pomalý internet - fzwlnsuc

Zpráva

Beryl · #1 Příspěvek od **Beryl** » 06 bře 2012 21:46

Dobrý den,
prosím o kontrolu logu.
Před cca týdnem mi antivirus našel několik podobných záznamů:
C:\Documents and Settings\...\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\Cache\... - Iframe.B.Gen virus
Přesto že jsem virus nechala antivirem odstranit, od té doby funguje velmi zpomaleně internet.
Mohla bych se zeptat, jestli to souvisí a jestli je internet pomalý v důsledku nějakého přetrvávajícího zavirování?
Moc děkuji.

Logfile of random's system information tool 1.09 (written by random/random)
Run by daadu at 2012-02-28 19:54:56
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 23 GB (58%) free of 39 GB
Total RAM: 1023 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:55:25, on 28.2.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Akamai\netsession_win.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\LG Soft India\forteManager\bin\Monitor.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\Program Files\Spyware Terminator\st_rsser.exe
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Akamai\netsession_win.exe
C:\Documents and Settings\daadu\Plocha\RSIT.exe
C:\Program Files\trend micro\daadu.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://dt-updates.com/activate?query=ta ... zWaF2h0%3d
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1:9421
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [SpywareTerminatorShield] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
O4 - HKLM\..\Run: [SpywareTerminatorUpdater] C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Documents and Settings\daadu\Local Settings\Data aplikací\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [SpywareTerminatorUpdate] "C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: Adobe Acrobat Synchronizer.lnk = C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe
O4 - Global Startup: forteManager.lnk = ?
O8 - Extra context menu item: Download with Xilisoft Download YouTube Video - C:\Program Files\Xilisoft\Download YouTube Video\upod_link.HTM
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Převést cíl vazby do existujícího PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Převést do Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Převést vybrané vazby do Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Převést vybrané vazby do existujícího PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Převést výběr do Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Převést výběr do existujícího PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Přidat do stávajícího PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CS2\Services\Tcpip\..\{3A2A9182-B4E4-4A61-9D2D-6B65EA36F65B}: NameServer = 192.168.1.100
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files\Spyware Terminator\st_rsser.exe

--
End of file - 10131 bytes

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\daadu\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default

prefs.js - "browser.startup.homepage" - "http://www.centrum.cz/"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}:6.0.16, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, jqs@sun.com:1.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"

"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"{4B3803EA-5230-4DC3-A7FC-33638F3D3542}"=C:\Program Files\Crawler\firefox\

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{AB2CE124-6272-4b12-94A9-7303C7397BD1}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll
NPOFFICE.DLL
nppdf32.dll

C:\Program Files\Mozilla Firefox\searchplugins\
crawlersrch.bak
crawlersrch.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-22 321120]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Plug-In - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-11-22 1242504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-10-18 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-10-18 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-22 321120]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2004-08-25 339968]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2003-02-27 47104]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe [2004-04-17 196608]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-04-13 69632]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-03-19 2029640]
"Acrobat Assistant 8.0"=C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [2006-10-22 620152]
""= []
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]
"SpywareTerminator"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2012-02-20 2786480]
"SpywareTerminatorShield"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2012-02-20 2786480]
"SpywareTerminatorUpdater"=C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2012-02-20 3669680]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2008-08-08 490952]
"Akamai NetSession Interface"=C:\Documents and Settings\daadu\Local Settings\Data aplikací\Akamai\netsession_win.exe [2012-02-02 3329824]
"SpywareTerminatorUpdate"=C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2012-02-20 3669680]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Adobe Acrobat Speed Launcher.lnk - C:\WINDOWS\Installer\{AC76BA86-1029-0000-7760-000000000003}\_SC_Acrobat.exe
Adobe Acrobat Synchronizer.lnk - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe
forteManager.lnk - C:\Program Files\LG Soft India\forteManager\bin\Monitor.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2004-08-25 86016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-08-24 133120]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"H:\Miranda IM-z\miranda32.exe"="H:\Miranda IM-z\miranda32.exe:*:Enabled:Miranda IM"
"C:\Documents and Settings\daadu\Local Settings\Data aplikací\Akamai\netsession_win.exe"="C:\Documents and Settings\daadu\Local Settings\Data aplikací\Akamai\netsession_win.exe:*:Enabled:Akamai NetSession Interface"
"C:\Program Files\Spyware Terminator\SpywareTerminator.exe"="C:\Program Files\Spyware Terminator\SpywareTerminator.exe:*:Enabled:Spyware Terminator 2012"
"C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"="C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Enabled:Spyware Terminator 2012"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"midi"=wdmaud.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer1"=wdmaud.drv

======List of files/folders created in the last 1 month======

2012-02-28 19:54:57 ----D---- C:\Program Files\trend micro
2012-02-28 19:54:56 ----D---- C:\rsit
2012-02-18 21:25:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2660465$
2012-02-03 13:09:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2585542$
2012-01-29 14:39:53 ----D---- C:\Program Files\Crawler
2012-01-29 13:59:06 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
2012-01-29 13:59:06 ----A---- C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
2012-01-29 13:58:55 ----D---- C:\Documents and Settings\daadu\Data aplikací\Spyware Terminator

======List of files/folders modified in the last 1 month======

2012-02-28 19:55:01 ----D---- C:\WINDOWS\Temp
2012-02-28 19:55:00 ----D---- C:\WINDOWS\Prefetch
2012-02-28 19:54:57 ----RD---- C:\Program Files
2012-02-28 17:04:57 ----D---- C:\WINDOWS
2012-02-28 14:57:46 ----A---- C:\WINDOWS\WINCMD.INI
2012-02-28 12:36:17 ----D---- C:\Program Files\Common Files\Akamai
2012-02-27 21:44:13 ----N---- C:\WINDOWS\SchedLgU.Txt
2012-02-27 20:05:16 ----D---- C:\Program Files\Winamp
2012-02-27 20:02:50 ----D---- C:\WINDOWS\Debug
2012-02-27 14:10:00 ----D---- C:\Program Files\Spyware Terminator
2012-02-19 22:20:49 ----D---- C:\WINDOWS\system32\wbem
2012-02-19 22:20:47 ----D---- C:\WINDOWS\system32
2012-02-19 22:20:47 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-02-18 21:25:36 ----A---- C:\WINDOWS\system32\MRT.exe
2012-02-18 21:25:30 ----HD---- C:\WINDOWS\inf
2012-02-18 21:25:29 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-02-18 21:25:11 ----D---- C:\Program Files\Internet Explorer
2012-02-18 21:25:07 ----D---- C:\WINDOWS\system32\CatRoot2
2012-02-18 21:24:07 ----SHD---- C:\WINDOWS\Installer
2012-02-17 19:34:10 ----D---- C:\Program Files\Mozilla Firefox
2012-02-17 19:27:58 ----D---- C:\WINDOWS\ie8updates
2012-02-17 19:24:19 ----HD---- C:\WINDOWS\$hf_mig$
2012-02-15 13:40:51 ----D---- C:\Program Files\ESET
2012-01-29 13:59:08 ----D---- C:\WINDOWS\system32\drivers

