Kontrola logu - nefunkční internet

Zpráva

Hurtak91 · #1 Příspěvek od **Hurtak91** » 13 srp 2013 19:40

Dobrý den,
prosím o kontrolu logu
Logfile of random's system information tool 1.09 (written by random/random)
Run by Mika at 2013-08-01 12:59:22
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 19 GB (49%) free of 38 GB
Total RAM: 1279 MB (37% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:59:27, on 1.8.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Norton 360\Engine\20.1.0.24\ccSvcHst.exe
C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ZyDAS Technology Corporation\ZyDAS_802.11g_Utility\ZDWlan.exe
C:\Documents and Settings\Mika\Data aplikací\Dropbox\bin\Dropbox.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Norton 360\Engine\20.1.0.24\ccSvcHst.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Mika\Dokumenty\Stažené soubory\hijackthis.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\Mika\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Mika.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton 360\Engine\20.1.0.24\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton 360\Engine\20.1.0.24\IPS\IPSBHO.DLL
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\20.1.0.24\coIEPlg.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [KB976002-v5] rundll32.exe advpack.dll,LaunchINFSection OPMWXPUP.inf,BrowserChoiceGoo (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Dropbox.lnk = ?
O4 - Global Startup: ZDWLan Utility.lnk = C:\Program Files\ZyDAS Technology Corporation\ZyDAS_802.11g_Utility\ZDWlan.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files\Norton 360\Engine\20.1.0.24\ccSvcHst.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe

--
End of file - 4848 bytes

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Mika\Data aplikací\Mozilla\Firefox\Profiles\7dhbqcis.default

prefs.js - "browser.startup.homepage" - "www.google.cz"
prefs.js - "keyword.URL" - "http://search.conduit.com/ResultsExt.as ... =TB_TFS&q="

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{BBDA0591-3099-440a-AA10-41764D9DB4DB}"=C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\IPSFFPlgn\
"{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}"=C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\coFFPlgn\

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.7.700.224 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.21.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\WINDOWS\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

C:\Documents and Settings\Mika\Data aplikací\Mozilla\Firefox\Profiles\7dhbqcis.default\searchplugins\
conduit.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files\Norton 360\Engine\20.1.0.24\coIEPlg.dll [2012-08-21 497048]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - C:\Program Files\Norton 360\Engine\20.1.0.24\IPS\IPSBHO.DLL [2012-08-10 387040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files\Norton 360\Engine\20.1.0.24\coIEPlg.dll [2012-08-21 497048]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-08-11 950750]
"ATICCC"=C:\Program Files\ATI Technologies\ATI.ACE\cli.exe [2006-01-02 45056]
"Cmaudio"=RunDll32 cmicnfg.cpl,CMICtrlWnd []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2013-04-23 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICCC]
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe [2006-01-02 45056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\C-Media Mixer]
Mixer.exe /startup []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2013-08-11 3666944]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DWPersistentQueuedReporting]
C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [2013-04-23 29696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\XboxStat]
C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2013-08-11 709392]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
ZDWLan Utility.lnk - C:\Program Files\ZyDAS Technology Corporation\ZyDAS_802.11g_Utility\ZDWlan.exe

C:\Documents and Settings\Mika\Nabídka Start\Programy\Po spuštění
Dropbox.lnk - C:\Documents and Settings\Mika\Data aplikací\Dropbox\bin\Dropbox.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-05-03 61440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2011-01-25 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\SopCast\SopCast.exe"="C:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application"
"C:\Documents and Settings\Mika\Data aplikací\uTorrent\uTorrent.exe"="C:\Documents and Settings\Mika\Data aplikací\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Documents and Settings\Mika\Data aplikací\Dropbox\bin\Dropbox.exe"="C:\Documents and Settings\Mika\Data aplikací\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox"
"C:\Program Files\HTC\HTC Sync Manager\HTCSyncManager.exe"="C:\Program Files\HTC\HTC Sync Manager\HTCSyncManager.exe:*:Enabled:HTCSyncManager"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\HTC\HTC Sync Manager\HTCSyncManager.exe"="C:\Program Files\HTC\HTC Sync Manager\HTCSyncManager.exe:*:Enabled:HTCSyncManager"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv

======List of files/folders created in the last 1 month======

2013-08-11 11:14:18 ----A---- C:\WINDOWS\system32\drivers\SYMEVENT.SYS
2013-08-11 11:14:17 ----D---- C:\Program Files\Symantec
2013-08-11 11:14:17 ----D---- C:\Program Files\Common Files\Symantec Shared
2013-08-11 11:10:21 ----D---- C:\WINDOWS\system32\drivers\N360
2013-08-11 11:10:00 ----D---- C:\Program Files\Norton 360
2013-08-11 11:09:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\Norton
2013-08-11 11:09:39 ----D---- C:\Program Files\NortonInstaller
2013-08-11 11:09:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\NortonInstaller
2013-08-11 09:57:29 ----RA---- C:\WINDOWS\system32\drivers\vinyl97.sys
2013-08-11 09:57:10 ----D---- C:\Program Files\VIA
2013-08-11 09:19:56 ----A---- C:\WINDOWS\wget.exe
2013-08-11 09:19:56 ----A---- C:\WINDOWS\sleep.exe
2013-08-11 09:19:56 ----A---- C:\WINDOWS\md5sum.exe
2013-08-11 09:19:56 ----A---- C:\WINDOWS\fastboot.exe
2013-08-11 09:19:56 ----A---- C:\WINDOWS\AdbWinUsbApi.dll
2013-08-11 09:19:56 ----A---- C:\WINDOWS\AdbWinApi.dll
2013-08-11 09:19:56 ----A---- C:\WINDOWS\adb.exe
2013-08-02 14:43:22 ----A---- C:\WINDOWS\system32\drivers\ANDROIDUSB.sys
2013-08-02 14:34:59 ----D---- C:\Documents and Settings\Mika\Data aplikací\AdbDriverInstaller
2013-08-02 14:27:39 ----D---- C:\ruu_log
2013-08-02 10:35:51 ----D---- C:\android-sdk-windows
2013-08-02 10:25:58 ----D---- C:\a
2013-08-02 10:15:43 ----A---- C:\WINDOWS\system32\drivers\usb8023x.sys
2013-08-02 10:15:43 ----A---- C:\WINDOWS\system32\drivers\rndismpx.sys
2013-08-02 10:07:45 ----D---- C:\Documents and Settings\Mika\Data aplikací\ATI
2013-08-02 10:01:47 ----A---- C:\WINDOWS\system32\ati2sgag.exe
2013-08-02 10:01:25 ----D---- C:\Program Files\ATI Technologies
2013-08-02 10:00:44 ----A---- C:\WINDOWS\system32\d3d8caps.dat
2013-08-02 09:56:00 ----A---- C:\WINDOWS\system32\ati3d1ag.dll
2013-08-02 09:55:59 ----A---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2013-08-02 09:54:29 ----A---- C:\WINDOWS\WININIT.INI
2013-08-02 09:23:06 ----A---- C:\WINDOWS\system32\lMMLDeleteUserData42107612FX.tmp
2013-08-01 12:59:23 ----D---- C:\Program Files\trend micro
2013-08-01 11:15:42 ----ASH---- C:\hiberfil.sys
2013-08-01 11:01:23 ----A---- C:\WINDOWS\system32\d3d9caps.dat
2013-08-01 10:55:05 ----A---- C:\WINDOWS\ntbtlog.txt
2013-07-10 19:56:42 ----D---- C:\Documents and Settings\Mika\Data aplikací\HTC
2013-07-10 19:56:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\HTC
2013-07-10 19:56:27 ----D---- C:\d
2013-07-10 19:38:16 ----D---- C:\Documents and Settings\Mika\Data aplikací\Apple Computer
2013-07-10 19:37:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\Motorola
2013-07-10 19:35:42 ----D---- C:\Program Files\Spirent Communications
2013-07-10 19:35:42 ----D---- C:\Program Files\HTC
2013-07-10 17:38:16 ----D---- C:\Android USB Driver
2013-07-07 13:37:53 ----D---- C:\Program Files\Dropbox
2013-07-07 13:32:50 ----D---- C:\Program Files\Common Files\Adobe
2013-07-07 13:32:50 ----D---- C:\Program Files\Adobe
2013-07-07 13:32:44 ----D---- C:\Documents and Settings\Mika\Data aplikací\Dropbox

