hijack this

posielam vam jedno hlasenie:Logfile of HijackThis v1.99.1
Scan saved at 20:21:48, on 27.11.2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\PRTG Traffic Grapher\PRTG Traffic Grapher.exe
C:\Program Files\PRTG Traffic Grapher\PRTG Traffic Grapher.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\PRTG Traffic Grapher\watchdog\prtgwatchdog.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\Dočasný adresár 1 pre hijackthis.zip\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.azet.sk/
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: UrlHelper Class - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Burn4Free Toolbar Helper - {D187A56B-A33F-4CBE-9D77-459FC0BAE012} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: BearShare MediaBar - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: (no name) - {9E709AEF-74F7-4DA3-A7FC-F3E2D5A8D793} - (no file)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Toolbars\Restrictions present
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... eqlab3.cab
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - http://www.eset.cz/OnlineScanner.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDow ... rtScan.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos-be ... canner.cab
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://wwwimages.adobe.com/www.adobe.co ... nos/gp.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553550000} - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{688E047F-13A0-4C97-AA9A-197C62EFA91B}: NameServer = 213.151.202.130,213.151.208.161
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: dimsntfy - %SystemRoot%\System32\dimsntfy.dll (file missing)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Google Update Service (gupdate1c9b37c8c56ee56) (gupdate1c9b37c8c56ee56) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe" /svc (file missing)
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf (file missing)
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PRTG Service (PRTGService) - Paessler GmbH - C:\Program Files\PRTG Traffic Grapher\PRTG Traffic Grapher.exe
O23 - Service: PRTG Watchdog (prtgwatchservice) - Unknown owner - C:\Program Files\PRTG Traffic Grapher\watchdog\prtgwatchdog.exe

je to v poriadku? ja sa do toho velmi nerozumiem dakujem za odpovede.a ak nie tak co dalej.

HJT uz nestaci...

Stiahni DDS. Uloz na plochu, ukonci vsetky spustene programy a spust ho. Po skonceni scanu sa otvoria vysledky v 2 oknach - DDS.txt a Attach.txt. Obsah oboch by som rad videl.

DDS (Ver_09-11-24.02) - NTFSx86
Run by Owner at 16:25:38,82 on so 28.11.2009
Internet Explorer: 6.0.2900.5512 BrowserJavaVersion: 1.6.0_11
Systém Microsoft Windows XP Home Edition 5.1.2600.3.1250.421.1033.18.511.221 [GMT 1:00]

