Klávesnice, myš dělají si, co chtějí

[Pepe]

Zdravím všechny uživatele tohoto fóra.
Včerejší dnem to vše začalo. Myslel jsem si, že můj noťas se přehřívá i přes chladicí podložku od Coolermasteru, kdy se to samo restartovalo.
Prostě z plochy bum, černá obrazovka a restart.Tak se to načetlo a do té doby, než jsem počítač restartoval to vše začalo.

Problém:
(ani nevím, jak to nejlíp popsat)

- Levý tlačítko myši, když kliknu na mozillu firefox na ploše otevře vlastnosti (dostupné přes pravé tlačítko), takže zapnu přes pravý klik mozzilu a chci vyhledat třeba V, nenapíše to V, ale otevře to Nápovědu firefoxu. Třeba zas Z ukáže Zobrazení. Backspace vůbec nic nedělá.
- Klávesnice absolutně nepíše, co má a dělá blbosti doopravdy.
- Klávesnice je "integrovaná", jedná se o noťas, připojím-li přes USB jinou, dělá to stejné. To samé platí u myši.


Takže mam podezření, že by to mohl být nějaký vir, co je pravděpodobnější.

logy:
Logfile of random's system information tool 1.06 (written by random/random)
Run by Josef at 2013-02-04 18:45:46
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 26 GB (66%) free of 40 GB
Total RAM: 3033 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:45:53, on 4.2.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Skype\Phone\Skype.exe
D:\Program Files\QIP 2012\qip.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Common Files\ArcSoft\esinter\Bin\eservutil.exe
D:\Program Files\Apache Software Foundation\Apache2.2\bin\httpd.exe
D:\Program Files\Apache Software Foundation\Apache2.2\bin\ApacheMonitor.exe
C:\Program Files\ArcSoft\TotalMedia Theatre 5\TotalMedia Server\TM Server.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
D:\Program Files\Apache Software Foundation\Apache2.2\bin\httpd.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
D:\Program Files\Steam\steam.exe
D:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Josef\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Josef.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [SRDownloader] C:\Documents and Settings\Josef\Dokumenty\Stažené soubory\SRDownloader.exe
O4 - HKCU\..\Run: [Steam] "D:\Program Files\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Infium] "D:\Program Files\QIP 2012\qip.exe" /autorun
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Monitor Apache Servers.lnk = D:\Program Files\Apache Software Foundation\Apache2.2\bin\ApacheMonitor.exe
O4 - Global Startup: TotalMedia Server.lnk = C:\Program Files\ArcSoft\TotalMedia Theatre 5\TotalMedia Server\TM Server.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 2305127517
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 2305167236
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.co ... .5.5.0.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ArcSoft Exchange Service (ADExchange) - ArcSoft, Inc. - C:\Program Files\Common Files\ArcSoft\esinter\Bin\eservutil.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apache2.2 - Apache Software Foundation - D:\Program Files\Apache Software Foundation\Apache2.2\bin\httpd.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: MySQL - Unknown owner - D:\Program.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 6524 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 66280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-01-28 170912]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-07-03 16876032]
"AdobeCS4ServiceManager"=C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-03-11 49152]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2012-10-23 5074384]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2012-08-28 129536]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2012-08-28 164352]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2012-08-28 141312]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SRDownloader"=C:\Documents and Settings\Josef\Dokumenty\Stažené soubory\SRDownloader.exe [2013-01-20 905728]
"Steam"=D:\Program Files\Steam\steam.exe [2013-02-01 1597864]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2013-01-08 18705664]
"Infium"=D:\Program Files\QIP 2012\qip.exe [2012-11-26 8376944]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
Monitor Apache Servers.lnk - D:\Program Files\Apache Software Foundation\Apache2.2\bin\ApacheMonitor.exe
TotalMedia Server.lnk - C:\Program Files\ArcSoft\TotalMedia Theatre 5\TotalMedia Server\TM Server.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2012-08-28 214528]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\Program Files\Steam\Steam.exe"="D:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe"="C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4"
"D:\Program Files\Steam\steamapps\common\Faerie Solitaire\FaerieSolitaire.exe"="D:\Program Files\Steam\steamapps\common\Faerie Solitaire\FaerieSolitaire.exe:*:Enabled:Faerie Solitaire"
"D:\Program Files\Steam\steamapps\common\Orcs Must Die!\Build\release\OrcsMustDie.exe"="D:\Program Files\Steam\steamapps\common\Orcs Must Die!\Build\release\OrcsMustDie.exe:*:Enabled:Orcs Must Die!"
"D:\Program Files\Steam\steamapps\common\sonic the hedgehog 4 ep 1\SonicLauncher.exe"="D:\Program Files\Steam\steamapps\common\sonic the hedgehog 4 ep 1\SonicLauncher.exe:*:Enabled:SONIC THE HEDGEHOG 4 Episode I"
"D:\Program Files\Steam\steamapps\common\Data Jammers FastForward\fastforward.exe"="D:\Program Files\Steam\steamapps\common\Data Jammers FastForward\fastforward.exe:*:Enabled:Data Jammers: FastForward"
"D:\Program Files\Steam\steamapps\bkpepe\counter-strike\hl.exe"="D:\Program Files\Steam\steamapps\bkpepe\counter-strike\hl.exe:*:Enabled:Counter-Strike"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======File associations======