======List of files/folders modified in the last 1 month======

2013-08-11 16:28:56 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-08-11 14:59:24 ----A---- C:\WINDOWS\system32\ZyDelReg.exe
2013-08-11 14:49:58 ----A---- C:\WINDOWS\system32\javaws.exe
2013-08-11 14:49:38 ----A---- C:\WINDOWS\system32\javaw.exe
2013-08-11 14:49:37 ----A---- C:\WINDOWS\system32\java.exe
2013-08-11 14:46:14 ----A---- C:\WINDOWS\system32\FlashPlayerInstaller.exe
2013-08-11 14:45:14 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2013-08-11 14:44:35 ----A---- C:\WINDOWS\system32\DivXsm.exe
2013-08-11 14:42:08 ----A---- C:\WINDOWS\system32\Ati2mdxx.exe
2013-08-11 14:00:01 ----A---- C:\WINDOWS\zip.exe
2013-08-11 13:59:56 ----A---- C:\WINDOWS\SWXCACLS.exe
2013-08-11 13:59:55 ----A---- C:\WINDOWS\SWSC.exe
2013-08-11 13:59:54 ----A---- C:\WINDOWS\SWREG.exe
2013-08-11 13:59:53 ----A---- C:\WINDOWS\sed.exe
2013-08-11 13:59:51 ----A---- C:\WINDOWS\PEV.exe
2013-08-11 13:59:48 ----A---- C:\WINDOWS\NIRCMD.exe
2013-08-11 13:59:39 ----A---- C:\WINDOWS\mixer.exe
2013-08-11 13:59:23 ----A---- C:\WINDOWS\MBR.exe
2013-08-11 13:59:21 ----A---- C:\WINDOWS\grep.exe
2013-08-11 13:59:17 ----D---- C:\totalcmd
2013-08-11 13:11:11 ----D---- C:\Program Files\DAEMON Tools Lite
2013-08-11 11:35:19 ----D---- C:\Program Files\WinRAR
2013-08-11 11:34:14 ----D---- C:\WINDOWS\system32\CatRoot2
2013-08-11 11:31:08 ----A---- C:\WINDOWS\cmuninst.exe
2013-08-11 11:30:02 ----A---- C:\WINDOWS\iun6002.exe
2013-08-11 11:29:40 ----A---- C:\WINDOWS\system32\cmirmdrv.exe
2013-08-11 11:14:42 ----SHD---- C:\System Volume Information
2013-08-11 11:14:18 ----D---- C:\WINDOWS\system32\drivers
2013-08-11 11:14:17 ----D---- C:\Program Files\Common Files
2013-08-11 11:11:07 ----D---- C:\WINDOWS\Debug
2013-08-11 11:00:11 ----D---- C:\WINDOWS\system32\config
2013-08-11 10:56:24 ----D---- C:\Program Files\Codec Pack - All In 1
2013-08-11 10:56:23 ----D---- C:\Documents and Settings\Mika\Data aplikací\uTorrent
2013-08-11 10:41:27 ----A---- C:\WINDOWS\CMMIXER.INI
2013-08-11 10:26:25 ----D---- C:\WINDOWS\system
2013-08-11 10:25:31 ----RSHDC---- C:\WINDOWS\system32\dllcache
2013-08-11 10:25:18 ----HD---- C:\WINDOWS\inf
2013-08-11 10:25:04 ----D---- C:\WINDOWS\system32\CatRoot
2013-08-11 10:22:58 ----SHD---- C:\WINDOWS\Installer
2013-08-11 09:57:48 ----HD---- C:\Program Files\InstallShield Installation Information
2013-08-04 15:53:54 ----D---- C:\Documents and Settings\Mika\Data aplikací\vlc
2013-08-02 14:43:25 ----DC---- C:\WINDOWS\system32\DRVSTORE
2013-08-02 14:42:49 ----D---- C:\WINDOWS\Prefetch
2013-08-02 10:41:49 ----SD---- C:\WINDOWS\Tasks
2013-08-02 10:16:52 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-08-02 09:23:30 ----D---- C:\WINDOWS\WinSxS
2013-08-01 12:59:23 ----RD---- C:\Program Files
2013-08-01 11:32:44 ----D---- C:\WINDOWS\system32
2013-08-01 11:23:00 ----D---- C:\WINDOWS\temp
2013-08-01 11:21:22 ----D---- C:\WINDOWS
2013-08-01 11:18:54 ----D---- C:\WINDOWS\Minidump
2013-08-01 10:55:21 ----D---- C:\Documents and Settings
2013-08-01 10:49:29 ----A---- C:\WINDOWS\DUMP67a3.tmp
2013-08-01 10:37:55 ----A---- C:\WINDOWS\system.ini
2013-07-13 18:36:14 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2013-07-13 18:36:13 ----D---- C:\WINDOWS\system32\drivers\UMDF
2013-07-10 19:37:11 ----RSD---- C:\WINDOWS\Fonts
2013-07-10 19:35:05 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-07-07 16:39:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2013-07-07 16:38:22 ----SD---- C:\Documents and Settings\Mika\Data aplikací\Microsoft
2013-07-07 16:38:22 ----D---- C:\Documents and Settings\Mika\Data aplikací\Adobe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 SymDS;Symantec Data Store; C:\WINDOWS\system32\drivers\N360\1401000.018\SYMDS.SYS [2012-07-27 368288]
R0 SymEFA;Symantec Extended File Attributes; C:\WINDOWS\system32\drivers\N360\1401000.018\SYMEFA.SYS [2012-08-07 926880]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2011-01-25 77568]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2011-01-25 41600]
R1 BHDrvx86;BHDrvx86; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\BASHDefs\20120815.002\BHDrvx86.sys []
