-19 5632]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-04-19 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-04-19 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-04-19 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-04-19 6016]
S3 NPF;Netgroup Packet Filter; C:\Windows\system32\drivers\npf.sys [2005-08-03 32512]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-04-19 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-04-19 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-08-17 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-08-17 138680]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2008-04-19 21504]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-08-17 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-08-17 352920]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2008-04-19 21504]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2008-04-19 523776]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2008-04-19 21504]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2008-04-19 917504]

-----------------EOF-----------------

[pitimir]

Dobra robota.

Ake mas problemy?

[Davson]

Mám notebook a když ho chci zapnout tak mně místo načtení tabulky BIOS problikává display s tímto textem :

Intel Undi,PXE-2.0 (build 082)
For Realtek RTL 8139 (X)8130/810x PCI fast ethernet controller v. 2.13 (020326)

PSE-EG1 : media test failure check cable
PSE-MOF: exiting PXE ROM

Instalační disk bohužel nemám. Vůbec nevím co s tím dělat. Řeším to tak, že dám F2. Naskočí mně tabulka BIOS. Dám F10 ( uložit změny a ukončit nastavení) ikdyž jsem žádné změny neprovedl. Potom mně teprve naskočí přihlašovací obrazovka.

Už jsem to měl jednou jako samostatné téma, ale bohužel bez žádné odpovědi.

[pitimir]

Toto s malware nebude mat nic spolocne...doteraz bol iba jediny znamy smejd, ktory sa dokazal zazrat do BIOSu, no ten je uz par rokov mrtvy.
Skusil by som inu sekciu fora, ja ti s tymto nedokazem poradit.