.txt - open - "D:\Program Files\PSPad editor\PSPad.exe" "%1"

======List of files/folders created in the last 1 months======

2013-02-04 18:45:46 ----D---- C:\rsit
2013-02-04 18:45:46 ----D---- C:\Program Files\trend micro
2013-02-03 23:41:23 ----A---- C:\ComboFix.txt
2013-02-03 23:25:53 ----D---- C:\ComboFix
2013-02-03 23:15:35 ----D---- C:\WINDOWS\temp
2013-02-03 23:09:04 ----A---- C:\Boot.bak
2013-02-03 23:09:02 ----RASHD---- C:\cmdcons
2013-02-03 23:02:30 ----A---- C:\WINDOWS\zip.exe
2013-02-03 23:02:30 ----A---- C:\WINDOWS\SWXCACLS.exe
2013-02-03 23:02:30 ----A---- C:\WINDOWS\SWSC.exe
2013-02-03 23:02:30 ----A---- C:\WINDOWS\SWREG.exe
2013-02-03 23:02:30 ----A---- C:\WINDOWS\sed.exe
2013-02-03 23:02:30 ----A---- C:\WINDOWS\PEV.exe
2013-02-03 23:02:30 ----A---- C:\WINDOWS\NIRCMD.exe
2013-02-03 23:02:30 ----A---- C:\WINDOWS\MBR.exe
2013-02-03 23:02:30 ----A---- C:\WINDOWS\grep.exe
2013-02-03 23:02:19 ----D---- C:\Qoobox
2013-02-03 23:02:07 ----D---- C:\WINDOWS\erdnt
2013-02-03 22:55:43 ----D---- C:\WINDOWS\CSC
2013-02-03 21:52:06 ----A---- C:\WINDOWS\ntbtlog.txt
2013-02-03 14:54:40 ----D---- C:\Program Files\Common Files\Skype
2013-02-03 14:54:29 ----RD---- C:\Program Files\Skype
2013-01-31 15:50:32 ----D---- C:\Documents and Settings\Josef\Data aplikací\Softland
2013-01-31 15:50:25 ----A---- C:\WINDOWS\system32\dopdfmn7.dll
2013-01-31 15:50:25 ----A---- C:\WINDOWS\system32\dopdfmi7.dll
2013-01-31 15:50:21 ----D---- C:\Program Files\Softland
2013-01-28 13:51:53 ----A---- C:\WINDOWS\system32\javaws.exe
2013-01-28 13:51:53 ----A---- C:\WINDOWS\system32\javaw.exe
2013-01-28 13:51:52 ----A---- C:\WINDOWS\system32\java.exe
2013-01-28 13:25:57 ----D---- C:\Program Files\Common Files\Java
2013-01-28 13:25:45 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-01-23 16:51:59 ----A---- C:\WINDOWS\apnschost.exe
2013-01-23 16:51:54 ----A---- C:\WINDOWS\system32\msvcr100d.dll
2013-01-22 12:29:17 ----D---- C:\Documents and Settings\Josef\Data aplikací\Media Player Classic
2013-01-22 11:09:33 ----D---- C:\Program Files\ReClock
2013-01-21 18:25:24 ----D---- C:\Documents and Settings\Josef\Data aplikací\ArcSoft
2013-01-21 18:24:03 ----D---- C:\Program Files\Common Files\ArcSoft
2013-01-21 18:24:02 ----D---- C:\Documents and Settings\All Users\Data aplikací\ArcSoft
2013-01-21 18:22:50 ----D---- C:\Program Files\ArcSoft
2013-01-09 21:11:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2757638$
2013-01-06 13:31:01 ----D---- C:\Documents and Settings\Josef\Data aplikací\GarenaPlus
2013-01-06 13:30:20 ----D---- C:\Documents and Settings\All Users\Data aplikací\GarenaMessenger