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 nv_agp;NVIDIA nForce AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\nv_agp.sys [2002-09-06 13568]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2006-08-25 36528]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2008-12-14 717296]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41600]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-03-19 107256]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2009-03-19 55768]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-03-19 113960]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2009-03-19 131976]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2003-02-27 701676]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2004-08-25 787456]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2009-03-19 33096]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
R3 NVENET;NVIDIA nForce MCP Networking Adapter Driver; C:\WINDOWS\system32\DRIVERS\NVENET.sys [2002-09-23 80896]
S3 an7nnxsg;an7nnxsg; C:\WINDOWS\system32\drivers\an7nnxsg.sys []
S3 LGDDCDevice;LGDDCDevice; \??\C:\Program Files\LG Soft India\forteManager\bin\I2CDriver.sys []
S3 LGII2CDevice;LGII2CDevice; \??\C:\Program Files\LG Soft India\forteManager\bin\PII2CDriver.sys []
S3 nvax;Service for NVIDIA(R) nForce(TM) Audio Enumerator; C:\WINDOWS\system32\drivers\nvax.sys [2002-12-05 13056]
S3 nvnforce;Service for NVIDIA(R) nForce(TM) Audio; C:\WINDOWS\system32\drivers\nvapu.sys [2002-12-05 241664]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Akamai;Akamai NetSession Interface; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2004-08-25 389120]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-03-19 731840]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-10-03 153376]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2008-12-14 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2008-12-14 103736]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2012-01-29 496128]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files\Spyware Terminator\st_rsser.exe [2012-01-10 482992]
R3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-07-13 654848]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2004-08-25 516096]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-03-19 20680]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]

-----------------EOF-----------------

Beryl · #2 Příspěvek od **Beryl** » 08 bře 2012 13:54

Díky moc za zprávu:)
Posílám výsledky:
1) MbrScan

Kód: Vybrat vše

MBRScan v1.1.1

OS             : Windows XP Home Service Pack 3 (32 bit)
PROCESSOR      : x86 Family 6 Model 8 Stepping 1, AuthenticAMD
BOOT           : Normal Boot
DATE           : 2012/03/08 (ISO 8601) at 12:42:30
________________________________________________________________________________

DISK           : Device\Harddisk0\DR0 __ST3160023A (8.16)
BUS_TYPE       : (0x03)  P-ATA
USE_PIO        : YES
MAX_TRANSFER   : 128 Kb
ALIGNMENT_MASK : word aligned
________________________________________________________________________________

DISK           : Device\Harddisk1\DR1 __HDS722516VLAT80 (V34OA6EA)
BUS_TYPE       : (0x03)  P-ATA
USE_PIO        : YES
MAX_TRANSFER   : 128 Kb
ALIGNMENT_MASK : word aligned
________________________________________________________________________________

DISK           : Device\Harddisk2\DR5 __USB 2.0 Flash Disk (1100)
BUS_TYPE       : (0x07)  USB
USE_PIO        : NO
MAX_TRANSFER   : 64 Kb
ALIGNMENT_MASK : byte aligned
________________________________________________________________________________

Device\Harddisk0\DR0	149.1 Go  [Fixed] ==> XP MBR Code

MBR_MD5   : 856CC8CC0528F09D9E4BD7923334B3DB
MBR_SHA1  : C4AD30484506D890C1E87D3177C6097517C38C11

Device\Harddisk0\Partition1	37.78 Go  	0x07 NTFS / HPFS __ BOOTABLE __
Device\Harddisk0\Partition2	111.3 Go  	0x07 NTFS / HPFS
________________________________________________________________________________

Device\Harddisk1\DR1	153.4 Go  [Fixed] ==> XP MBR Code

MBR_MD5   : 9289ABE9C9BE7529C095653FAB18A20D
MBR_SHA1  : 2B363D750B497A571854E6930E8298022155C30C

Device\Harddisk1\Partition1	153.4 Go  	0x07 NTFS / HPFS __ BOOTABLE __
________________________________________________________________________________

Device\Harddisk2\DR5	3.87 Go  [Removable] ==> XP MBR Code

MBR_MD5   : 4EADA30E7FF4DBDD2114F44B3DC76817
MBR_SHA1  : C7103D08B1EC1930E98A7E210930F6D37BD28DFA

Device\Harddisk2\Partition1	3.87 Go __ BOOTABLE __
________________________________________________________________________________

############################### Additional scan ################################

SystemStartOptions : NOEXECUTE=OPTIN  FASTDETECT

________________________________________________________________________________

_______MBR   \Device\Harddisk0\DR0  

0x00000000   33 C0 8E D0 BC 00 7C FB 50 07 50 1F FC BE 1B 7C   3À.Ð¼.|ûP.P.ü¾.|
0x00000010   BF 1B 06 50 57 B9 E5 01 F3 A4 CB BD BE 07 B1 04   ¿..PW¹å.ó¤Ë½¾.±.
0x00000020   38 6E 00 7C 09 75 13 83 C5 10 E2 F4 CD 18 8B F5   8n.|.u..Å.âôÍ..õ
0x00000030   83 C6 10 49 74 19 38 2C 74 F6 A0 B5 07 B4 07 8B   .Æ.It.8,tö.µ.´..
0x00000040   F0 AC 3C 00 74 FC BB 07 00 B4 0E CD 10 EB F2 88   ð¬<.tü»..´.Í.ëò.
0x00000050   4E 10 E8 46 00 73 2A FE 46 10 80 7E 04 0B 74 0B   N.èF.s*þF..~..t.
0x00000060   80 7E 04 0C 74 05 A0 B6 07 75 D2 80 46 02 06 83   .~..t..¶.uÒ.F...
0x00000070   46 08 06 83 56 0A 00 E8 21 00 73 05 A0 B6 07 EB   F...V..è!.s..¶.ë
0x00000080   BC 81 3E FE 7D 55 AA 74 0B 80 7E 10 00 74 C8 A0   ¼.>þ}Uªt..~..tÈ.
0x00000090   B7 07 EB A9 8B FC 1E 57 8B F5 CB BF 05 00 8A 56   ·.ë©.ü.W.õË¿...V
0x000000A0   00 B4 08 CD 13 72 23 8A C1 24 3F 98 8A DE 8A FC   .´.Í.r#.Á$?..Þ.ü
0x000000B0   43 F7 E3 8B D1 86 D6 B1 06 D2 EE 42 F7 E2 39 56   C÷ã.Ñ.Ö±.ÒîB÷â9V
0x000000C0   0A 77 23 72 05 39 46 08 73 1C B8 01 02 BB 00 7C   .w#r.9F.s.¸..».|
0x000000D0   8B 4E 02 8B 56 00 CD 13 73 51 4F 74 4E 32 E4 8A   .N..V.Í.sQOtN2ä.
0x000000E0   56 00 CD 13 EB E4 8A 56 00 60 BB AA 55 B4 41 CD   V.Í.ëä.V.`»ªU´AÍ
0x000000F0   13 72 36 81 FB 55 AA 75 30 F6 C1 01 74 2B 61 60   .r6.ûUªu0öÁ.t+a`
0x00000100   6A 00 6A 00 FF 76 0A FF 76 08 6A 00 68 00 7C 6A   j.j..v..v.j.h.|j
0x00000110   01 6A 10 B4 42 8B F4 CD 13 61 61 73 0E 4F 74 0B   .j.´B.ôÍ.aas.Ot.
0x00000120   32 E4 8A 56 00 CD 13 EB D6 61 F9 C3 4E 65 70 6C   2ä.V.Í.ëÖaùÃNepl
0x00000130   61 74 6E A0 20 74 61 62 75 6C 6B 61 20 6F 64 64   atn. tabulka odd
0x00000140   A1 6C 85 00 43 68 79 62 61 20 70 FD 69 20 6E 61   ¡l..Chyba pýi na
0x00000150   9F A1 74 A0 6E A1 20 6F 70 65 72 61 9F 6E A1 68   .¡t.n¡ opera.n¡h
0x00000160   6F 20 73 79 73 74 82 6D 75 00 4F 70 65 72 61 9F   o syst.mu.Opera.
0x00000170   6E A1 20 73 79 73 74 82 6D 20 6E 65 6E 61 6C 65   n¡ syst.m nenale
0x00000180   7A 65 6E 00 00 00 00 00 00 00 00 00 00 00 00 00   zen.............
0x00000190   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001A0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001B0   00 00 00 00 00 2C 44 6A 8B 04 8C 04 00 00 80 01   .....,Dj........
0x000001C0   01 00 07 FE FF FF 3F 00 00 00 05 FE B8 04 00 FE   ...þ..?....þ¸..þ
0x000001D0   FF FF 0F FE FF FF 44 FE B8 04 7D 8C E8 0D 00 00   ...þ..Dþ¸.}.è...
0x000001E0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001F0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA   ..............Uª