AV: ESET Smart Security 4.0 *On-access scanning enabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *enabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
svchost.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\PRTG Traffic Grapher\PRTG Traffic Grapher.exe
C:\Program Files\PRTG Traffic Grapher\PRTG Traffic Grapher.exe
C:\Program Files\PRTG Traffic Grapher\watchdog\prtgwatchdog.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Owner\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.azet.sk/
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
mDefault_Search_URL = hxxp://www.google.com/ie
mSearch Page = hxxp://www.google.com
mSearch Bar = hxxp://www.google.com/ie
uInternet Connection Wizard,ShellNext = iexplore
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mSearchAssistant = hxxp://www.google.com/ie
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: GetTubeVideoObj Class: {25919155-16d0-4439-a4a6-bb69f20fbd60} - c:\program files\gettubevideo\GetTubeVideo.dll
BHO: UrlHelper Class: {74322bf9-df26-493f-b0da-6d2fc5e6429e} - c:\program files\bearshare applications\bearshare mediabar\BearShareIEHelper.dll
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.2.4204.1700\swg.dll
BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_B7C5AC242193BB3E.dll
BHO: {d187a56b-a33f-4cbe-9d77-459fc0bae012} - Burn4Free Toolbar Helper
BHO: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: BearShare MediaBar: {d3dee18f-db64-4beb-9ff1-e1f0a5033e4a} - c:\program files\bearshare applications\bearshare mediabar\BearShareMediaBar.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
TB: {9E709AEF-74F7-4DA3-A7FC-F3E2D5A8D793} - No File
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
TB: Burn4Free Toolbar: {4f11acbb-393f-4c86-a214-ff3d0d155cc3} -
TB: {71B6ACF7-4F0F-4FD8-BB69-6D1A4D271CB7} - No File
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
uPolicies-explorer: NoThemesTab = 0 (0x0)
uPolicies-explorer: NoChangeAnimation = 0 (0x0)
uPolicies-explorer: RestrictCpl = 0 (0x0)
uPolicies-explorer: DisallowCpl = 0 (0x0)
uPolicies-explorer: NoViewOnDrive = 0 (0x0)
uPolicies-explorer: RestrictRun = 0 (0x0)
uPolicies-explorer: DisallowRun = 0 (0x0)
uPolicies-explorer: NoRecycleFiles = 0 (0x0)
uPolicies-explorer: ForceRecycleBinSize = 0 (0x0)
uPolicies-explorer: NoCustomizeWebView = 0 (0x0)
uPolicies-explorer: NoFileAssociate = 0 (0x0)
uPolicies-explorer: NoDFSTab = 0 (0x0)
uPolicies-explorer: NoInstrumentation = 0 (0x0)
uPolicies-explorer: NoCustomizeThisFolder = 0 (0x0)
uPolicies-explorer: NoWebView = 0 (0x0)
uPolicies-explorer: DontShowSuperHidden = 0 (0x0)
uPolicies-explorer: NoOnlinePrintsWizard = 0 (0x0)
uPolicies-explorer: NoPublishingWizard = 0 (0x0)
uPolicies-explorer: NoSMConfigurePrograms = 0 (0x0)
uPolicies-explorer: NoSMMyPictures = 0 (0x0)
uPolicies-explorer: NoStartMenuMyMusic = 0 (0x0)
uPolicies-explorer: NoHelp = 0 (0x0)
uPolicies-explorer: NoCommonGroups = 0 (0x0)
uPolicies-explorer: NoWindowsUpdate = 0 (0x0)
uPolicies-explorer: NoStartMenuEjectPC = 0 (0x0)
uPolicies-explorer: NoSimpleStartMenu = 0 (0x0)
uPolicies-explorer: NoStartMenuSubFolders = 0 (0x0)
uPolicies-explorer: NoDisconnect = 0 (0x0)
uPolicies-explorer: NoNtSecurity = 0 (0x0)
uPolicies-explorer: GreyMSIAds = 0 (0x0)
uPolicies-explorer: ForceMaxRecentDocs = 0 (0x0)
uPolicies-explorer: NoSMBalloonTip = 0 (0x0)
uPolicies-explorer: NoSMBalloonTips = 0 (0x0)
uPolicies-explorer: HideClock = 0 (0x0)
uPolicies-explorer: HideSCAVolume = 0 (0x0)
uPolicies-explorer: HideSCANetwork = 0 (0x0)
uPolicies-explorer: HideSCAPower = 0 (0x0)
uPolicies-explorer: NoTaskGrouping = 0 (0x0)
uPolicies-explorer: ForceActiveDesktopOn = 0 (0x0)
uPolicies-explorer: NoWebServices = 0 (0x0)
uPolicies-explorer: NoFileUrl = 0 (0x0)
uPolicies-explorer: SpecifyDefaultButtons = 0 (0x0)
uPolicies-explorer: PromptRunasInstallNetPath = 1 (0x1)
uPolicies-explorer: NoResolveTrack = 0 (0x0)
uPolicies-explorer: NoDevMgrUpdate = 0 (0x0)
uPolicies-explorer: NoThumbnailCache = 0 (0x0)
uPolicies-explorer: ForceCopyAclwithFile = 0 (0x0)
uPolicies-explorer: StartRunNoHOMEPATH = 0 (0x0)
uPolicies-system: NoDispAppearancePage = 0 (0x0)
uPolicies-system: NoDispSettingsPage = 0 (0x0)
uPolicies-system: NoVisualStyleChoice = 0 (0x0)
uPolicies-system: NoColorChoice = 0 (0x0)
uPolicies-system: NoSizeChoice = 0 (0x0)
uPolicies-system: HideLogonScripts = 0 (0x0)
mPolicies-explorer: NoWelcomeScreen = 0 (0x0)
mPolicies-system: HideFastUserSwitching = 0 (0x0)
mPolicies-system: HideShutdownScripts = 0 (0x0)
mPolicies-system: RunLogonScriptSync = 0 (0x0)
dPolicies-explorer: NoThemesTab = 0 (0x0)
dPolicies-explorer: NoChangeAnimation = 0 (0x0)
dPolicies-explorer: RestrictCpl = 0 (0x0)
dPolicies-explorer: DisallowCpl = 0 (0x0)
dPolicies-explorer: NoViewOnDrive = 0 (0x0)
dPolicies-explorer: RestrictRun = 0 (0x0)
dPolicies-explorer: DisallowRun = 0 (0x0)
dPolicies-explorer: NoRecycleFiles = 0 (0x0)
dPolicies-explorer: ForceRecycleBinSize = 0 (0x0)
dPolicies-explorer: NoCustomizeWebView = 0 (0x0)
dPolicies-explorer: NoFileAssociate = 0 (0x0)
dPolicies-explorer: NoDFSTab = 0 (0x0)
dPolicies-explorer: NoInstrumentation = 0 (0x0)
dPolicies-explorer: NoCustomizeThisFolder = 0 (0x0)
dPolicies-explorer: NoWebView = 0 (0x0)
dPolicies-explorer: DontShowSuperHidden = 0 (0x0)
dPolicies-explorer: NoOnlinePrintsWizard = 0 (0x0)
dPolicies-explorer: NoPublishingWizard = 0 (0x0)
dPolicies-explorer: NoSMConfigurePrograms = 0 (0x0)
dPolicies-explorer: NoSMMyPictures = 0 (0x0)
dPolicies-explorer: NoStartMenuMyMusic = 0 (0x0)
dPolicies-explorer: NoHelp = 0 (0x0)
dPolicies-explorer: NoCommonGroups = 0 (0x0)
dPolicies-explorer: NoWindowsUpdate = 0 (0x0)
dPolicies-explorer: NoStartMenuEjectPC = 0 (0x0)
dPolicies-explorer: NoSimpleStartMenu = 0 (0x0)
dPolicies-explorer: NoStartMenuSubFolders = 0 (0x0)
dPolicies-explorer: NoDisconnect = 0 (0x0)
dPolicies-explorer: NoNtSecurity = 0 (0x0)
dPolicies-explorer: GreyMSIAds = 0 (0x0)
dPolicies-explorer: ForceMaxRecentDocs = 0 (0x0)
dPolicies-explorer: NoSMBalloonTip = 0 (0x0)
dPolicies-explorer: NoSMBalloonTips = 0 (0x0)
dPolicies-explorer: HideClock = 0 (0x0)
dPolicies-explorer: HideSCAVolume = 0 (0x0)
dPolicies-explorer: HideSCANetwork = 0 (0x0)
dPolicies-explorer: HideSCAPower = 0 (0x0)
dPolicies-explorer: NoTaskGrouping = 0 (0x0)
dPolicies-explorer: ForceActiveDesktopOn = 0 (0x0)
dPolicies-explorer: NoWebServices = 0 (0x0)
dPolicies-explorer: NoFileUrl = 0 (0x0)
dPolicies-explorer: SpecifyDefaultButtons = 0 (0x0)
dPolicies-explorer: NoRecentDocsNetHood = 0 (0x0)
dPolicies-explorer: PromptRunasInstallNetPath = 1 (0x1)
dPolicies-explorer: NoResolveTrack = 0 (0x0)
dPolicies-explorer: NoDevMgrUpdate = 0 (0x0)
dPolicies-explorer: NoThumbnailCache = 0 (0x0)
dPolicies-explorer: ForceCopyAclwithFile = 0 (0x0)
dPolicies-explorer: StartRunNoHOMEPATH = 0 (0x0)
dPolicies-system: NoDispAppearancePage = 0 (0x0)
dPolicies-system: NoDispSettingsPage = 0 (0x0)
dPolicies-system: NoVisualStyleChoice = 0 (0x0)
dPolicies-system: NoColorChoice = 0 (0x0)
dPolicies-system: NoSizeChoice = 0 (0x0)
dPolicies-system: HideLogonScripts = 0 (0x0)
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBC} - c:\program files\java\jre6\bin\jp2iexp.dll
IE: {740F14B4-0C3B-4de7-A466-4C2EF6B87B73} - {25919155-16D0-4439-A4A6-BB69F20FBD60} - c:\program files\gettubevideo\GetTubeVideo.dll
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shoc ... tor/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/ ... ontrol.cab
DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} - hxxp://www.nvidia.com/content/DriverDow ... eqlab3.cab
DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDow ... ab_nvd.cab
DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} - hxxp://www.eset.cz/OnlineScanner.cab
DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - hxxp://download.divx.com/player/DivXBrowserPlugin.cab
DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} - hxxp://www.nvidia.com/content/DriverDow ... rtScan.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos-be ... canner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/fl ... rashim.cab
DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} - hxxp://wwwimages.adobe.com/www.adobe.co ... nos/gp.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shoc ... wflash.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540001} - hxxp://download.macromedia.com/pub/shoc ... wflash.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553550000} - hxxp://fpdownload2.macromedia.com/get/s ... wflash.cab
TCP: {688E047F-13A0-4C97-AA9A-197C62EFA91B} = 213.151.202.130,213.151.208.161
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: AtiExtEvent - Ati2evxx.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\owner\applic~1\mozilla\firefox\profiles\hpo1cfon.default\
FF - prefs.js: keyword.URL - about:neterror?e=query&u=
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.2.183.13\npGoogleOneClick8.dll
FF - plugin: c:\program files\opera\program\plugins\npdivx32.dll
FF - plugin: c:\program files\virtools\3d life player\npvirtools.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\

---- FIREFOX POLICIES ----
c:\program files\mozilla firefox\greprefs\all.js - pref("capability.policy.default.XMLHttpRequest.channel", "noAccess");
c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.jit.chrome", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("security.checkloaduri", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("bidi.characterset", 1);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
c:\program files\mozilla firefox\defaults\pref\channel-prefs.js - pref("app.update.channel", "release");
c:\program files\mozilla firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".sk");

