IEXPLORE.exe

mam taky problem, asi kazdu polhodinu mi vyhodi tuto hlasku


neviete v com moze byt chyba? najviac ma to sere ked pozeram film alebo hram hru ale fakt neviem preco to robi, ked dam spravcu uloh a zavriem proces tak sice zmizne ale zachvilu sa ta hlaska ajtak vyhodi a je tam zase
poradte, uz som zufaly

tu je log z hijack this

Logfile of HijackThis v1.99.1
Scan saved at 13:23:18, on 9. 9. 2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Eset\nod32kui.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Documents and Settings\pocitac\Plocha\net\llle\LLE.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\OETRN.EXE
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Common Files\Authentium\AntiVirus\dvpapi.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
C:\Program Files\Opera\Opera.exe
C:\Documents and Settings\pocitac\Plocha\net\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O1 - Hosts: 66.98.148.65 auto.search.msn.com
O1 - Hosts: 66.98.148.65 auto.search.msn.es
O2 - BHO: XTTBPos00 - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\WINDOWS\WebIE.dll
O2 - BHO: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O3 - Toolbar: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\WINDOWS\WebIE.dll
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKCU\..\Run: [Virtual DAEMON Manager] C:\Program Files\DAEMON Tools\daemon.exe
O4 - HKCU\..\Run: [LLE] C:\Documents and Settings\pocitac\Plocha\net\llle\LLE.EXE
O4 - HKCU\..\Run: [ball byte] C:\DOCUME~1\pocitac\DATAAP~1\FORMOV~1\OnlineProxyPhone.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [OEXPRESS] C:\WINDOWS\OETRN.EXE
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Načítať použitie &BitSpirit - C:\Program Files\BitSpirit\bsurl.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\WINDOWS\WebIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftup ... 6556494139
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 6556482499
O16 - DPF: {CD995117-98E5-4169-9920-6C12D4C0B548} (HGPlugin9USA Class) - http://gamedownload.ijjimax.com/gamedow ... in9USA.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{568E68B0-140A-415F-8311-029FA6E8EB5E}: NameServer = 10.0.0.2,10.2.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{D0678DFA-E1C0-42FF-980B-FACCED82145A}: NameServer = 10.0.0.2,10.2.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{568E68B0-140A-415F-8311-029FA6E8EB5E}: NameServer = 10.0.0.2,10.2.1.1
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: DvpApi (dvpapi) - Authentium, Inc. - C:\Program Files\Common Files\Authentium\AntiVirus\dvpapi.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

Mas dva antivirove programy.
Odinstaluj Authentium AntiVirus.
Odnistaluj Megaupload Toolbar

Pomocou HijackThis fixni:
O1 - Hosts: 66.98.148.65 auto.search.msn.com
O1 - Hosts: 66.98.148.65 auto.search.msn.es
O2 - BHO: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL
O3 - Toolbar: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL
O16 - DPF: {CD995117-98E5-4169-9920-6C12D4C0B548} (HGPlugin9USA Class) - http://gamedownload.ijjimax.com/gamedow ... in9USA.cab
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)

Este by si mohol preverit,
1. Odznac si "skryt zname pripony suborov.." v menu Tento pocitac. moznosti zlozky.
2. Na ploche vytvor novy textovy subor. Premenuj ho na zistim.bat
zistim.bat musi mat ikonu "servisne koliesko". Ak nema vrat sa k bodu 1.

Pravym tlacitkom daj nan - upravit a vloz tam toto:




Uloz a spusti zistim.bat.
Zobrazeny obsah suboru mam.txt skopiruj do fora.

