Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Zvýšený latence

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Bouri
Návštěvník
Návštěvník
Příspěvky: 9
Registrován: 05 dub 2010 18:19

Zvýšený latence

#1 Příspěvek od Bouri »

Zdravim mam tu problém.Hraji WoWko a poslední týden mam asi 3000latency. Přišlo mi to divné pac nikdy jindy sem takový problém nemel.Kámoš mi říkal ze mel stejný problém a říkal at sem napíšu že mi prý poradíte:D

davam sem ten LOG z RSIT

Logfile of random's system information tool 1.06 (written by random/random)
Run by Kolombo at 2010-04-05 19:46:43
Systém Microsoft Windows XP Professional Service Pack 2
System drive H: has 157 GB (41%) free of 382 GB
Total RAM: 2047 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:46:44, on 5.4.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
H:\WINDOWS\System32\smss.exe
H:\WINDOWS\system32\winlogon.exe
H:\WINDOWS\system32\services.exe
H:\WINDOWS\system32\lsass.exe
H:\WINDOWS\system32\svchost.exe
H:\WINDOWS\System32\svchost.exe
H:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
H:\Program Files\Alwil Software\Avast4\ashServ.exe
H:\WINDOWS\system32\spoolsv.exe
H:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
H:\Program Files\Super_DVD_Creator_9.8\NMSAccessU.exe
H:\WINDOWS\system32\nvsvc32.exe
H:\PROGRA~1\SPYWAR~1\sp_rsser.exe
H:\WINDOWS\system32\WgaTray.exe
H:\WINDOWS\Explorer.EXE
H:\WINDOWS\System32\svchost.exe
H:\WINDOWS\system32\RUNDLL32.EXE
H:\WINDOWS\RTHDCPL.EXE
H:\WINDOWS\system32\rundll32.exe
H:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
H:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
H:\PROGRA~1\SPYWAR~1\SpywareTerminatorShield.exe
H:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
H:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb08.exe
H:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
H:\Program Files\SweetIM\Messenger\SweetIM.exe
H:\Program Files\Anti-Blaxx\Anti-Blaxx.exe
H:\Program Files\Alwil Software\Avast4\ashWebSv.exe
H:\Program Files\Razer\Lachesis\razerhid.exe
H:\WINDOWS\system32\ctfmon.exe
H:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
H:\Program Files\Microsoft ActiveSync\Wcescomm.exe
H:\Program Files\DNA\btdna.exe
H:\Program Files\Razer\Lachesis\OSD.exe
H:\PROGRA~1\MI3AA1~1\rapimgr.exe
H:\Documents and Settings\Kolombo\Local Settings\Data aplikací\Google\Update\1.2.183.23\GoogleCrashHandler.exe
H:\Program Files\Razer\Lachesis\razertra.exe
H:\Program Files\Razer\Lachesis\razerofa.exe
H:\Documents and Settings\Kolombo\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
H:\WINDOWS\system32\wuauclt.exe
H:\Documents and Settings\Kolombo\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
H:\Documents and Settings\Kolombo\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
H:\Documents and Settings\Kolombo\Dokumenty\Downloads\RSIT.exe
H:\Program Files\trend micro\Kolombo.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.seznam.cz/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.seznam.cz/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2405280
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - H:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
R3 - URLSearchHook: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - H:\Program Files\Softonic-Eng7\tbSoft.dll
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: XTTBPos00 - {055FD26D-3A88-4e15-963D-DC8493744B1D} - H:\PROGRA~1\ICQTOO~1\4410\toolbaru.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - H:\Program Files\Adobe\Acrobat 5.0 CE\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - H:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - H:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: PCCBHO.CPCCBHO - {22FC6CE8-7D47-479F-B74A-BFBB04ADB9AF} - H:\Program Files\Winferno\PC Confidential\PCCBHO.dll
O2 - BHO: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - H:\Program Files\Softonic-Eng7\tbSoft.dll
O2 - BHO: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - H:\Program Files\Seznam.cz\listicka.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - H:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - H:\Program Files\Java\jre6\bin\jp2ssv.dll (file missing)
O2 - BHO: Společná komponenta pro aplikace společnosti Seznam.cz - {EA837F47-5AD1-443E-AE34-FFE03CBF3099} - H:\Program Files\Seznam.cz\core.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - H:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - H:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - H:\Program Files\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - H:\Program Files\Softonic-Eng7\tbSoft.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE H:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE H:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [avast!] H:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SpywareTerminator] "H:\PROGRA~1\SPYWAR~1\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "H:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [HP Software Update] H:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] H:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb08.exe
O4 - HKLM\..\Run: [DeviceDiscovery] H:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
O4 - HKLM\..\Run: [SweetIM] H:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [DAEMON Tools] "H:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [Anti-Blaxx Manager] H:\Program Files\Anti-Blaxx\Anti-Blaxx.exe
O4 - HKLM\..\Run: [QuickTime Task] "H:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Lachesis] H:\Program Files\Razer\Lachesis\razerhid.exe
O4 - HKCU\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] "H:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [H/PC Connection Agent] "H:\Program Files\Microsoft ActiveSync\Wcescomm.exe"
O4 - HKCU\..\Run: [BitTorrent DNA] "H:\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [Google Update] "H:\Documents and Settings\Kolombo\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Skype] "H:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] H:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] H:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] H:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] H:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Media Player.lnk = H:\Program Files\Adobe Media Player\Adobe Media Player.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = H:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: WeGame.lnk = H:\Program Files\WeGame\wegame.exe
O8 - Extra context menu item: Add to AMV Converter... - H:\Program Files\MP3 Player Utilities 4.17\AMVConverter\grab.html
O8 - Extra context menu item: Download Using &BitSpirit - H:\Program Files\BitSpirit\bsurl.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://H:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: MediaManager tool grab multimedia file - H:\Program Files\MP3 Player Utilities 4.00\MediaManager\grab.html
O9 - Extra button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - H:\Program Files\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - H:\Program Files\Seznam.cz\listicka.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - H:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - H:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - H:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - H:\Program Files\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - H:\Program Files\Seznam.cz\listicka.dll
O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - H:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - H:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - H:\Program Files\Winferno\PC Confidential\PCConfidential.exe
O9 - Extra 'Tools' menuitem: PC Confidential - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - H:\Program Files\Winferno\PC Confidential\PCConfidential.exe
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - H:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: PC Confidential - {925DAB62-F9AC-4221-806A-057BFB1014AA} - H:\Program Files\Winferno\PC Confidential\PCConfidential.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - H:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - H:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - H:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra button: ShopperReports - Compare product prices - {C5428486-50A0-4a02-9D20-520B59A9F9B2} - H:\Program Files\ShoppingReport\Bin\2.5.0\ShoppingReport.dll (file missing)
O9 - Extra button: ShopperReports - Compare travel rates - {C5428486-50A0-4a02-9D20-520B59A9F9B3} - H:\Program Files\ShoppingReport\Bin\2.5.0\ShoppingReport.dll (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - H:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - H:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - H:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - H:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - H:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - H:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net ... plugin.cab
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.systemrequirementslab.com/sr ... ab_srl.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... ader55.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/G ... meHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - H:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - H:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - H:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - H:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - H:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Software Updater (gusvc) - Google - H:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - H:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NMSAccessU - Unknown owner - H:\Program Files\Super_DVD_Creator_9.8\NMSAccessU.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - H:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Spyware Terminator Clam Service (sp_clamsrv) - Crawler.com - H:\Program Files\WinClamAVShield\sp_clamsrv.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - H:\PROGRA~1\SPYWAR~1\sp_rsser.exe

--
End of file - 13885 bytes

======Scheduled tasks folder======

H:\WINDOWS\tasks\AppleSoftwareUpdate.job
H:\WINDOWS\tasks\Google Software Updater.job
H:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1644491937-1364589140-725345543-1003Core.job
H:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1644491937-1364589140-725345543-1003UA.job
H:\WINDOWS\tasks\PCConfidential.job
H:\WINDOWS\tasks\RegPowerClean.job
H:\WINDOWS\tasks\RPCReminder.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{055FD26D-3A88-4e15-963D-DC8493744B1D}]
XTTBPos00 Class - H:\PROGRA~1\ICQTOO~1\4410\toolbaru.dll [2006-12-25 701952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - H:\Program Files\Adobe\Acrobat 5.0 CE\Reader\ActiveX\AcroIEHelper.ocx [2001-04-16 37808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - H:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-09-29 325000]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - H:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2009-08-04 1586472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22FC6CE8-7D47-479F-B74A-BFBB04ADB9AF}]
PCCBHO.CPCCBHO - H:\Program Files\Winferno\PC Confidential\PCCBHO.dll [2008-04-01 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
Softonic-Eng7 Toolbar - H:\Program Files\Softonic-Eng7\tbSoft.dll [2010-03-17 2355224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4E6D6F90-31CA-4878-A7A3-1CD50F115A69}]
Zvýrazňovač slov Lištičky - H:\Program Files\Seznam.cz\listicka.dll [2009-03-18 686744]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - H:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-12-10 764912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - H:\Program Files\Java\jre6\bin\jp2ssv.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F47-5AD1-443E-AE34-FFE03CBF3099}]
Společná komponenta pro aplikace společnosti Seznam.cz - H:\Program Files\Seznam.cz\core.dll [2009-03-18 990872]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetIM Toolbar Helper - H:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2008-10-08 1172792]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetIM Toolbar for Internet Explorer - H:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2008-10-08 1172792]
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Ask Toolbar - H:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-09-29 325000]