======List of files/folders modified in the last 1 months======

2013-02-04 18:45:46 ----RD---- C:\Program Files
2013-02-04 18:42:33 ----D---- C:\WINDOWS\system32\CatRoot2
2013-02-04 09:17:17 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-02-04 09:12:40 ----D---- C:\Documents and Settings\Josef\Data aplikací\Skype
2013-02-03 23:41:28 ----D---- C:\WINDOWS\system32\drivers
2013-02-03 23:37:12 ----D---- C:\WINDOWS
2013-02-03 23:37:12 ----A---- C:\WINDOWS\system.ini
2013-02-03 23:33:34 ----D---- C:\WINDOWS\system32
2013-02-03 23:33:33 ----RSHDC---- C:\WINDOWS\system32\dllcache
2013-02-03 23:32:01 ----D---- C:\WINDOWS\AppPatch
2013-02-03 23:31:57 ----D---- C:\Program Files\Common Files
2013-02-03 23:25:09 ----D---- C:\WINDOWS\Prefetch
2013-02-03 23:09:04 ----RASH---- C:\boot.ini
2013-02-03 21:52:53 ----D---- C:\Documents and Settings
2013-02-03 14:54:46 ----SHD---- C:\WINDOWS\Installer
2013-02-03 14:54:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2013-02-03 14:54:45 ----D---- C:\Config.Msi
2013-02-03 14:51:39 ----D---- C:\WINDOWS\Minidump
2013-01-29 17:52:01 ----D---- C:\Program Files\Microsoft Silverlight
2013-01-28 13:51:03 ----D---- C:\Program Files\Java
2013-01-28 13:25:31 ----A---- C:\WINDOWS\system32\npDeployJava1.dll
2013-01-28 13:25:31 ----A---- C:\WINDOWS\system32\deployJava1.dll
2013-01-27 10:15:15 ----D---- C:\Documents and Settings\Josef\Data aplikací\Mumble
2013-01-23 16:51:58 ----D---- C:\Program Files\Shifters Anti-Cheat
2013-01-22 18:25:47 ----RSD---- C:\WINDOWS\Fonts
2013-01-22 12:24:51 ----D---- C:\Program Files\K-Lite Codec Pack
2013-01-21 18:25:09 ----D---- C:\WINDOWS\ehome
2013-01-20 12:46:08 ----D---- C:\WINDOWS\WinSxS
2013-01-20 12:46:02 ----HD---- C:\WINDOWS\inf
2013-01-20 12:46:02 ----D---- C:\WINDOWS\system32\DirectX
2013-01-20 07:29:00 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-01-19 23:02:31 ----D---- C:\WINDOWS\security
2013-01-16 18:23:06 ----HD---- C:\WINDOWS\$hf_mig$
2013-01-14 19:00:00 ----A---- C:\WINDOWS\system32\ff_vfw.dll
2013-01-10 08:51:57 ----RSD---- C:\WINDOWS\assembly
2013-01-10 08:51:57 ----D---- C:\WINDOWS\Microsoft.NET
2013-01-09 21:21:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-01-09 21:11:10 ----A---- C:\WINDOWS\imsins.BAK
2013-01-09 21:08:59 ----A---- C:\WINDOWS\system32\MRT.exe
2013-01-09 16:55:56 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2013-01-06 10:14:02 ----D---- C:\WINDOWS\system32\ReinstallBackups
2013-01-06 10:13:54 ----D---- C:\Program Files\Realtek
2013-01-06 06:33:55 ----A---- C:\WINDOWS\system32\mshtml.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 ArcSec;ArcSec; C:\WINDOWS\system32\drivers\ArcSec.sys [2011-11-10 198720]
R1 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2012-10-08 159832]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2012-10-08 121216]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2012-10-08 62512]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2008-04-14 12032]
R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-08-14 74720]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2012-10-08 149568]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-14 13952]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2012-10-08 40376]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2012-08-28 2019200]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-07-03 4745216]
R3 NETwNx32;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETwNx32.sys [2012-01-23 7477760]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2012-11-21 373264]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 cpudrv;cpudrv; \??\C:\Program Files\SystemRequirementsLab\cpudrv.sys []
S3 GGSAFERDriver;GGSAFER Driver; \??\D:\Program Files\Garena Plus\Room\safedrv.sys []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2007-03-08 49920]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2007-03-08 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2007-03-08 21568]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 NETw5x32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw5x32.sys [2008-11-24 3636864]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 USBPNPA;USB PnP Sound Device Interface; C:\WINDOWS\system32\drivers\CM108.sys [2010-08-12 1513984]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2005-01-28 18944]
S4 atapi;atapi; C:\WINDOWS\system32\drivers\atapi.sys [2008-04-14 96512]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ADExchange;ArcSoft Exchange Service; C:\Program Files\Common Files\ArcSoft\esinter\Bin\eservutil.exe [2012-08-14 43624]
R2 Apache2.2;Apache2.2; D:\Program Files\Apache Software Foundation\Apache2.2\bin\httpd.exe [2012-01-28 20549]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2012-10-23 1329304]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-01-28 170912]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-01-08 161536]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-09 251400]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2012-07-15 655624]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-01-19 115608]
S3 MySQL;MySQL; D:\Program Files\MySQL\MySQL Server 5.5\bin\mysqld --defaults-file=D:\Program Files\MySQL\appdata\my.ini MySQL []
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2011-03-16 407336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