inak ja neviem otom zeby som tam mal nainstalovane dva antivirusy
a tu je ten vipis z mam.txt
Pozri C:\WINDOWS
=================================
4:25. 06. 2013 21:11 98˙304 system32CmdLineExt.dll
5:07. 06. 2013 20:32 491˙520 WebIE.dll
6:07. 06. 2013 20:32 294˙912 TrnWord.dll
7:07. 06. 2013 20:32 356˙352 TrnOutl.dll
8:07. 06. 2013 20:32 200˙704 TRNOET.DLL
9:07. 06. 2013 20:32 45˙056 TRNOEH.DLL
10:07. 06. 2013 20:32 26˙624 OETRN.EXE
11:07. 06. 2013 20:32 33 WTRDCTM.INI
12:07. 06. 2013 20:31 2˙753 UN32P.INI
13:07. 06. 2013 20:31 516˙096 UN32.EXE
14:07. 06. 2013 20:29 4˙192 WTRAN32.INI
15:01. 06. 2013 17:19 246 system.ini
16:24. 05. 2013 20:29 1˙859 OEWABLog.txt
17:16. 04. 2011 20:52 97 CSS.key
18:09. 09. 2007 20:06 1˙774 MAILTRAN.INI
19:09. 09. 2007 12:09 116 NeroDigital.ini
20:09. 09. 2007 10:35 0 0.log
21:09. 09. 2007 10:35 157 wiadebug.log
22:09. 09. 2007 10:35 48 wiaservc.log
23:09. 09. 2007 10:34 2˙048 bootstat.dat
24:08. 09. 2007 23:23 953˙908 WindowsUpdate.log
25:08. 09. 2007 23:23 32˙596 SchedLgU.Txt
26:07. 09. 2007 18:21 449 Marias.ini
27:06. 09. 2007 15:11 71 Pex.INI
28:03. 09. 2007 20:09 1˙999 WDICT32.INI
29:23. 08. 2007 14:58 335 mozregistry.dat
30:07. 08. 2007 22:33 747 win.ini
31:04. 08. 2007 22:04 3˙202˙885 youtube_converter.exe
32:04. 08. 2007 22:04 0 SwSys2.bmp
33:04. 08. 2007 22:04 0 SwSys1.bmp
34:04. 08. 2007 18:28 0 setupact.log
35:13. 07. 2007 20:44 51 galaxy.ini
36:04. 07. 2007 20:14 2˙529 TRNCOM.INI
37:14. 05. 2007 15:08 40 RSoftInfo.dat
38:13. 05. 2007 21:05 266 ReplacerUndo.txt
39:13. 05. 2007 17:48 49˙312 MENINY.EXE
40:10. 05. 2007 20:48 2˙560 _MSRSTRT.EXE
Pozri C:\WINDOWS\system32
=================================
4:23. 06. 2013 20:04 4˙608 bbchlp.dll
5:23. 06. 2013 20:04 27˙776 bbcap.dll
6:15. 06. 2013 13:55 266 ttri.dat
7:18. 05. 2013 16:53 0 mapisvc.inf
8:18. 05. 2013 16:53 270˙336 imon.dll
9:09. 09. 2007 10:35 88˙566 nvapps.xml
10:06. 09. 2007 16:35 1˙641˙456 FNTCACHE.DAT
11:02. 09. 2007 18:09 2˙228 wpa.dbl
12:08. 07. 2007 17:45 230 spupdsvc.inf
13:01. 07. 2007 13:58 251 spupdwxp.log
14:06. 06. 2007 18:06 1˙135˙664 3ivx.dll
15:13. 05. 2007 19:52 8˙464 sporder.dll
16:13. 05. 2007 19:52 1˙576˙960 rk.bin
17:10. 05. 2007 19:35 34˙308 BASSMOD.dll
18:08. 05. 2007 20:06 7˙852 mcdmsg7.dll
19:08. 05. 2007 14:20 416 iolo.ini
20:30. 04. 2007 17:18 40˙836 perfc009.dat
21:30. 04. 2007 17:18 314˙508 perfh009.dat
22:30. 04. 2007 17:18 312˙970 perfh005.dat
23:30. 04. 2007 17:18 47˙206 perfc005.dat
24:30. 04. 2007 17:18 715˙824 PerfStringBackup.INI
25:19. 04. 2007 16:30 39 ieui.dat
26:18. 04. 2007 18:04 4˙027 jupdate-1.6.0_01-b06.log
27:14. 04. 2007 19:41 16˙832 amcompat.tlb
28:14. 04. 2007 19:41 23˙392 nscompat.tlb
29:14. 04. 2007 18:02 1˙622˙016 nwiz.exe
30:14. 04. 2007 18:02 1˙732˙608 nvwssr.dll
31:14. 04. 2007 18:02 1˙236˙992 nvwss.dll
32:14. 04. 2007 18:02 167˙936 nvwrszht.dll
33:14. 04. 2007 18:02 303˙104 nvwrstr.dll
34:14. 04. 2007 18:02 294˙912 nvwrssv.dll
35:14. 04. 2007 18:02 303˙104 nvwrssl.dll
36:14. 04. 2007 18:02 299˙008 nvwrssk.dll
37:14. 04. 2007 18:02 315˙392 nvwrsru.dll
38:14. 04. 2007 18:02 319˙488 nvwrsptb.dll
39:14. 04. 2007 18:02 323˙584 nvwrspt.dll
40:14. 04. 2007 18:02 294˙912 nvwrspl.dll
Svazek v jednotce C nem  § dnou jmenovku.
S‚riov‚ źˇslo svazku je 1810-B455.