{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - Softonic-Eng7 Toolbar - H:\Program Files\Softonic-Eng7\tbSoft.dll [2010-03-17 2355224]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=H:\WINDOWS\system32\NvCpl.dll [2007-06-28 8466432]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=H:\WINDOWS\system32\NvMcTray.dll [2007-06-28 81920]
"RTHDCPL"=H:\WINDOWS\RTHDCPL.EXE [2007-08-10 16384000]
"Alcmtr"=H:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"avast!"=H:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"SpywareTerminator"=H:\PROGRA~1\SPYWAR~1\SpywareTerminatorShield.exe [2008-05-02 1817600]
"Sony Ericsson PC Suite"=H:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2006-11-24 487424]
"HP Software Update"=H:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe [2002-12-17 49152]
"HPDJ Taskbar Utility"=H:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb08.exe [2003-03-26 172032]
"DeviceDiscovery"=H:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe [2002-12-02 40960]
"SweetIM"=H:\Program Files\SweetIM\Messenger\SweetIM.exe [2008-12-02 111928]
"DAEMON Tools"=H:\Program Files\DAEMON Tools\daemon.exe [2005-11-09 128920]
"Anti-Blaxx Manager"=H:\Program Files\Anti-Blaxx\Anti-Blaxx.exe [2005-10-08 212992]
"QuickTime Task"=H:\Program Files\QuickTime\qttask.exe [2009-05-26 413696]
"Lachesis"=H:\Program Files\Razer\Lachesis\razerhid.exe [2007-09-12 172032]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=H:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
"swg"=H:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-05-07 68856]
"H/PC Connection Agent"=H:\Program Files\Microsoft ActiveSync\Wcescomm.exe [2006-11-13 1289000]
"BitTorrent DNA"=H:\Program Files\DNA\btdna.exe [2009-11-13 323392]
"Google Update"=H:\Documents and Settings\Kolombo\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2009-08-04 133104]
"Skype"=H:\Program Files\Skype\Phone\Skype.exe [2009-10-09 25623336]

H:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Adobe Reader Speed Launch.lnk - H:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
WeGame.lnk - H:\Program Files\WeGame\wegame.exe

H:\Documents and Settings\Kolombo\Nabídka Start\Programy\Po spuštění
Adobe Media Player.lnk - H:\Program Files\Adobe Media Player\Adobe Media Player.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="wbsys.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WB]
H:\Program Files\Stardock\Object Desktop\ThemeManager\fastload.dll [2001-12-20 24576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
H:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - H:\WINDOWS\system32\upnpui.dll [2004-08-17 239616]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"H:\Program Files\FlatOut2\FlatOut2.exe"="H:\Program Files\FlatOut2\FlatOut2.exe:*:Enabled:FlatOut2"
"H:\Program Files\ICQLite\ICQLite.exe"="H:\Program Files\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite"
"H:\Program Files\THQ\Company of Heroes\RelicCOH.exe"="H:\Program Files\THQ\Company of Heroes\RelicCOH.exe:*:Disabled:RelicCOH"
"H:\Program Files\Valve\hl.exe"="H:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher"
"H:\Program Files\Valve\hlds.exe"="H:\Program Files\Valve\hlds.exe:*:Enabled:HLDS Launcher"
"H:\Documents and Settings\Kolombo\Plocha\kolombo\cs 1.6\hltv.exe"="H:\Documents and Settings\Kolombo\Plocha\kolombo\cs 1.6\hltv.exe:*:Enabled:HLTV Launcher"
"H:\Program Files\GameSpy Arcade\Aphex.exe"="H:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade"
"H:\Program Files\ICQ6\ICQ.exe"="H:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"H:\Program Files\Internet Explorer\iexplore.exe"="H:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"H:\Program Files\Aspyr\Tony Hawks Pro Skater 4\Game\Skate4.exe"="H:\Program Files\Aspyr\Tony Hawks Pro Skater 4\Game\Skate4.exe:*:Enabled:Skate4"
"H:\Program Files\BitSpirit\BitSpirit.exe"="H:\Program Files\BitSpirit\BitSpirit.exe:*:Enabled:The powerful and easy-to-use BitTorrent Client"
"H:\Program Files\TmNationsForever\TmForever.exe"="H:\Program Files\TmNationsForever\TmForever.exe:*:Enabled:TmForever"
"H:\Warcraft III\Warcraft III.exe"="H:\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"
"H:\Program Files\Microsoft ActiveSync\rapimgr.exe"="H:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"H:\Program Files\Microsoft ActiveSync\wcescomm.exe"="H:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"H:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="H:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"D:\IL2\il2.exe"="D:\IL2\il2.exe:*:Enabled:il2"
"H:\Program Files\Deep Silver\Rush For Berlin\RushForBerlin.exe"="H:\Program Files\Deep Silver\Rush For Berlin\RushForBerlin.exe:*:Enabled:Rush for Berlin"
"H:\Program Files\Winamp Remote\bin\Orb.exe"="H:\Program Files\Winamp Remote\bin\Orb.exe:*:Enabled:Orb"
"H:\Program Files\Winamp Remote\bin\OrbTray.exe"="H:\Program Files\Winamp Remote\bin\OrbTray.exe:*:Enabled:OrbTray"
"H:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe"="H:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe:*:Enabled:Orb Stream Client"
"H:\Documents and Settings\Kolombo\Plocha\kolombo\utorrent.exe"="H:\Documents and Settings\Kolombo\Plocha\kolombo\utorrent.exe:*:Enabled:µTorrent"
"H:\Program Files\Virtual RC Racing\vrcrace.exe"="H:\Program Files\Virtual RC Racing\vrcrace.exe:*:Enabled:VRI 'Virtual RC Racing' Simulator"
"H:\Documents and Settings\Kolombo\Local Settings\Temp\Rar$EX09.734\dplaysvr.exe"="H:\Documents and Settings\Kolombo\Local Settings\Temp\Rar$EX09.734\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Server "
"H:\WINDOWS\system32\dpnsvr.exe"="H:\WINDOWS\system32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server"
"H:\Program Files\Codemasters\OperationFlashpoint\OperationFlashpoint.exe"="H:\Program Files\Codemasters\OperationFlashpoint\OperationFlashpoint.exe:*:Enabled:Operation Flashpoint"
"H:\Program Files\EA GAMES\Battlefield 2\Bf2_w32ded.exe"="H:\Program Files\EA GAMES\Battlefield 2\Bf2_w32ded.exe:*:Enabled:Bf2_w32ded"
"H:\Program Files\World of Warcraft\WoW-3.0.1-to-3.0.2-enGB-Win-Update-downloader.exe"="H:\Program Files\World of Warcraft\WoW-3.0.1-to-3.0.2-enGB-Win-Update-downloader.exe:*:Enabled:Blizzard Downloader"
"H:\Program Files\World of Warcraft\Launcher.exe"="H:\Program Files\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher"
"H:\Program Files\ICQ6.5\ICQ.exe"="H:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"H:\Program Files\EA GAMES\Battlefield 2\BF2VoipServer_w32ded.exe"="H:\Program Files\EA GAMES\Battlefield 2\BF2VoipServer_w32ded.exe:*:Enabled:BF2VoipServer_w32ded"
"H:\Program Files\EA GAMES\Battlefield 2\BF2VoipServer.exe"="H:\Program Files\EA GAMES\Battlefield 2\BF2VoipServer.exe:*:Enabled:BF2VoipServer"
"H:\Program Files\DNA\btdna.exe"="H:\Program Files\DNA\btdna.exe:*:Enabled:DNA"
"H:\Program Files\BitTorrent\bittorrent.exe"="H:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
"H:\Documents and Settings\Kolombo\Plocha\utorrent.exe"="H:\Documents and Settings\Kolombo\Plocha\utorrent.exe:*:Enabled:µTorrent"
"H:\Program Files\Valve\Counter-Strike Source\hl2.exe"="H:\Program Files\Valve\Counter-Strike Source\hl2.exe:*:Enabled:hl2"
"H:\Documents and Settings\Kolombo\Local Settings\Temp\Rar$EX08.968\dplaysvr.exe"="H:\Documents and Settings\Kolombo\Local Settings\Temp\Rar$EX08.968\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Server "
"H:\Program Files\Curse\CurseClient.exe"="H:\Program Files\Curse\CurseClient.exe:*:Enabled:Curse Client"
"H:\Program Files\World of Warcraft\WoW-3.0.9.9551-to-3.1.0.9767-enGB-downloader.exe"="H:\Program Files\World of Warcraft\WoW-3.0.9.9551-to-3.1.0.9767-enGB-downloader.exe:*:Enabled:Blizzard Downloader"
"H:\Program Files\World of Warcraft\WoW-3.1.1.9835-to-3.1.2.9901-enGB-downloader.exe"="H:\Program Files\World of Warcraft\WoW-3.1.1.9835-to-3.1.2.9901-enGB-downloader.exe:*:Enabled:Blizzard Downloader"
"H:\Program Files\World of Warcraft\WoW-3.1.3.9947-to-3.2.0.10192-enGB-downloader.exe"="H:\Program Files\World of Warcraft\WoW-3.1.3.9947-to-3.2.0.10192-enGB-downloader.exe:*:Enabled:Blizzard Downloader"
"H:\Program Files\World of Warcraft\WoW-3.2.0-enGB-downloader.exe"="H:\Program Files\World of Warcraft\WoW-3.2.0-enGB-downloader.exe:*:Enabled:Blizzard Downloader"
"H:\Program Files\World of Warcraft\WoW-3.2.0.10192-to-3.2.0.10314-enGB-downloader.exe"="H:\Program Files\World of Warcraft\WoW-3.2.0.10192-to-3.2.0.10314-enGB-downloader.exe:*:Enabled:Blizzard Downloader"
"H:\Program Files\World of Warcraft\WoW-3.2.0.10314-to-3.2.2.10482-enGB-downloader.exe"="H:\Program Files\World of Warcraft\WoW-3.2.0.10314-to-3.2.2.10482-enGB-downloader.exe:*:Enabled:Blizzard Downloader"
"H:\Program Files\Capcom\MotoGP 08 Demo\MotoGP 08\Launcher.exe"="H:\Program Files\Capcom\MotoGP 08 Demo\MotoGP 08\Launcher.exe:*:Enabled:MotoGP 08"
"H:\Documents and Settings\Kolombo\Plocha\nepotřebné\utorrent.exe"="H:\Documents and Settings\Kolombo\Plocha\nepotřebné\utorrent.exe:*:Enabled:µTorrent"
"H:\Program Files\Skype\Plugin Manager\skypePM.exe"="H:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"H:\Program Files\Counter-Strike Source\hl2.exe"="H:\Program Files\Counter-Strike Source\hl2.exe:*:Enabled:hl2"
"H:\Documents and Settings\Kolombo\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe"="H:\Documents and Settings\Kolombo\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
"H:\Program Files\THQ\Company of Heroes\Archive.exe"="H:\Program Files\THQ\Company of Heroes\Archive.exe:*:Enabled:Archive"
"H:\Program Files\StarCraft II Beta\StarCraft II.exe"="H:\Program Files\StarCraft II Beta\StarCraft II.exe:*:Enabled:Blizzard Launcher"
"H:\Program Files\StarCraft II Beta\Versions\Base14259\SC2.exe"="H:\Program Files\StarCraft II Beta\Versions\Base14259\SC2.exe:*:Enabled:StarCraft II"
"H:\Program Files\StarCraft II Beta\Versions\Base14356\SC2.exe"="H:\Program Files\StarCraft II Beta\Versions\Base14356\SC2.exe:*:Enabled:StarCraft II"
"H:\Program Files\Skype\Phone\Skype.exe"="H:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"H:\Program Files\Microsoft ActiveSync\rapimgr.exe"="H:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"H:\Program Files\Microsoft ActiveSync\wcescomm.exe"="H:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"H:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="H:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{89f692a1-a92e-11dc-bfa9-806d6172696f}]
shell\AutoRun\command - G:\setup.exe


