Dobrý den..
Koupil jsem si MP3 prehravac Sencor SFP 3750 jenomze uz nejaky cas mam problem s usb. Uz i u mobilniho telefonu se mi jen obcas zobrazoval "Vyjimatelny disk" a ted potrebuju do pc hodit du mp3 ale bohuzel ji muj pc nenajde (asi diky tomu usb..) neudela to ani zadny zvuk ze by to naslo novy hardware, zadnou bublinu, nic... jakoby to tam vubec nebylo... mam win xp pro prosim poradte. dekuji
problem s usb
- Pro psaní komentářů se musíte přihlásit
Dobry den!
Ako dlho mate problemy? Skusal ste mp3 dat do ineho usb?
problemy mam uz asi 4 mesice, ale enjak sem to neresil protoze vzdy se nasla cesta jak do mobilu nahrat soubory jinou cestou...
ano mp3 jsem zkousel i jinde-funguje..vsak je nova... :shock:
But to je softwarovy problem, alebo hardwarovy. Usb mate hned na maticnej doske, alebo ho mate ako externi na prednom panely?
na zakladni (tam vzadu) ... jinde usb enmam... jinak, zkousel sem to dat i do druheho usb ale nic.. :( nereaguje...
neexistuje treba nejak predelat driver nebo neco jakoze reinstall usb? mam SiS 7001
Preinstalovat to skusit mozete, ale mozno bude chyba aj v zariadeni. Skuste toto:
http://www.usb-drivers.com/drivers/122/122049.htm
mno, zkusil sem to, ale porad se nic nedeje.. a mp3ka je na 100% v poradku..
Dobrý večer,
a pokud připojíte třeba flash disk nebo jine usb zařízení tak to jde?
prave ze nejde... driv to jeste obcas slo, ted uz vubec... jakoby nakej vir jedl cely muj pocitac od usb az po uši
Dajte sem log z HijackThis.Ak mate vira, tak ho znicime, ale ak odchazda zakladka, tak potom jedine skusit reinstal.
Atiahnite si HJT:
http://www.trendsecure.com/portal/en-US/tools/security_tools/hijackthis
V hlavnom menu kliknite na "DO A SYSTEM SCAN AND SAVE A LOGFILE"
Zacne sken a po nom vam nabehne log vp oznamkovom bloku.Ten cely skopirujte sem.
Tady je jo a myslite reinstal win nebo jenom toho usb? ps: dekuji za vsechny vase rady!
Logfile of Trend Micro HijackThis v2.0.2<br /> Scan saved at 21:00, on 2008-01-09<br /> Platform: Windows XP SP2 (WinNT 5.01.2600)<br /> MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)<br /> Boot mode: Normal</p> <p>Running processes:<br /> C:\WINDOWS\System32\smss.exe<br /> C:\WINDOWS\system32\winlogon.exe<br /> C:\WINDOWS\system32\services.exe<br /> C:\WINDOWS\system32\lsass.exe<br /> C:\WINDOWS\system32\svchost.exe<br /> C:\Program Files\Windows Defender\MsMpEng.exe<br /> C:\WINDOWS\System32\svchost.exe<br /> C:\WINDOWS\Explorer.EXE<br /> C:\WINDOWS\system32\spoolsv.exe<br /> C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe<br /> C:\WINDOWS\system32\RUNDLL32.EXE<br /> C:\Program Files\QIP\qip.exe<br /> C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe<br /> C:\WINDOWS\system32\rundll32.exe<br /> C:\WINDOWS\system32\nvsvc32.exe<br /> C:\WINDOWS\system32\HPZipm12.exe<br /> C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe<br /> C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe<br /> C:\Program Files\Valve\Steam\Steam.exe<br /> C:\Program Files\Opera\Opera.exe<br /> C:\Program Files\Trend Micro\HijackThis\HijackThis.exe</p> <p>R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/<br /> R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =<br /> R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =<br /> R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer<br /> R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy<br /> O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll<br /> O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll<br /> O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll<br /> O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll<br /> O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll<br /> O3 - Toolbar: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - (no file)<br /> O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit<br /> O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup<br /> O4 - HKLM\..\Run: [nwiz] nwiz.exe /install<br /> O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions<br /> O4 - HKLM\..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe<br /> O4 - HKCU\..\Run: [QIP2005] C:\Program Files\QIP\qip.exe<br /> O4 - HKCU\..