_______MBR   \Device\Harddisk1\DR1  

0x00000000   33 C0 8E D0 BC 00 7C FB 50 07 50 1F FC BE 1B 7C   3À.Ð¼.|ûP.P.ü¾.|
0x00000010   BF 1B 06 50 57 B9 E5 01 F3 A4 CB BD BE 07 B1 04   ¿..PW¹å.ó¤Ë½¾.±.
0x00000020   38 6E 00 7C 09 75 13 83 C5 10 E2 F4 CD 18 8B F5   8n.|.u..Å.âôÍ..õ
0x00000030   83 C6 10 49 74 19 38 2C 74 F6 A0 B5 07 B4 07 8B   .Æ.It.8,tö.µ.´..
0x00000040   F0 AC 3C 00 74 FC BB 07 00 B4 0E CD 10 EB F2 88   ð¬<.tü»..´.Í.ëò.
0x00000050   4E 10 E8 46 00 73 2A FE 46 10 80 7E 04 0B 74 0B   N.èF.s*þF..~..t.
0x00000060   80 7E 04 0C 74 05 A0 B6 07 75 D2 80 46 02 06 83   .~..t..¶.uÒ.F...
0x00000070   46 08 06 83 56 0A 00 E8 21 00 73 05 A0 B6 07 EB   F...V..è!.s..¶.ë
0x00000080   BC 81 3E FE 7D 55 AA 74 0B 80 7E 10 00 74 C8 A0   ¼.>þ}Uªt..~..tÈ.
0x00000090   B7 07 EB A9 8B FC 1E 57 8B F5 CB BF 05 00 8A 56   ·.ë©.ü.W.õË¿...V
0x000000A0   00 B4 08 CD 13 72 23 8A C1 24 3F 98 8A DE 8A FC   .´.Í.r#.Á$?..Þ.ü
0x000000B0   43 F7 E3 8B D1 86 D6 B1 06 D2 EE 42 F7 E2 39 56   C÷ã.Ñ.Ö±.ÒîB÷â9V
0x000000C0   0A 77 23 72 05 39 46 08 73 1C B8 01 02 BB 00 7C   .w#r.9F.s.¸..».|
0x000000D0   8B 4E 02 8B 56 00 CD 13 73 51 4F 74 4E 32 E4 8A   .N..V.Í.sQOtN2ä.
0x000000E0   56 00 CD 13 EB E4 8A 56 00 60 BB AA 55 B4 41 CD   V.Í.ëä.V.`»ªU´AÍ
0x000000F0   13 72 36 81 FB 55 AA 75 30 F6 C1 01 74 2B 61 60   .r6.ûUªu0öÁ.t+a`
0x00000100   6A 00 6A 00 FF 76 0A FF 76 08 6A 00 68 00 7C 6A   j.j..v..v.j.h.|j
0x00000110   01 6A 10 B4 42 8B F4 CD 13 61 61 73 0E 4F 74 0B   .j.´B.ôÍ.aas.Ot.
0x00000120   32 E4 8A 56 00 CD 13 EB D6 61 F9 C3 49 6E 76 61   2ä.V.Í.ëÖaùÃInva
0x00000130   6C 69 64 20 70 61 72 74 69 74 69 6F 6E 20 74 61   lid partition ta
0x00000140   62 6C 65 00 45 72 72 6F 72 20 6C 6F 61 64 69 6E   ble.Error loadin
0x00000150   67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74   g operating syst
0x00000160   65 6D 00 4D 69 73 73 69 6E 67 20 6F 70 65 72 61   em.Missing opera
0x00000170   74 69 6E 67 20 73 79 73 74 65 6D 00 00 00 00 00   ting system.....
0x00000180   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000190   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001A0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001B0   00 00 00 00 00 2C 44 63 5A E2 13 E6 00 00 80 01   .....,DcZâ.æ....
0x000001C0   01 00 07 FE FF FF 3F 00 00 00 38 49 2C 13 00 00   ...þ..?...8I,...
0x000001D0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001E0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001F0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA   ..............Uª