======List of files/folders created in the last 1 months======

2010-04-05 19:46:43 ----D---- H:\rsit
2010-04-05 18:56:36 ----D---- H:\Program Files\trend micro
2010-04-01 15:17:33 ----A---- H:\WINDOWS\system32\unrar.dll
2010-04-01 15:17:18 ----D---- H:\Program Files\AML Products
2010-04-01 14:55:36 ----D---- H:\Program Files\bobyte
2010-04-01 11:38:45 ----A---- H:\WINDOWS\_MSRSTRT.EXE
2010-04-01 11:25:06 ----D---- H:\Program Files\Xfire
2010-04-01 11:21:26 ----D---- H:\Program Files\DemoStudio
2010-03-31 20:10:17 ----D---- H:\Documents and Settings\Kolombo\Data aplikací\WeGame
2010-03-31 20:10:03 ----D---- H:\Program Files\WeGame
2010-03-31 20:10:03 ----A---- H:\WINDOWS\system32\Ltkrn15u.dll
2010-03-31 20:10:03 ----A---- H:\WINDOWS\system32\Ltfil15u.dll
2010-03-31 20:10:03 ----A---- H:\WINDOWS\system32\Lfcmp15u.dll
2010-03-31 20:06:07 ----D---- H:\Program Files\Softonic-Eng7
2010-03-16 16:35:52 ----D---- H:\Program Files\Common Files\eBay
2010-03-14 16:21:45 ----D---- H:\Documents and Settings\All Users\Data aplikací\Apple Computer
2010-03-14 10:54:39 ----HD---- H:\VJVod_Cache
2010-03-13 14:35:52 ----D---- H:\WINDOWS\system32\Nagasoft
2010-03-10 20:28:32 ----HDC---- H:\WINDOWS\$NtUninstallKB975561$

======List of files/folders modified in the last 1 months======

2010-04-05 19:38:42 ----D---- H:\Documents and Settings\Kolombo\Data aplikací\DNA
2010-04-05 19:12:35 ----D---- H:\WINDOWS\system32
2010-04-05 19:12:35 ----A---- H:\WINDOWS\system32\PerfStringBackup.INI
2010-04-05 19:11:05 ----D---- H:\WINDOWS\Temp
2010-04-05 19:09:22 ----D---- H:\WINDOWS\Prefetch
2010-04-05 19:09:21 ----D---- H:\Documents and Settings\Kolombo\Data aplikací\Skype
2010-04-05 19:09:11 ----D---- H:\Documents and Settings\Kolombo\Data aplikací\skypePM
2010-04-05 19:08:40 ----SD---- H:\WINDOWS\Tasks
2010-04-05 19:08:38 ----D---- H:\Program Files\DNA
2010-04-05 19:07:15 ----A---- H:\WINDOWS\SchedLgU.Txt
2010-04-05 18:56:36 ----D---- H:\Program Files
2010-04-05 18:21:55 ----A---- H:\WINDOWS\wincmd.ini
2010-04-05 13:39:14 ----D---- H:\Program Files\Mozilla Firefox
2010-04-05 11:07:19 ----D---- H:\Program Files\Spyware Terminator
2010-04-05 11:07:19 ----D---- H:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
2010-04-05 11:00:25 ----D---- H:\Documents and Settings\Kolombo\Data aplikací\Spyware Terminator
2010-04-05 09:38:15 ----D---- H:\Program Files\Common Files\Blizzard Entertainment
2010-04-04 17:16:52 ----D---- H:\Program Files\YouTube Downloader
2010-04-04 17:16:29 ----D---- H:\Program Files\Yahoo!
2010-04-04 17:16:04 ----D---- H:\Documents and Settings\All Users\Data aplikací\Blizzard Entertainment
2010-04-04 17:15:51 ----D---- H:\WINDOWS
2010-04-04 17:15:50 ----A---- H:\WINDOWS\SIERRA.INI
2010-04-04 17:14:32 ----D---- H:\Fraps
2010-04-03 21:52:43 ----D---- H:\WINDOWS\system32\CatRoot2
2010-04-03 10:20:54 ----D---- H:\Program Files\SuperDVD Video Editor
2010-04-01 15:17:28 ----D---- H:\Program Files\AviSynth 2.5
2010-04-01 15:03:39 ----SHD---- H:\WINDOWS\Installer
2010-04-01 14:47:57 ----D---- H:\Program Files\Super_DVD_Creator_9.8
2010-04-01 11:04:07 ----D---- H:\Program Files\WinClamAVShield
2010-03-31 20:15:58 ----HD---- H:\WINDOWS\inf
2010-03-31 20:15:52 ----RSHDC---- H:\WINDOWS\system32\dllcache
2010-03-31 20:15:50 ----D---- H:\Program Files\Internet Explorer
2010-03-31 20:15:42 ----D---- H:\WINDOWS\ie8updates
2010-03-31 20:15:07 ----HD---- H:\WINDOWS\$hf_mig$
2010-03-31 20:10:14 ----D---- H:\WINDOWS\WinSxS
2010-03-31 20:10:14 ----D---- H:\Config.Msi
2010-03-28 14:33:41 ----D---- H:\Documents and Settings\Kolombo\Data aplikací\uTorrent
2010-03-23 19:51:58 ----D---- H:\Program Files\World of Warcraft
2010-03-21 17:26:04 ----D---- H:\WINDOWS\Minidump
2010-03-16 16:35:54 ----D---- H:\Program Files\VDOWNLOADER
2010-03-16 16:35:52 ----D---- H:\Program Files\Common Files
2010-03-14 16:23:38 ----D---- H:\Program Files\QuickTime
2010-03-10 20:28:41 ----A---- H:\WINDOWS\imsins.BAK
2010-03-10 20:28:34 ----D---- H:\Program Files\Movie Maker