============= SERVICES / DRIVERS ===============

R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2009-9-11 108792]
R2 ekrn;ESET Service;c:\program files\eset\eset smart security\ekrn.exe [2009-9-11 735960]
R2 PRTGService;PRTG Service;c:\program files\prtg traffic grapher\PRTG Traffic Grapher.exe [2009-2-4 3814728]
R2 prtgwatchservice;PRTG Watchdog;c:\program files\prtg traffic grapher\watchdog\prtgwatchdog.exe [2009-2-4 443904]
R3 3xHybrid;Pinnacle PCTV 100i-110i-300i-310i-MCE;c:\windows\system32\drivers\3xHybrid.sys [2008-8-13 1121536]
S2 gupdate1c9b37c8c56ee56;Google Update Service (gupdate1c9b37c8c56ee56);c:\program files\google\update\GoogleUpdate.exe [2009-4-2 133104]
S2 TVicHW64;TVicHW64;c:\windows\system32\drivers\TVicHW64.sys [2008-12-28 21200]
S3 esihdrv;esihdrv;\??\c:\docume~1\owner\locals~1\temp\esihdrv.sys --> c:\docume~1\owner\locals~1\temp\esihdrv.sys [?]
S3 getPlusHelper;getPlus(R) Helper;c:\windows\system32\svchost.exe -k getPlusHelper [2006-2-28 14336]
S3 PctvVirtualNdis;Pinnacle Virtual Miniport;c:\windows\system32\drivers\PctvVirtualNdis.sys [2008-11-21 13696]
S3 se46bus;Sony Ericsson Device 070 driver (WDM);c:\windows\system32\drivers\se46bus.sys [2008-11-16 61536]
S3 se46mdfl;Sony Ericsson Device 070 USB WMC Modem Filter;c:\windows\system32\drivers\se46mdfl.sys [2008-11-16 9360]
S3 se46mdm;Sony Ericsson Device 070 USB WMC Modem Driver;c:\windows\system32\drivers\se46mdm.sys [2008-11-16 97088]
S3 se46mgmt;Sony Ericsson Device 070 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\se46mgmt.sys [2008-11-17 88624]
S3 se46nd5;Sony Ericsson Device 070 USB Ethernet Emulation SEMC46 (NDIS);c:\windows\system32\drivers\se46nd5.sys [2008-11-17 18704]
S3 se46obex;Sony Ericsson Device 070 USB WMC OBEX Interface;c:\windows\system32\drivers\se46obex.sys [2008-11-17 86432]
S3 se46unic;Sony Ericsson Device 070 USB Ethernet Emulation SEMC46 (WDM);c:\windows\system32\drivers\se46unic.sys [2008-11-17 90800]
S3 TVICHW32;TVICHW32;c:\windows\system32\drivers\TVICHW32.SYS [2009-11-17 23600]
S3 ZSMC0305;VIMICRO USB PC Camera VC0305;c:\windows\system32\drivers\usbVM305.sys [2009-2-21 391615]

=============== Created Last 30 ================

2009-11-28 13:14:33 0 d-----w- c:\program files\Ask.com
2009-11-28 13:14:12 0 d-----w- c:\program files\VDOWNLOADER
2009-11-28 12:41:05 0 d-----w- c:\program files\GetTubeVideo
2009-11-28 09:36:30 0 d-----w- c:\program files\ImTOO
2009-11-27 20:52:38 65602 ----a-w- c:\windows\system32\cook3260.dll
2009-11-27 20:52:38 626688 ----a-w- c:\windows\system32\vp7vfw.dll
2009-11-27 20:52:38 217127 ----a-w- c:\windows\system32\drv43260.dll
2009-11-27 20:52:38 208935 ----a-w- c:\windows\system32\drv33260.dll
2009-11-27 20:52:38 176165 ----a-w- c:\windows\system32\drv23260.dll
2009-11-27 20:52:38 1184984 ----a-w- c:\windows\system32\wvc1dmod.dll
2009-11-27 20:52:38 102439 ----a-w- c:\windows\system32\sipr3260.dll
2009-11-27 06:16:28 0 d-sh--w- C:\found.000
2009-11-25 07:22:39 0 d-----w- c:\program files\MSXML 4.0
2009-11-20 23:47:21 230 ----a-w- c:\windows\system32\spupdsvc.inf
2009-11-17 09:16:21 23600 ----a-w- c:\windows\system32\drivers\TVICHW32.SYS
2009-11-12 14:59:36 0 d-----w- c:\program files\AVI to 3GP
2009-11-10 12:06:57 195456 ------w- c:\windows\system32\MpSigStub.exe
2009-11-09 16:18:50 78336 ----a-w- c:\windows\system32\ieencode.dll
2009-11-09 16:16:07 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2009-11-09 16:16:04 246272 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2009-11-09 10:29:39 0 d-----w- c:\docume~1\owner\applic~1\Janes_Realty
2009-11-09 10:29:04 0 d-----w- c:\program files\Realore
2009-11-07 16:05:48 0 d-----w- c:\program files\Na scene(TM)
2009-11-04 12:57:45 0 d-----w- c:\documents and settings\owner\AbiSuite
2009-11-04 12:57:21 0 d-----w- c:\program files\AbiWord
2009-11-04 12:46:27 0 d-----w- c:\program files\csWord
2009-11-02 08:56:55 0 d-----w- c:\program files\ESET

==================== Find3M ====================

2009-11-27 21:11:56 87608 ----a-w- c:\docume~1\owner\applic~1\inst.exe
2009-11-27 21:11:56 47360 ----a-w- c:\docume~1\owner\applic~1\pcouffin.sys
2009-11-27 20:52:58 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys
2009-09-25 05:37:11 667136 ----a-w- c:\windows\system32\wininet.dll
2009-09-11 14:18:39 136192 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-04 21:03:36 58880 ----a-w- c:\windows\system32\msasn1.dll

============= FINISH: 16:26:03,14 ===============
to je prvy

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-11-24.02)

Systém Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 12.8.2008 14:08:22
System Uptime: 28.11.2009 16:22:54 (0 hours ago)

Motherboard: MICRO-STAR INTERNATIONAL CO., LTD | | MS-7125
Processor: AMD Athlon(tm) 64 Processor 3500+ | Socket 939 | 2211/201mhz

==== Disk Partitions =========================

A: is Removable
C: is FIXED (NTFS) - 59 GiB total, 38,539 GiB free.
D: is FIXED (NTFS) - 90 GiB total, 67,8 GiB free.
E: is CDROM ()

==== Disabled Device Manager Items =============

Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: 1394 Net Adapter
Device ID: V1394\NIC1394\00364C01
Manufacturer: Microsoft
Name: 1394 Net Adapter
PNP Device ID: V1394\NIC1394\00364C01
Service: NIC1394