\Run: [Uniblue RegistryBooster 2] C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe /S<br /> O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')<br /> O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')<br /> O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm<br /> O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm<br /> O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm<br /> O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000<br /> O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll<br /> O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll<br /> O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL<br /> O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\WINDOWS\system32\SHDOCVW.DLL<br /> O16 - DPF: {48884C41-EFAC-433D-958A-9FADAC41408E} (EGamesPlugin Class) - https://www.e-games.com.my/com/EGamesPlugin.cab<br /> O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1199652723584<br /> O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL<br /> O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe<br /> O23 - Service: Active Virus Shield (AVP) - AOL - C:\Program Files\AOL\Active Virus Shield\avp.exe<br /> O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe<br /> O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe<br /> O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe</p> <p>--<br /> End of file - 4879 bytes<br />Log je ok.Myslel som celeho win, lebo nieco podobne som mal na na mojom pocitaci, ked som nainstaloval windows.Modem nereagoval a 1 USB.Asi boli blbo zavedene drivery, ale ako nechapem to u vas, ak to islo a teraz nie.Log je cisty.Hm, mozeme vyskusat aj combo :
tady je kod z toho combofixu..snad to pomuze
ted je divny, ze kdyz sem pripojil tiskarnu, vse bylo OK, zkusiul sem pripojit kamosovu flashku a nic.. nechapu to... jako kdyby to pc neznal to zarizeni cili i nenasel... :( je pravda, ze pc mam uz pres 5 let, tak je mozne, ze to nezna...
Na buduce to nedavajte do qoute .
Odinstalujte
Trojan Remover
Mate 2 antiviry, aspon z logu je to vidno. NOD a AOL. AOL odinstalujte tiez.
Striahnite si avenger na plochu:
http://www.viry.cz/node/
Podla navodu sa dopracujte ku tomu bielemu okne a do neho prekopirujte toto dole :
Done >> Semafor >> OK
Pocitac sa restartuje a pri vstupe do win. vyhodi log, ktory je aj v C:\avenger.txt
Ten skopirujte sem
Toto otestujte na virustotal.com. Uploadnite a odoslite.Vysledky sem skopirujte:
C:\WINDOWS\system32\StUms.sys
C:\WINDOWS\system32\XDva062.sys
C:\WINDOWS\Fonts\RandFont.dll
Do poznamkoveho bloku skopirujte :
Ulozte na plochu ako CFScript.txt
Chytte subor, presunte nad combo a spuste.Zacne sken, po nom sem dajte log z combofixu ktory vam nabehne.Obrazok dole.
Dodatocne urobte sken cez MWAV. :
http://www.viry.cz/node/9061
Nezabudnite updatovat a spravne nastavit program podla url. Log, z dolneho okna, nie horneho,sem skopirujte.
tady je ten log z avengeru
Logfile of The Avenger version 1, by Swandog46
Running from registry key:
\Registry\Machine\System\CurrentControlSet\Services\ckghnjlh
*******************
Script file located at: \??\C:\Documents and Settings\eqokpulc.txt
Script file opened successfully.
Script file read successfully
Backups directory opened successfully at C:\Avenger
*******************
Beginning to process script file:
File C:\WINDOWS\system32\drivers\OLD176.tmp deleted successfully.
File C:\WINDOWS\system32\Win98Mp3Driver.md5 deleted successfully.
File C:\WINDOWS\system32\drivers\Win98Mp3Driver.md5 deleted successfully.
File C:\WINDOWS\system32\drivers\fidbox2.idx deleted successfully.
File C:\WINDOWS\system32\drivers\fidbox2.dat deleted successfully.
File C:\WINDOWS\system32\drivers\fidbox.idx deleted successfully.
File C:\WINDOWS\system32\drivers\fidbox.dat deleted successfully.
File C:\Documents and Settings\All Users\Data aplikací\ŘÝĂÄ3113›.sys deleted successfully.
Completed script processing.
*******************
Finished! Terminate.
C:\WINDOWS\system32\StUms.sys ČISTÉ
C:\WINDOWS\system32\XDva062.sys NENALEZENO
C:\WINDOWS\Fonts\RandFont.dll ČISTÉ
Log z ComboFixu->
ComboFix 08-01-09.2 - Nudget-ocista 2008-01-11 16:49:02.2 - FAT32x86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.1.1029.18.232 [GMT 1:00]
Running from: C:\Documents and Settings\Nudget-ocista\Plocha\ComboFix.exe
Command switches used :: C:\Documents and Settings\Nudget-ocista\Plocha\CFScript.txt
* Created a new restore point
.