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; H:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 AFS2K;AFS2k; H:\WINDOWS\system32\drivers\AFS2K.sys [2008-01-09 82380]
R1 AmdK8;Ovladač procesoru AMD; H:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-07-01 43008]
R1 aswSP;avast! Self Protection; H:\WINDOWS\system32\drivers\aswSP.sys [2009-11-25 114768]
R1 aswTdi;avast! Network Shield Support; H:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 kbdhid;Ovladač klávesnice standardu HID; H:\WINDOWS\System32\DRIVERS\kbdhid.sys [2004-08-17 14848]
R1 prodrv04;Star Force copy protection driver v4; H:\WINDOWS\System32\drivers\prodrv04.sys [2008-10-05 114496]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\H:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; H:\WINDOWS\System32\DRIVERS\wmiacpi.sys [2004-08-04 8832]
R2 aswFsBlk;aswFsBlk; H:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-11-25 20560]
R2 aswMon2;avast! Standard Shield Support; H:\WINDOWS\system32\drivers\aswMon2.sys [2009-11-25 94160]
R3 aswRdr;aswRdr; H:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 dtscsi;dtscsi; H:\WINDOWS\System32\Drivers\dtscsi.sys [2009-01-08 223128]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; H:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 hidusb;Ovladač třídy standardu HID; H:\WINDOWS\System32\DRIVERS\hidusb.sys [2001-08-17 9600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); H:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-08-10 4603904]
R3 LachesisFltr;Lachesis Mouse Driver; H:\WINDOWS\system32\drivers\Lachesis.sys [2007-08-08 12032]
R3 mouhid;Ovladač myši standardu HID; H:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 nv;nv; H:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-06-28 6807328]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; H:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-05-31 96896]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; H:\WINDOWS\System32\DRIVERS\usbccgp.sys [2004-08-04 31616]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; H:\WINDOWS\System32\DRIVERS\usbehci.sys [2004-08-04 26624]
R3 usbhub;Rozbočovač umožnující USB2; H:\WINDOWS\System32\DRIVERS\usbhub.sys [2004-08-04 57600]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; H:\WINDOWS\System32\DRIVERS\usbohci.sys [2004-08-04 17024]
R3 usbprint;Třída USB Printer; H:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-04 25856]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; H:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2004-08-04 26496]
S3 GMSIPCI;GMSIPCI; \??\G:\INSTALL\GMSIPCI.SYS []
S3 hamachi;Hamachi Network Interface; H:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-01-26 25280]
S3 k750bus;Sony Ericsson 750 driver (WDM); H:\WINDOWS\system32\DRIVERS\k750bus.sys [2006-03-13 55216]
S3 k750mdfl;Sony Ericsson 750 USB WMC Modem Filter; H:\WINDOWS\system32\DRIVERS\k750mdfl.sys [2006-03-13 6576]
S3 k750mdm;Sony Ericsson 750 USB WMC Modem Drivers; H:\WINDOWS\system32\DRIVERS\k750mdm.sys [2006-03-13 89872]
S3 k750mgmt;Sony Ericsson 750 USB WMC Device Management Drivers; H:\WINDOWS\system32\DRIVERS\k750mgmt.sys [2006-03-13 81728]
S3 k750obex;Sony Ericsson 750 USB WMC OBEX Interface Drivers; H:\WINDOWS\system32\DRIVERS\k750obex.sys [2006-03-13 79488]
S3 pcouffin;VSO Software pcouffin; H:\WINDOWS\System32\Drivers\pcouffin.sys [2008-04-27 47360]
S3 SaiH0728;SaiH0728; H:\WINDOWS\system32\DRIVERS\SaiH0728.sys [2007-10-30 136448]
S3 SaiMini;SaiMini; H:\WINDOWS\system32\DRIVERS\SaiMini.sys [2007-10-30 14080]
S3 SaiNtBus;SaiNtBus; H:\WINDOWS\system32\drivers\SaiBus.sys [2007-10-30 35328]
S3 SE2Bbus;Sony Ericsson Device 043 Driver driver (WDM); H:\WINDOWS\system32\DRIVERS\SE2Bbus.sys [2006-11-10 61600]
S3 SE2Bmdfl;Sony Ericsson Device 043 USB WMC Modem Filter; H:\WINDOWS\system32\DRIVERS\SE2Bmdfl.sys [2006-11-10 9360]
S3 SE2Bmdm;Sony Ericsson Device 043 USB WMC Modem Driver; H:\WINDOWS\system32\DRIVERS\SE2Bmdm.sys [2006-11-10 97184]
S3 SE2Bmgmt;Sony Ericsson Device 043 USB WMC Device Management Drivers (WDM); H:\WINDOWS\system32\DRIVERS\SE2Bmgmt.sys [2006-11-10 88688]
S3 se2Bnd5;Sony Ericsson Device 043 USB Ethernet Emulation SEMC43 (NDIS); H:\WINDOWS\system32\DRIVERS\se2Bnd5.sys [2006-11-10 18704]
S3 SE2Bobex;Sony Ericsson Device 043 USB WMC OBEX Interface; H:\WINDOWS\system32\DRIVERS\SE2Bobex.sys [2006-11-10 86560]
S3 se2Bunic;Sony Ericsson Device 043 USB Ethernet Emulation SEMC43 (WDM); H:\WINDOWS\system32\DRIVERS\se2Bunic.sys [2006-11-10 90800]
S3 Ser2pl;MAT Serial port driver; H:\WINDOWS\system32\DRIVERS\ser2pl.sys [2003-07-16 43264]
S3 usbscan;Ovladač skeneru USB; H:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 wceusbsh;Windows CE USB Serial Host Driver; H:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-11-06 28672]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; H:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; H:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; H:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; H:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; H:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 MDM;Machine Debug Manager; H:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 NMSAccessU;NMSAccessU; H:\Program Files\Super_DVD_Creator_9.8\NMSAccessU.exe [2007-10-12 71096]
R2 NVSvc;NVIDIA Display Driver Service; H:\WINDOWS\system32\nvsvc32.exe [2007-06-28 155716]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; H:\PROGRA~1\SPYWAR~1\sp_rsser.exe [2008-05-02 606720]
R2 UMWdf;Windows User Mode Driver Framework; H:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
R3 avast! Mail Scanner;avast! Mail Scanner; H:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; H:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S2 gusvc;Google Software Updater; H:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-09-24 194032]
S2 vvdsvc;VJVodClientServices; H:\WINDOWS\System32\svchost.exe [2004-08-17 14336]
S3 aspnet_state;ASP.NET State Service; H:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; H:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; h:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; H:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; h:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; H:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 sp_clamsrv;Spyware Terminator Clam Service; H:\Program Files\WinClamAVShield\sp_clamsrv.exe [2008-01-28 320000]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; H:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; h:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Roli
VIP
VIP
Příspěvky: 13399
Registrován: 26 lis 2006 13:37
Bydliště: ČR

Re: Zvýšený latence

#2 Příspěvek od Roli »

Zdravím, doinstaluj SP3.

V HJT fixni :

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2405280
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: XTTBPos00 - {055FD26D-3A88-4e15-963D-DC8493744B1D} - H:\PROGRA~1\ICQTOO~1\4410\toolbaru.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - H:\Program Files\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - H:\Program Files\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [HP Software Update] H:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
O4 - HKLM\..\Run: [QuickTime Task] "H:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [swg] "H:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [BitTorrent DNA] "H:\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [Google Update] "H:\Documents and Settings\Kolombo\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] H:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] H:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] H:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] H:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Media Player.lnk = H:\Program Files\Adobe Media Player\Adobe Media Player.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = H:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

HJT najdeš zde :

H:\Program Files\trend micro\Kolombo.exe

Fix znamená že spustíš HJT Obrázek

v okně které se ti otevře klikneš na Do a system scan only

v dalším okně najdeš řádky které jsem ti vypsal,

vedle nich je čtvereček do kterého uděláš zatržítko,

pak klikneš na Fix checked které je vlevo dole,

program se ti zeptá zda opravdu ANO s tím samozřejmě souhlasíš a je hotovo.


Přes Start >> Ovládací panely >> Přidat nebo odebrat odinstaluj AskBarDis a WinClamAVShield


Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

Čištění registru je třeba několikrát zopakovat !