_______MBR   \Device\Harddisk2\DR5  

0x00000000   33 C0 8E D0 BC 00 7C FB 50 07 50 1F FC BE 1B 7C   3À.Ð¼.|ûP.P.ü¾.|
0x00000010   BF 1B 06 50 57 B9 E5 01 F3 A4 CB BD BE 07 B1 04   ¿..PW¹å.ó¤Ë½¾.±.
0x00000020   38 6E 00 7C 09 75 13 83 C5 10 E2 F4 CD 18 8B F5   8n.|.u..Å.âôÍ..õ
0x00000030   83 C6 10 49 74 19 38 2C 74 F6 A0 B5 07 B4 07 8B   .Æ.It.8,tö.µ.´..
0x00000040   F0 AC 3C 00 74 FC BB 07 00 B4 0E CD 10 EB F2 88   ð¬<.tü»..´.Í.ëò.
0x00000050   4E 10 E8 46 00 73 2A FE 46 10 80 7E 04 0B 74 0B   N.èF.s*þF..~..t.
0x00000060   80 7E 04 0C 74 05 A0 B6 07 75 D2 80 46 02 06 83   .~..t..¶.uÒ.F...
0x00000070   46 08 06 83 56 0A 00 E8 21 00 73 05 A0 B6 07 EB   F...V..è!.s..¶.ë
0x00000080   BC 81 3E FE 7D 55 AA 74 0B 80 7E 10 00 74 C8 A0   ¼.>þ}Uªt..~..tÈ.
0x00000090   B7 07 EB A9 8B FC 1E 57 8B F5 CB BF 05 00 8A 56   ·.ë©.ü.W.õË¿...V
0x000000A0   00 B4 08 CD 13 72 23 8A C1 24 3F 98 8A DE 8A FC   .´.Í.r#.Á$?..Þ.ü
0x000000B0   43 F7 E3 8B D1 86 D6 B1 06 D2 EE 42 F7 E2 39 56   C÷ã.Ñ.Ö±.ÒîB÷â9V
0x000000C0   0A 77 23 72 05 39 46 08 73 1C B8 01 02 BB 00 7C   .w#r.9F.s.¸..».|
0x000000D0   8B 4E 02 8B 56 00 CD 13 73 51 4F 74 4E 32 E4 8A   .N..V.Í.sQOtN2ä.
0x000000E0   56 00 CD 13 EB E4 8A 56 00 60 BB AA 55 B4 41 CD   V.Í.ëä.V.`»ªU´AÍ
0x000000F0   13 72 36 81 FB 55 AA 75 30 F6 C1 01 74 2B 61 60   .r6.ûUªu0öÁ.t+a`
0x00000100   6A 00 6A 00 FF 76 0A FF 76 08 6A 00 68 00 7C 6A   j.j..v..v.j.h.|j
0x00000110   01 6A 10 B4 42 8B F4 CD 13 61 61 73 0E 4F 74 0B   .j.´B.ôÍ.aas.Ot.
0x00000120   32 E4 8A 56 00 CD 13 EB D6 61 F9 C3 49 6E 76 61   2ä.V.Í.ëÖaùÃInva
0x00000130   6C 69 64 20 70 61 72 74 69 74 69 6F 6E 20 74 61   lid partition ta
0x00000140   62 6C 65 00 45 72 72 6F 72 20 6C 6F 61 64 69 6E   ble.Error loadin
0x00000150   67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74   g operating syst
0x00000160   65 6D 00 4D 69 73 73 69 6E 67 20 6F 70 65 72 61   em.Missing opera
0x00000170   74 69 6E 67 20 73 79 73 74 65 6D 00 00 00 00 00   ting system.....
0x00000180   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000190   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001A0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001B0   00 00 00 00 00 2C 44 63 18 2E 07 C3 00 00 80 01   .....,Dc...Ã....
0x000001C0   01 00 0B FC 20 F9 20 00 00 00 E0 FB 7B 00 00 00   ...ü ù ...àû{...
0x000001D0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001E0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001F0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA   ..............Uª

2) OTL - v příloze

3) Virustotal
https://www.virustotal.com/file/21d6110 ... 331209759/

Ještě jednou díky za pomoc:)

Beryl · #3 Příspěvek od **Beryl** » 09 bře 2012 14:53

Ahoj ahoj:)
posílám výsledky... Malwarebytes mi po předchozím ComboFixu nic nenašel, nicméně s internetem žádná změna - mám začít brečet?:)

1) ComboFix

ComboFix 12-03-09.03 - daadu 09.03.2012 11:18:14.1.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1023.521 [GMT 1:00]
Spuštěný z: c:\documents and settings\daadu\Plocha\ComboFix.exe
AV: ESET Smart Security 4.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *Disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\daadu\WINDOWS
c:\windows\system32\SET578.tmp
c:\windows\system32\SET57C.tmp
c:\windows\system32\SET584.tmp
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-02-09 do 2012-03-09 )))))))))))))))))))))))))))))))
.
.
2012-03-08 11:49 . 2012-03-08 11:49 512 ----a-w- C:\PhysicalMBR.bin
2012-02-28 18:54 . 2012-02-28 18:55 -------- d-----w- c:\program files\trend micro
2012-02-28 18:54 . 2012-02-28 18:55 -------- d-----w- C:\rsit
2012-02-15 12:31 . 2012-02-15 12:31 -------- d-----w- c:\documents and settings\daadu\Local Settings\Data aplikací\ESET
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-23 22:08 . 2011-08-12 21:11 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-01-29 12:59 . 2012-01-29 12:59 142592 ----a-w- c:\windows\system32\drivers\sp_rsdrv2.sys
2012-01-12 17:20 . 2004-08-17 13:44 1859968 ----a-w- c:\windows\system32\win32k.sys
2011-12-17 19:42 . 2004-08-17 13:49 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2011-12-17 19:42 . 2004-08-17 13:49 916992 ----a-w- c:\windows\system32\wininet.dll
2011-12-17 19:42 . 2004-08-17 13:49 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-12-16 12:23 . 2004-08-17 13:44 385024 ----a-w- c:\windows\system32\html.iec
2012-02-17 18:34 . 2011-05-01 17:46 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2008-08-08 490952]
"Akamai NetSession Interface"="c:\documents and settings\daadu\Local Settings\Data aplikací\Akamai\netsession_win.exe" [2012-02-02 3329824]
"SpywareTerminatorUpdate"="c:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe" [2012-02-20 3669680]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2004-08-25 339968]
"SoundMan"="SOUNDMAN.EXE" [2003-02-27 47104]
"ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2004-04-17 196608]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2004-04-13 69632]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-03-19 2029640]
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" [2006-10-22 620152]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"SpywareTerminator"="c:\program files\Spyware Terminator\SpywareTerminatorShield.exe" [2012-02-20 2786480]
"SpywareTerminatorShield"="c:\program files\Spyware Terminator\SpywareTerminatorShield.exe" [2012-02-20 2786480]
"SpywareTerminatorUpdater"="c:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe" [2012-02-20 3669680]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
Adobe Acrobat Speed Launcher.lnk - c:\windows\Installer\{AC76BA86-1029-0000-7760-000000000003}\_SC_Acrobat.exe [2011-7-13 295606]
Adobe Acrobat Synchronizer.lnk - c:\program files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe [2006-10-23 734872]
forteManager.lnk - c:\program files\LG Soft India\forteManager\bin\Monitor.exe [2009-10-16 1687552]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Documents and Settings\\daadu\\Local Settings\\Data aplikací\\Akamai\\netsession_win.exe"=
"c:\\Program Files\\Spyware Terminator\\SpywareTerminator.exe"=
"c:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe"=
.
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [14.12.2008 16:55 717296]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [19.3.2009 11:44 107256]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [29.1.2012 13:59 142592]
R2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe -k Akamai [17.8.2004 14:49 14336]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [19.3.2009 11:44 731840]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service;c:\program files\Spyware Terminator\st_rsser.exe [29.1.2012 16:16 482992]
S3 LGDDCDevice;LGDDCDevice;c:\program files\LG Soft India\forteManager\bin\I2CDriver.sys [16.10.2009 22:41 14336]
S3 LGII2CDevice;LGII2CDevice;c:\program files\LG Soft India\forteManager\bin\PII2CDriver.sys [16.10.2009 22:41 18432]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
.
------- Doplňkový sken -------
.
uInternet Connection Wizard,ShellNext = hxxp://dt-updates.com/activate?query=tajIblwrMkWndeItF%2fcfqeHV%2bfaBk7W%2fpsQvS0nFlDd3gndjvpebGGva9Ke5P6Am4NceuHbFRAN3hu%2bduMFBFVm7%2bp045uVkWhVzQ%2bVJaLfX2GwVLTAmPiBlkzh2b545uSFL%2bxM543UHqYbiMarKqHl6oQnN5tpdKSSJCVTFjUoz3rGT5wzmWqWYRl0QkWD2JsVG0UIQlCCMvWa809yTooJc8rSGMUbNa9gzyYOnlaq99GEaFMBhVarKIq8qYQZ1yGqbvMvxON3PEISXfH3XH0TwvsJhc2wh9kYmzWaF2h0%3d
uInternet Settings,ProxyOverride = 127.0.0.1:9421
IE: Download with Xilisoft Download YouTube Video - c:\program files\Xilisoft\Download YouTube Video\upod_link.HTM
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Převést cíl vazby do Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Převést cíl vazby do existujícího PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Převést do Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Převést vybrané vazby do Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Převést vybrané vazby do existujícího PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Převést výběr do Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Převést výběr do existujícího PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Přidat do stávajícího PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
TCP: DhcpNameServer = 192.168.1.254
FF - ProfilePath - c:\documents and settings\daadu\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.centrum.cz/
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-EAX Unified - c:\program files\Creative\EAX Unified\Uninst.isu
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-03-09 11:23
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Akamai]
"ServiceDll"="c:\program files\common files\akamai/netsession_win_7de0ed9.dll"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(924)
c:\windows\system32\Ati2evxx.dll
.
Celkový čas: 2012-03-09 11:24:35
ComboFix-quarantined-files.txt 2012-03-09 10:24
.
Před spuštěním: Volných bajtů: 23 593 848 832
Po spuštění: Volných bajtů: 24 989 081 600
.
WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - C9B4E5D9632FFF69C45A86C62785E6DF