((((((((((((((((((((((((( Files Created from 2007-12-11 to 2008-01-11 )))))))))))))))))))))))))))))))
.
2008-01-10 20:49 . 2000-08-31 08:00 51,200 --a------ C:\WINDOWS\NirCmd.exe
2008-01-09 20:59 . 2008-01-09 20:59 <DIR> d-------- C:\Program Files\Trend Micro
2008-01-09 16:43 . 2008-01-09 16:43 <DIR> d-------- C:\Program Files\ECBarre
2008-01-07 20:45 . 2008-01-07 20:45 <DIR> d-------- C:\WINDOWS\system32\drivers\QFE
2008-01-07 20:45 . 2004-08-03 23:08 26,624 --a------ C:\WINDOWS\system32\drivers\usbehci.sys
2008-01-07 20:45 . 2004-08-03 23:08 26,624 --a------ C:\WINDOWS\system32\dllcache\usbehci.sys
2008-01-07 20:45 . 2002-04-02 00:25 8,024 -ra------ C:\WINDOWS\system32\drivers\usb2x.inf
2008-01-07 20:45 . 2002-04-05 20:26 7,775 -ra------ C:\WINDOWS\system32\drivers\usb2x.cat
2008-01-07 20:45 . 2002-05-24 23:28 6,731 -ra------ C:\WINDOWS\system32\drivers\sisusb2x.cat
2008-01-07 20:45 . 2002-04-04 23:25 5,120 -ra------ C:\WINDOWS\system32\drivers\HCCOIN.DLL
2008-01-07 20:45 . 2002-05-24 23:28 1,412 -ra------ C:\WINDOWS\system32\drivers\SiSusb2x.inf
2008-01-06 22:04 . 2007-07-09 14:11 584,192 --------- C:\WINDOWS\system32\dllcache\rpcrt4.dll
2008-01-06 21:56 . 2007-07-30 19:19 25,944 --a------ C:\WINDOWS\system32\wuapi.dll.mui
2008-01-06 21:13 . 2008-01-06 21:13 <DIR> d-------- C:\Program Files\PC Drivers HeadQuarters
2008-01-06 21:13 . 2008-01-06 21:13 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\PC Drivers HeadQuarters
2008-01-06 21:09 . 2008-01-06 21:09 <DIR> d-------- C:\Program Files\Uniblue
2008-01-06 21:09 . 2008-01-06 21:09 <DIR> d-------- C:\Documents and Settings\Nudget-ocista\Data aplikací\Uniblue
2008-01-06 20:03 . 2005-09-28 14:05 22,216 --a------ C:\WINDOWS\system32\StUms.sys
2008-01-06 20:03 . 2005-09-28 14:05 9,127 --a------ C:\WINDOWS\system32\StUmsPdr.pdr
2008-01-06 20:03 . 2005-09-28 14:05 2,483 --a------ C:\WINDOWS\system32\StUms.inf
2008-01-06 19:44 . 2005-09-28 14:05 22,216 --a------ C:\WINDOWS\system32\drivers\StUms.sys
2008-01-06 19:44 . 2005-09-28 14:05 9,127 --a------ C:\WINDOWS\system32\drivers\StUmsPdr.pdr
2008-01-06 19:44 . 2005-09-28 14:05 2,483 --a------ C:\WINDOWS\system32\drivers\StUms.inf
2007-12-17 14:40 . 2007-12-30 10:06 664 --a------ C:\WINDOWS\system32\d3d9caps.dat
2007-12-16 17:08 . 2007-12-16 17:08 <DIR> d-------- C:\Program Files\MegauploadToolbar
2007-12-14 10:20 . 2007-12-14 10:20 <DIR> d-------- C:\Program Files\Alcohol Soft
2007-12-12 16:21 . 2007-12-12 16:21 <DIR> d-------- C:\Program Files\Trojan Remover
2007-12-12 16:21 . 2007-12-12 16:21 <DIR> d-------- C:\Documents and Settings\Nudget-ocista\Data aplikací\Simply Super Software
2007-12-12 16:21 . 2007-12-12 16:21 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Simply Super Software
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-01-11 15:11 32 --sha-w C:\WINDOWS\system32\drivers\fidbox2.idx
2008-01-11 15:11 32 --sha-w C:\WINDOWS\system32\drivers\fidbox2.dat
2008-01-11 15:11 32 --sha-w C:\WINDOWS\system32\drivers\fidbox.idx
2008-01-11 15:11 32 --sha-w C:\WINDOWS\system32\drivers\fidbox.dat
2008-01-09 15:45 290,816 ------w C:\WINDOWS\Setup1.exe