Nakonec použij Mbam z mého podpisu.
| Rsit | Mbam | AVPTool | Cure It |

O víkendu odpočívám :all_coholic:
Nahoru
Bouri
Návštěvník
Návštěvník
Příspěvky: 9
Registrován: 05 dub 2010 18:19

Re: Zvýšený latence

#3 Příspěvek od Bouri »

Dík moc jelikoz tet nejsem doma vyzkouším to až odpoledne. Jinak ještě jednou díky a pěkný den
Nahoru
Bouri
Návštěvník
Návštěvník
Příspěvky: 9
Registrován: 05 dub 2010 18:19

Re: Zvýšený latence

#4 Příspěvek od Bouri »

Takže to bohužel nepomohlo :( Dyštak to skusím ješte jednou cele od znova
Nahoru
Uživatelský avatar
Roli
VIP
VIP
Příspěvky: 13399
Registrován: 26 lis 2006 13:37
Bydliště: ČR

Re: Zvýšený latence

#5 Příspěvek od Roli »

Vždyť jsme ještě nezkončili a hlavně bych rád ten log z Mbam, který si mi sem podle návodu měl dát dříve než něco smažeš.
| Rsit | Mbam | AVPTool | Cure It |

O víkendu odpočívám :all_coholic:
Nahoru
Bouri
Návštěvník
Návštěvník
Příspěvky: 9
Registrován: 05 dub 2010 18:19

Re: Zvýšený latence

#6 Příspěvek od Bouri »

Aha tak to sorry :D uz se na tom pracuje do 5min to zde máš

Tady je ten Log :

Malwarebytes' Anti-Malware 1.45
www.malwarebytes.org

Verze databáze: 3960

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

6.4.2010 18:50:09
mbam-log-2010-04-06 (18-50-09).txt

Typ skenu: Rychlý sken
Skenované objekty: 105454
Uplynulý čas: 3 minuta(y), 11 sekunda(y)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 0
Infikované datové položky registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)
Nahoru
Uživatelský avatar
Roli
VIP
VIP
Příspěvky: 13399
Registrován: 26 lis 2006 13:37
Bydliště: ČR

Re: Zvýšený latence

#7 Příspěvek od Roli »

Nyní použijeme větší kalibr který ale netoleruje chyby, tak že pořádně číst.


Stáhni a ulož na plochu ComboFix,

spusť aplikaci pod účtem s administrátorským oprávněním a povol instalaci Konzole pro zotavení - Recovery Console.

Poté se zobrazí okno s licenčními podmínkami které potvrdíš kliknutím na ANO,

pak ještě jednou klik na ANO a už to jede.

Celá akce trvá okolo 10 minut ale může i déle, během skenu se nepokoušej spouštět nic jiného.

Při skenovaní může být PC i restartováno nelekat se.

Upozornění: po dobu skenu vypni rezidentní štít Antiviru a AntiSpy programu,

protože Combofix se pokouší napadené soubory smazat a tyto programy mu můžou bránit.

Po dokončení skenu nebo následném restartu aplikace vytvoří log, uložený na C:/Combofix.txt

(při opakovaném použití jsou logy číslovány Combofix2.txt atd.), jeho obsah zkopíruj sem.
| Rsit | Mbam | AVPTool | Cure It |

O víkendu odpočívám :all_coholic:
Nahoru
Bouri
Návštěvník
Návštěvník
Příspěvky: 9
Registrován: 05 dub 2010 18:19

Re: Zvýšený latence

#8 Příspěvek od Bouri »

Tak hotovo mělo by to být tady toto:

ComboFix 10-04-05.06 - Kolombo 06.04.2010 19:39:13.1.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2047.1651 [GMT 2:00]
Spuštěný z: h:\documents and settings\Kolombo\Plocha\ComboFix.exe
AV: avast! antivirus 4.8.1367 [VPS 100406-1] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

H:\install.exe
h:\windows\system32\_000013_.tmp.dll
h:\windows\system32\win.ini

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-03-06 do 2010-04-06 )))))))))))))))))))))))))))))))
.

2010-04-06 16:37 . 2010-04-06 16:38 -------- d-----w- H:\rsit
2010-04-06 16:07 . 2010-03-29 13:24 38224 ----a-w- h:\windows\system32\drivers\mbamswissarmy.sys
2010-04-06 16:07 . 2010-04-06 16:07 -------- d-----w- h:\program files\Malwarebytes' Anti-Malware
2010-04-06 16:07 . 2010-03-29 13:24 20824 ----a-w- h:\windows\system32\drivers\mbam.sys
2010-04-06 15:58 . 2010-04-06 15:58 -------- d-----w- h:\program files\CCleaner
2010-04-06 15:18 . 2010-04-06 15:18 -------- d-----w- h:\windows\system32\cs
2010-04-06 15:18 . 2010-04-06 15:18 -------- d-----w- h:\windows\system32\bits
2010-04-06 14:56 . 2010-04-06 14:56 -------- d-----w- h:\windows\system32\wbem\Repository
2010-04-06 14:01 . 2010-04-06 14:01 -------- d-----w- h:\windows\l2schemas
2010-04-05 17:46 . 2010-04-05 17:46 -------- d-----w- H:\rsit(2)
2010-04-05 16:56 . 2010-04-06 16:51 -------- d-----w- h:\program files\trend micro
2010-04-01 13:17 . 2010-02-10 17:13 165376 ----a-w- h:\windows\system32\unrar.dll
2010-04-01 13:17 . 2010-04-01 13:17 -------- d-----w- h:\program files\AML Products
2010-04-01 12:55 . 2010-04-01 12:55 -------- d-----w- h:\program files\bobyte
2010-04-01 09:38 . 2010-04-01 09:38 2560 ----a-w- h:\windows\_MSRSTRT.EXE
2010-04-01 09:25 . 2010-04-01 09:38 -------- d-----w- h:\program files\Xfire
2010-04-01 09:21 . 2010-04-04 15:14 -------- d-----w- h:\program files\DemoStudio
2010-03-31 18:10 . 2010-04-01 09:50 -------- d-----w- h:\program files\WeGame
2010-03-31 18:10 . 2009-04-09 00:04 488800 ----a-w- h:\windows\system32\Ltkrn15u.dll
2010-03-31 18:10 . 2009-04-09 00:04 390496 ----a-w- h:\windows\system32\Lfcmp15u.dll
2010-03-31 18:10 . 2009-04-09 00:04 185688 ----a-w- h:\windows\system32\Ltfil15u.dll
2010-03-31 18:06 . 2010-04-06 14:05 -------- d-----w- h:\program files\Softonic-Eng7
2010-03-16 14:35 . 2010-03-16 14:35 -------- d-----w- h:\program files\Common Files\eBay
2010-03-14 08:54 . 2010-03-14 08:54 -------- d-----w- H:\VJVod_Cache
2010-03-13 12:35 . 2010-03-13 12:35 -------- d-----w- h:\windows\system32\Nagasoft
2010-03-10 15:32 . 2009-10-23 15:28 3558912 -c----w- h:\windows\system32\dllcache\moviemk.exe

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-06 17:04 . 2001-10-25 12:00 79062 ----a-w- h:\windows\system32\perfc005.dat
2010-04-06 17:04 . 2001-10-25 12:00 432004 ----a-w- h:\windows\system32\perfh005.dat
2010-04-06 16:40 . 2009-07-30 16:18 -------- d-----w- h:\program files\QuickTime
2010-04-06 16:40 . 2009-03-31 15:47 -------- d-----w- h:\program files\Seznam.cz
2010-04-06 16:15 . 2009-04-12 08:02 -------- d-----w- h:\program files\DNA
2010-04-06 15:35 . 2009-01-08 13:08 96384 ----a-w- h:\windows\system32\drivers\sptd5149.sys
2010-04-06 14:03 . 2007-12-13 03:06 86327 ----a-w- h:\windows\PCHealth\HelpCtr\OfflineCache\index.dat
2010-04-06 14:03 . 2007-12-13 03:06 3038 ----a-w- h:\windows\PCHealth\HelpCtr\PackageStore\SkuStore.bin
2010-04-05 09:07 . 2007-12-23 08:53 -------- d-----w- h:\program files\Spyware Terminator
2010-04-05 07:38 . 2008-03-10 13:18 -------- d-----w- h:\program files\Common Files\Blizzard Entertainment
2010-04-04 15:16 . 2008-09-13 11:25 -------- d-----w- h:\program files\YouTube Downloader
2010-04-04 15:16 . 2008-02-26 18:49 -------- d-----w- h:\program files\Yahoo!
2010-04-03 08:20 . 2009-02-20 19:50 -------- d-----w- h:\program files\SuperDVD Video Editor
2010-04-01 13:17 . 2008-04-27 08:46 -------- d-----w- h:\program files\AviSynth 2.5
2010-04-01 12:47 . 2009-05-26 14:21 -------- d-----w- h:\program files\Super_DVD_Creator_9.8
2010-04-01 09:04 . 2007-12-23 08:53 -------- d-----w- h:\program files\WinClamAVShield
2010-03-23 17:51 . 2008-03-28 13:05 -------- d-----w- h:\program files\World of Warcraft
2010-03-16 14:35 . 2009-08-27 17:25 -------- d-----w- h:\program files\VDOWNLOADER
2010-02-25 19:06 . 2009-05-26 13:24 -------- d-----w- h:\program files\Windows Media Connect 2
2010-02-25 06:18 . 2002-09-20 16:05 916480 ----a-w- h:\windows\system32\wininet.dll
2010-02-20 17:54 . 2009-03-18 19:03 13860 ----a-w- H:\mediamp3.dat
2010-02-09 18:48 . 2010-02-09 17:51 -------- d-----w- h:\program files\Common Files\Real
2010-02-09 17:51 . 2010-02-09 17:51 -------- d-----w- h:\program files\Real
2010-02-08 19:24 . 2008-04-26 17:55 -------- d-----w- h:\program files\FlySim
2002-12-11 22:14 . 2009-08-16 15:51 86016 ----a-w- h:\program files\dpvsetup.exe
2006-05-03 09:06 . 2009-01-15 18:54 163328 --sh--r- h:\windows\system32\flvDX.dll
2007-02-21 10:47 . 2009-01-15 18:54 31232 --sh--r- h:\windows\system32\msfDX.dll
2007-12-17 12:43 . 2009-01-15 18:54 27648 --sh--w- h:\windows\system32\Smab0.dll
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="h:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 81000]
"NvCplDaemon"="h:\windows\system32\NvCpl.dll" [2007-06-28 8466432]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WB]
2001-12-20 21:34 24576 ----a-w- h:\program files\Stardock\Object Desktop\ThemeManager\fastload.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=h:\windows\system32\wbsys.dll