Věpis adres ýe c:\Program Files

09. 09. 2007 13:20 <DIR> .
09. 09. 2007 13:20 <DIR> ..
23. 06. 2013 19:50 <DIR> 3ivx
08. 05. 2007 14:09 <DIR> 4DiskcleanG
14. 04. 2007 18:13 <DIR> 5star Free Lines
24. 05. 2013 20:51 <DIR> Adobe
15. 06. 2013 14:00 <DIR> AgemSoft
17. 04. 2007 16:08 <DIR> Alcohol Soft
13. 07. 2007 20:44 <DIR> alien arena
22. 06. 2013 18:49 <DIR> ashampoo
23. 05. 2013 15:55 <DIR> AVSMedia
10. 06. 2013 11:11 <DIR> bfgclient
11. 05. 2007 19:52 <DIR> BitSpirit
23. 06. 2013 20:03 <DIR> Blueberry Software
24. 05. 2013 20:49 <DIR> Bonjour
19. 04. 2007 18:27 <DIR> Call of Duty
14. 04. 2007 17:59 <DIR> Codec Pack - All In 1
06. 09. 2007 14:57 <DIR> Common Files
14. 04. 2007 14:19 <DIR> ComPlus Applications
18. 04. 2007 15:11 <DIR> DAEMON Tools
14. 05. 2007 16:40 <DIR> Eidos Interactive
09. 06. 2013 13:32 <DIR> ESET
13. 05. 2007 20:08 <DIR> Fonts
03. 08. 2007 11:33 <DIR> for move dart
28. 06. 2007 16:09 <DIR> GamePark
25. 05. 2013 16:26 <DIR> Game_Maker6
06. 05. 2007 20:39 <DIR> GoldWave
08. 06. 2013 17:36 <DIR> Hamachi
06. 09. 2007 15:00 <DIR> Hemera
09. 09. 2007 13:20 <DIR> HijackThis
19. 04. 2007 16:28 <DIR> IconEdit Pro V7.04
23. 08. 2007 11:19 <DIR> ICQ6
25. 04. 2007 19:35 <DIR> ICQLite
26. 08. 2007 22:14 <DIR> ICQToolbar
08. 07. 2007 17:49 <DIR> Internet Explorer
08. 05. 2007 14:15 <DIR> iolo
04. 08. 2007 18:20 <DIR> IVT Corporation
18. 04. 2007 18:04 <DIR> Java
20. 05. 2013 17:21 <DIR> Lavasoft
13. 05. 2007 21:32 <DIR> LocalCooling
10. 06. 2013 11:37 <DIR> Luxor_at
29. 05. 2013 19:12 <DIR> MachrSoft
11. 06. 2013 18:24 <DIR> Macromedia
03. 08. 2007 13:59 <DIR> MagicISO
21. 04. 2007 11:09 <DIR> Marias
09. 09. 2007 20:02 <DIR> MegauploadToolbar
14. 04. 2007 15:47 <DIR> Messenger
14. 04. 2007 14:23 <DIR> microsoft frontpage
20. 04. 2007 13:23 <DIR> Microsoft Office
20. 04. 2007 13:23 <DIR> Microsoft Visual Studio
20. 04. 2007 13:24 <DIR> Microsoft Works
21. 05. 2013 16:22 <DIR> MOBILedit!
14. 04. 2007 15:38 <DIR> Movie Maker
18. 05. 2007 16:09 <DIR> Mp3tag
20. 04. 2007 13:23 <DIR> MSBuild
14. 04. 2007 14:19 <DIR> MSN
10. 06. 2013 11:38 <DIR> MSN Games
14. 04. 2007 14:19 <DIR> MSN Gaming Zone
23. 04. 2007 18:54 <DIR> Nero
14. 04. 2007 15:36 <DIR> NetMeeting
14. 04. 2007 14:22 <DIR> Online Services
23. 08. 2007 17:09 <DIR> Opera
22. 06. 2013 11:00 <DIR> Outlook Express
17. 06. 2013 14:25 <DIR> PDFCreator
14. 04. 2007 19:48 <DIR> PhotoFiltre Studio
13. 05. 2007 18:02 <DIR> Realtek AC97
01. 06. 2013 18:17 <DIR> Rockstar Games
15. 04. 2007 18:42 <DIR> Skype
26. 04. 2007 17:35 <DIR> Sony Ericsson
17. 04. 2007 19:36 <DIR> Sothink Glanda
18. 05. 2007 16:31 <DIR> Spybot - Search & Destroy
18. 05. 2013 16:59 <DIR> Stardock
08. 05. 2007 14:29 <DIR> System Mechanic Professional 7
29. 06. 2007 21:33 <DIR> SystemRequirementsLab
12. 05. 2007 12:22 <DIR> Telltale Games
13. 05. 2007 19:44 <DIR> TGTSoft
25. 04. 2007 19:07 <DIR> TorrentQ
26. 06. 2013 17:22 <DIR> totalcmd
08. 07. 2007 00:36 <DIR> Truck Dismount
15. 04. 2007 14:55 <DIR> TuneUp Utilities 2007
25. 06. 2013 21:02 <DIR> Ubisoft
06. 09. 2007 15:04 <DIR> Ulead Systems
22. 06. 2013 19:46 <DIR> Uniblue
30. 07. 2007 21:36 <DIR> uTorrent
05. 09. 2007 21:58 <DIR> Valve
03. 08. 2007 15:57 <DIR> VideoLAN
13. 05. 2007 20:08 <DIR> Wallpapers
08. 08. 2007 22:45 <DIR> Webteh
03. 08. 2007 15:52 <DIR> Winamp
06. 09. 2007 14:58 <DIR> Windows Media Components
14. 04. 2007 19:05 <DIR> Windows Media Connect 2
01. 07. 2007 13:55 <DIR> Windows Media Player
14. 04. 2007 15:36 <DIR> Windows NT
14. 04. 2007 16:43 <DIR> WinRAR
14. 04. 2007 14:23 <DIR> xerox
16. 07. 2007 14:18 <DIR> Yahoo!
0 soubor…, 0 bajt…
Adres ý…: 96, Volněch bajt…: 19˙650˙039˙808
Skryte
Svazek v jednotce C nem  § dnou jmenovku.
S‚riov‚ źˇslo svazku je 1810-B455.