R1 ccSet_N360;Norton 360 Settings Manager; C:\WINDOWS\system32\drivers\N360\1401000.018\ccSetx86.sys [2012-08-06 134304]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2013-05-24 242240]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL); C:\WINDOWS\system32\drivers\N360\1401000.018\SRTSPX.SYS [2012-05-24 32888]
R1 SymIRON;Symantec Iron Driver; C:\WINDOWS\system32\drivers\N360\1401000.018\Ironx86.SYS [2012-07-27 175264]
R1 SYMTDI;Symantec Network Dispatch Driver; C:\WINDOWS\system32\drivers\N360\1401000.018\SYMTDI.SYS [2012-07-22 394656]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2008-04-14 12032]
R2 rspndr;Odpovídající zařízení zjišťování topologie linkové vrstvy; C:\WINDOWS\system32\DRIVERS\rspndr.sys [2011-01-25 62848]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2006-05-03 1540608]
R3 cmpci;C-Media PCI Audio Driver (WDM); C:\WINDOWS\system32\drivers\cmaudio.sys [2002-07-16 379726]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys []
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IDSxpx86;IDSxpx86; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\IPSDefs\20120811.001\IDSxpx86.sys []
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2011-01-25 12160]
R3 SymEvent;SymEvent; \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS []
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2011-01-25 32384]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 ZD1211BU(ZyDAS);ZyDAS ZD1211B IEEE 802.11 b+g Wireless LAN Driver (USB)(ZyDAS); C:\WINDOWS\system32\DRIVERS\zd1211Bu.sys [2006-10-05 488960]
R3 ZDPSp50;ZDPSp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\ZDPSp50.sys [2004-10-25 17664]
S1 DumpDrv;Crash Dump Driver; C:\WINDOWS\system32\drivers\DumpDrv.sys [2011-01-25 9472]
S3 catchme;catchme; \??\C:\DOCUME~1\Mika\LOCALS~1\Temp\catchme.sys []
S3 cmuda;C-Media WDM Audio Interface; C:\WINDOWS\system32\drivers\cmuda.sys [2004-08-23 821760]
S3 HTCAND32;HTC Device Driver; C:\WINDOWS\System32\Drivers\ANDROIDUSB.sys [2009-06-10 24576]
S3 htcnprot;HTC NDIS Protocol Driver; C:\WINDOWS\system32\DRIVERS\htcnprot.sys [2012-12-07 21248]
S3 NAVENG;NAVENG; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20130811.006\NAVENG.SYS []
S3 NAVEX15;NAVEX15; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20130811.006\NAVEX15.SYS []
S3 RimUsb;zařízení BlackBerry Smartphone; C:\WINDOWS\System32\Drivers\RimUsb.sys [2008-04-16 22784]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2008-04-13 20992]
S3 SRTSP;Symantec Real Time Storage Protection; C:\WINDOWS\system32\drivers\N360\1401000.018\SRTSP.SYS [2012-08-10 585888]
S3 usb_rndisx;Adaptér USB RNDIS; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2008-04-13 12800]
S3 VIAudio;Vinyl AC'97 Audio Controller (WDM); C:\WINDOWS\system32\drivers\vinyl97.sys [2007-06-27 207488]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2011-01-25 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2011-01-25 82944]
S3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\WINDOWS\system32\DRIVERS\xusb21.sys [2009-09-09 62424]
S4 exFat;exFat; C:\WINDOWS\system32\drivers\exFat.sys [2011-01-25 133632]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-05-03 413696]
R2 N360;Norton 360; C:\Program Files\Norton 360\Engine\20.1.0.24\ccSvcHst.exe [2012-08-18 143928]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [2012-12-07 167424]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2011-01-25 14848]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2013-08-11 519752]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-04-23 124416]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-11 250076]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-04-23 29184]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2013-04-23 36864]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2013-04-23 872448]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-08-11 109526]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2011-01-25 14848]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2013-04-23 913920]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2013-04-23 60416]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-04-23 118272]