Class GUID: {4D36E968-E325-11CE-BFC1-08002BE10318}
Description: Radeon X1600/X1650 Series
Device ID: PCI\VEN_1002&DEV_71C2&SUBSYS_21501458&REV_00\4&243D7BD0&0&0070
Manufacturer: ATI Technologies Inc.
Name: Radeon X1600/X1650 Series
PNP Device ID: PCI\VEN_1002&DEV_71C2&SUBSYS_21501458&REV_00\4&243D7BD0&0&0070
Service: ati2mtag

Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Pinnacle Virtual Ethernet Adapter
Device ID: ROOT\NET\0000
Manufacturer: Pinnacle Systems
Name: Pinnacle Virtual Ethernet Adapter
PNP Device ID: ROOT\NET\0000
Service: PctvVirtualNdis

==== System Restore Points ===================

RP44: 1.11.2009 11:17:11 - Odstránené: ESET Smart Security
RP45: 1.11.2009 11:19:25 - Nainštalované: ESET NOD32 Antivirus
RP46: 1.11.2009 17:48:53 - Revo Uninstaller's restore point - DVD Flick 1.3.0.7
RP47: 1.11.2009 17:50:15 - Revo Uninstaller's restore point - ImTOO AVI to DVD Converter
RP48: 1.11.2009 18:03:58 - Odstránené: ESET NOD32 Antivirus
RP49: 1.11.2009 18:04:09 - Nainštalované: ESET Smart Security
RP50: 2.11.2009 9:45:39 - Revo Uninstaller's restore point - ESET Smart Security
RP51: 2.11.2009 9:46:07 - Odstránené: ESET Smart Security
RP52: 2.11.2009 9:56:52 - Nainštalované: ESET Smart Security
RP53: 2.11.2009 22:36:55 - Removed Ask Toolbar.
RP54: 2.11.2009 22:38:07 - Odebráno: Opera 9.64
RP55: 4.11.2009 9:01:18 - Kontrolný bod systému
RP56: 4.11.2009 13:50:57 - Installed Microsoft Office Word Viewer 2003
RP57: 4.11.2009 13:57:27 - Installed Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
RP58: 4.11.2009 14:19:09 - Installed Compatibility Pack for the 2007 Office system
RP59: 4.11.2009 14:29:08 - Revo Uninstaller's restore point - AbiWord 2.8.0
RP60: 4.11.2009 14:30:41 - Revo Uninstaller's restore point - csWord v.3
RP61: 4.11.2009 14:31:52 - Revo Uninstaller's restore point - Balík Compatibility Pack pre systém Office 2007
RP62: 4.11.2009 14:31:59 - Odstránený Balík Compatibility Pack pre systém Office 2007
RP63: 4.11.2009 14:33:47 - Revo Uninstaller's restore point - Compatibility Pack for the 2007 Office system
RP64: 4.11.2009 14:33:55 - Removed Compatibility Pack for the 2007 Office system
RP65: 4.11.2009 22:42:36 - Software Distribution Service 3.0
RP66: 5.11.2009 8:47:08 - Revo Uninstaller's restore point - Avi2Dvd 0.5
RP67: 5.11.2009 8:51:09 - Revo Uninstaller's restore point - LimeWire 5.2.13
RP68: 5.11.2009 8:52:44 - Revo Uninstaller's restore point - Ulead VideoStudio 8.0
RP69: 5.11.2009 8:53:12 - Removed Ulead VideoStudio
RP70: 5.11.2009 8:54:29 - Revo Uninstaller's restore point - Wolfram Toolbar 1.0 (1269103)
RP71: 5.11.2009 8:55:31 - Revo Uninstaller's restore point - World of Warcraft FREE Trial
RP72: 5.11.2009 8:55:36 - Removed World of Warcraft FREE Trial
RP73: 5.11.2009 8:56:55 - Revo Uninstaller's restore point - Windows Media Player Firefox Plugin
RP74: 5.11.2009 12:13:57 - Software Distribution Service 3.0
RP75: 5.11.2009 13:17:22 - Removed Bonjour
RP76: 5.11.2009 13:19:15 - Removed iTunes
RP77: 6.11.2009 16:47:29 - Kontrolný bod systému
RP78: 7.11.2009 9:19:30 - Software Distribution Service 3.0
RP79: 7.11.2009 17:05:43 - Instalováno Na scéně(TM)
RP80: 7.11.2009 22:21:14 - Software Distribution Service 3.0
RP81: 8.11.2009 20:19:15 - Software Distribution Service 3.0
RP82: 9.11.2009 17:19:10 - Nainštalovaný program Windows Internet Explorer 8.
RP83: 9.11.2009 17:20:06 - Software Distribution Service 3.0
RP84: 9.11.2009 18:53:43 - Software Distribution Service 3.0
RP85: 10.11.2009 13:06:17 - Installed Windows Defender
RP86: 10.11.2009 13:06:54 - Software Distribution Service 3.0
RP87: 10.11.2009 18:37:57 - Installed Stigo YouTube Downloader
RP88: 11.11.2009 10:14:17 - Software Distribution Service 3.0
RP89: 12.11.2009 16:42:48 - Kontrolný bod systému
RP90: 13.11.2009 6:51:09 - Software Distribution Service 3.0
RP91: 13.11.2009 20:56:18 - Revo Uninstaller's restore point - Windows Internet Explorer 8
RP92: 14.11.2009 14:22:15 - Revo Uninstaller's restore point - xDownloader 2.06r1
RP93: 14.11.2009 14:25:17 - Revo Uninstaller's restore point - MSXML 4.0 SP2 Parser and SDK
RP94: 14.11.2009 14:25:41 - Removed MSXML 4.0 SP2 Parser and SDK
RP95: 14.11.2009 14:28:02 - Removed Apple Mobile Device Support
RP96: 14.11.2009 14:32:16 - Removed Stigo YouTube Downloader
RP97: 14.11.2009 14:33:34 - Removed Windows Defender
RP98: 14.11.2009 14:34:47 - Removed Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
RP99: 14.11.2009 14:35:21 - Odstránený Microsoft Visual C++ 2005 Redistributable
RP100: 14.11.2009 14:36:40 - Removed MobileMe Control Panel
RP101: 14.11.2009 14:36:55 - Removed MSXML 4.0 SP2 (KB936181)
RP102: 14.11.2009 14:37:17 - Removed Rayman3
RP103: 14.11.2009 14:38:12 - Konfigurováno Bod obnovy InstallShield
RP104: 14.11.2009 14:38:23 - Removed Apple Software Update
RP105: 14.11.2009 14:38:48 - Removed ATI Parental Control & Encoder
RP106: 14.11.2009 18:17:58 - Software Distribution Service 3.0
RP107: 15.11.2009 21:10:23 - Kontrolný bod systému
RP108: 16.11.2009 21:20:38 - Kontrolný bod systému
RP109: 18.11.2009 13:58:37 - Kontrolný bod systému
RP110: 20.11.2009 7:50:51 - Kontrolný bod systému
RP111: 20.11.2009 12:25:52 - Odstránené HTML kódy
RP112: 21.11.2009 0:36:34 - Revo Uninstaller's restore point - MEMORyAL
RP113: 21.11.2009 0:37:10 - Revo Uninstaller's restore point - Xvid 1.2.1 final uninstall
RP114: 21.11.2009 0:40:10 - Revo Uninstaller's restore point - MEMORyAL
RP115: 21.11.2009 0:44:31 - Revo Uninstaller's restore point - VDownloader 0.83
RP116: 21.11.2009 0:46:11 - Revo Uninstaller's restore point - Windows Internet Explorer 7
RP117: 21.11.2009 0:50:45 - Revo Uninstaller's restore point - Google Chrome
RP118: 21.11.2009 1:03:34 - Software Distribution Service 3.0
RP119: 21.11.2009 8:09:39 - Software Distribution Service 3.0
RP120: 22.11.2009 8:09:32 - Software Distribution Service 3.0
RP121: 23.11.2009 10:05:16 - Kontrolný bod systému
RP122: 23.11.2009 23:57:18 - Revo Uninstaller's restore point - Xpand Rally
RP123: 23.11.2009 23:57:50 - Removed Xpand Rally
RP124: 24.11.2009 0:03:47 - Revo Uninstaller's restore point - Transport Giant Gold
RP125: 24.11.2009 0:04:13 - Removed Transport Giant Gold
RP126: 24.11.2009 0:05:25 - Revo Uninstaller's restore point - Total Video Converter 3.21 090220
RP127: 24.11.2009 0:06:49 - Revo Uninstaller's restore point - Total Video Converter 3.21 090220
RP128: 25.11.2009 8:22:28 - Software Distribution Service 3.0
RP129: 25.11.2009 12:00:52 - Revo Uninstaller's restore point - GoldWave v5.52
RP130: 27.11.2009 12:15:32 - Revo Uninstaller's restore point - Mozilla Firefox (3.5.5)
RP131: 27.11.2009 13:21:25 - Revo Uninstaller's restore point - Mozilla Firefox (3.6b4)
RP132: 27.11.2009 17:02:45 - Revo Uninstaller's restore point - Mozilla Firefox (3.5.5)
RP133: 27.11.2009 17:08:08 - Installed Opera 10.10.
RP134: 27.11.2009 19:35:17 - Revo Uninstaller's restore point - Opera 10.10
RP135: 27.11.2009 19:35:50 - Removed Opera 10.10.
RP136: 27.11.2009 19:37:28 - Revo Uninstaller's restore point - Mozilla Firefox (3.5.5)
RP137: 27.11.2009 21:59:22 - Revo Uninstaller's restore point - ConvertXtoDVD 4.0.3.313
RP138: 27.11.2009 22:11:09 - Revo Uninstaller's restore point - HijackThis 1.99.1
RP139: 27.11.2009 22:11:53 - Revo Uninstaller's restore point - ConvertXtoDVD 4.0.3.313
RP140: 27.11.2009 22:15:50 - Revo Uninstaller's restore point - ConvertXtoDVD 4.0.3.313

