Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu logu

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
hasmic
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 17 črc 2007 19:52

Prosím o kontrolu logu

#1 Příspěvek od hasmic »

Ahoj,
mám značně zpomalaený počítač, můžete se mi prosím podívat na log, co mám případně odstranit?
Díky moc,
hasmic!

Logfile of random's system information tool 1.06 (written by random/random)
Run by Michal at 2010-01-29 09:57:36
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 95 GB (40%) free of 239 GB
Total RAM: 2046 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:57:43, on 29.1.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 SP2 (7.00.5730.0011)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Jana2\janad.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Program Files\Google\Update\1.2.183.13\GoogleCrashHandler.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\VTTimer.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\msiexec.exe
C:\Documents and Settings\Michal\Plocha\Staženo\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Michal.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O3 - Toolbar: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{47A37F38-A2CA-4B79-B531-64FCE7473BAF}: NameServer = 192.168.101.1,192.168.102.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Google Update (gupdate1c9a5a2c36f4d8a) (gupdate1c9a5a2c36f4d8a) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Jana Server 2 (Janad) - Thomas Hauck, Privat - C:\Program Files\Jana2\janad.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

--
End of file - 6831 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\1-Click Maintenance.job
C:\WINDOWS\tasks\Google Software Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\MP Scheduled Scan.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}]
Megaupload Toolbar - C:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL [2007-08-09 1933256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2005-05-31 853672]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll [2007-07-12 501136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll [2009-06-25 669168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - Megaupload Toolbar - C:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL [2007-08-09 1933256]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"VTTimer"=C:\WINDOWS\system32\VTTimer.exe [2006-06-16 53248]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-10-07 1461080]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader]
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe [2007-03-09 63712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\S3Trayp]
C:\WINDOWS\system32\S3trayp.exe [2006-07-10 176128]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe [2007-07-12 132496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Logitech Desktop Messenger.lnk]
C:\PROGRA~1\Logitech\DESKTO~1\8876480\Program\LDMConf.exe /start []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Logitech SetPoint.lnk]
C:\PROGRA~1\Logitech\SetPoint\SetPoint.exe [2005-08-04 528384]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Microsoft Office.lnk]
C:\PROGRA~1\MICROS~2\Office10\OSA.EXE -b -l []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Michal^Nabídka Start^Programy^Po spuštění^Adobe Gamma.lnk]
C:\PROGRA~1\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2005-03-16 113664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2008-08-08 143360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"NoHotStart"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\EA GAMES\MOHAA\MOHAA.exe"="C:\Program Files\EA GAMES\MOHAA\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault"
"C:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe"="C:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (CLI)"
"C:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe"="C:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (SRV)"
"C:\Program Files\Miranda IM\miranda32.exe"="C:\Program Files\Miranda IM\miranda32.exe:*:Enabled:Miranda IM"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\Hamachi\hamachi.exe"="C:\Program Files\Hamachi\hamachi.exe:*:Enabled:Hamachi Client"
"C:\Program Files\totalcmd\TOTALCMD.EXE"="C:\Program Files\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\Program Files\Cerberus\CerberusGUI.exe"="C:\Program Files\Cerberus\CerberusGUI.exe:*:Enabled:Cerberus FTP Server"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype. Take a deep breath "

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-01-29 09:57:36 ----DC---- C:\rsit
2010-01-13 21:30:27 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-01-13 21:30:12 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$

======List of files/folders modified in the last 1 months======

2010-01-29 09:57:17 ----D---- C:\WINDOWS\temp
2010-01-29 09:56:33 ----D---- C:\WINDOWS\Prefetch
2010-01-29 09:55:53 ----SHD---- C:\WINDOWS\Installer
2010-01-29 09:55:53 ----D---- C:\Program Files\Google
2010-01-29 09:49:03 ----D---- C:\WINDOWS\Tasks
2010-01-29 09:47:52 ----D---- C:\WINDOWS
2010-01-29 01:25:12 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-01-29 01:20:04 ----D---- C:\Documents and Settings\Michal\Data aplikací\Skype
2010-01-28 20:33:26 ----D---- C:\WINDOWS\system32\drivers
2010-01-28 20:33:26 ----D---- C:\WINDOWS\inf
2010-01-28 20:32:30 ----D---- C:\WINDOWS\system32\CatRoot2
2010-01-25 19:51:35 ----D---- C:\Documents and Settings\Michal\Data aplikací\ICQ
2010-01-24 19:42:27 ----DC---- C:\Documents and Settings\All Users\Data aplikací\Google Updater
2010-01-23 21:24:04 ----D---- C:\Program Files\Mozilla Firefox
2010-01-22 19:03:01 ----A---- C:\WINDOWS\NeroDigital.ini
2010-01-14 11:12:06 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2010-01-14 09:20:47 ----D---- C:\WINDOWS\system32
2010-01-14 09:20:47 ----D---- C:\WINDOWS\AppPatch
2010-01-13 21:30:32 ----DC---- C:\WINDOWS\system32\dllcache
2010-01-13 21:30:27 ----D---- C:\WINDOWS\$hf_mig$
2010-01-13 21:30:23 ----A---- C:\WINDOWS\imsins.BAK
2010-01-05 01:17:46 ----A---- C:\WINDOWS\system32\MRT.exe
2010-01-02 11:20:20 ----D---- C:\Program Files\Real
2010-01-02 11:20:20 ----D---- C:\Program Files\Common Files\Real
2010-01-02 11:19:59 ----AD---- C:\Program Files\Common Files
2010-01-02 11:19:55 ----D---- C:\Documents and Settings\Michal\Data aplikací\Real
2009-12-30 18:12:58 ----D---- C:\Program Files\ICQ6.5