2007-12-15 20:14 1,071,886 ----a-w C:\Program Files\WoW-2.0.0-enUS-Installer-downloader.exe
2007-12-14 09:10 685,816 ----a-w C:\WINDOWS\system32\drivers\sptd.sys
2007-12-12 15:01 10,642 ----a-w C:\WINDOWS\system32\drivers\fwdrv.err
2007-12-09 10:45 --------- d-----w C:\Program Files\WoW-2.0.0-enUS-Installer
2007-12-09 10:38 --------- d-----w C:\Program Files\WoW-BurningCrusade-enUS-Full-Installer
2007-11-14 07:28 450,560 ----a-w C:\WINDOWS\system32\dllcache\jscript.dll
2007-11-13 10:25 20,480 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys
2007-11-11 18:24 --------- d-----w C:\Program Files\DAEMON Tools
2007-10-29 22:44 1,290,240 ----a-w C:\WINDOWS\system32\quartz.dll
2007-10-29 22:44 1,290,240 ------w C:\WINDOWS\system32\dllcache\quartz.dll
2007-10-25 16:57 8,458,752 ------w C:\WINDOWS\system32\dllcache\shell32.dll
2007-10-25 08:28 222,720 ----a-w C:\WINDOWS\system32\wmasf.dll
2007-10-25 08:28 222,720 ------w C:\WINDOWS\system32\dllcache\wmasf.dll
2006-09-28 15:22 91,265 ----a-w C:\Program Files\OCT2006_xinput_x64.cab
2006-09-28 15:22 49,149 ----a-w C:\Program Files\OCT2006_xinput_x86.cab
2006-09-28 15:21 41,996 ----a-w C:\Program Files\dxdllreg_x86.cab
2006-09-28 15:21 183,321 ----a-w C:\Program Files\OCT2006_XACT_x64.cab
2006-09-28 15:21 138,977 ----a-w C:\Program Files\OCT2006_XACT_x86.cab
2006-09-28 15:21 1,413,862 ----a-w C:\Program Files\OCT2006_d3dx9_31_x64.cab
2006-09-28 15:21 1,128,177 ----a-w C:\Program Files\OCT2006_d3dx9_31_x86.cab
2006-09-28 14:55 976,020 ------w C:\Program Files\BDAXP.cab
2006-09-28 14:55 917,318 ------w C:\Program Files\Apr2006_MDX1_x86.cab
2006-09-28 14:55 88,102 ------w C:\Program Files\AUG2006_xinput_x64.cab
2006-09-28 14:55 87,989 ------w C:\Program Files\Apr2006_xinput_x64.cab
2006-09-28 14:55 86,925 ------w C:\Program Files\Oct2005_xinput_x64.cab
2006-09-28 14:55 82,374 ----a-w C:\Program Files\dxupdate.cab
2006-09-28 14:55 74,520 ----a-w C:\Program Files\DSETUP.dll
2006-09-28 14:55 703,080 ------w C:\Program Files\BDA.cab
2006-09-28 14:55 484,632 ----a-w C:\Program Files\DXSETUP.exe
2006-09-28 14:55 47,018 ------w C:\Program Files\AUG2006_xinput_x86.cab
2006-09-28 14:55 46,898 ------w C:\Program Files\Apr2006_xinput_x86.cab
2006-09-28 14:55 46,247 ------w C:\Program Files\Oct2005_xinput_x86.cab
2006-09-28 14:55 4,163,518 ------w C:\Program Files\Apr2006_MDX1_x86_Archive.cab
2006-09-28 14:55 2,248,984 ----a-w C:\Program Files\dsetup32.dll
2006-09-28 14:55 183,863 ------w C:\Program Files\AUG2006_XACT_x64.cab
2006-09-28 14:55 181,745 ------w C:\Program Files\JUN2006_XACT_x64.cab
2006-09-28 14:55 180,021 ------w C:\Program Files\Apr2006_XACT_x64.cab
2006-09-28 14:55 179,247 ------w C:\Program Files\Feb2006_XACT_x64.cab
2006-09-28 14:55 15,493,481 ------w C:\Program Files\DirectX.cab
2006-09-28 14:55 138,195 ------w C:\Program Files\AUG2006_XACT_x86.cab
2006-09-28 14:55 134,631 ------w C:\Program Files\JUN2006_XACT_x86.cab
2006-09-28 14:55 133,991 ------w C:\Program Files\Apr2006_XACT_x86.cab
2006-09-28 14:55 133,297 ------w C:\Program Files\Feb2006_XACT_x86.cab
2006-09-28 14:55 13,265,040 ------w C:\Program Files\dxnt.cab
2006-09-28 14:55 1,398,718 ------w C:\Program Files\Apr2006_d3dx9_30_x64.cab