==== Installed Programs ======================

102 Dalmatians Puppies to the Rescue
3DVIA player 4.1
Acrobat.com
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 9.2
Adobe Shockwave Player
AiO_Scan_CDA
AiOSoftwareNPI
Ask Toolbar
Athlon 64 Processor Driver
ATI - Software Uninstall Utility
ATI AVIVO Codecs
ATI Catalyst Control Center
ATI Display Driver
ATI HydraVision
AVI ReComp 1.4.4
Barbie(TM) Salon krásy CD-ROM
Burn4Free CD and DVD
Catalyst Control Center - Branding
Catalyst Control Center Core Implementation
Catalyst Control Center Graphics Full Existing
Catalyst Control Center Graphics Full New
Catalyst Control Center Graphics Light
Catalyst Control Center Graphics Previews Common
Catalyst Control Center HydraVision Full
ccc-core-preinstall
ccc-core-static
ccc-utility
CCC Help English
CCleaner
CDA Converter Plus
CDex extraction audio
COWON Media Center - jetAudio Basic
Critical Update for Windows Media Player 11 (KB959772)
CustomerResearchQFolder
DeepBurner v1.9.0.228
Direct Show Ogg Vorbis Filter (remove only)
Disc2Phone
DiscAPI (Studio 10)
DriverAgent by eSupport.com
DVD Decrypter (Remove Only)
eBay Icon
ESET Online Scanner
ESET Smart Security
eSupportQFolder
EVEREST Home Edition v2.20
F300
F300_Help
Fax_CDA
FramePhotoEditor 3.0.2
Free WMA to MP3 Converter 1.16
getPlus(R) for Adobe
GetTubeVideo 4.55
GIGABYTE VGA Utility Manager
Google Chrome
Google Toolbar for Internet Explorer
Google Update Helper
Google Zem
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Hotfix for Windows XP (KB976098-v2)
HP Customer Participation Program 7.0
HP Photosmart Essential
HP Photosmart, Officejet and Deskjet 7.0.A
HP Software Update
HP Solution Center 7.0
HPProductAssistant
ImTOO AVI to DVD Converter
Jane's Realty
Java(TM) 6 Update 11
jetAudio 7.1.x Czech Language Pack
JPEG Resampler Vs 5.0
Jump&Ride Riding Academy 3D
Klara DOLL - the Stylist
MarketResearch
Matematika sčítavanie a odčítavanie
MediaBar 2.0
Medvěd Míša ve vesmíru
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB953297)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office PowerPoint Viewer 2003
Microsoft Office Word Viewer 2003
Microsoft Silverlight
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ Run Time Lib Setup
Mozilla Firefox (3.5.5)
MSN
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Na scéně(TM)
NewCopy_CDA
NVIDIA Drivers
OpenOffice.org 3.0
Pinnacle TVCenter Pro
Playrix Gameplayer
ProductContextNPI
QuickTime
RAPID (Studio 10)
Readme
Realtek AC'97 Audio
Red Riding Hood
Revo Uninstaller 1.80
Scan
Security Update for CAPICOM (KB931906)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953838)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956390)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958215)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960714)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974455)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Skins
Skype™ 4.0
SmartSound Quicktracks Plugin
Sněhová Královna
SolutionCenter
Stratený v Európe
Studio 10
System Requirements Lab
TVicHW64 Version 1.0
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Update for Windows XP (KB976749)
VDownloader 1.12
VGA Utility
VobSub v2.23 (Remove Only)
WebFldrs XP
WebReg
Windows Genuine Advantage Validation Tool (KB892130)
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3
Yahoo! Toolbar

==== End Of File ===========================
to je druhy.

1) Stiahni SecurityCheck. Spust ho a postupuj podla instrukcii. Nakoniec vyhodi log, ktory skopiruj sem.


2) Tieto veci tam mas nahodene narocky?

