Nerad otravuju ale zdá se mi že můj stařičký pc je nejspíše nakažen.Zkusil sem nějaký ten adware , cccleaner a avasta.Nic nenalezeno a jedna hra se mi trhá stále jako ruský film.Nebyl by tu někdo tak hodnej a nekouk na můj log?Já se v tom nevyznám.
Předem děkuji Emil
Logfile of random's system information tool 1.06 (written by random/random)
Run by Emil at 2010-03-03 21:38:31
Microsoft Windows XP Home Edition Service Pack 2
System drive E: has 4 GB (22%) free of 18 GB
Total RAM: 255 MB (22% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:39:04, on 3.3.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\system32\spoolsv.exe
E:\WINDOWS\Explorer.EXE
E:\Program Files\ICQ6Toolbar\ICQ Service.exe
E:\Program Files\Java\jre6\bin\jqs.exe
E:\Program Files\Spyware Terminator\sp_rsser.exe
E:\WINDOWS\system32\wscntfy.exe
E:\WINDOWS\system32\wbem\wmiapsrv.exe
E:\WINDOWS\system32\ctfmon.exe
E:\Program Files\ICQ6.5\ICQ.exe
E:\Program Files\Internet Explorer\iexplore.exe
E:\Program Files\Internet Explorer\iexplore.exe
E:\Documents and Settings\Emil\Plocha\RSIT.exe
E:\Program Files\trend micro\Emil.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - E:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - E:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - E:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O4 - HKLM\..\Run: [MSConfig] E:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [ctfmon.exe] E:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - E:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - E:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O23 - Service: ICQ Service - Unknown owner - E:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - E:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - E:\Program Files\Spyware Terminator\sp_rsser.exe
--
End of file - 3576 bytes
======Scheduled tasks folder======
E:\WINDOWS\tasks\SLOW-PCfighter-Emil-Startup.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - E:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-01-21 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - E:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-01-21 79648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - E:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2009-08-16 962808]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSConfig"=E:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe [2006-03-02 159232]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=E:\WINDOWS\system32\ctfmon.exe [2006-03-02 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
E:\WINDOWS\system32\ctfmon.exe [2006-03-02 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
E:\PROGRA~1\ICQ6.5\ICQ.exe [2009-11-16 172792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
E:\WINDOWS\system32\dumprep 0 -k []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorUpdate]
E:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2010-02-26 3037696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
E:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-01-11 246504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - E:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\Program Files\ICQ6.5\ICQ.exe"="E:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"E:\Documents and Settings\Emil\Plocha\UO Mapa\uoam.exe"="E:\Documents and Settings\Emil\Plocha\UO Mapa\uoam.exe:*:Enabled:Ultima Online's premier mapping tool."
"E:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"="E:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Enabled:Crawler Spyware Terminator"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
======List of files/folders created in the last 1 months======
2010-03-03 21:38:34 ----D---- E:\Program Files\trend micro
2010-03-03 21:38:31 ----D---- E:\rsit
2010-03-02 11:50:39 ----D---- E:\Program Files\CCleaner
2010-03-02 11:45:14 ----D---- E:\WINDOWS\pss
2010-03-01 17:29:23 ----D---- E:\Program Files\Alwil Software
2010-03-01 17:29:23 ----D---- E:\Documents and Settings\All Users\Data aplikací\Alwil Software
2010-02-28 14:51:52 ----D---- E:\Documents and Settings\Emil\Data aplikací\Ventrilo
2010-02-28 14:50:49 ----D---- E:\Program Files\Ventrilo
2010-02-28 14:49:45 ----D---- E:\Program Files\Common Files\Wise Installation Wizard