2006-09-28 14:55 1,363,684 ------w C:\Program Files\Feb2006_d3dx9_29_x64.cab
2006-09-28 14:55 1,358,864 ------w C:\Program Files\Dec2005_d3dx9_28_x64.cab
2006-09-28 14:55 1,351,430 ------w C:\Program Files\Aug2005_d3dx9_27_x64.cab
2006-09-28 14:55 1,348,242 ------w C:\Program Files\Apr2005_d3dx9_25_x64.cab
2006-09-28 14:55 1,336,890 ------w C:\Program Files\Jun2005_d3dx9_26_x64.cab
2006-09-28 14:55 1,248,387 ------w C:\Program Files\Feb2005_d3dx9_24_x64.cab
2006-09-28 14:55 1,156,363 ------w C:\Program Files\BDANT.cab
2006-09-28 14:55 1,116,109 ------w C:\Program Files\Apr2006_d3dx9_30_x86.cab
2006-09-28 14:55 1,085,608 ------w C:\Program Files\Feb2006_d3dx9_29_x86.cab
2006-09-28 14:55 1,080,344 ------w C:\Program Files\Dec2005_d3dx9_28_x86.cab
2006-09-28 14:55 1,079,850 ------w C:\Program Files\Apr2005_d3dx9_25_x86.cab
2006-09-28 14:55 1,078,532 ------w C:\Program Files\Aug2005_d3dx9_27_x86.cab
2006-09-28 14:55 1,065,813 ------w C:\Program Files\Jun2005_d3dx9_26_x86.cab
2006-09-28 14:55 1,014,113 ------w C:\Program Files\Feb2005_d3dx9_24_x86.cab
2005-05-11 22:36 12,288 ----a-w C:\WINDOWS\Fonts\RandFont.dll
.
((((((((((((((((((((((((((((( )))))))))))))))))))))))))))))))))))))))))
.
- 2008-01-10 19:50:36 774,144 ----a-w C:\WINDOWS\ERDNT\Hiv-backup\Users\00000001\ntuser.dat
+ 2008-01-11 15:47:32 774,144 ----a-w C:\WINDOWS\ERDNT\Hiv-backup\Users\00000001\ntuser.dat
- 2008-01-10 19:50:36 8,192 ----a-w C:\WINDOWS\ERDNT\Hiv-backup\Users\00000002\UsrClass.dat
+ 2008-01-11 15:47:32 8,192 ----a-w C:\WINDOWS\ERDNT\Hiv-backup\Users\00000002\UsrClass.dat
- 2008-01-10 19:50:38 6,668,288 ----a-w C:\WINDOWS\ERDNT\Hiv-backup\Users\00000003\ntuser.dat
+ 2008-01-11 15:47:34 6,668,288 ----a-w C:\WINDOWS\ERDNT\Hiv-backup\Users\00000003\ntuser.dat
- 2008-01-10 19:50:38 294,912 ----a-w C:\WINDOWS\ERDNT\Hiv-backup\Users\00000004\UsrClass.dat
+ 2008-01-11 15:47:34 294,912 ----a-w C:\WINDOWS\ERDNT\Hiv-backup\Users\00000004\UsrClass.dat
- 2008-01-10 19:50:38 770,048 ----a-w C:\WINDOWS\ERDNT\Hiv-backup\Users\00000005\ntuser.dat
+ 2008-01-11 15:47:34 770,048 ----a-w C:\WINDOWS\ERDNT\Hiv-backup\Users\00000005\ntuser.dat
- 2008-01-10 19:50:38 8,192 ----a-w C:\WINDOWS\ERDNT\Hiv-backup\Users\00000006\UsrClass.dat
+ 2008-01-11 15:47:34 8,192 ----a-w C:\WINDOWS\ERDNT\Hiv-backup\Users\00000006\UsrClass.dat
+ 2000-08-31 07:00:00 163,328 ----a-w C:\WINDOWS\ERDNT\subs\F3M\ERDNT.EXE
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QIP2005"="C:\Program Files\QIP\qip.exe" [2007-07-15 11:43 3259904]
"Uniblue RegistryBooster 2"="C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe" [2007-12-05 15:51 1885464]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2006-10-22 12:22 86016]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2006-10-22 12:22 7700480]
"nwiz"="nwiz.exe" [2006-10-22 12:22 1622016 C:\WINDOWS\system32\nwiz.exe]
"Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2005-10-26 16:17 159744]
C:\Documents and Settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe [2006-10-23 02:48:00]