Results of screen317's Security Check version 0.99.1
Windows XP Service Pack 3
``````````````````````````````
Antivirus/Firewall Check:
Windows Firewall Disabled!
ESET Online Scanner
ESET Smart Security
``````````````````````````````
Anti-malware/Other Utilities Check:
CCleaner
Java(TM) 6 Update 11
Out of date Java installed!
Adobe Flash Player 10
Adobe Reader 9.2
``````````````````````````````
Process Check:
objlist.exe by Laurent
``````````````````````````````
DNS Vulnerability Check:
GREAT! (Not vulnerable to DNS cache poisoning)

`````````End of Log```````````
vyhodilo toto.co dalej?

Stale som nedostal odpoved na otazku...

1) Stiahni ComboFix, najlepsie na plochu. Vypni vsetky otvorene aplikacie, ako aj rezidenty antiviru, antispywaru a firewall. Spust program cez ucet s administratorskymi pravami a postupuj podla instrukcii. Cely sken bude trvat cca 10 minut. Pocas neho moze byt PC restartovane. Log, ktory ComboFix vytvori, najdes na adrese "C:\ComboFix.txt".
Ten vloz sem.

Pozor: Kym ComboFix nevytvori log, na nic neklikat, nic nestlacat !!


2) Stiahni RootRepeal. Spustis program, kliknes na "Report" -> "Scan" a zafajknes vsetky polozky. Stlac "OK" a spusti sa scan. Po jeho dokonceni klik na "Save Report" a vzniknuty log skopiruj sem.

ComboFix 09-11-28.04 - Owner 29.11.2009 15:24.1.1 - x86
Systém Microsoft Windows XP Home Edition 5.1.2600.3.1250.421.1033.18.511.328 [GMT 1:00]
Running from: c:\documents and settings\Owner\Desktop\ComboFix.exe
AV: ESET Smart Security 4.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
.
ADS - WINDOWS: deleted 48 bytes in 1 streams.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Owner\Application Data\inst.exe
D:\install.exe

.
((((((((((((((((((((((((( Files Created from 2009-10-28 to 2009-11-29 )))))))))))))))))))))))))))))))
.

2009-11-28 15:46 . 2009-08-13 14:40 43008 ----a-w- c:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\0syirrhg.Predvolený používateľ\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbarloader.dll
2009-11-28 15:46 . 2009-08-13 14:39 340480 ----a-w- c:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\0syirrhg.Predvolený používateľ\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff2.dll
2009-11-28 15:46 . 2009-08-13 14:39 346112 ----a-w- c:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\0syirrhg.Predvolený používateľ\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff3.dll
2009-11-28 13:44 . 2009-11-28 18:44 -------- d-----w- c:\documents and settings\Owner\Local Settings\Application Data\AskToolbar
2009-11-28 13:14 . 2009-11-28 18:44 -------- d-----w- c:\program files\Ask.com
2009-11-28 12:41 . 2009-11-28 18:34 -------- d-----w- c:\program files\GetTubeVideo
2009-11-28 09:36 . 2009-11-28 18:36 -------- d-----w- c:\program files\ImTOO
2009-11-27 20:52 . 2009-09-02 15:41 65602 ----a-w- c:\windows\system32\cook3260.dll
2009-11-27 20:52 . 2009-09-02 15:41 626688 ----a-w- c:\windows\system32\vp7vfw.dll
2009-11-27 20:52 . 2009-09-02 15:41 217127 ----a-w- c:\windows\system32\drv43260.dll
2009-11-27 20:52 . 2009-09-02 15:41 208935 ----a-w- c:\windows\system32\drv33260.dll
2009-11-27 20:52 . 2009-09-02 15:41 176165 ----a-w- c:\windows\system32\drv23260.dll
2009-11-27 20:52 . 2009-09-02 15:41 1184984 ----a-w- c:\windows\system32\wvc1dmod.dll
2009-11-27 20:52 . 2009-09-02 15:41 102439 ----a-w- c:\windows\system32\sipr3260.dll
2009-11-27 06:16 . 2009-11-27 06:16 -------- d-----w- C:\found.000
2009-11-25 07:22 . 2009-11-25 07:22 -------- d-----w- c:\program files\MSXML 4.0
2009-11-23 14:24 . 2009-11-23 14:24 1924440 ----a-w- c:\documents and settings\Owner\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\fpupdatepl\fpupdatepl.exe
2009-11-17 09:16 . 2009-11-17 09:16 23600 ----a-w- c:\windows\system32\drivers\TVICHW32.SYS
2009-11-17 09:16 . 2009-11-17 09:16 -------- d-----w- c:\documents and settings\Owner\Local Settings\Application Data\eSupport.com
2009-11-12 14:59 . 2009-11-14 13:31 -------- d-----w- c:\program files\AVI to 3GP
2009-11-10 12:06 . 2009-11-02 19:42 195456 ------w- c:\windows\system32\MpSigStub.exe
2009-11-09 16:18 . 2009-08-29 07:36 78336 ----a-w- c:\windows\system32\ieencode.dll
2009-11-09 16:16 . 2009-08-29 08:08 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2009-11-09 16:16 . 2009-08-29 08:08 246272 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2009-11-09 10:29 . 2009-11-09 10:29 -------- d-----w- c:\documents and settings\Owner\Application Data\Janes_Realty
2009-11-09 10:29 . 2009-11-09 10:29 -------- d-----w- c:\program files\Realore
2009-11-07 16:05 . 2009-11-07 16:06 -------- d-----w- c:\program files\Na scene(TM)
2009-11-04 12:57 . 2009-11-04 13:15 -------- d-----w- c:\documents and settings\Owner\AbiSuite
2009-11-04 12:57 . 2009-11-04 13:29 -------- d-----w- c:\program files\AbiWord
2009-11-04 12:46 . 2009-11-04 13:30 -------- d-----w- c:\program files\csWord
2009-11-02 08:56 . 2009-11-02 08:56 -------- d-----w- c:\program files\ESET
2009-10-30 17:13 . 2009-11-25 07:06 -------- d-----w- c:\documents and settings\Owner\Application Data\vlc

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-11-29 14:19 . 2008-08-12 17:30 34496 ----a-w- c:\documents and settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-11-28 18:45 . 2009-03-12 16:49 -------- d-----w- c:\program files\Yahoo!
2009-11-28 18:41 . 2008-08-13 12:09 -------- d-----w- c:\program files\Pinnacle
2009-11-28 18:39 . 2008-08-12 13:40 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-11-28 13:42 . 2008-12-09 14:04 1 ----a-w- c:\documents and settings\Owner\Application Data\OpenOffice.org\3\user\uno_packages\cache\stamp.sys