2) Malwarebytes

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware) 1.60.1.1000
http://www.malwarebytes.org

Verze databáze: v2012.03.09.02

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
daadu :: ZUZI [administrátor]

Ochrana: Povolena

9.3.2012 11:38:39
mbam-log-2012-03-09 (11-38-39).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 183192
Uplynulý čas: 3 minut, 4 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

Díky díky moc!:)

Beryl · #4 Příspěvek od **Beryl** » 12 bře 2012 16:21

Ahoj ahoj,
odinstalovala jsem Akamai a s vypnutými štíty vyrazila na net, bohužel rychlost stahování stránek je beze změny bídná. před začátkem a na konci jsem vyčistila cache CCleanerem a během brouzdání se znovu zaplnila mořem zápisů typu:

C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\0\70\CBDD7d01 79KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\0\72\A7C76d01 35KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\0\7D\F9A72d01 19KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\0\B1\3C550d01 24KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\0\BB\BF210d01 29KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\0\C6\63C82d01 33KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\2\00\57B68d01 22KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\2\1A\CCBDEd01 30KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\2\2F\E536Dd01 30KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\2\5B\18D0Ad01 18KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\2\82\143DAd01 39KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\3\03\4AB73d01 30KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\3\35\20258d01 64KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\3\39\957ACd01 42KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\3\80\5C7A0d01 18KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\3\81\E1DF8d01 78KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\3\87\7B007d01 22KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\3\8C\B26C1d01 22KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\4\60\6FAC7d01 61KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\4\BD\F479Fd01 25KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\4\C1\CDC1Fd01 24KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\4\EB\FE8B8d01 56KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\5\44\74BFDd01 26KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\5\6E\B9A71d01 22KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\5\73\DDAFFd01 27KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\5\92\2312Fd01 25KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\5\BC\6085Ad01 44KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\6\08\FDF8Dd01 19KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\6\D4\F6169d01 23KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\7\12\3829Ad01 21KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\7\3C\428B8d01 48KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\7\47\251CCd01 17KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\7\4A\0482Dd01 25KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\7\69\F0809d01 17KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\7\72\4CE62d01 17KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\7\9E\88627d01 28KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\7\C5\D4526d01 23KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\7\C7\D04BEd01 80KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\7\E9\29686d01 32KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\8\C5\F8857d01 23KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\8\F4\7D327d01 133KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\9\4C\75B25d01 18KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\9\7A\EF867d01 26KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\9\D1\CF55Ed01 102KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\A\1A\5A00Dd01 29KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\A\1B\FA162d01 66KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\A\B9\ACC74d01 20KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\B\5F\5C747d01 133KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\B\BF\215ABd01 19KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\B\D8\81436d01 32KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\B\E6\225BDd01 31KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\C\11\8C875d01 40KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\C\5B\0733Cd01 37KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\C\61\E13B7d01 37KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\C\89\3DD10d01 34KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\D\3F\B9AD6d01 17KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\D\55\EC93Bd01 19KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\D\62\77C6Fd01 31KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\D\76\DB7C3d01 26KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\D\AE\7C39Ed01 30KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\D\C6\E0653d01 46KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\D\E4\99917d01 19KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\E\10\711C4d01 18KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\E\38\79AA0d01 37KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\E\A0\4ED24d01 30KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\E\C6\8899Ad01 122KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\E\F5\D5EEDd01 44KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\F\C9\F7D12d01 55KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\F\EE\2E814d01 50KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\_CACHE_001_ 436KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\_CACHE_002_ 715KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\_CACHE_003_ 2 126KB
C:\Documents and Settings\daadu\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\fzwlnsuc.default\cache\_CACHE_MAP_ 17KB

Je ještě nějaká možnost, jak s tím něco udělat?
Díky moc:)

Beryl · #5 Příspěvek od **Beryl** » 13 bře 2012 11:24

Ahoj ahoj:)
na stejné lince mám v domácí síti tři počítače, u zbylých dvou net funguje normálně (i se stejnou kombinací antiviru a spyware terminatoru).
ohledně nouzového režimu je tu jeden problém - DOSovská obrazovka s výběrem režimů mi při startování počítače problikne jen asi na půl vteřiny, takže nelze režim zvolit.
Dá se to nějak změnit (princezna je počítačový analfabet:)?
Díky:)

Beryl · #6 Příspěvek od **Beryl** » 14 bře 2012 10:54

Ahoj ahoj,
v nouzovém režimu net funguje bez problémů, v normálním režimu pořád bída.
a proč se mi pořád cpou ty soubory do Cache? proč, PROČ??:) to mi vyloženě vadí, i když eset mi tvrdí, že jsou v pořádku:) předpokládám, že kdyby ten počítač byl ÚPLNĚ v pořádku, net by fungoval a ty soubory se tam neobjevovaly...?
Díky moc:)
Šíleně zoufalá princezna

Beryl · #7 Příspěvek od **Beryl** » 20 bře 2012 11:37

Ahoj ahoj,
posílám výsledky:

18:31:10.0156 0888 TDSS rootkit removing tool 2.7.20.0 Mar 9 2012 17:10:43
18:31:10.0218 0888 ============================================================
18:31:10.0218 0888 Current date / time: 2012/03/14 18:31:10.0218
18:31:10.0218 0888 SystemInfo:
18:31:10.0218 0888
18:31:10.0218 0888 OS Version: 5.1.2600 ServicePack: 3.0
18:31:10.0218 0888 Product type: Workstation
18:31:10.0218 0888 ComputerName: ZUZI
18:31:10.0218 0888 UserName: daadu
18:31:10.0218 0888 Windows directory: C:\WINDOWS
18:31:10.0218 0888 System windows directory: C:\WINDOWS
18:31:10.0218 0888 Processor architecture: Intel x86
18:31:10.0218 0888 Number of processors: 1
18:31:10.0218 0888 Page size: 0x1000
18:31:10.0218 0888 Boot type: Normal boot
18:31:10.0218 0888 ============================================================
18:31:15.0828 0888 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
18:31:15.0859 0888 Drive \Device\Harddisk1\DR1 - Size: 0x2658AE0000 (153.39 Gb), SectorSize: 0x200, Cylinders: 0x4E37, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
18:31:15.0859 0888 Drive \Device\Harddisk2\DR9 - Size: 0xF7F80000 (3.87 Gb), SectorSize: 0x200, Cylinders: 0x1F9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:31:15.0859 0888 \Device\Harddisk0\DR0:
18:31:15.0859 0888 MBR used
18:31:15.0859 0888 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4B8FE05
18:31:15.0875 0888 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x4B8FE83, BlocksNum 0xDE88C3E
18:31:15.0875 0888 \Device\Harddisk1\DR1:
18:31:15.0875 0888 MBR used
18:31:15.0875 0888 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x132C4938
18:31:15.0875 0888 \Device\Harddisk2\DR9:
18:31:15.0875 0888 MBR used
18:31:15.0875 0888 \Device\Harddisk2\DR9\Partition0: MBR, Type 0xB, StartLBA 0x20, BlocksNum 0x7BFBE0
18:31:15.0984 0888 Initialize success
18:31:15.0984 0888 ============================================================
18:31:42.0390 1344 ============================================================
18:31:42.0390 1344 Scan started
18:31:42.0390 1344 Mode: Manual; SigCheck; TDLFS;
18:31:42.0390 1344 ============================================================
18:31:42.0609 1344 Abiosdsk - ok
18:31:42.0640 1344 abp480n5 - ok
18:31:42.0703 1344 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:31:44.0046 1344 ACPI - ok
18:31:44.0109 1344 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
18:31:44.0343 1344 ACPIEC - ok
18:31:44.0390 1344 adpu160m - ok
18:31:44.0437 1344 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
18:31:44.0656 1344 aec - ok
18:31:44.0703 1344 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
18:31:44.0781 1344 AFD - ok
18:31:44.0812 1344 Aha154x - ok
18:31:44.0859 1344 aic78u2 - ok
18:31:44.0890 1344 aic78xx - ok
18:31:44.0968 1344 ALCXWDM (f49461aca46cc5f9be75104d289de701) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
18:31:45.0062 1344 ALCXWDM ( UnsignedFile.Multi.Generic ) - warning
18:31:45.0062 1344 ALCXWDM - detected UnsignedFile.Multi.Generic (1)
18:31:45.0125 1344 AliIde - ok
18:31:45.0187 1344 AmdK7 (3980814f8027d27ea003e2e3d9d4f604) C:\WINDOWS\system32\DRIVERS\amdk7.sys
18:31:45.0406 1344 AmdK7 - ok
18:31:45.0453 1344 amsint - ok
18:31:45.0484 1344 asc - ok
18:31:45.0515 1344 asc3350p - ok
18:31:45.0546 1344 asc3550 - ok
18:31:45.0609 1344 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:31:45.0812 1344 AsyncMac - ok
18:31:45.0890 1344 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
18:31:46.0078 1344 atapi - ok
18:31:46.0109 1344 Atdisk - ok
18:31:46.0203 1344 ati2mtag (f0d0b0cdec0be32d775f404cac2604bf) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
18:31:46.0343 1344 ati2mtag - ok
18:31:46.0390 1344 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:31:46.0609 1344 Atmarpc - ok
18:31:46.0671 1344 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
18:31:46.0906 1344 audstub - ok
18:31:46.0968 1344 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
18:31:47.0234 1344 Beep - ok
18:31:47.0343 1344 catchme - ok
18:31:47.0390 1344 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
18:31:47.0640 1344 cbidf2k - ok
18:31:47.0671 1344 cd20xrnt - ok
18:31:47.0734 1344 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
18:31:48.0000 1344 Cdaudio - ok
18:31:48.0062 1344 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
18:31:48.0234 1344 Cdfs - ok
18:31:48.0281 1344 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:31:48.0468 1344 Cdrom - ok
18:31:48.0500 1344 Changer - ok
18:31:48.0546 1344 CmdIde - ok
18:31:48.0593 1344 Cpqarray - ok
18:31:48.0640 1344 dac2w2k - ok
18:31:48.0671 1344 dac960nt - ok
18:31:48.0718 1344 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
18:31:48.0875 1344 Disk - ok
18:31:48.0968 1344 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
18:31:49.0234 1344 dmboot - ok
18:31:49.0281 1344 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
18:31:49.0468 1344 dmio - ok
18:31:49.0515 1344 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
18:31:49.0734 1344 dmload - ok
18:31:49.0781 1344 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
18:31:49.0953 1344 DMusic - ok
18:31:50.0015 1344 dpti2o - ok
18:31:50.0046 1344 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
18:31:50.0250 1344 drmkaud - ok
18:31:50.0296 1344 eamon (d4f94d45e25d764462a5b95bc426c8d0) C:\WINDOWS\system32\DRIVERS\eamon.sys
18:31:50.0359 1344 eamon - ok
18:31:50.0421 1344 ehdrv (9456462c1425d2bbf1616edabfaba5f4) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
18:31:50.0484 1344 ehdrv - ok
18:31:50.0531 1344 epfw (9957f65bedc0c5f654ff5be4552f3df7) C:\WINDOWS\system32\DRIVERS\epfw.sys
18:31:50.0546 1344 epfw - ok
18:31:50.0593 1344 Epfwndis (a39214536abb60dc3ac73c6fc963e06d) C:\WINDOWS\system32\DRIVERS\Epfwndis.sys
18:31:50.0656 1344 Epfwndis - ok
18:31:50.0703 1344 epfwtdi (7119e9001fbb9d562905cc3932400683) C:\WINDOWS\system32\DRIVERS\epfwtdi.sys
18:31:50.0750 1344 epfwtdi - ok
18:31:50.0812 1344 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
18:31:51.0000 1344 Fastfat - ok
18:31:51.0046 1344 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
18:31:51.0265 1344 Fdc - ok
18:31:51.0312 1344 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
18:31:51.0515 1344 Fips - ok
18:31:51.0578 1344 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
18:31:51.0781 1344 Flpydisk - ok
18:31:51.0828 1344 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
18:31:52.0000 1344 FltMgr - ok
18:31:52.0046 1344 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:31:52.0296 1344 Fs_Rec - ok
18:31:52.0359 1344 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:31:52.0609 1344 Ftdisk - ok
18:31:52.0656 1344 gameenum (065639773d8b03f33577f6cdaea21063) C:\WINDOWS\system32\DRIVERS\gameenum.sys
18:31:52.0828 1344 gameenum - ok
18:31:52.0859 1344 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:31:53.0062 1344 Gpc - ok
18:31:53.0125 1344 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:31:53.0328 1344 hidusb - ok
18:31:53.0390 1344 hpn - ok
18:31:53.0453 1344 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