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"h:\\Program Files\\BitSpirit\\BitSpirit.exe"=
"h:\program files\Microsoft ActiveSync\rapimgr.exe"= h:\program files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"h:\program files\Microsoft ActiveSync\wcescomm.exe"= h:\program files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager
"h:\program files\Microsoft ActiveSync\WCESMgr.exe"= h:\program files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application
"h:\\Program Files\\Winamp Remote\\bin\\OrbTray.exe"=
"h:\\Documents and Settings\\Kolombo\\Plocha\\kolombo\\utorrent.exe"=
"h:\\WINDOWS\\system32\\dpnsvr.exe"=
"h:\\Program Files\\World of Warcraft\\WoW-3.0.1-to-3.0.2-enGB-Win-Update-downloader.exe"=
"h:\\Program Files\\World of Warcraft\\Launcher.exe"=
"h:\\Program Files\\ICQ6.5\\ICQ.exe"=
"h:\\Program Files\\DNA\\btdna.exe"=
"h:\\Program Files\\World of Warcraft\\WoW-3.0.9.9551-to-3.1.0.9767-enGB-downloader.exe"=
"h:\\Program Files\\World of Warcraft\\WoW-3.1.1.9835-to-3.1.2.9901-enGB-downloader.exe"=
"h:\\Program Files\\World of Warcraft\\WoW-3.1.3.9947-to-3.2.0.10192-enGB-downloader.exe"=
"h:\\Program Files\\World of Warcraft\\WoW-3.2.0-enGB-downloader.exe"=
"h:\\Program Files\\World of Warcraft\\WoW-3.2.0.10192-to-3.2.0.10314-enGB-downloader.exe"=
"h:\\Program Files\\World of Warcraft\\WoW-3.2.0.10314-to-3.2.2.10482-enGB-downloader.exe"=
"h:\\Program Files\\Capcom\\MotoGP 08 Demo\\MotoGP 08\\Launcher.exe"=
"h:\\Documents and Settings\\Kolombo\\Plocha\\nepotřebné\\utorrent.exe"=
"h:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"h:\\Program Files\\Counter-Strike Source\\hl2.exe"=
"h:\\Documents and Settings\\Kolombo\\Local Settings\\Data aplikací\\Google\\Chrome\\Application\\chrome.exe"=
"h:\\Program Files\\THQ\\Company of Heroes\\Archive.exe"=
"h:\\Program Files\\Skype\\Phone\\Skype.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"3724:TCP"= 3724:TCP:Blizzard Downloader: 3724

R1 aswSP;avast! Self Protection;h:\windows\system32\drivers\aswSP.sys [30.3.2008 16:46 114768]
R1 prodrv04;Star Force copy protection driver v4;h:\windows\system32\drivers\prodrv04.sys [5.10.2008 17:45 114496]
R1 sp_rsdrv2;Spyware Terminator Driver 2;h:\windows\system32\drivers\sp_rsdrv2.sys [23.12.2007 11:50 141312]
R2 aswFsBlk;aswFsBlk;h:\windows\system32\drivers\aswFsBlk.sys [30.3.2008 16:46 20560]
R3 LachesisFltr;Lachesis Mouse Driver;h:\windows\system32\drivers\Lachesis.sys [6.8.2009 12:13 12032]
S0 sptd;sptd;h:\windows\system32\drivers\sptd.sys [8.1.2009 15:08 664064]
S3 SaiH0728;SaiH0728;h:\windows\system32\drivers\SaiH0728.sys [6.1.2009 10:17 136448]
S4 ICQ Service;ICQ Service;h:\program files\ICQ6Toolbar\ICQ Service.exe [25.7.2008 8:56 222456]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
vvdsvc REG_MULTI_SZ vvdsvc
.
Obsah adresáře 'Naplánované úlohy'

2010-04-01 h:\windows\Tasks\AppleSoftwareUpdate.job
- h:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]

2010-04-06 h:\windows\Tasks\Google Software Updater.job
- h:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-02-01 15:16]

2010-04-06 h:\windows\Tasks\PCConfidential.job
- h:\program files\Winferno\PC Confidential\PCConfidential.exe [2008-12-17 13:10]
.
.
------- Doplňkový sken -------
.
uInternet Connection Wizard,ShellNext = iexplore
IE: ÓñČĚŘľ«ÁéĎÂÔŘ(&B)
DPF: DirectAnimation Java Classes - file://h:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://h:\windows\Java\classes\xmldso.cab
FF - ProfilePath - h:\documents and settings\Kolombo\Data aplikací\Mozilla\Firefox\Profiles\g4xtd6aw.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2405280&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - hxxp://search.conduit.com/?ctid=CT2405280&SearchSource=13
FF - prefs.js: keyword.URL - hxxp://toolbar.ask.com/toolbarv/askRedirect?o=101761&gct=&gc=1&q=
FF - component: h:\documents and settings\Kolombo\Data aplikací\Mozilla\Firefox\Profiles\g4xtd6aw.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}\components\WinampTBPlayer.dll
FF - component: h:\documents and settings\Kolombo\Data aplikací\Mozilla\Firefox\Profiles\g4xtd6aw.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\components\FFExternalAlert.dll
FF - component: h:\documents and settings\Kolombo\Data aplikací\Mozilla\Firefox\Profiles\g4xtd6aw.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\components\RadioWMPCore.dll
FF - component: h:\documents and settings\Kolombo\Data aplikací\Mozilla\Firefox\Profiles\g4xtd6aw.default\extensions\{4ff5f6ea-ffaf-43e5-9a01-361c0893c3e8}\components\FFExternalAlert.dll
FF - component: h:\documents and settings\Kolombo\Data aplikací\Mozilla\Firefox\Profiles\g4xtd6aw.default\extensions\{4ff5f6ea-ffaf-43e5-9a01-361c0893c3e8}\components\RadioWMPCore.dll
FF - component: h:\documents and settings\Kolombo\Data aplikací\Mozilla\Firefox\Profiles\g4xtd6aw.default\extensions\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}\components\FFExternalAlert.dll
FF - component: h:\documents and settings\Kolombo\Data aplikací\Mozilla\Firefox\Profiles\g4xtd6aw.default\extensions\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}\components\RadioWMPCore.dll
FF - plugin: h:\program files\Google\Google Updater\2.4.1698.5652\npCIDetect13.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - h:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- NASTAVENÍ FIREFOXU ----
h:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

WebBrowser-{EEE6C35B-6118-11DC-9C72-001320C79847} - h:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
WebBrowser-{414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3} - (no file)



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-04-06 19:41
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(712)
h:\program files\Stardock\Object Desktop\ThemeManager\fastload.dll
.
Celkový čas: 2010-04-06 19:43:27
ComboFix-quarantined-files.txt 2010-04-06 17:43

Před spuštěním: Volných bajtů: 165 907 517 440
Po spuštění: Volných bajtů: 165 904 154 624

WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
h:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /fastdetect /NoExecute=OptIn

- - End Of File - - 995DDF707AD6A580D35E1C80DF144AF1
Nahoru
Bouri
Návštěvník
Návštěvník
Příspěvky: 9
Registrován: 05 dub 2010 18:19

Re: Zvýšený latence

#9 Příspěvek od Bouri »

Tak jsem to pred chvili vyzkoušel a letency se z 2000 dostalo jen na 100 coz je fakt bomba:D dík moc za všechno:D
Nahoru
Uživatelský avatar
Roli
VIP
VIP
Příspěvky: 13399
Registrován: 26 lis 2006 13:37
Bydliště: ČR

Re: Zvýšený latence

#10 Příspěvek od Roli »

Počkej, počkej ještě doladíme.