2009-11-27 21:11 . 2008-11-27 18:05 -------- d-----w- c:\documents and settings\Owner\Application Data\Vso
2009-11-27 21:11 . 2008-11-27 18:05 47360 ----a-w- c:\documents and settings\Owner\Application Data\pcouffin.sys
2009-11-27 21:11 . 2008-11-27 18:05 47360 ----a-w- c:\documents and settings\Owner\Application Data\pcouffin.sys
2009-11-27 20:52 . 2008-11-27 18:05 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys
2009-11-27 20:52 . 2008-12-23 17:25 -------- d-----w- c:\program files\VSO
2009-11-27 17:11 . 2009-05-14 11:18 664 ----a-w- c:\windows\system32\d3d9caps.dat
2009-11-23 23:03 . 2008-11-14 12:18 -------- d-----w- c:\program files\Techland
2009-11-23 09:19 . 2008-12-21 11:06 -------- d-----w- c:\program files\AviSynth 2.5
2009-11-23 09:19 . 2008-12-22 21:07 -------- d-----w- c:\program files\Avi2Dvd
2009-11-22 20:00 . 2008-11-14 11:15 -------- d-----w- c:\program files\Google
2009-11-20 11:24 . 2008-08-13 12:14 -------- d-----w- c:\program files\DivX
2009-11-13 13:41 . 2008-11-14 11:42 -------- d-----w- c:\program files\Burn4Free
2009-11-11 08:55 . 2008-08-16 08:17 -------- d-----w- c:\documents and settings\Owner\Application Data\Skype
2009-11-08 19:34 . 2008-11-23 18:54 -------- d-----w- c:\documents and settings\All Users\Application Data\NOS
2009-11-07 16:06 . 2008-12-04 18:31 -------- d-----w- c:\documents and settings\All Users\Application Data\Vivendi Universal Games
2009-11-05 12:12 . 2009-04-28 21:02 -------- d-----w- c:\documents and settings\Owner\Application Data\DMCache
2009-11-05 07:55 . 2009-05-18 20:37 -------- d-----w- c:\program files\ATI
2009-11-05 07:53 . 2008-11-19 18:26 -------- d-----w- c:\documents and settings\All Users\Application Data\Ulead Systems
2009-11-05 07:52 . 2008-11-14 12:04 -------- d-----w- c:\documents and settings\Owner\Application Data\LimeWire
2009-11-03 12:35 . 2008-12-20 08:59 -------- d-----w- c:\documents and settings\Owner\Application Data\dvdcss
2009-10-28 20:37 . 2009-03-28 22:40 -------- d-----w- c:\documents and settings\Owner\Application Data\Apple Computer
2009-10-28 08:46 . 2008-12-11 13:23 -------- d-----w- c:\program files\SystemRequirementsLab
2009-10-26 17:12 . 2008-12-24 19:48 -------- d-----w- c:\documents and settings\Owner\Application Data\AVI ReComp
2009-10-26 07:17 . 2008-11-14 11:37 -------- d-----w- c:\program files\JetAudio
2009-09-25 05:37 . 2006-02-28 12:00 667136 ----a-w- c:\windows\system32\wininet.dll
2009-09-11 14:18 . 2006-02-28 12:00 136192 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-11 06:26 . 2009-09-11 06:26 55768 ----a-w- c:\windows\system32\drivers\epfwtdi.sys
2009-09-11 06:26 . 2009-09-11 06:26 135048 ----a-w- c:\windows\system32\drivers\epfw.sys
2009-09-11 06:23 . 2009-09-11 06:23 108792 ----a-w- c:\windows\system32\drivers\ehdrv.sys
2009-09-11 06:17 . 2009-09-11 06:17 116008 ----a-w- c:\windows\system32\drivers\eamon.sys
2009-09-04 21:03 . 2006-02-28 12:00 58880 ----a-w- c:\windows\system32\msasn1.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{74322BF9-DF26-493f-B0DA-6D2FC5E6429E}]
2008-09-02 14:05 398776 ----a-w- c:\program files\BearShare Applications\BearShare MediaBar\BearShareIEHelper.dll

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"HideFastUserSwitching"= 0 (0x0)
"HideShutdownScripts"= 0 (0x0)

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\system]
"NoVisualStyleChoice"= 0 (0x0)
"NoColorChoice"= 0 (0x0)
"NoSizeChoice"= 0 (0x0)
"HideLogonScripts"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoWelcomeScreen"= 0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoChangeAnimation"= 0 (0x0)
"RestrictCpl"= 0 (0x0)
"DisallowCpl"= 0 (0x0)
"RestrictRun"= 0 (0x0)
"ForceRecycleBinSize"= 0 (0x0)
"NoCustomizeWebView"= 0 (0x0)
"NoFileAssociate"= 0 (0x0)
"NoDFSTab"= 0 (0x0)
"NoCustomizeThisFolder"= 0 (0x0)
"NoWebView"= 0 (0x0)
"DontShowSuperHidden"= 0 (0x0)
"NoOnlinePrintsWizard"= 0 (0x0)
"NoPublishingWizard"= 0 (0x0)
"NoSMConfigurePrograms"= 0 (0x0)
"NoSMMyPictures"= 0 (0x0)
"NoStartMenuMyMusic"= 0 (0x0)
"NoHelp"= 0 (0x0)
"NoCommonGroups"= 0 (0x0)
"NoStartMenuEjectPC"= 0 (0x0)
"NoSimpleStartMenu"= 0 (0x0)
"NoStartMenuSubFolders"= 0 (0x0)
"NoDisconnect"= 0 (0x0)
"NoNtSecurity"= 0 (0x0)
"GreyMSIAds"= 0 (0x0)
"ForceMaxRecentDocs"= 0 (0x0)
"NoSMBalloonTip"= 0 (0x0)
"NoSMBalloonTips"= 0 (0x0)
"HideSCAVolume"= 0 (0x0)
"HideSCANetwork"= 0 (0x0)
"HideSCAPower"= 0 (0x0)
"NoTaskGrouping"= 0 (0x0)
"NoWebServices"= 0 (0x0)
"NoFileUrl"= 0 (0x0)
"SpecifyDefaultButtons"= 0 (0x0)
"PromptRunasInstallNetPath"= 1 (0x1)
"NoResolveTrack"= 0 (0x0)
"NoDevMgrUpdate"= 0 (0x0)
"NoThumbnailCache"= 0 (0x0)
"ForceCopyAclwithFile"= 0 (0x0)
"StartRunNoHOMEPATH"= 0 (0x0)

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoThemesTab"= 0 (0x0)
"NoChangeAnimation"= 0 (0x0)
"RestrictCpl"= 0 (0x0)
"DisallowCpl"= 0 (0x0)
"RestrictRun"= 0 (0x0)
"DisallowRun"= 0 (0x0)
"NoRecycleFiles"= 0 (0x0)
"ForceRecycleBinSize"= 0 (0x0)
"NoCustomizeWebView"= 0 (0x0)
"NoFileAssociate"= 0 (0x0)
"NoDFSTab"= 0 (0x0)
"NoCustomizeThisFolder"= 0 (0x0)
"NoWebView"= 0 (0x0)
"DontShowSuperHidden"= 0 (0x0)
"NoOnlinePrintsWizard"= 0 (0x0)
"NoPublishingWizard"= 0 (0x0)
"NoSMConfigurePrograms"= 0 (0x0)
"NoSMMyPictures"= 0 (0x0)
"NoStartMenuMyMusic"= 0 (0x0)
"NoHelp"= 0 (0x0)
"NoCommonGroups"= 0 (0x0)
"NoStartMenuEjectPC"= 0 (0x0)
"NoSimpleStartMenu"= 0 (0x0)
"NoStartMenuSubFolders"= 0 (0x0)
"NoDisconnect"= 0 (0x0)
"NoNtSecurity"= 0 (0x0)
"GreyMSIAds"= 0 (0x0)
"ForceMaxRecentDocs"= 0 (0x0)
"NoSMBalloonTip"= 0 (0x0)
"NoSMBalloonTips"= 0 (0x0)
"HideClock"= 0 (0x0)
"HideSCAVolume"= 0 (0x0)
"HideSCANetwork"= 0 (0x0)
"HideSCAPower"= 0 (0x0)
"NoTaskGrouping"= 0 (0x0)