18:31:53.0515 1344 HTTP - ok
18:31:53.0562 1344 i2omgmt - ok
18:31:53.0593 1344 i2omp - ok
18:31:53.0625 1344 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:31:53.0828 1344 i8042prt - ok
18:31:53.0875 1344 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
18:31:54.0062 1344 Imapi - ok
18:31:54.0109 1344 ini910u - ok
18:31:54.0156 1344 IntelIde - ok
18:31:54.0203 1344 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
18:31:54.0406 1344 Ip6Fw - ok
18:31:54.0468 1344 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:31:54.0781 1344 IpFilterDriver - ok
18:31:54.0828 1344 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:31:55.0015 1344 IpInIp - ok
18:31:55.0062 1344 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:31:55.0250 1344 IpNat - ok
18:31:55.0296 1344 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:31:55.0500 1344 IPSec - ok
18:31:55.0546 1344 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
18:31:55.0734 1344 IRENUM - ok
18:31:55.0781 1344 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:31:55.0968 1344 isapnp - ok
18:31:56.0015 1344 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:31:56.0203 1344 Kbdclass - ok
18:31:56.0250 1344 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
18:31:56.0437 1344 kmixer - ok
18:31:56.0484 1344 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
18:31:56.0593 1344 KSecDD - ok
18:31:56.0656 1344 lbrtfdc - ok
18:31:56.0750 1344 LGDDCDevice (9dcb9d9bdb7e3c0f66f86ee09a392cbb) C:\Program Files\LG Soft India\forteManager\bin\I2CDriver.sys
18:31:56.0765 1344 LGDDCDevice ( UnsignedFile.Multi.Generic ) - warning
18:31:56.0765 1344 LGDDCDevice - detected UnsignedFile.Multi.Generic (1)
18:31:56.0796 1344 LGII2CDevice (21a62a7a95b1905634e7c12e5158ec32) C:\Program Files\LG Soft India\forteManager\bin\PII2CDriver.sys
18:31:56.0828 1344 LGII2CDevice ( UnsignedFile.Multi.Generic ) - warning
18:31:56.0828 1344 LGII2CDevice - detected UnsignedFile.Multi.Generic (1)
18:31:56.0906 1344 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
18:31:57.0156 1344 mnmdd - ok
18:31:57.0234 1344 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
18:31:57.0406 1344 Modem - ok
18:31:57.0468 1344 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:31:57.0656 1344 Mouclass - ok
18:31:57.0703 1344 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:31:57.0984 1344 mouhid - ok
18:31:58.0046 1344 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
18:31:58.0203 1344 MountMgr - ok
18:31:58.0250 1344 mraid35x - ok
18:31:58.0281 1344 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:31:58.0453 1344 MRxDAV - ok
18:31:58.0531 1344 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:31:58.0625 1344 MRxSmb - ok
18:31:58.0687 1344 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
18:31:58.0859 1344 Msfs - ok
18:31:58.0921 1344 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:31:59.0109 1344 MSKSSRV - ok
18:31:59.0171 1344 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:31:59.0359 1344 MSPCLOCK - ok
18:31:59.0406 1344 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
18:31:59.0609 1344 MSPQM - ok
18:31:59.0656 1344 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:31:59.0828 1344 mssmbios - ok
18:31:59.0875 1344 ms_mpu401 (ca3e22598f411199adc2dfee76cd0ae0) C:\WINDOWS\system32\drivers\msmpu401.sys
18:32:00.0125 1344 ms_mpu401 - ok
18:32:00.0187 1344 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
18:32:00.0234 1344 Mup - ok
18:32:00.0296 1344 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
18:32:00.0468 1344 NDIS - ok
18:32:00.0515 1344 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:32:00.0562 1344 NdisTapi - ok
18:32:00.0609 1344 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:32:00.0796 1344 Ndisuio - ok
18:32:00.0843 1344 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:32:01.0031 1344 NdisWan - ok
18:32:01.0093 1344 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
18:32:01.0125 1344 NDProxy - ok
18:32:01.0187 1344 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
18:32:01.0359 1344 NetBIOS - ok
18:32:01.0421 1344 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
18:32:01.0625 1344 NetBT - ok
18:32:01.0750 1344 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
18:32:01.0921 1344 Npfs - ok
18:32:02.0156 1344 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
18:32:02.0625 1344 Ntfs - ok
18:32:03.0171 1344 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
18:32:03.0468 1344 Null - ok
18:32:03.0859 1344 nvax (163cd7728440a1901e72e7207fa5877a) C:\WINDOWS\system32\drivers\nvax.sys
18:32:03.0968 1344 nvax - ok
18:32:04.0421 1344 NVENET (fbe448efa5484a256528e1d02b959bbc) C:\WINDOWS\system32\DRIVERS\NVENET.sys
18:32:04.0656 1344 NVENET - ok
18:32:05.0203 1344 nvnforce (f573f587abed7c750b66ab96143ca1e9) C:\WINDOWS\system32\drivers\nvapu.sys
18:32:05.0312 1344 nvnforce - ok
18:32:05.0500 1344 nv_agp (db36442c20793c53b4128eb85f9a3d32) C:\WINDOWS\system32\DRIVERS\nv_agp.sys
18:32:05.0578 1344 nv_agp - ok
18:32:05.0640 1344 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:32:05.0937 1344 NwlnkFlt - ok
18:32:05.0984 1344 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:32:06.0265 1344 NwlnkFwd - ok
18:32:06.0343 1344 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\DRIVERS\parport.sys
18:32:06.0531 1344 Parport - ok
18:32:06.0578 1344 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
18:32:06.0750 1344 PartMgr - ok
18:32:06.0796 1344 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
18:32:07.0078 1344 ParVdm - ok
18:32:07.0109 1344 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
18:32:07.0312 1344 PCI - ok
18:32:07.0359 1344 PCIDump - ok
18:32:07.0421 1344 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
18:32:07.0625 1344 PCIIde - ok
18:32:07.0687 1344 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
18:32:07.0906 1344 Pcmcia - ok
18:32:07.0937 1344 PDCOMP - ok
18:32:07.0968 1344 PDFRAME - ok
18:32:08.0000 1344 PDRELI - ok
18:32:08.0031 1344 PDRFRAME - ok
18:32:08.0078 1344 perc2 - ok
18:32:08.0109 1344 perc2hib - ok
18:32:08.0203 1344 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:32:08.0375 1344 PptpMiniport - ok
18:32:08.0437 1344 PQNTDrv (4228630829c0e521c43d882a00533374) C:\WINDOWS\system32\drivers\PQNTDrv.sys
18:32:08.0453 1344 PQNTDrv ( UnsignedFile.Multi.Generic ) - warning
18:32:08.0453 1344 PQNTDrv - detected UnsignedFile.Multi.Generic (1)
18:32:08.0500 1344 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
18:32:08.0718 1344 PSched - ok
18:32:08.0796 1344 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:32:09.0156 1344 Ptilink - ok
18:32:09.0203 1344 PxHelp20 (81088114178112618b1c414a65e50f7c) C:\WINDOWS\system32\Drivers\PxHelp20.sys
18:32:09.0234 1344 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
18:32:09.0234 1344 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
18:32:09.0265 1344 ql1080 - ok
18:32:09.0312 1344 Ql10wnt - ok
18:32:09.0343 1344 ql12160 - ok
18:32:09.0390 1344 ql1240 - ok
18:32:09.0421 1344 ql1280 - ok