Věpis adres ýe c:\Program Files

09. 09. 2007 11:20 <DIR> InstallShield Installation Information
14. 04. 2007 14:29 <DIR> Uninstall Information
14. 04. 2007 15:15 <DIR> WindowsUpdate
0 soubor…, 0 bajt…
Adres ý…: 3, Volněch bajt…: 19˙650˙039˙808

Log ukazuje ze mas nainstalovany Authentium AntiVirus a Nod Antivirus.
A bezia aj sluzby, co je problem. Najprv skus odinstalovat ten Authentium AntiVirus.

si vobec nepametam ze by som ho instaloval ale nasiel som ho a vymazal jeden subor nesiel vymazat a vypisalo ze je chraneni proti prepisu alebo ci neni zaplneny disk

To si mal odinstalovat cez "pridat odstranit programy"
Posli sem novy log z hijackthis, co tam zostalo

ale v tom Pridat, odebrat programy to nebolo, som kukal, a ani v tej zlozke nebol subor uninstal
tu je ten novy log

Logfile of HijackThis v1.99.1
Scan saved at 22:05:14, on 9. 9. 2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Eset\nod32kui.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Documents and Settings\pocitac\Plocha\net\llle\LLE.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Common Files\Authentium\AntiVirus\dvpapi.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Opera\Opera.exe
C:\Documents and Settings\pocitac\Plocha\net\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O2 - BHO: XTTBPos00 - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\WINDOWS\WebIE.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\WINDOWS\WebIE.dll
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKCU\..\Run: [Virtual DAEMON Manager] C:\Program Files\DAEMON Tools\daemon.exe
O4 - HKCU\..\Run: [LLE] C:\Documents and Settings\pocitac\Plocha\net\llle\LLE.EXE
O4 - HKCU\..\Run: [ball byte] C:\DOCUME~1\pocitac\DATAAP~1\FORMOV~1\OnlineProxyPhone.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [OEXPRESS] C:\WINDOWS\OETRN.EXE
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Načítať použitie &BitSpirit - C:\Program Files\BitSpirit\bsurl.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\WINDOWS\WebIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftup ... 6556494139
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 6556482499
O17 - HKLM\System\CCS\Services\Tcpip\..\{568E68B0-140A-415F-8311-029FA6E8EB5E}: NameServer = 10.0.0.2,10.2.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{D0678DFA-E1C0-42FF-980B-FACCED82145A}: NameServer = 10.0.0.2,10.2.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{568E68B0-140A-415F-8311-029FA6E8EB5E}: NameServer = 10.0.0.2,10.2.1.1
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: DvpApi (dvpapi) - Authentium, Inc. - C:\Program Files\Common Files\Authentium\AntiVirus\dvpapi.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

Tak zatial chod,
Start - Spustit - services.msc [enter]
Najdi tam tuto sluzbu:
C:\Program Files\Common Files\Authentium\AntiVirus\dvpapi.exe
a zastav ju.