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdK8;AMD Processor Driver; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [2005-03-09 36352]
R1 easdrv;easdrv; C:\WINDOWS\system32\DRIVERS\easdrv.sys [2009-10-07 54184]
R1 EIO;EIO; \??\C:\WINDOWS\system32\drivers\EIO.sys []
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2009-10-07 55256]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2008-07-07 56108]
R2 Aspi32;Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [2005-11-21 16512]
R2 eamon;EAMON; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-10-07 40824]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2009-10-07 73760]
R3 actser;actser; C:\WINDOWS\system32\drivers\actser.sys [2005-09-12 29440]
R3 ASUSVRC;ASUSTeK Virtual Capture Device; C:\WINDOWS\system32\DRIVERS\AsusVRC.sys [2007-01-29 18432]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-08-08 3266560]
R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2008-07-02 89600]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2009-10-07 32072]
R3 FETNDISB;VIA Rhine Family Fast Ethernet Adapter Driver Service; C:\WINDOWS\System32\DRIVERS\fetnd5b.sys [2004-04-15 42496]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-01-26 25280]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\System32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-08-24 4374016]
R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\System32\DRIVERS\L8042Kbd.sys [2005-07-22 13440]
R3 L8042mou;Logitech SetPoint PS/2 Mouse Filter Driver; C:\WINDOWS\System32\DRIVERS\L8042mou.Sys [2005-07-22 55040]
R3 LMouKE;Logitech SetPoint Mouse Filter Driver; C:\WINDOWS\System32\DRIVERS\LMouKE.Sys [2005-07-22 68864]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys [2007-10-11 25624]
R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\LVUSBSta.sys [2007-10-12 41752]
R3 PID_0928;Logitech QuickCam Express(PID_0928); C:\WINDOWS\system32\DRIVERS\LV561AV.SYS [2007-10-12 490776]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 vsbus;Virtual Serial Bus Enumerator; C:\WINDOWS\system32\DRIVERS\vsb.sys [2005-09-12 15264]
S3 asusgsb;ASUS Virtual Video Capture Device Driver; C:\WINDOWS\system32\drivers\asusgsb.sys [2007-07-12 12416]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\System32\DRIVERS\fetnd5.sys [2001-08-17 27165]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 HdAudAddService;ATI Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\AtiHdAud.sys [2006-12-28 84992]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 LVcKap;Logitech AEC Driver; C:\WINDOWS\system32\DRIVERS\LVcKap.sys [2007-10-19 2109976]
S3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys [2007-10-11 2142488]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 S3GIGP;S3GIGP; C:\WINDOWS\System32\DRIVERS\S3gIGPm.sys [2006-08-11 654336]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 TVICHW32;TVICHW32; \??\C:\WINDOWS\system32\DRIVERS\TVICHW32.SYS []
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 Video3D;ASUS Video3D Service; C:\WINDOWS\System32\Drivers\Video3D32.sys []
S3 vserial;ELTIMA Virtual Serial Ports Driver; C:\WINDOWS\System32\DRIVERS\vserial.sys [2005-09-12 47744]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2008-08-08 573440]
R2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2007-01-31 96370]
R2 ekrn;Eset Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-10-07 472280]
R2 Janad;Jana Server 2; C:\Program Files\Jana2\janad.exe [2004-11-24 843776]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-10-19 61440]
R2 LVCOMSer;LVCOMSer; C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe [2007-10-19 186904]
R2 LVPrcSrv;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2007-10-19 141848]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe [2008-02-10 89136]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2008-12-02 877864]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\WINDOWS\system32\IoctlSvc.exe [2006-12-19 81920]
R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2009-08-27 92008]
R2 UxTuneUp;TuneUp Design Expansion; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 gupdate1c9a5a2c36f4d8a;Služba Google Update (gupdate1c9a5a2c36f4d8a); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-03-15 133104]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-15 182768]
S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe [2007-10-19 141848]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2007-03-22 72704]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;Eset HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-10-07 20680]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-12-12 537896]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15655
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu logu

#2 Příspěvek od JaRon »

kedze pouzivas ESS, SPYBOT kludne odinstaluj :)
vycisti PC s CCleanerom prip. vykonaj defragmentaciu disku
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
hasmic
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 17 črc 2007 19:52

Re: Prosím o kontrolu logu

#3 Příspěvek od hasmic »

Spybot odstraněn, vyčistím a defragmentuji, pak podám zprávu, jak to dopadlo, díky moc! ;)
hasmic!
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15655
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu logu

#4 Příspěvek od JaRon »

za malo :)
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
hasmic
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 17 črc 2007 19:52

Re: Prosím o kontrolu logu

#5 Příspěvek od hasmic »

Ahoj,
no, tak jsem defragmentoval, dokonce 2x a vlastně nic moc se nezměnilo. Start je pořád stejně pomalý, nevíte někdo, prosím, co s tím?
Díky moc,
hasmic!
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15655
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu logu

#6 Příspěvek od JaRon »

skus pouzit program startuplite >> http://www.malwarebytes.org/StartUpLite.exe
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
hasmic
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 17 črc 2007 19:52

Re: Prosím o kontrolu logu

#7 Příspěvek od hasmic »

Ahoj,
no, tak jsem použil Tvůj program a ani tohle moc nepomohlo... :( Nemáš(te) někdo ještě nějaké rady?
Díky moc,
hasmic!
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15655
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu logu

#8 Příspěvek od JaRon »

skus na to spustit ComboFix - nic tym nepokazis - log vloz
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
hasmic
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 17 črc 2007 19:52

Re: Prosím o kontrolu logu

#9 Příspěvek od hasmic »

Ahoj,
díky za radu, zkusil jsem, tady je log:

ComboFix 10-02-04.01 - Michal 04.02.2010 21:46:07.10.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2046.1589 [GMT 1:00]
Spuštěný z: c:\documents and settings\Michal\Plocha\Nepoužívané odkazy plochy\ComboFix.exe
AV: ESET Smart Security 3.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *enabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
* Rezidentní štít AV je zapnutý

.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\ICQ6.5\ICQLRun.exe
c:\program files\Internet Explorer\SET4.tmp
c:\program files\Internet Explorer\SET5.tmp
c:\program files\Internet Explorer\SET6.tmp
c:\windows\system32\mssockwz.dll
c:\windows\system32\wdjbmnt.dll

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-01-04 do 2010-02-04 )))))))))))))))))))))))))))))))
.