[Pepe]

ComboFix

13-02-03.03 - Josef 03.02.2013 23:28:10.2.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.3033.2099 [GMT 1:00]
Spuštěný z: c:\documents and settings\Administrator\Dokumenty\Sta×enÚ soubory\ComboFix.exe
AV: ESET Smart Security 6.0 *Enabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *Enabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
* Rezidentní štít AV je zapnutý
.
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
Nakažená kopie c:\windows\system32\userinit.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\erdnt\cache\userinit.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-01-03 do 2013-02-03 )))))))))))))))))))))))))))))))
.
.
2013-02-03 20:52 . 2013-02-03 20:52 -------- d-----w- c:\documents and settings\Administrator
2013-02-03 13:54 . 2013-02-03 13:54 -------- d-----w- c:\program files\Common Files\Skype
2013-02-03 13:54 . 2013-02-03 13:54 -------- d-----r- c:\program files\Skype
2013-02-01 16:26 . 2013-02-01 16:26 -------- d-----w- c:\windows\system32\config\systemprofile\Data aplikací\Softland
2013-01-31 14:50 . 2013-01-31 14:50 -------- d-----w- c:\documents and settings\LocalService\Data aplikací\Softland
2013-01-31 14:50 . 2013-01-31 14:50 -------- d-----w- c:\documents and settings\Josef\Data aplikací\Softland
2013-01-31 14:50 . 2012-10-03 11:50 23944 ----a-w- c:\windows\system32\dopdfmn7.dll
2013-01-31 14:50 . 2012-10-03 11:50 20872 ----a-w- c:\windows\system32\dopdfmi7.dll
2013-01-31 14:50 . 2013-01-31 14:50 -------- d-----w- c:\program files\Softland
2013-01-28 12:25 . 2013-01-28 12:25 -------- d-----w- c:\program files\Common Files\Java
2013-01-28 12:25 . 2013-01-28 12:25 143872 ----a-w- c:\windows\system32\javacpl.cpl
2013-01-28 12:25 . 2013-01-28 12:25 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-01-23 15:51 . 2013-01-23 15:52 68608 ----a-w- c:\windows\apnschost.exe
2013-01-23 15:51 . 2013-01-23 15:51 1467200 ----a-w- c:\windows\system32\msvcr100d.dll
2013-01-22 11:29 . 2013-01-22 11:29 -------- d-----w- c:\documents and settings\Josef\Data aplikací\Media Player Classic
2013-01-22 10:09 . 2013-01-22 10:09 -------- d-----w- c:\program files\ReClock
2013-01-21 17:29 . 2013-01-21 17:29 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\ArcSoft
2013-01-21 17:25 . 2013-01-21 17:25 -------- d-----w- c:\documents and settings\Josef\Data aplikací\ArcSoft
2013-01-21 17:24 . 2013-01-21 17:24 -------- d-----w- c:\documents and settings\Josef\Local Settings\Data aplikací\ArcSoft
2013-01-21 17:24 . 2013-01-21 17:24 -------- d-----w- c:\program files\Common Files\ArcSoft
2013-01-21 17:24 . 2013-01-21 17:24 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ArcSoft
2013-01-21 17:22 . 2013-01-21 17:22 -------- d-----w- c:\program files\ArcSoft
2013-01-21 17:22 . 2013-01-21 17:22 -------- d-----w- c:\documents and settings\Josef\Local Settings\Data aplikací\Downloaded Installations
2013-01-06 12:31 . 2013-01-08 09:02 -------- d-----w- c:\documents and settings\Josef\Data aplikací\GarenaPlus
2013-01-06 12:30 . 2013-01-08 09:02 -------- d-----w- c:\documents and settings\All Users\Data aplikací\GarenaMessenger
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-01-28 12:25 . 2012-07-15 08:20 859552 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-01-28 12:25 . 2012-07-15 08:20 780192 ----a-w- c:\windows\system32\deployJava1.dll
2013-01-14 18:00 . 2012-12-17 10:35 112640 ----a-w- c:\windows\system32\ff_vfw.dll
2013-01-09 15:55 . 2012-07-15 08:01 74248 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-01-09 15:55 . 2012-07-15 08:01 697864 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-12-16 12:23 . 2008-04-14 12:00 290560 ----a-w- c:\windows\system32\atmfd.dll
2012-11-21 02:59 . 2012-07-14 21:43 373264 ----a-w- c:\windows\system32\drivers\Rtenicxp.sys
2012-11-13 11:55 . 2008-04-14 12:00 1866368 ----a-w- c:\windows\system32\win32k.sys
2012-11-06 02:00 . 2008-04-14 12:00 1371648 ----a-w- c:\windows\system32\msxml6.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[-] 2012-07-14 . 1E603EA2A3FDBAE9E5B88A8CB3C03124 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SRDownloader"="c:\documents and settings\Josef\Dokumenty\Stažené soubory\SRDownloader.exe" [2013-01-20 905728]
"Steam"="d:\program files\Steam\steam.exe" [2013-02-01 1597864]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2013-01-08 18705664]