18:32:09.0468 1344 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:32:09.0734 1344 RasAcd - ok
18:32:09.0781 1344 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:32:09.0984 1344 Rasl2tp - ok
18:32:10.0031 1344 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:32:10.0218 1344 RasPppoe - ok
18:32:10.0250 1344 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
18:32:10.0531 1344 Raspti - ok
18:32:10.0578 1344 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:32:10.0734 1344 Rdbss - ok
18:32:10.0765 1344 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:32:11.0015 1344 RDPCDD - ok
18:32:11.0062 1344 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
18:32:11.0265 1344 rdpdr - ok
18:32:11.0343 1344 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
18:32:11.0406 1344 RDPWD - ok
18:32:11.0453 1344 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
18:32:11.0640 1344 redbook - ok
18:32:11.0750 1344 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:32:11.0937 1344 Secdrv - ok
18:32:12.0000 1344 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
18:32:12.0187 1344 serenum - ok
18:32:12.0234 1344 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
18:32:12.0453 1344 Serial - ok
18:32:12.0500 1344 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
18:32:12.0687 1344 Sfloppy - ok
18:32:12.0750 1344 Simbad - ok
18:32:12.0781 1344 Sparrow - ok
18:32:12.0828 1344 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
18:32:13.0015 1344 splitter - ok
18:32:13.0125 1344 sptd (71e276f6d189413266ea22171806597b) C:\WINDOWS\system32\Drivers\sptd.sys
18:32:13.0125 1344 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: 71e276f6d189413266ea22171806597b
18:32:13.0125 1344 sptd ( LockedFile.Multi.Generic ) - warning
18:32:13.0125 1344 sptd - detected LockedFile.Multi.Generic (1)
18:32:13.0187 1344 sp_rsdrv2 (8831252bcf05fcfb5abd116a22e552d8) C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
18:32:13.0250 1344 sp_rsdrv2 ( UnsignedFile.Multi.Generic ) - warning
18:32:13.0250 1344 sp_rsdrv2 - detected UnsignedFile.Multi.Generic (1)
18:32:13.0296 1344 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
18:32:13.0468 1344 sr - ok
18:32:13.0546 1344 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
18:32:13.0625 1344 Srv - ok
18:32:13.0703 1344 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
18:32:13.0890 1344 swenum - ok
18:32:13.0937 1344 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
18:32:14.0140 1344 swmidi - ok
18:32:14.0187 1344 symc810 - ok
18:32:14.0234 1344 symc8xx - ok
18:32:14.0265 1344 sym_hi - ok
18:32:14.0296 1344 sym_u3 - ok
18:32:14.0343 1344 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
18:32:14.0515 1344 sysaudio - ok
18:32:14.0593 1344 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:32:14.0718 1344 Tcpip - ok
18:32:14.0781 1344 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
18:32:14.0968 1344 TDPIPE - ok
18:32:15.0015 1344 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
18:32:15.0218 1344 TDTCP - ok
18:32:15.0265 1344 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
18:32:15.0500 1344 TermDD - ok
18:32:15.0562 1344 TosIde - ok
18:32:15.0625 1344 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
18:32:15.0796 1344 Udfs - ok
18:32:15.0828 1344 ultra - ok
18:32:15.0906 1344 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
18:32:16.0156 1344 Update - ok
18:32:16.0234 1344 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:32:16.0421 1344 usbehci - ok
18:32:16.0453 1344 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:32:16.0640 1344 usbhub - ok
18:32:16.0671 1344 usbohci (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys
18:32:16.0859 1344 usbohci - ok
18:32:16.0921 1344 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:32:17.0078 1344 USBSTOR - ok
18:32:17.0125 1344 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
18:32:17.0328 1344 VgaSave - ok
18:32:17.0375 1344 ViaIde - ok
18:32:17.0421 1344 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
18:32:17.0625 1344 VolSnap - ok
18:32:17.0687 1344 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:32:17.0875 1344 Wanarp - ok
18:32:17.0921 1344 WDICA - ok
18:32:17.0953 1344 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
18:32:18.0156 1344 wdmaud - ok
18:32:18.0265 1344 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
18:32:18.0531 1344 WS2IFSL - ok
18:32:18.0593 1344 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
18:32:18.0828 1344 \Device\Harddisk0\DR0 - ok
18:32:18.0843 1344 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
18:32:19.0187 1344 \Device\Harddisk1\DR1 - ok
18:32:19.0203 1344 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR9
18:32:23.0625 1344 \Device\Harddisk2\DR9 - ok
18:32:23.0640 1344 Boot (0x1200) (cd72339191f2bb9efee92b777a95305e) \Device\Harddisk0\DR0\Partition0
18:32:23.0640 1344 \Device\Harddisk0\DR0\Partition0 - ok
18:32:23.0671 1344 Boot (0x1200) (afa142e943ed984ec5621e24f81ec97a) \Device\Harddisk0\DR0\Partition1
18:32:23.0671 1344 \Device\Harddisk0\DR0\Partition1 - ok
18:32:23.0671 1344 Boot (0x1200) (e31cce73640a2fd6bbddd3baf5617c12) \Device\Harddisk1\DR1\Partition0
18:32:23.0671 1344 \Device\Harddisk1\DR1\Partition0 - ok
18:32:23.0687 1344 Boot (0x1200) (376f42789e57b7e26ccba305b9037136) \Device\Harddisk2\DR9\Partition0
18:32:23.0687 1344 \Device\Harddisk2\DR9\Partition0 - ok
18:32:23.0687 1344 ============================================================
18:32:23.0687 1344 Scan finished
18:32:23.0687 1344 ============================================================
18:32:23.0812 2692 Detected object count: 7
18:32:23.0812 2692 Actual detected object count: 7
18:32:49.0015 2692 ALCXWDM ( UnsignedFile.Multi.Generic ) - skipped by user
18:32:49.0015 2692 ALCXWDM ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:32:49.0015 2692 LGDDCDevice ( UnsignedFile.Multi.Generic ) - skipped by user
18:32:49.0015 2692 LGDDCDevice ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:32:49.0015 2692 LGII2CDevice ( UnsignedFile.Multi.Generic ) - skipped by user
18:32:49.0015 2692 LGII2CDevice ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:32:49.0015 2692 PQNTDrv ( UnsignedFile.Multi.Generic ) - skipped by user
18:32:49.0015 2692 PQNTDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:32:49.0031 2692 PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user
18:32:49.0031 2692 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:32:49.0031 2692 sptd ( LockedFile.Multi.Generic ) - skipped by user
18:32:49.0031 2692 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
18:32:49.0031 2692 sp_rsdrv2 ( UnsignedFile.Multi.Generic ) - skipped by user
18:32:49.0031 2692 sp_rsdrv2 ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:33:09.0437 2708 Deinitialize success

Tak jsem zvědavá, co tomu řekneš:)
Díky moc moc!

VIRY.CZ

pomalý internet - fzwlnsuc

pomalý internet - fzwlnsuc

Re: pomalý internet - fzwlnsuc

Re: pomalý internet - fzwlnsuc

Re: pomalý internet - fzwlnsuc

Re: pomalý internet - fzwlnsuc

Re: pomalý internet - fzwlnsuc

Re: pomalý internet - fzwlnsuc