2010-02-04 20:36 . 2010-02-04 20:36 390144 ----a-w- c:\windows\system32\CF9661.exe
2010-01-29 09:18 . 2010-01-29 09:18 -------- d-----w- c:\program files\Defraggler
2010-01-29 09:16 . 2008-04-14 03:21 39424 -c--a-w- c:\windows\system32\dllcache\dfrgsnap.dll
2010-01-29 09:16 . 2008-04-14 03:21 39424 ----a-w- c:\windows\system32\dfrgsnap.dll
2010-01-29 09:16 . 2008-04-14 03:21 124416 -c--a-w- c:\windows\system32\dllcache\dfrgui.dll
2010-01-29 09:16 . 2008-04-14 03:21 124416 ----a-w- c:\windows\system32\dfrgui.dll
2010-01-29 09:16 . 2008-04-14 03:22 105472 -c--a-w- c:\windows\system32\dllcache\dfrgntfs.exe
2010-01-29 09:16 . 2001-10-25 14:00 53760 -c--a-w- c:\windows\system32\dllcache\dfrgres.dll
2010-01-29 09:16 . 2001-10-25 14:00 53760 ----a-w- c:\windows\system32\dfrgres.dll
2010-01-29 09:16 . 2008-04-14 03:22 82944 -c--a-w- c:\windows\system32\dllcache\dfrgfat.exe
2010-01-29 09:16 . 2008-04-14 03:22 82944 ----a-w- c:\windows\system32\dfrgfat.exe
2010-01-29 08:57 . 2010-01-29 08:57 -------- dc----w- C:\rsit
2010-01-13 10:45 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-02-04 20:49 . 2009-01-10 16:29 -------- d-----w- c:\program files\ICQ6.5
2010-01-29 09:19 . 2007-04-15 07:35 -------- d-----w- c:\program files\Spybot - Search & Destroy
2010-01-29 09:03 . 2007-05-12 12:09 -------- d-----w- c:\program files\Opera
2010-01-29 09:02 . 2007-03-16 15:11 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-01-29 09:01 . 2007-03-16 17:18 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2010-01-29 08:55 . 2007-05-17 07:11 -------- d-----w- c:\program files\Google
2010-01-14 10:12 . 2009-10-03 19:19 181120 ------w- c:\windows\system32\MpSigStub.exe
2010-01-02 10:20 . 2007-05-07 20:40 -------- d-----w- c:\program files\Common Files\Real
2010-01-02 10:20 . 2007-05-07 20:40 -------- d-----w- c:\program files\Real
2009-11-21 16:03 . 2002-09-20 18:03 471552 ----a-w- c:\windows\AppPatch\aclayers.dll
2009-11-08 16:14 . 2009-02-12 18:59 348160 ----a-w- c:\windows\system32\msvcr71.dll
2009-11-08 16:14 . 2007-03-16 17:38 499712 ----a-w- c:\windows\system32\msvcp71.dll
2008-09-20 22:07 . 2007-05-23 19:14 47219 ----a-w- c:\program files\unins000.dat
2004-05-10 17:22 . 2004-05-10 17:22 30423 ----a-w- c:\program files\OpenSSLhelp.chm
2004-03-17 05:40 . 2004-03-17 05:40 7797 ----a-w- c:\program files\readme.txt
2004-03-17 05:40 . 2004-03-17 05:40 6406 ----a-w- c:\program files\license.txt
2004-03-17 05:40 . 2004-03-17 05:40 31172 ----a-w- c:\program files\faq.txt
2004-03-17 05:40 . 2004-03-17 05:40 199011 ----a-w- c:\program files\changes.txt
2004-03-17 05:40 . 2004-03-17 05:40 10298 ----a-w- c:\program files\news.txt
2004-01-28 03:00 . 2004-01-28 03:00 76677 ----a-w- c:\program files\unins000.exe
2003-08-09 08:31 . 2003-08-09 08:31 69120 ----a-w- c:\program files\sslcopy.exe
2003-08-05 20:57 . 2003-08-05 20:57 64000 ----a-w- c:\program files\regref.exe
.

------- Sigcheck -------

[7] 2008-04-14 . DAF9947DE2A6EA20AE524B7C50487E57 . 3066880 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\mshtml.dll
[-] 2006-11-07 . CBF04597F9CF7739E572276A2698FDD3 . 3577856 . . [7.00.5730.11] . . c:\windows\system32\mshtml.dll
[7] 2004-08-17 . EF74351C9098210CC9C1A3679DB62041 . 3003392 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\mshtml.dll

[7] 2008-04-14 . 3FE5E65A7ED9EC98AEE9167CA07812D3 . 667136 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\wininet.dll
[-] 2006-11-07 . 92995334F993E6E49C25C6D02EC04401 . 818688 . . [7.00.5730.11] . . c:\windows\system32\wininet.dll
[7] 2004-08-17 . 50D263E3454E8357D13BB598129185AD . 657408 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\wininet.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-10-07 1461080]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"NoHotStart"= 1 (0x1)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Logitech Desktop Messenger.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Logitech Desktop Messenger.lnk
backup=c:\windows\pss\Logitech Desktop Messenger.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Logitech SetPoint.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Logitech SetPoint.lnk
backup=c:\windows\pss\Logitech SetPoint.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Microsoft Office.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk
backup=c:\windows\pss\Microsoft Office.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^Michal^Nabídka Start^Programy^Po spuštění^Adobe Gamma.lnk]
path=c:\documents and settings\Michal\Nabídka Start\Programy\Po spuštění\Adobe Gamma.lnk
backup=c:\windows\pss\Adobe Gamma.lnkStartup
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTimer

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader]
2007-03-09 09:09 63712 ----a-w- c:\program files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-10-14 23:04 39792 ----a-w- c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\S3Trayp]
2006-07-10 18:33 176128 ----a-r- c:\windows\system32\S3Trayp.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2007-07-12 02:00 132496 ----a-w- c:\program files\Java\jre1.6.0_02\bin\jusched.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Miranda IM\\miranda32.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"c:\\Program Files\\totalcmd\\TOTALCMD.EXE"=
"c:\\Program Files\\Cerberus\\CerberusGUI.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009

R0 xfilt;VIA SATA IDE Hot-plug Driver;c:\windows\system32\drivers\xfilt.sys [16.3.2007 16:10 11264]
R2 ekrn;Eset Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [7.10.2009 9:16 472280]
R2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [27.8.2009 16:05 92008]
R2 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [3.11.2006 19:19 13592]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [9.6.2007 19:54 716272]
S2 gupdate1c9a5a2c36f4d8a;Služba Google Update (gupdate1c9a5a2c36f4d8a);c:\program files\Google\Update\GoogleUpdate.exe [15.3.2009 20:18 133104]
S3 S3GIGP;S3GIGP;c:\windows\system32\drivers\S3gIGPm.sys [16.3.2007 16:12 654336]
S3 TVICHW32;TVICHW32;c:\windows\system32\drivers\TVICHW32.SYS [26.9.2008 15:16 23600]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'

2010-01-29 c:\windows\Tasks\1-Click Maintenance.job
- c:\program files\TuneUp Utilities 2007\SystemOptimizer.exe [2006-12-19 14:53]

2010-02-04 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-15 19:12]

2010-02-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-03-15 19:17]

2010-02-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-03-15 19:17]

2010-02-04 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Windows Defender\MpCmdRun.exe [2006-11-03 18:20]
.
.
------- Doplňkový sken -------
.
mStart Page = about:blank
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
TCP: {47A37F38-A2CA-4B79-B531-64FCE7473BAF} = 192.168.101.1,192.168.102.1
DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file:///C:/WINDOWS/Java/classes/xmldso.cab
FF - ProfilePath - c:\documents and settings\Michal\Data aplikací\Mozilla\Firefox\Profiles\5s1g9nhq.default\
FF - prefs.js: browser.search.selectedEngine - ABZ slovnik cizich slov
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&q=
FF - plugin: c:\program files\Google\Google Updater\2.4.1508.6312\npCIDetect13.dll
FF - plugin: c:\program files\Google\Update\1.2.183.13\npGoogleOneClick8.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- NASTAVENÍ FIREFOXU ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.notify.interval - 600000
FF - user.js: content.switch.threshold - 1000000
FF - user.js: nglayout.initialpaint.delay - 600
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

MSConfigStartUp-CTFMON - (no file)



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-02-04 21:50
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(1020)
c:\windows\system32\Ati2evxx.dll
.
Celkový čas: 2010-02-04 21:52:15
ComboFix-quarantined-files.txt 2010-02-04 20:52
ComboFix2.txt 2009-02-27 19:30
ComboFix3.txt 2009-02-27 19:22
ComboFix4.txt 2009-02-27 19:14
ComboFix5.txt 2010-02-04 20:41

Před spuštěním: Volných bajtů: 111 030 353 920
Po spuštění: Volných bajtů: 113 710 555 136

WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /fastdetect /NoExecute=OptIn

Current=3 Default=3 Failed=1 LastKnownGood=4 Sets=1,2,3,4
- - End Of File - - 244272FA06EFEE0BFB13122983EE3F53


Díky moc,
hasmic!
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15655
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu logu

#10 Příspěvek od JaRon »

fajn, nejakych smejdikov zmazal
otestuj na www.virustotal subory:
c:\windows\system32\mshtml.dll
c:\windows\system32\wininet.dll

je to stale pomale ?
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
hasmic
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 17 črc 2007 19:52

Re: Prosím o kontrolu logu

#11 Příspěvek od hasmic »

Ahoj,
tady jsou informace o zkontrolovaných souborech:
c:\windows\system32\mshtml.dll