"NoWebServices"= 0 (0x0)
"NoFileUrl"= 0 (0x0)
"SpecifyDefaultButtons"= 0 (0x0)
"NoRecentDocsNetHood"= 0 (0x0)
"PromptRunasInstallNetPath"= 1 (0x1)
"NoResolveTrack"= 0 (0x0)
"NoDevMgrUpdate"= 0 (0x0)
"NoThumbnailCache"= 0 (0x0)
"ForceCopyAclwithFile"= 0 (0x0)
"StartRunNoHOMEPATH"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
"c:\\Program Files\\Jump and Ride Riding Academy 3D\\RidingAcademy3D.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\GIGABYTE\\VGA Utility Manager\\G-VGA.exe"=
"c:\\Program Files\\PRTG Traffic Grapher\\PRTG Traffic Grapher.exe"=
"c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [11.9.2009 7:23 108792]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [11.9.2009 7:24 735960]
R2 PRTGService;PRTG Service;c:\program files\PRTG Traffic Grapher\PRTG Traffic Grapher.exe [4.2.2009 12:43 3814728]
R3 3xHybrid;Pinnacle PCTV 100i-110i-300i-310i-MCE;c:\windows\system32\drivers\3xHybrid.sys [13.8.2008 13:12 1121536]
S2 gupdate1c9b37c8c56ee56;Google Update Service (gupdate1c9b37c8c56ee56);c:\program files\Google\Update\GoogleUpdate.exe [2.4.2009 11:19 133104]
S2 prtgwatchservice;PRTG Watchdog;c:\program files\PRTG Traffic Grapher\watchdog\prtgwatchdog.exe [4.2.2009 12:43 443904]
S2 TVicHW64;TVicHW64;c:\windows\system32\drivers\TVicHW64.sys [28.12.2008 14:19 21200]
S3 esihdrv;esihdrv;\??\c:\docume~1\Owner\LOCALS~1\Temp\esihdrv.sys --> c:\docume~1\Owner\LOCALS~1\Temp\esihdrv.sys [?]
S3 PctvVirtualNdis;Pinnacle Virtual Miniport;c:\windows\system32\drivers\PctvVirtualNdis.sys [21.11.2008 17:50 13696]
S3 se46bus;Sony Ericsson Device 070 driver (WDM);c:\windows\system32\drivers\se46bus.sys [16.11.2008 20:47 61536]
S3 se46mdfl;Sony Ericsson Device 070 USB WMC Modem Filter;c:\windows\system32\drivers\se46mdfl.sys [16.11.2008 20:51 9360]
S3 se46mdm;Sony Ericsson Device 070 USB WMC Modem Driver;c:\windows\system32\drivers\se46mdm.sys [16.11.2008 20:51 97088]
S3 se46mgmt;Sony Ericsson Device 070 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\se46mgmt.sys [17.11.2008 10:50 88624]
S3 se46nd5;Sony Ericsson Device 070 USB Ethernet Emulation SEMC46 (NDIS);c:\windows\system32\drivers\se46nd5.sys [17.11.2008 19:56 18704]
S3 se46obex;Sony Ericsson Device 070 USB WMC OBEX Interface;c:\windows\system32\drivers\se46obex.sys [17.11.2008 10:50 86432]
S3 se46unic;Sony Ericsson Device 070 USB Ethernet Emulation SEMC46 (WDM);c:\windows\system32\drivers\se46unic.sys [17.11.2008 19:56 90800]
S3 TVICHW32;TVICHW32;c:\windows\system32\drivers\TVICHW32.SYS [17.11.2009 10:16 23600]
S3 ZSMC0305;VIMICRO USB PC Camera VC0305;c:\windows\system32\drivers\usbVM305.sys [21.2.2009 20:17 391615]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
getPlusHelper REG_MULTI_SZ getPlusHelper
.
Contents of the 'Scheduled Tasks' folder

2009-11-29 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-04-02 10:19]

2009-11-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-04-02 10:19]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.azet.sk/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
mSearch Bar = hxxp://www.google.com/ie
uInternet Connection Wizard,ShellNext = iexplore
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
TCP: {688E047F-13A0-4C97-AA9A-197C62EFA91B} = 213.151.202.130,213.151.208.161
DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDow ... ab_nvd.cab
FF - ProfilePath - c:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\0syirrhg.Predvolený používateľ\
FF - prefs.js: browser.startup.homepage - hxxp://www.azet.sk/
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.13\npGoogleOneClick8.dll
FF - plugin: c:\program files\Virtools\3D Life Player\npvirtools.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".sk");
.
- - - - ORPHANS REMOVED - - - -

BHO-{D187A56B-A33F-4CBE-9D77-459FC0BAE012} - (no file)
Toolbar-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
AddRemove-NVIDIA Drivers - c:\windows\system32\nvuide.exe UninstallGUI



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-11-29 15:32
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):4a,30,f1,05,0e,54,ce,ed,cb,e0,a3,fd,4c,9e,d5,14,c4,b0,9e,8a,8a,
a0,24,ba,31,23,a7,68,2d,c6,63,b8,6b,eb,c9,f7,74,2a,18,da,00,00,00,00,00,00,\

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{a6677398-7403-4998-b533-c6dcea849d71}]
@Denied: (Full) (Everyone)
"Model"=dword:00000092
"Therad"=dword:0000001e
"MData"=hex(0):2b,8f,78,29,5a,0c,ce,ec,48,d4,68,e5,9f,6a,96,3e,ab,de,c5,81,26,
38,95,44,85,b1,12,f9,90,dd,23,a1,49,8c,bf,1a,9d,fe,41,71,cb,3f,46,a4,7c,ab,\
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(908)
c:\windows\system32\Ati2evxx.dll
.
Completion time: 2009-11-29 15:34
ComboFix-quarantined-files.txt 2009-11-29 14:34

Pre-Run: 41 776 930 816 bytes free
Post-Run: 44 487 249 920 bytes free

WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect

- - End Of File - - 1B8F7C99712FB122DA3B748DAC9F20CC
toto vyhodilo a co sa tyka security check tak ten je hore vypisalo len toto co je.

Tu nejde o SecurityCheck, ale o toto:

ja ani neviem co to je ako to dam prec?

Ved som sa ta pytal, ci to tam mas narocky, ci to poznas. Staci odpoved vo formate ANO/NIE.

Presun ikonu CF na plochu, vypni vsetky otvorene aplikacie, ako aj rezidenty antiviru, antispywaru a firewall a otvor poznamkovy blok. Donho skopiruj:



Uloz na plochu ako CFScript.txt a mysou pretiahni nad ikonou CF.



Program script spracuje a spravi novy log.


Pozor: Ak po aplikacii skriptu nenabehne Windows, restartuj PC, stlac F8 a zvol Poslednu znamu funkcnu konfiguraciu.

spravil som vsetko tak ako pises windows nenabehol tak som restartoval PC uvidime ako bude ist teraz.