Adobe Reader Synchronizer.lnk - C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2006-10-23 01:01:00]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"RunStartupScriptSync"= 0 (0x0)
"SynchronousMachineGroupPolicy"= 0 (0x0)
"SynchronousUserGroupPolicy"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveSearch"= 1 (0x1)
"NoStrCmpLogical"= 1 (0x1)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMBalloonTip"= 1 (0x1)
"MemCheckBoxInRunDlg"= 0 (0x0)
"NoAutoTrayNotify"= 0 (0x0)
"NoResolveTrack"= 0 (0x0)
"NoResolveSearch"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)
"NoRecentDocsNetHood"= 1 (0x1)
"NoDesktopCleanupWizard"= 1 (0x1)
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\aol]
--a------ 2006-05-30 11:13 139367 C:\Program Files\AOL\Active Virus Shield\avp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ares]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nod32kui]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Startup Cleaner]
C:\Program Files\CM Data Software\CM DiskCleaner\Startup Cleaner.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"O&O Defrag"=2 (0x2)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"msnmsgr"="C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" -hide
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
"Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
"OODefragTray"=C:\WINDOWS\system32\oodtray.exe
R1 fwdrv;Firewall Driver;C:\WINDOWS\system32\drivers\fwdrv.sys [2006-07-18 12:02]
R1 khips;Kerio HIPS Driver;C:\WINDOWS\system32\drivers\khips.sys [2006-07-18 12:02]
R2 UxTuneUp;TuneUp Theme Extension;C:\WINDOWS\System32\svchost.exe [2004-08-17 13:49]
R3 PSched;Plánovač paketů technologie QoS;C:\WINDOWS\system32\DRIVERS\psched.sys [2004-08-03 21:04]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB;C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-03 21:08]
R3 zebrceb;Sony Ericsson Cable Emulation Bus (WDM);C:\WINDOWS\system32\DRIVERS\zebrceb.sys [2006-02-01 10:01]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB;C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 23:08]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 23:08]
S3 XDva062;XDva062;C:\WINDOWS\system32\XDva062.sys []
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Contents of the 'Scheduled Tasks' folder
"2008-01-11 15:15:04 C:\WINDOWS\Tasks\MP Scheduled Scan.job"
- C:\Program Files\Windows Defender\MpCmdRun.exe
"2007-08-28 19:00:02 C:\WINDOWS\Tasks\HPpromotions journeysoftware.job"
- C:\Program Files\hp\digital imaging\bin\hp promotions\journeysoftware\HPpromo.exe
"2007-04-09 17:51:24 C:\WINDOWS\Tasks\XoftSpySE.job"
- C:\Program Files\XoftSpySE\XoftSpy.exe
"2007-08-23 20:31:10 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
"2007-08-24 16:34:32 C:\WINDOWS\Tasks\1-Click Maintenance.job"
- C:\Program Files\TuneUp Utilities 2007\SystemOptimizer.exe
.
**************************************************************************
catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-01-11 16:55:17
Windows 5.1.2600 Service Pack 2 FAT NTAPI
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2008-01-11 16:57:33
ComboFix-quarantined-files.txt 2008-01-11 15:57:24
ComboFix2.txt 2008-01-10 20:02:34
.