Stiahni avenger http://swandog46.geekstogo.com/avenger.exe
Spusti. Cez „Input script manually“ do editoru [lupa] skopiruj nasledujuci


Gombikom [semafor] vykonaj.

Potom by som sa zbavil aj bonjour,

Stiahni si:
http://www.bleepingcomputer.com/files/s ... lspfix.zip
a
http://files.snapfiles.com/localdl834/WinsockxpFix.exe

1.Start – spustit – napis:
"C:\Program Files\Bonjour\mDNSResponder.exe -remove" [enter]
2. opat start -spustit a pis:
taskmgr [enter]
a skontruluj, ci uz v procesoch nie je. Ak by tam stale bol mDNSResponder.exe, daj nan a ukoncit proces.

3. Pouzi Avenger Spusti. Cez „Input script manually“ do editoru [lupa] skopiruj nasledujuci


Gombikom [semafor] vykonaj.

4. Rozbal lspfix.zip a spusti lspfix
Mal by si mat toto http://www.ulozisko.sk/obrazky/6934-lspfix.JPG.jpg ..ak ano, daj [Finish]

5. Potom daj Start - Spustit a napish: netsh winsock reset [enter]

6. Restartuj PC.

Ak by po oprave predsa len nesiel net z nejakeho dovodu (co si nemyslim) spusti stiahnuty WinsockxpFix.exe a daj fix a restart PC.
Ale v opacnom pripade nie!

7. Cez HijackThis fixni:
O4 - HKCU\..\Run: [ball byte] C:\DOCUME~1\pocitac\DATAAP~1\FORMOV~1\OnlineProxyPhone.exe
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)

Na zaver posli aktualny log z HijackThis.

no idem to vyskusat ale spravil som tu prvu vec s avengerom a mi tam vypisalo tuto hlasku po nabehnuti winu

skusim este spravit tu druhu vec co si hovoril

teraz mi to zas vypisalo toto pri zapnuti(dva krat)

a ked som dal par krat storno tak mi vypisalo toto

a tu je ten posledny log
Logfile of HijackThis v1.99.1
Scan saved at 18:43:28, on 10. 9. 2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Eset\nod32kui.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Documents and Settings\pocitac\Plocha\net\llle\LLE.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\OETRN.EXE
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Opera\Opera.exe
C:\Documents and Settings\pocitac\Plocha\net\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O2 - BHO: XTTBPos00 - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\WINDOWS\WebIE.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\WINDOWS\WebIE.dll
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKCU\..\Run: [Virtual DAEMON Manager] C:\Program Files\DAEMON Tools\daemon.exe
O4 - HKCU\..\Run: [LLE] C:\Documents and Settings\pocitac\Plocha\net\llle\LLE.EXE
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [OEXPRESS] C:\WINDOWS\OETRN.EXE
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Načítať použitie &BitSpirit - C:\Program Files\BitSpirit\bsurl.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\WINDOWS\WebIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftup ... 6556494139
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 6556482499
O17 - HKLM\System\CCS\Services\Tcpip\..\{568E68B0-140A-415F-8311-029FA6E8EB5E}: NameServer = 10.0.0.2,10.2.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{D0678DFA-E1C0-42FF-980B-FACCED82145A}: NameServer = 10.0.0.2,10.2.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{568E68B0-140A-415F-8311-029FA6E8EB5E}: NameServer = 10.0.0.2,10.2.1.1
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O.K.
Zatial je to dobre. Toto si uz vykonal?

ano, a stale to vypisuje blbosti pri starte

EDIT: a skontroluj, uz by nemala bezat sluzba (ctrl+Alt+Del) mDNSResponder.exe.

To 010: mal automaticky zhodit sucasne lspfix.
Mozes mi poslat ako PrtScrn lspfix okno - hned po spusteni (ci je to ozaj dobre). A potom hned okno zatvor [x].

No a cez HijackThis este rucne fixni:
O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing)

Na disku C:\ vymaz priecinok Avenger.
Po restarte PC pozri, ci uz nie su tie 2 riadky v logu. A skontroluj ci pc este nieco hlasi.

No ..nie je to dobre.
Spusti teda este raz lspfix.exe, vsetko ponechaj a daj [Finis]

Ak by po oprave predsa len nesiel net z nejakeho dovodu (co si nemyslim) spusti stiahnuty WinsockxpFix.exe a daj fix a restart PC.
Ale v opacnom pripade nie!

To by malo byt ohladom logu vsetko.

Ak pri spustani pc vyskakuje nejake okno .. zobraz.
Je mozne, ze je nejaky program po spusteni poskodeny a bude ho treba preinstalovat.