2010-02-26 12:50:20 ----D---- E:\Documents and Settings\Emil\Data aplikací\Spyware Terminator
2010-02-26 12:49:42 ----D---- E:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
2010-02-26 12:49:34 ----D---- E:\Program Files\Spyware Terminator
2010-02-11 13:00:40 ----RSD---- E:\WINDOWS\assembly
2010-02-11 13:00:39 ----D---- E:\WINDOWS\Microsoft.NET
2010-02-11 13:00:37 ----D---- E:\WINDOWS\system32\URTTemp
2010-02-08 20:33:26 ----D---- E:\Documents and Settings\Emil\Data aplikací\teamspeak2
2010-02-08 20:32:17 ----D---- E:\Program Files\Teamspeak2_RC2
2010-02-08 15:43:16 ----D---- E:\WINDOWS\Minidump
2010-02-04 20:43:18 ----HDC---- E:\WINDOWS\$NtUninstallKB926239$
2010-02-04 20:43:07 ----N---- E:\WINDOWS\system32\spmsg.dll
2010-02-04 20:42:58 ----HDC---- E:\WINDOWS\$NtUninstallMSCompPackV1$
2010-02-04 20:42:11 ----D---- E:\Program Files\Windows Media Connect 2
2010-02-04 20:41:52 ----HDC---- E:\WINDOWS\$NtUninstallwmp11$
2010-02-04 20:40:26 ----HDC---- E:\WINDOWS\$NtUninstallWMFDist11$
2010-02-04 20:39:46 ----D---- E:\WINDOWS\system32\LogFiles
2010-02-04 20:39:32 ----HDC---- E:\WINDOWS\$NtUninstallWudf01000$
2010-02-04 20:32:30 ----D---- E:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
======List of files/folders modified in the last 1 months======
2010-03-03 21:38:50 ----D---- E:\WINDOWS\Prefetch
2010-03-03 21:38:34 ----RD---- E:\Program Files
2010-03-03 17:50:21 ----D---- E:\WINDOWS\Temp
2010-03-03 17:49:05 ----A---- E:\WINDOWS\SchedLgU.Txt
2010-03-03 11:46:23 ----A---- E:\WINDOWS\win.ini
2010-03-03 11:46:23 ----A---- E:\WINDOWS\system.ini
2010-03-03 11:43:57 ----D---- E:\WINDOWS\system32
2010-03-03 11:43:56 ----D---- E:\WINDOWS\system32\drivers
2010-03-03 11:43:37 ----D---- E:\WINDOWS\system32\CatRoot2
2010-03-02 21:32:26 ----D---- E:\Documents and Settings\Emil\Data aplikací\ICQ
2010-03-02 20:52:20 ----D---- E:\WINDOWS
2010-03-02 20:52:14 ----D---- E:\WINDOWS\system32\Macromed
2010-03-02 20:50:46 ----SHD---- E:\WINDOWS\Installer
2010-03-02 11:54:09 ----D---- E:\WINDOWS\Debug
2010-03-01 19:25:51 ----SD---- E:\WINDOWS\Tasks
2010-03-01 17:29:59 ----D---- E:\WINDOWS\WinSxS
2010-03-01 17:29:56 ----D---- E:\Program Files\Common Files\Microsoft Shared
2010-02-28 14:49:45 ----D---- E:\Program Files\Common Files
2010-02-11 13:46:38 ----D---- E:\WINDOWS\system32\mui
2010-02-11 13:46:38 ----D---- E:\Program Files\Internet Explorer
2010-02-11 13:46:22 ----D---- E:\WINDOWS\Registration
2010-02-11 13:44:30 ----SD---- E:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-02-11 13:03:15 ----A---- E:\WINDOWS\system32\PerfStringBackup.INI
2010-02-04 21:36:20 ----RSHDC---- E:\WINDOWS\system32\dllcache
2010-02-04 21:36:20 ----D---- E:\WINDOWS\AppPatch
2010-02-04 20:43:40 ----HD---- E:\WINDOWS\inf
2010-02-04 20:42:10 ----D---- E:\Program Files\Windows Media Player
2010-02-04 20:42:05 ----D---- E:\WINDOWS\Help
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\E:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R3 nv;nv; E:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2004-08-03 1897408]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; E:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 sermouse;Ovladač sériové myši; E:\WINDOWS\system32\DRIVERS\sermouse.sys [2006-03-02 17664]
R3 usbhub;Rozbočovač umožnující USB2; E:\WINDOWS\system32\DRIVERS\usbhub.sys [2006-03-02 57600]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; E:\WINDOWS\system32\DRIVERS\usbuhci.sys [2006-03-02 20480]
R3 VIAudio;Zvukový řadič VIA AC'97 (WDM); E:\WINDOWS\system32\drivers\ac97via.sys [2004-08-03 84480]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; E:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; E:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; E:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ICQ Service;ICQ Service; E:\Program Files\ICQ6Toolbar\ICQ Service.exe [2009-08-16 222968]
R2 JavaQuickStarterService;Java Quick Starter; E:\Program Files\Java\jre6\bin\jqs.exe [2010-01-21 153376]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; E:\Program Files\Spyware Terminator\sp_rsser.exe [2010-02-26 488960]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; E:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; E:\WINDOWS\system32\svchost.exe [2006-03-02 14336]
-----------------EOF-----------------
Stáhněte Ccleaner 
Přispějete na provoz fóra?