Pokud jsi tak ještě neučinil, přesuň Combofix na plochu

otevři si Poznámkový blok

do něj zkopíruj skript z následujícího okna:

Kód: Vybrat vše

Folder::
h:\program files\WinClamAVShield
h:\program files\ICQ6Toolbar

Driver::
ICQ Service

FireFox::
FF - ProfilePath - h:\documents and settings\Kolombo\Data aplikací\Mozilla\Firefox\Profiles\g4xtd6aw.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.as ... ource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - hxxp://search.conduit.com/?ctid=CT24052 ... hSource=13
FF - prefs.js: keyword.URL - hxxp://toolbar.ask.com/toolbarv/askRedi ... t=&gc=1&q=
ulož Tebou vytvořený TXT soubor jako CFScript.txt na plochu,

po uložení uchop vytvořený skript levým myšítkem a přesuň ho nad ikonu Combofixu, kde ho upustíš:

Obrázek

Po aplikaci na Tebe vypadne další log, zkopíruj ho sem

Upozornění : může se stát, že po aplikaci skriptu a restartu Windows nenaběhnou,

v tom případě znovu restartuj a přitom mačkej F8 poté zvol Poslední známou funkční konfiguraci
| Rsit | Mbam | AVPTool | Cure It |

O víkendu odpočívám :all_coholic:
Nahoru
Bouri
Návštěvník
Návštěvník
Příspěvky: 9
Registrován: 05 dub 2010 18:19

Re: Zvýšený latence

#11 Příspěvek od Bouri »

Ok hned du na to
Nahoru
Bouri
Návštěvník
Návštěvník
Příspěvky: 9
Registrován: 05 dub 2010 18:19

Re: Zvýšený latence

#12 Příspěvek od Bouri »

Tak tady to je :

ComboFix 10-04-07.04 - Kolombo 08.04.2010 14:36:50.2.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2047.1594 [GMT 2:00]
Spuštěný z: h:\documents and settings\Kolombo\Plocha\ComboFix.exe
Použité ovládací přepínače :: h:\documents and settings\Kolombo\Plocha\CFScript.txt
AV: avast! antivirus 4.8.1367 [VPS 100408-0] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
* Vytvořen nový Bod Obnovení
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

h:\program files\ICQ6Toolbar
h:\program files\ICQ6Toolbar\Icons.bmp
h:\program files\ICQ6Toolbar\ICQ Service.exe
h:\program files\ICQ6Toolbar\icq6Toolbar.ico
h:\program files\ICQ6Toolbar\ICQToolBar.dll
h:\program files\ICQ6Toolbar\ICQUnToolbar.exe
h:\program files\ICQ6Toolbar\logo_small.gif
h:\program files\ICQ6Toolbar\ServiceStarter.exe
h:\program files\ICQ6Toolbar\short.wav
h:\program files\ICQ6Toolbar\Version.txt
h:\program files\WinClamAVShield
h:\program files\WinClamAVShield\_readme.txt
h:\program files\WinClamAVShield\clamav.dll
h:\program files\WinClamAVShield\ClamAVServer.dll
h:\program files\WinClamAVShield\COPYING
h:\program files\WinClamAVShield\daily.cvd
h:\program files\WinClamAVShield\libclamunrar.dll
h:\program files\WinClamAVShield\libclamunrar_iface.dll
h:\program files\WinClamAVShield\main.cvd
h:\program files\WinClamAVShield\Microsoft.VC80.CRT.manifest
h:\program files\WinClamAVShield\msvcm80.dll
h:\program files\WinClamAVShield\msvcp80.dll
h:\program files\WinClamAVShield\msvcr80.dll
h:\program files\WinClamAVShield\pthreadVC2.dll
h:\program files\WinClamAVShield\Sp_clamsrv.exe
h:\program files\WinClamAVShield\xClamAVServerSources.zip

.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_sp_clamsrv
-------\Service_sp_clamsrv


((((((((((((((((((((((((( Soubory vytvořené od 2010-03-08 do 2010-04-08 )))))))))))))))))))))))))))))))
.

2010-04-06 16:37 . 2010-04-06 16:38 -------- d-----w- H:\rsit
2010-04-06 15:58 . 2010-04-06 15:58 -------- d-----w- h:\program files\CCleaner
2010-04-06 15:18 . 2010-04-06 15:18 -------- d-----w- h:\windows\system32\cs
2010-04-06 15:18 . 2010-04-06 15:18 -------- d-----w- h:\windows\system32\bits
2010-04-06 14:56 . 2010-04-06 14:56 -------- d-----w- h:\windows\system32\wbem\Repository
2010-04-06 14:01 . 2010-04-06 14:01 -------- d-----w- h:\windows\l2schemas
2010-04-05 17:46 . 2010-04-05 17:46 -------- d-----w- H:\rsit(2)
2010-04-05 16:56 . 2010-04-06 16:51 -------- d-----w- h:\program files\trend micro
2010-04-01 13:17 . 2010-02-10 17:13 165376 ----a-w- h:\windows\system32\unrar.dll
2010-04-01 13:17 . 2010-04-01 13:17 -------- d-----w- h:\program files\AML Products
2010-04-01 12:55 . 2010-04-01 12:55 -------- d-----w- h:\program files\bobyte
2010-04-01 09:38 . 2010-04-01 09:38 2560 ----a-w- h:\windows\_MSRSTRT.EXE
2010-04-01 09:25 . 2010-04-01 09:38 -------- d-----w- h:\program files\Xfire
2010-04-01 09:21 . 2010-04-04 15:14 -------- d-----w- h:\program files\DemoStudio
2010-03-31 18:10 . 2010-04-01 09:50 -------- d-----w- h:\program files\WeGame
2010-03-31 18:10 . 2009-04-09 00:04 488800 ----a-w- h:\windows\system32\Ltkrn15u.dll
2010-03-31 18:10 . 2009-04-09 00:04 390496 ----a-w- h:\windows\system32\Lfcmp15u.dll
2010-03-31 18:10 . 2009-04-09 00:04 185688 ----a-w- h:\windows\system32\Ltfil15u.dll
2010-03-31 18:06 . 2010-04-06 14:05 -------- d-----w- h:\program files\Softonic-Eng7
2010-03-16 14:35 . 2010-03-16 14:35 -------- d-----w- h:\program files\Common Files\eBay
2010-03-14 08:54 . 2010-03-14 08:54 -------- d-----w- H:\VJVod_Cache
2010-03-13 12:35 . 2010-03-13 12:35 -------- d-----w- h:\windows\system32\Nagasoft
2010-03-10 15:32 . 2009-10-23 15:28 3558912 -c----w- h:\windows\system32\dllcache\moviemk.exe

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-08 12:46 . 2001-10-25 12:00 79062 ----a-w- h:\windows\system32\perfc005.dat
2010-04-08 12:46 . 2001-10-25 12:00 432004 ----a-w- h:\windows\system32\perfh005.dat
2010-04-07 13:56 . 2008-02-01 16:48 -------- d-----w- h:\program files\Google
2010-04-06 16:40 . 2009-07-30 16:18 -------- d-----w- h:\program files\QuickTime
2010-04-06 16:40 . 2009-03-31 15:47 -------- d-----w- h:\program files\Seznam.cz
2010-04-06 16:15 . 2009-04-12 08:02 -------- d-----w- h:\program files\DNA
2010-04-06 15:35 . 2009-01-08 13:08 96384 ----a-w- h:\windows\system32\drivers\sptd5149.sys
2010-04-06 14:03 . 2007-12-13 03:06 86327 ----a-w- h:\windows\PCHealth\HelpCtr\OfflineCache\index.dat
2010-04-06 14:03 . 2007-12-13 03:06 3038 ----a-w- h:\windows\PCHealth\HelpCtr\PackageStore\SkuStore.bin
2010-04-05 09:07 . 2007-12-23 08:53 -------- d-----w- h:\program files\Spyware Terminator
2010-04-05 07:38 . 2008-03-10 13:18 -------- d-----w- h:\program files\Common Files\Blizzard Entertainment
2010-04-04 15:16 . 2008-09-13 11:25 -------- d-----w- h:\program files\YouTube Downloader
2010-04-04 15:16 . 2008-02-26 18:49 -------- d-----w- h:\program files\Yahoo!
2010-04-03 08:20 . 2009-02-20 19:50 -------- d-----w- h:\program files\SuperDVD Video Editor
2010-04-01 13:17 . 2008-04-27 08:46 -------- d-----w- h:\program files\AviSynth 2.5
2010-04-01 12:47 . 2009-05-26 14:21 -------- d-----w- h:\program files\Super_DVD_Creator_9.8
2010-03-23 17:51 . 2008-03-28 13:05 -------- d-----w- h:\program files\World of Warcraft
2010-03-16 14:35 . 2009-08-27 17:25 -------- d-----w- h:\program files\VDOWNLOADER
2010-02-25 19:06 . 2009-05-26 13:24 -------- d-----w- h:\program files\Windows Media Connect 2
2010-02-25 06:18 . 2002-09-20 16:05 916480 ------w- h:\windows\system32\wininet.dll
2010-02-20 17:54 . 2009-03-18 19:03 13860 ----a-w- H:\mediamp3.dat
2010-02-09 18:48 . 2010-02-09 17:51 -------- d-----w- h:\program files\Common Files\Real
2010-02-09 17:51 . 2010-02-09 17:51 -------- d-----w- h:\program files\Real
2010-02-08 19:24 . 2008-04-26 17:55 -------- d-----w- h:\program files\FlySim
2002-12-11 22:14 . 2009-08-16 15:51 86016 ----a-w- h:\program files\dpvsetup.exe
2006-05-03 09:06 . 2009-01-15 18:54 163328 --sh--r- h:\windows\system32\flvDX.dll
2007-02-21 10:47 . 2009-01-15 18:54 31232 --sh--r- h:\windows\system32\msfDX.dll
2007-12-17 12:43 . 2009-01-15 18:54 27648 --sh--w- h:\windows\system32\Smab0.dll
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="h:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 81000]
"NvCplDaemon"="h:\windows\system32\NvCpl.dll" [2007-06-28 8466432]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WB]
2001-12-20 21:34 24576 ----a-w- h:\program files\Stardock\Object Desktop\ThemeManager\fastload.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=h:\windows\system32\wbsys.dll