"Infium"="d:\program files\QIP 2012\qip.exe" [2012-11-26 8376944]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2008-07-03 16876032]
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-03-11 49152]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2012-10-23 5074384]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-08-28 129536]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-08-28 164352]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-08-28 141312]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2007-3-11 210520]
Monitor Apache Servers.lnk - d:\program files\Apache Software Foundation\Apache2.2\bin\ApacheMonitor.exe [2012-1-28 41051]
TotalMedia Server.lnk - c:\program files\ArcSoft\TotalMedia Theatre 5\TotalMedia Server\TM Server.exe [2010-12-20 519744]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"UIHost"=hex(2):6c,6f,67,6f,6e,75,69,2e,65,78,65,00,00
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"d:\\Program Files\\Steam\\Steam.exe"=
"c:\\Program Files\\Common Files\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=
"d:\\Program Files\\Steam\\steamapps\\common\\Faerie Solitaire\\FaerieSolitaire.exe"=
"d:\\Program Files\\Steam\\steamapps\\common\\Orcs Must Die!\\Build\\release\\OrcsMustDie.exe"=
"d:\\Program Files\\Steam\\steamapps\\common\\sonic the hedgehog 4 ep 1\\SonicLauncher.exe"=
"d:\\Program Files\\Steam\\steamapps\\common\\Data Jammers FastForward\\fastforward.exe"=
"d:\\Program Files\\Steam\\steamapps\\bkpepe\\counter-strike\\hl.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5353:TCP"= 5353:TCP:Adobe CSI CS4
"3306:TCP"= 3306:TCP:MySQL
.
R1 ArcSec;ArcSec;c:\windows\system32\drivers\ArcSec.sys [10.11.2011 11:10 198720]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [14.6.2012 15:33 121216]
R2 ADExchange;ArcSoft Exchange Service;c:\program files\Common Files\ArcSoft\esinter\Bin\eservutil.exe [14.8.2012 16:31 43624]
R2 Apache2.2;Apache2.2;d:\program files\Apache Software Foundation\Apache2.2\bin\httpd.exe [28.1.2012 10:16 20549]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [23.10.2012 17:38 1329304]
R3 NETwNx32;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows XP 32 Bit;c:\windows\system32\drivers\NETwNx32.sys [23.7.2012 17:09 7477760]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [8.1.2013 12:55 161536]
S3 cpudrv;cpudrv;c:\program files\SystemRequirementsLab\cpudrv.sys [2.6.2011 10:08 11336]
S3 GGSAFERDriver;GGSAFER Driver;\??\d:\program files\Garena Plus\Room\safedrv.sys --> d:\program files\Garena Plus\Room\safedrv.sys [?]
S3 USBPNPA;USB PnP Sound Device Interface;c:\windows\system32\drivers\CM108.sys [15.7.2012 10:07 1513984]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Obsah adresáře 'Naplánované úlohy'
.
2013-02-03 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-15 15:55]
.
.
------- Doplňkový sken -------
.
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
FF - ProfilePath - c:\documents and settings\Josef\Data aplikací\Mozilla\Firefox\Profiles\yvaq40yz.default\
FF - ExtSQL: 2013-01-28 13:51; {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}; d:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
.
.
------- Asociace souborů -------
.
txtfile="d:\program files\PSPad editor\PSPad.exe" "%1"
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-02-03 23:37
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\MySQL]
"ImagePath"="\"d:\program files\MySQL\MySQL Server 5.5\bin\mysqld\" --defaults-file=\"d:\program files\MySQL\appdata\my.ini\" MySQL"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1612)
c:\program files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll
.
- - - - - - - > 'explorer.exe'(3892)
c:\windows\system32\webcheck.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Java\jre7\bin\jqs.exe
c:\windows\system32\wdfmgr.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\wbem\wmiapsrv.exe
.
**************************************************************************
.
Celkový čas: 2013-02-03 23:41:22 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-02-03 22:41
ComboFix2.txt 2013-02-03 22:15
.
Před spuštěním: Volných bajtů: 26 042 773 504
Po spuštění: Volných bajtů: 27 581 698 048
.
- - End Of File - - 26647CBD327EEEDED6DF5D0EB60E4E4D