Soubor mshtml.dll přijatý 2009.08.01 04:19:52 (UTC)
Antivirus Verze Poslední aktualizace Výsledek
a-squared 4.5.0.24 2009.07.31 -
AhnLab-V3 5.0.0.2 2009.07.31 -
AntiVir 7.9.0.238 2009.07.31 -
Antiy-AVL 2.0.3.7 2009.07.31 -
Authentium 5.1.2.4 2009.07.31 -
Avast 4.8.1335.0 2009.07.31 -
AVG 8.5.0.406 2009.07.31 -
BitDefender 7.2 2009.08.01 -
CAT-QuickHeal 10.00 2009.07.30 -
ClamAV 0.94.1 2009.08.01 -
Comodo 1830 2009.08.01 -
DrWeb 5.0.0.12182 2009.08.01 -
eSafe 7.0.17.0 2009.07.30 -
eTrust-Vet 31.6.6650 2009.08.01 -
F-Prot 4.4.4.56 2009.07.31 -
F-Secure 8.0.14470.0 2009.07.31 -
Fortinet 3.120.0.0 2009.08.01 -
GData 19 2009.08.01 -
Ikarus T3.1.1.64.0 2009.07.31 -
Jiangmin 11.0.800 2009.07.31 -
K7AntiVirus 7.10.807 2009.07.31 -
Kaspersky 7.0.0.125 2009.08.01 -
McAfee 5694 2009.07.31 -
McAfee+Artemis 5694 2009.07.31 -
McAfee-GW-Edition 6.8.5 2009.08.01 -
Microsoft 1.4903 2009.08.01 -
NOD32 4295 2009.07.31 -
Norman 6.01.09 2009.07.31 -
nProtect 2009.1.8.0 2009.08.01 -
Panda 10.0.0.14 2009.07.31 -
PCTools 4.4.2.0 2009.07.31 -
Prevx 3.0 2009.08.01 -
Rising 21.40.44.00 2009.07.31 -
Sophos 4.44.0 2009.08.01 -
Sunbelt 3.2.1858.2 2009.07.31 -
Symantec 1.4.4.12 2009.08.01 -
TheHacker 6.3.4.3.375 2009.08.01 -
TrendMicro 8.950.0.1094 2009.07.31 -
VBA32 3.12.10.9 2009.07.31 -
ViRobot 2009.7.31.1863 2009.07.31 -
VirusBuster 4.6.5.0 2009.07.31 -
Rozšiřující informace
File size: 3577856 bytes
MD5   : cbf04597f9cf7739e572276a2698fdd3
SHA1  : 9788f7756073cea7ece1600590b47976411b8b3c
SHA256: 74f0e6db0d3d430fc7c2ff950043d37feb350ddcf9319b3600c021c4d1cfc5d6
PEInfo: PE Structure information<br> <br> ( base data )<br> entrypointaddress.: 0xD12E2<br> timedatestamp.....: 0x45516526 (Wed Nov 8 06:03:34 2006)<br> machinetype.......: 0x14C (Intel I386)<br> <br> ( 4 sections )<br> name viradd virsiz rawdsiz ntrpy md5<br> .text 0x1000 0x30358F 0x303600 6.62 2e83a6498e49574e13ac64abd5572e10<br>.data 0x305000 0xDA34 0xAC00 2.30 60e75485701f685067181d115238d55e<br>.rsrc 0x313000 0x38E58 0x39000 7.03 bb17ab5f88f53205d65bf70c59d84170<br>.reloc 0x34C000 0x22134 0x22200 6.43 04c594c291460583866d444d78efa3fe<br> <br> ( 12 imports )<br> <br>> advapi32.dll: GetTraceEnableFlags, GetTraceEnableLevel, GetTraceLoggerHandle, RegQueryInfoKeyW, RegOpenKeyExA, RegisterTraceGuidsW, RegSetValueExW, RegCreateKeyExW, RegQueryValueExA, CryptAcquireContextA, CryptGenRandom, CryptReleaseContext, RegQueryValueW, RegEnumKeyW, RegEnumKeyExW, RegOpenKeyW, RegOpenKeyA, TraceEvent, RegOpenKeyExW, RegQueryValueExW, RegCloseKey, UnregisterTraceGuids<br>> gdi32.dll: GetBkColor, PtInRegion, GetFontUnicodeRanges, GetTextCharsetInfo, EnumObjects, CreateDIBSection, GetDIBColorTable, SetDIBColorTable, GetEnhMetaFilePaletteEntries, SetEnhMetaFileBits, SetMetaFileBitsEx, SetDIBitsToDevice, CreateICW, CreateEnhMetaFileW, GetEnhMetaFileW, CreatePolygonRgn, GetNearestPaletteIndex, GetGlyphOutlineW, TranslateCharsetInfo, GetTextFaceW, GetCharWidthW, GetCharWidth32W, GetTextColor, GetNearestColor, GetCharWidthA, Escape, ExtTextOutA, SetBkMode, IntersectClipRect, ExcludeClipRect, SetDIBits, Rectangle, GetCharABCWidthsW, PlayEnhMetaFile, SetBrushOrgEx, StretchDIBits, StretchBlt, MaskBlt, GetCurrentPositionEx, DeleteObject, OffsetRgn, GetViewportOrgEx, SetViewportOrgEx, EqualRgn, GetRgnBox, CreateRectRgnIndirect, ExtEscape, GetDeviceCaps, RestoreDC, SaveDC, SelectPalette, GetStockObject, SelectClipRgn, GetObjectType, CombineRgn, RealizePalette, CreatePalette, GetRegionData, GetRandomRgn, GetClipBox, CreateCompatibleBitmap, CreateCompatibleDC, DeleteDC, CreateSolidBrush, SelectObject, GdiFlush, CreateRectRgn, CreatePen, ExtCreatePen, UnrealizeObject, DeleteMetaFile, GetTextCharset, CreateFontIndirectW, EnumFontFamiliesExW, EnumFontsW, SetBkColor, SetTextColor, CreateDCW, ExtTextOutW, CloseMetaFile, SetWindowExtEx, SetWindowOrgEx, SetMapMode, CreateMetaFileA, DeleteEnhMetaFile, CloseEnhMetaFile, LPtoDP, GetWindowExtEx, GetWindowOrgEx, PlayMetaFile, SetViewportExtEx, GetTextExtentPoint32W, GetTextMetricsW, GetObjectW, SetROP2, CreatePatternBrush, CreateBitmap, BitBlt, GetDIBits, GetPaletteEntries, GetOutlineTextMetricsW, SetStretchBltMode, GetClipRgn, CreateEllipticRgn, OffsetViewportOrgEx, GetEnhMetaFileHeader, CreateHatchBrush, GetTextAlign, SetTextAlign, GetCurrentObject, PatBlt, ExtCreateRegion, ExtSelectClipRgn, Polygon, MoveToEx, LineTo, Polyline, Ellipse<br>> iertutil.dll: -, -, -, -, -, -, -, -, -, -, -, -<br>> kernel32.dll: SetErrorMode, GetUserDefaultLangID, SetEndOfFile, GetStringTypeW, _lread, GlobalFlags, FlushViewOfFile, ReleaseMutex, CreateFileMappingA, CreateFileA, CreateDirectoryA, CreateMutexA, LCMapStringA, GetExitCodeThread, SwitchToFiber, ConvertThreadToFiber, DeleteFiber, CreateFiber, FreeLibraryAndExitThread, TerminateThread, RaiseException, IsProcessorFeaturePresent, ExpandEnvironmentStringsA, InitializeCriticalSectionAndSpinCount, SetLastError, CompareFileTime, GetFileAttributesExW, GetLongPathNameW, FindResourceExW, CreateFileMappingW, GetSystemDefaultUILanguage, SearchPathW, GetSystemWindowsDirectoryW, GetModuleFileNameW, GetVersionExW, GetCurrentThreadId, FreeLibrary, LeaveCriticalSection, EnterCriticalSection, TlsGetValue, GetModuleHandleW, TlsSetValue, InitializeCriticalSection, DeleteCriticalSection, InterlockedDecrement, InterlockedIncrement, CloseHandle, UnmapViewOfFile, TlsFree, LocalFree, LocalAlloc, MapViewOfFile, OpenFileMappingA, GetCurrentProcessId, TlsAlloc, MulDiv, GetTickCount, GlobalFree, GlobalUnlock, GlobalAlloc, GlobalLock, MultiByteToWideChar, GetLastError, GetSystemDirectoryW, WideCharToMultiByte, LoadLibraryW, InterlockedExchange, FindAtomW, GetCurrentProcess, GetModuleFileNameA, GetProfileIntA, lstrlenW, WriteFile, SetFilePointer, ReadFile, GlobalSize, GetProcAddress, LoadLibraryExW, CreateFileW, GetTempFileNameW, GetTempPathW, DeleteFileW, GetFileSize, ExpandEnvironmentStringsW, GetShortPathNameW, GetCPInfo, GetSystemInfo, GetSystemDefaultLCID, GetUserDefaultLCID, GetFullPathNameW, OpenMutexA, OpenProcess, CopyFileW, CreateDirectoryW, GetFileAttributesW, SystemTimeToFileTime, GetSystemTime, FindClose, FindFirstFileW, lstrlenA, IsDBCSLeadByteEx, GetFileType, SetEvent, WaitForSingleObject, ResumeThread, CreateThread, CreateEventW, GetCommandLineW, GlobalDeleteAtom, GlobalAddAtomW, GlobalFindAtomW, GetLocalTime, GetLocaleInfoA, GetACP, GetVersion, GetProcessHeap, CompareStringW, OutputDebugStringA, Sleep, InterlockedCompareExchange, TerminateProcess, UnhandledExceptionFilter, SetUnhandledExceptionFilter, QueryPerformanceCounter, GetSystemTimeAsFileTime, LoadLibraryExA, SearchPathA, GetFullPathNameA, LoadLibraryA, GetUserDefaultUILanguage, EnumUILanguagesW, GetLocaleInfoW, IsValidCodePage, FileTimeToSystemTime, FileTimeToLocalFileTime, HeapSize, HeapAlloc, HeapFree, HeapReAlloc, SizeofResource, VirtualQuery, LockResource, LoadResource, FindResourceW, ActivateActCtx, DeactivateActCtx, ReleaseActCtx, CreateActCtxW, FormatMessageW<br>> msls31.dll: -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -<br>> msvcrt.dll: _CIsqrt, _ltow, _itow, memmove, atoi, _unlock, __dllonexit, _lock, _onexit, _CIatan2, _CIcos, _CIsin, ceil, wcsspn, floor, strtol, strrchr, wcstok, _ultoa, _adjust_fdiv, _amsg_exit, _initterm, free, malloc, _XcptFilter, _purecall, _wcsicmp, _wtoi, _wcsrev, bsearch, qsort, wcsstr, _ultow, _wcsnicmp, wcstol, _vsnwprintf, wcschr, _wtol, memcpy, _errno, wcsrchr, _vsnprintf, memset<br>> ntdll.dll: RtlUnwind<br>> ole32.dll: CoCreateInstance, CoTaskMemFree, CoUninitialize, CoInitialize, CoFreeUnusedLibraries, CoGetMarshalSizeMax, CoMarshalInterface, CoUnmarshalInterface, CLSIDFromProgID, StringFromCLSID, ReleaseStgMedium, CoTaskMemAlloc, CreateStreamOnHGlobal, OleGetClipboard, CreateBindCtx, OleUninitialize, OleInitialize, CoRegisterMessageFilter, RegisterDragDrop, CreateOleAdviseHolder, OleGetIconOfClass, RevokeDragDrop, OleTranslateAccelerator, WriteClassStm, CreateDataAdviseHolder, WriteFmtUserTypeStg, WriteClassStg, StgCreateDocfile, CreateDataCache, CoMarshalInterThreadInterfaceInStream, CoGetInterfaceAndReleaseStream, CoRevokeClassObject, CoRegisterClassObject, CLSIDFromString, GetHGlobalFromStream, CoCreateGuid, OleFlushClipboard, OleSetClipboard, OleIsCurrentClipboard, ProgIDFromCLSID, StringFromGUID2, OleQueryLinkFromData, OleQueryCreateFromData, DoDragDrop, CoFileTimeNow, OleRegGetUserType, OleCreateFromData, IIDFromString, CoGetTreatAsClass, StgOpenStorage, OleRun, CoGetClassObject, CoInitializeEx, MkParseDisplayName, OleSaveToStream<br>> psapi.dll: GetModuleBaseNameW<br>> shlwapi.dll: PathFindFileNameW, SHQueryValueExW, SHRegGetValueW, StrToIntExW, PathAppendW, PathQuoteSpacesW, PathAddBackslashW, -, -, -, SHEnumValueW, PathCreateFromUrlW, -, -, StrChrW, StrStrW, UrlIsW, UrlCreateFromPathW, StrStrIW, SHSetValueW, PathFileExistsW, -, PathUndecorateW, UrlGetLocationW, -, PathIsFileSpecW, UrlCompareW, UrlCanonicalizeW, StrCmpW, UrlIsOpaqueW, StrCmpNW, AssocQueryKeyW, UrlUnescapeW, PathGetCharTypeW, PathCanonicalizeW, StrTrimW, UrlApplySchemeW, ChrCmpIW, -, StrToIntW, -, -, PathUnquoteSpacesW, PathRemoveBlanksW, PathRemoveArgsW, PathFindExtensionW, SHStrDupW, PathIsRelativeW, -, AssocQueryStringW, StrCmpNIW, PathGetDriveNumberW, PathIsUNCW, HashData, SHGetInverseCMAP, SHCreateShellPalette, UrlGetPartW, AssocGetPerceivedType, PathFileExistsA, PathAppendA, -, -, -, -, -, -, -, -, -, -, wnsprintfW, PathStripPathW, StrStrIA, SHGetValueW, StrCmpIW, -, -, -, -, AssocIsDangerous<br>> user32.dll: CharLowerW, PtInRect, CopyAcceleratorTableW, LoadAcceleratorsW, VkKeyScanW, SendMessageW, EnableMenuItem, CheckMenuItem, GetMenuItemID, GetMenuItemCount, SystemParametersInfoW, WindowFromPoint, GetAsyncKeyState, DispatchMessageW, GetMessageW, GetAncestor, EnableWindow, AllowSetForegroundWindow, SetDlgItemTextW, GetDlgItemTextW, WinHelpW, IsChild, SetForegroundWindow, ShowWindow, IsIconic, IsWinEventHookInstalled, PeekMessageW, SetParent, OffsetRect, CopyRect, MessageBoxW, DestroyMenu, SetCursor, GetSubMenu, LoadMenuW, LoadCursorW, DeleteMenu, InsertMenuW, GetMenuState, ReleaseCapture, GetCapture, IsCharAlphaNumericW, IsWindowUnicode, GetWindowThreadProcessId, GetDlgItem, InflateRect, CreateAcceleratorTableW, CreateWindowExW, GetDC, SetCapture, FillRect, GetUpdateRect, GetWindowDC, EqualRect, ValidateRgn, LockWindowUpdate, ChildWindowFromPointEx, PostQuitMessage, SetWindowTextW, GetMonitorInfoW, MonitorFromWindow, MoveWindow, BringWindowToTop, RemoveMenu, GetSystemMenu, AdjustWindowRectEx, MonitorFromPoint, GetCaretBlinkTime, PostThreadMessageW, GetWindowTextW, GetLastActivePopup, FindWindowW, RegisterClassW, IsWindowVisible, CheckMenuRadioItem, GetMenuStringW, CreatePopupMenu, AppendMenuW, CharUpperW, IsCharAlphaW, AttachThreadInput, CharNextW, GetKeyboardLayoutList, UnregisterClassW, RegisterClassExW, GetClassInfoExW, ShowCaret, HideCaret, RegisterClipboardFormatA, LoadBitmapW, TrackPopupMenu, ShowCursor, GetCursor, LoadCursorA, DestroyCursor, MessageBeep, GetClassInfoW, SetRect, GetWindowInfo, GetSysColorBrush, GetDoubleClickTime, SetCursorPos, WaitMessage, FrameRect, DrawEdge, DrawFocusRect, DrawFrameControl, DrawTextW, SetCaretPos, CreateCaret, CharLowerBuffW, SetRectEmpty, IsCharLowerW, MonitorFromRect, SendMessageA, GetComboBoxInfo, CallWindowProcW, MsgWaitForMultipleObjects, SubtractRect, MessageBoxA, InSendMessage, TrackMouseEvent, CreateWindowExA, AppendMenuA, GetActiveWindow, GetMessagePos, GetKeyboardState, GetKeyboardLayout, MapVirtualKeyExW, ToAsciiEx, WindowFromDC, InvalidateRgn, MapWindowPoints, BeginPaint, EndPaint, IsRectEmpty, UpdateWindow, RedrawWindow, GetSysColor, CharToOemW, GetForegroundWindow, RegisterClipboardFormatW, RegisterWindowMessageW, TranslateMessage, KillTimer, DestroyWindow, DialogBoxParamW, ClientToScreen, GetKeyState, NotifyWinEvent, DestroyCaret, SetFocus, GetClassNameW, EndDialog, GetWindowLongW, LoadStringW, GetCursorPos, GetClientRect, GetDesktopWindow, EnumChildWindows, GetFocus, SetTimer, GetParent, SetActiveWindow, GetDCEx, GetUpdateRgn, ValidateRect, ScrollDC, ReleaseDC, GetSystemMetrics, SetWindowPos, BeginDeferWindowPos, IsWindow, DeferWindowPos, EndDeferWindowPos, GetWindowRgn, SetWindowRgn, InvalidateRect, RemovePropW, SetWindowsHookExW, CallNextHookEx, GetPropW, SetPropW, GetWindowRect, ScreenToClient, IntersectRect, UnionRect, GetWindow, DefWindowProcW, SetWindowLongW, PostMessageW, UnhookWindowsHookEx, LoadImageW, LoadIconW, SendDlgItemMessageW, GetMessageTime<br>> version.dll: GetFileVersionInfoW, GetFileVersionInfoSizeW, VerQueryValueW<br> <br> ( 1 exports )<br> <br>> ClearPhishingFilterData, ConvertAndEscapePostData, CreateHTMLPropertyPage, DllCanUnloadNow, DllEnumClassObjects, DllGetClassObject, MatchExactGetIDsOfNames, PrintHTML, RunHTMLApplication, ShowHTMLDialog, ShowHTMLDialogEx, ShowModalDialog, ShowModelessHTMLDialog
TrID&nbsp;&nbsp;: File type identification<br>Windows OCX File (71.0%)<br>Win32 Executable MS Visual C++ (generic) (21.6%)<br>Win32 Executable Generic (4.9%)<br>Generic Win/DOS Executable (1.1%)<br>DOS Executable Generic (1.1%)
ssdeep: 49152:Z//JamO4wyeiKzfbABQ1jre1IPPQzVmwSxd5burGx1RDjQ6QuQE7cVTT64M+23vr:NJajypjQ1jreaG8jRPZ/V7+Fe
PEiD&nbsp;&nbsp;: -
RDS&nbsp;&nbsp;&nbsp;: NSRL Reference Data Set<br>-