-----------------EOF-----------------

#2 Příspěvek od **Rudy** » 13 srp 2013 20:33

Zdravím!
Opět jste spouštěl ComboFix, ačkoli jste na to byl v minulosti již upozorněn. My nedávám toto varovaní pro legraci. Buďte si jist, že vaším problémem se nikdo zabývat nebude.

Hurtak91 · #3 Příspěvek od **Hurtak91** » 13 srp 2013 21:14

Dobrý den,

combofix jsem nespoustel, pouze hijackthis pro online kontrolu, ale z toho jsem nic nevycetl...
jedná se o jednu a tu samou instalaci win jako v minulem pripade je teda mozny ze tam ten zapis zustal z minula nebo nevim

#4 Příspěvek od **Rudy** » 13 srp 2013 21:36

Nezkoušejte to na mne. Nemohl tam zůstat záznam z prosince 2012, když v logu jsou soubory za poslední měsíc a tentokrát jste ho spustil předevčírem, 11.8.2013 v 13:59.

Hurtak91 · #5 Příspěvek od **Hurtak91** » 13 srp 2013 21:46

Je možné že jsem ho spustil mam ikonu na plose, ale zadny scan ci mazani souboru jsem nespoustel.

#6 Příspěvek od **Rudy** » 13 srp 2013 21:49

V logu jsou všechny soubory po proběhlém skenu. Nevěřím vám.

Hurtak91 · #7 Příspěvek od **Hurtak91** » 13 srp 2013 21:56

skoda,to se neda nic delat....lock pls

#8 Příspěvek od **Rudy** » 14 srp 2013 16:08

To opravdu nedá. Bohužel.

VIRY.CZ

Kontrola logu - nefunkční internet

Kontrola logu - nefunkční internet

Re: Kontrola logu - nefunkční internet

Re: Kontrola logu - nefunkční internet

Re: Kontrola logu - nefunkční internet

Re: Kontrola logu - nefunkční internet

Re: Kontrola logu - nefunkční internet

Re: Kontrola logu - nefunkční internet

Re: Kontrola logu - nefunkční internet