[Pepe]

Zapomnel jsem dodat, ze to dela ve vsech typech nouzovych rezimu..

// Docela by se hodil spoiler pro logy a omlouvam se za code

[Pavuk29]

...

// Docela by se hodil spoiler pro logy...

Co je to?

[vyosek]

Zdravim a pekny den preji

Proc myslite ze clanek v pravidlech fora se jmenuje "Pravidla a skutečnosti - čtěte před položením dotazu" http://forum.viry.cz/viewtopic.php?f=12&t=5601

2. Před položením dotazu použijte tlačítko Hledat. Možná již někdo problém podobným Vašemu řešil. Pokud ale ve vyřešeném tématu budou aplikovány různé utility\aplikace, nespouštějte je. Utility se používají až na pokyn rádce, jelikož mohou mazat stopy po havěti a v rukou ne-oborníka může mít jejich použití nedozírné následky.

3. Zvláště utilitu ComboFix nespouštějte i když Vám mi poradil kamarád\nějaký rádoby odborný web. Naše fórum je jediné z CZ-SK antivirových fór, která mají právo luštit logy z ComboFixu a mámě též plnou podporu autora této utility a přístup k nejaktuálnějším informacím a návodům.

Co se tyce ComboFixu, ktery jste pouzil, tak na zaklade licence a pravidel fora ptam, umite s nim pracovat (spusteni, rozlusteni logu, napsani skriptu)?

licencni podminky hovori jasne "Nikdy by nemel byt pouzit v prostredi bez dozoru zkusene osoby"


Nebezpeci CFka

• Je urcen primarne pro radce - jeho svevolnym pouzitim ztracite narok na podporu
• Maze stopy po haveti, takze v logu z RSIT neni nic videt
• Jeho log je treba dolustit, jelikoz neumi smazat vse - to ovsem tezko zvladnete pokud k tomu nejste vyskolen
• CF muze mit bug = sunda Vam system, pokud nevite kam co uklada, jak co obnovit, mate system v kytkam a ceka Vas reinstal
• CF taky bohuzel prozatim nekontroluje nektere dulezite knihovny (napr. hal.dll) - ty treba mazou nektere typy haveti (napr. angela) - smaze Vam po restartu hal.dll = nenajede Vam system a jste o radek vyse = reinstal

Ohledne tagu Spoiler tady uz tema je a bylo zamitnuto http://forum.viry.cz/viewtopic.php?f=7& ... it=spoiler

[Pepe]

Chapu Vas prispevek, ale hledat muj problem sem tady zkousel, ale neuspel jsem, tak jsem zalozil temu.
Spoiler by byl velice uzitecny pro uzivatele na tbletu, telefonu.
Combofix - psat scripty neumim sice, ale napsany script tam vlozim.
Nevi, co s tim, ale ten pocitac reinstalluju. Protoze tohle nevede ikam, prosim o lock

[vyosek]

Zalozeni tematu je OK, ale svevolne pouziti CF ne

My tu opravujeme PC\ntb ne tablety, mobily...Potrebujeme, at je to prehledne i pro nas, my to tu lustime...


Na vasi zadost