c:\windows\system32\wininet.dll


Soubor wininet.dll přijatý 2009.12.17 19:06:27 (UTC)
Antivirus Verze Poslední aktualizace Výsledek
a-squared 4.5.0.43 2009.12.17 -
AhnLab-V3 5.0.0.2 2009.12.17 -
AntiVir 7.9.1.114 2009.12.17 -
Antiy-AVL 2.0.3.7 2009.12.17 -
Authentium 5.2.0.5 2009.12.02 -
Avast 4.8.1351.0 2009.12.17 -
AVG 8.5.0.427 2009.12.17 -
BitDefender 7.2 2009.12.17 -
CAT-QuickHeal 10.00 2009.12.17 -
ClamAV 0.94.1 2009.12.17 -
Comodo 3275 2009.12.17 -
DrWeb 5.0.0.12182 2009.12.17 -
eSafe 7.0.17.0 2009.12.16 -
eTrust-Vet 35.1.7180 2009.12.17 -
F-Prot 4.5.1.85 2009.12.16 -
F-Secure 9.0.15370.0 2009.12.17 -
Fortinet 4.0.14.0 2009.12.17 -
GData 19 2009.12.17 -
Ikarus T3.1.1.79.0 2009.12.17 -
Jiangmin 13.0.900 2009.12.17 -
K7AntiVirus 7.10.923 2009.12.17 -
Kaspersky 7.0.0.125 2009.12.17 -
McAfee 5835 2009.12.17 -
McAfee+Artemis 5835 2009.12.17 -
McAfee-GW-Edition 6.8.5 2009.12.17 -
Microsoft 1.5302 2009.12.17 -
NOD32 4697 2009.12.17 -
Norman 6.04.03 2009.12.17 -
nProtect 2009.1.8.0 2009.12.17 -
Panda 10.0.2.2 2009.12.15 -
PCTools 7.0.3.5 2009.12.17 -
Prevx 3.0 2009.12.17 -
Rising 22.26.03.04 2009.12.17 -
Sophos 4.49.0 2009.12.17 -
Sunbelt 3.2.1858.2 2009.12.17 -
Symantec 1.4.4.12 2009.12.17 -
TheHacker 6.5.0.2.095 2009.12.17 -
TrendMicro 9.100.0.1001 2009.12.17 -
VBA32 3.12.12.0 2009.12.16 -
ViRobot 2009.12.17.2094 2009.12.17 -
VirusBuster 5.0.21.0 2009.12.17 -
Rozšiřující informace
File&nbsp;size: 818688 bytes
MD5&nbsp;&nbsp;&nbsp;: 92995334f993e6e49c25c6d02ec04401
SHA1&nbsp;&nbsp;: f530121a2d30c8eae83f507aa5df6e4cb09b4106
SHA256: 6fc99329a9d16deff5e1ccacc4bfa38c81e0697d2ffd3770e16c357086c60286
PEInfo: PE Structure information<br> <br> ( base data )<br> entrypointaddress.: 0x1678<br> timedatestamp.....: 0x45516526 (Wed Nov 8 06:03:34 2006)<br> machinetype.......: 0x14C (Intel I386)<br> <br> ( 4 sections )<br> name viradd virsiz rawdsiz ntrpy md5<br> .text 0x1000 0x9932C 0x99400 6.61 1d483a2307a12be4cc88c14d38a1e740<br>.data 0x9B000 0x7708 0x4200 1.40 940cbbb0ffa382573fadc329f757ee9c<br>.rsrc 0xA3000 0x24D50 0x24E00 4.73 fac7101001289c17af024d50df6bb9e5<br>.reloc 0xC8000 0x55E0 0x5600 6.76 b0f8e074d3276d8ea35e95b6be276dcb<br> <br> ( 0 imports )<br> <br> <br> ( 0 exports )<br>
TrID&nbsp;&nbsp;: File type identification<br>Win64 Executable Generic (59.6%)<br>Win32 Executable MS Visual C++ (generic) (26.2%)<br>Win32 Executable Generic (5.9%)<br>Win32 Dynamic Link Library (generic) (5.2%)<br>Generic Win/DOS Executable (1.3%)
ssdeep: 12288:6n6+h/WQS4+ynWIzwgzawt5NXpAm+bjHXE/rapVkMMIMMutuEQ:14LnRGsmbjH0/r8VkMMIMMu
PEiD&nbsp;&nbsp;: -
RDS&nbsp;&nbsp;&nbsp;: NSRL Reference Data Set<br>-



Jestli je to stále pomalé? Ano, bohužel jsem nezaznamenal zlepšení... :(
Díky moc za rady!!!
hasmic!
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15655
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu logu

#12 Příspěvek od JaRon »

napis, co je pomale :???:
1. nabeh Win
2. cinnost vseobecne
3. internet
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
hasmic
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 17 črc 2007 19:52

Re: Prosím o kontrolu logu

#13 Příspěvek od hasmic »

Ahoj,
no, zapnu komp, do té doby vše OK, přihlásím se na svůj profil (máme tu tři) a než si cokoliv spustím, čekám třeba i tři čtyři minuty. A nedej bože, že skusím něco spustit, o to se startování pak prodlouží...
hasmic!
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15655
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu logu

#14 Příspěvek od JaRon »

1. skus ci je to pomale aj pri vypnuti ESS
2. prescanuj PC s AVPTool
3. ak nic nepomoze, bude lepsie zazalohovat dolezite data a vytvorit si novy profil
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“