2007-08-16 06:27:43 --- E O F ---
Ted jdu testovat pomoci MWAVu, tak to pak sem hodim kdyz ctu, ze az 3 hodiny se to muze testovat..
z MWAVu mi vyjelo toto:
Objekt "family cyber alert Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "family cyber alert Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "family cyber alert Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "grokster Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "NULLBYTE Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "grokster Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "trojan-downloader.bat.ftp.ab Trojan-Downloader" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "trojan-downloader.bat.ftp.ab Trojan-Downloader" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "trojan-downloader.bat.ftp.ab Trojan-Downloader" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "ezula Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "elite toolbar Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "savenow Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "backdoor (ircbot) trojans Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
ty "odkazuje na neplatny objekt" sem nekopiroval...
bohuzel to nemuzu odstranit pze bych si ten program musel koupit.. :-(
Kupovat ani nic nemusite.Log z Mwavu je cisty.
Do avengera, do toho okna, vlozte toto:
Done >> Semafor >> OK
Po restarte sem vlozte novy log ktory vam nabehne, c:\avenger.txt
Pocitac niekolko krat precistite s ccleanerom podla navodu tu:
http://www.viry.cz/forum/viewtopic.php?t=7478
Tak nevim :shock:
Logfile of The Avenger version 1, by Swandog46
Running from registry key:
\Registry\Machine\System\CurrentControlSet\Services\qpnlumlv
*******************
Script file located at: \??\C:\Documents and Settings\sdyselng.txt
Script file opened successfully.
Script file read successfully
Backups directory opened successfully at C:\Avenger
*******************
Beginning to process script file:
Driver XDva062 unloaded successfully.
File C:\WINDOWS\NirCmd.exe deleted successfully.
File C:\WINDOWS\system32\drivers\fidbox.dat not found!
Deletion of file C:\WINDOWS\system32\drivers\fidbox.dat failed!
Could not process line:
C:\WINDOWS\system32\drivers\fidbox.dat
Status: 0xc0000034
File C:\WINDOWS\system32\drivers\fidbox2.idx not found!
Deletion of file C:\WINDOWS\system32\drivers\fidbox2.idx failed!
Could not process line:
C:\WINDOWS\system32\drivers\fidbox2.idx
Status: 0xc0000034
File C:\WINDOWS\system32\drivers\fidbox2.dat not found!
Deletion of file C:\WINDOWS\system32\drivers\fidbox2.dat failed!
Could not process line:
C:\WINDOWS\system32\drivers\fidbox2.dat
Status: 0xc0000034
File C:\WINDOWS\system32\drivers\fidbox.idx not found!
Deletion of file C:\WINDOWS\system32\drivers\fidbox.idx failed!
Could not process line:
C:\WINDOWS\system32\drivers\fidbox.idx
Status: 0xc0000034
File C:\WINDOWS\system32\drivers\fidbox.dat not found!
Deletion of file C:\WINDOWS\system32\drivers\fidbox.dat failed!
Could not process line:
C:\WINDOWS\system32\drivers\fidbox.dat
Status: 0xc0000034
File C:\WINDOWS\system32\XDva062.sys not found!
Deletion of file C:\WINDOWS\system32\XDva062.sys failed!
Could not process line:
C:\WINDOWS\system32\XDva062.sys
Status: 0xc0000034
Completed script processing.
*******************
Finished! Terminate.
Ako sa sprava pocitac?
prominte, nechapu otazku, normalne sem vlozil kod, zmackl semafor, restartlo se to a naskocil log s timto...
Pytal som sa, ci ten pocitac je stale taky aky bol, ale bo uz je to ok.
stale nenajde Vymenitelny disk...(pres usb) :-( a nemuze to byt zastaralosti win nebo neceho? ze treba ani v "Pridat novy hardware" nemam nic o vymenitelnych discich, flashkach, nic...
reinstal ovladacu? :shock:
zkousel sem tam instalnout tyto:
SIS_7001_usb2_sis2kxpale stejne to nenajde... je to fakt, jako kdyby muj pc bud neznal vymenitelny disk, nebo proste neznal technologii mp3 :shock:
Tak sem dneska preinstaloval windows a stejne to nenajde :( uz nevim co s tim :( poradte pls :x
Ak stre reinstaloval windows, tak chyba bude v HW. Bol ste servise?
nebyl... ale ted sem zjistil, ze mi ani nefunguje dvd mechanika..precte jenom originalni cd/dvd, vypalene ne.. nevim cim to je :( drivery sem preinstalovaval..
tak to je urcite chyba v mechanice..
jestli mate moznost, tak vyzkousejte jinou.