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"h:\\Program Files\\BitSpirit\\BitSpirit.exe"=
"h:\program files\Microsoft ActiveSync\rapimgr.exe"= h:\program files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"h:\program files\Microsoft ActiveSync\wcescomm.exe"= h:\program files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager
"h:\program files\Microsoft ActiveSync\WCESMgr.exe"= h:\program files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application
"h:\\Program Files\\Winamp Remote\\bin\\OrbTray.exe"=
"h:\\Documents and Settings\\Kolombo\\Plocha\\kolombo\\utorrent.exe"=
"h:\\WINDOWS\\system32\\dpnsvr.exe"=
"h:\\Program Files\\World of Warcraft\\WoW-3.0.1-to-3.0.2-enGB-Win-Update-downloader.exe"=
"h:\\Program Files\\World of Warcraft\\Launcher.exe"=
"h:\\Program Files\\ICQ6.5\\ICQ.exe"=
"h:\\Program Files\\DNA\\btdna.exe"=
"h:\\Program Files\\World of Warcraft\\WoW-3.0.9.9551-to-3.1.0.9767-enGB-downloader.exe"=
"h:\\Program Files\\World of Warcraft\\WoW-3.1.1.9835-to-3.1.2.9901-enGB-downloader.exe"=
"h:\\Program Files\\World of Warcraft\\WoW-3.1.3.9947-to-3.2.0.10192-enGB-downloader.exe"=
"h:\\Program Files\\World of Warcraft\\WoW-3.2.0-enGB-downloader.exe"=
"h:\\Program Files\\World of Warcraft\\WoW-3.2.0.10192-to-3.2.0.10314-enGB-downloader.exe"=
"h:\\Program Files\\World of Warcraft\\WoW-3.2.0.10314-to-3.2.2.10482-enGB-downloader.exe"=
"h:\\Program Files\\Capcom\\MotoGP 08 Demo\\MotoGP 08\\Launcher.exe"=
"h:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"h:\\Program Files\\Counter-Strike Source\\hl2.exe"=
"h:\\Documents and Settings\\Kolombo\\Local Settings\\Data aplikací\\Google\\Chrome\\Application\\chrome.exe"=
"h:\\Program Files\\THQ\\Company of Heroes\\Archive.exe"=
"h:\\Program Files\\Skype\\Phone\\Skype.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"3724:TCP"= 3724:TCP:Blizzard Downloader: 3724

R0 sptd;sptd;h:\windows\system32\drivers\sptd.sys [8.1.2009 15:08 664064]
R1 aswSP;avast! Self Protection;h:\windows\system32\drivers\aswSP.sys [30.3.2008 16:46 114768]
R1 prodrv04;Star Force copy protection driver v4;h:\windows\system32\drivers\prodrv04.sys [5.10.2008 17:45 114496]
R1 sp_rsdrv2;Spyware Terminator Driver 2;h:\windows\system32\drivers\sp_rsdrv2.sys [23.12.2007 11:50 141312]
R2 aswFsBlk;aswFsBlk;h:\windows\system32\drivers\aswFsBlk.sys [30.3.2008 16:46 20560]
R3 LachesisFltr;Lachesis Mouse Driver;h:\windows\system32\drivers\Lachesis.sys [6.8.2009 12:13 12032]
S3 SaiH0728;SaiH0728;h:\windows\system32\drivers\SaiH0728.sys [6.1.2009 10:17 136448]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
vvdsvc REG_MULTI_SZ vvdsvc
.
Obsah adresáře 'Naplánované úlohy'

2010-04-01 h:\windows\Tasks\AppleSoftwareUpdate.job
- h:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]

2010-04-08 h:\windows\Tasks\PCConfidential.job
- h:\program files\Winferno\PC Confidential\PCConfidential.exe [2008-12-17 13:10]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://seznam.cz/
uInternet Connection Wizard,ShellNext = iexplore
IE: ÓñČĚŘľ«ÁéĎÂÔŘ(&B)
DPF: DirectAnimation Java Classes - file://h:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://h:\windows\Java\classes\xmldso.cab
FF - ProfilePath - h:\documents and settings\Kolombo\Data aplikací\Mozilla\Firefox\Profiles\g4xtd6aw.default\
FF - component: h:\documents and settings\Kolombo\Data aplikací\Mozilla\Firefox\Profiles\g4xtd6aw.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}\components\WinampTBPlayer.dll
FF - component: h:\documents and settings\Kolombo\Data aplikací\Mozilla\Firefox\Profiles\g4xtd6aw.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\components\FFExternalAlert.dll
FF - component: h:\documents and settings\Kolombo\Data aplikací\Mozilla\Firefox\Profiles\g4xtd6aw.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\components\RadioWMPCore.dll
FF - component: h:\documents and settings\Kolombo\Data aplikací\Mozilla\Firefox\Profiles\g4xtd6aw.default\extensions\{4ff5f6ea-ffaf-43e5-9a01-361c0893c3e8}\components\FFExternalAlert.dll
FF - component: h:\documents and settings\Kolombo\Data aplikací\Mozilla\Firefox\Profiles\g4xtd6aw.default\extensions\{4ff5f6ea-ffaf-43e5-9a01-361c0893c3e8}\components\RadioWMPCore.dll
FF - component: h:\documents and settings\Kolombo\Data aplikací\Mozilla\Firefox\Profiles\g4xtd6aw.default\extensions\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}\components\FFExternalAlert.dll
FF - component: h:\documents and settings\Kolombo\Data aplikací\Mozilla\Firefox\Profiles\g4xtd6aw.default\extensions\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}\components\RadioWMPCore.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - h:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- NASTAVENÍ FIREFOXU ----
h:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-04-08 14:44
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: MBR read successfully
called modules: ntkrnlpa.exe >>UNKNOWN [0x8A5AC940]<<
kernel: MBR read successfully
detected MBR rootkit hooks:
\Driver\Disk -> 0x8a5ac940
\Driver\ACPI -> ACPI.sys @ 0xba694cb8
\Driver\atapi -> atapi.sys @ 0xba629b40
IoDeviceObjectType -> DeleteProcedure -> ntkrnlpa.exe @ 0x805836a8
ParseProcedure -> ntkrnlpa.exe @ 0x805827e8
\Device\Harddisk0\DR0 -> DeleteProcedure -> ntkrnlpa.exe @ 0x805836a8
ParseProcedure -> ntkrnlpa.exe @ 0x805827e8
NDIS: Realtek RTL8168/8111 PCI-E Gigabit Ethernet NIC -> SendCompleteHandler -> NDIS.sys @ 0xba532bb0
PacketIndicateHandler -> NDIS.sys @ 0xba53fa21
SendHandler -> NDIS.sys @ 0xba51d87b
Warning: possible MBR rootkit infection !
user & kernel MBR OK

**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(772)
h:\program files\Stardock\Object Desktop\ThemeManager\fastload.dll

- - - - - - - > 'explorer.exe'(3040)
h:\windows\system32\webcheck.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
h:\program files\Alwil Software\Avast4\aswUpdSv.exe
h:\program files\Alwil Software\Avast4\ashServ.exe
h:\windows\system32\WgaTray.exe
h:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
h:\windows\system32\nvsvc32.exe
h:\progra~1\SPYWAR~1\sp_rsser.exe
h:\windows\system32\wdfmgr.exe
h:\program files\Alwil Software\Avast4\ashWebSv.exe
.
**************************************************************************
.
Celkový čas: 2010-04-08 14:50:07 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-04-08 12:50
ComboFix2.txt 2010-04-06 17:43

Před spuštěním: Volných bajtů: 168 820 916 224
Po spuštění: Volných bajtů: 168 687 370 240

- - End Of File - - 0334A7616ED5486D9B61D33D80C4DFC7
Nahoru
Uživatelský avatar
Roli
VIP
VIP
Příspěvky: 13399
Registrován: 26 lis 2006 13:37
Bydliště: ČR

Re: Zvýšený latence

#13 Příspěvek od Roli »

Přes Start >> Spustit zkopíruj do okna:

ComboFix /Uninstall

a stiskni Enter

To odinstaluje ComboFix a smaže s ním související soubory a složky.


Pak dej vědět jaký je stav PC.
| Rsit | Mbam | AVPTool | Cure It |

O víkendu odpočívám :all_coholic:
Nahoru
Bouri
Návštěvník
Návštěvník
Příspěvky: 9
Registrován: 05 dub 2010 18:19

Re: Zvýšený latence

#14 Příspěvek od Bouri »

Rano sem hrál cca 4-5hodin a latenci sem mel kolem 150-210 coz je super ale pred chvili mi zase naskočila na 1200 tak nevim :lol: Je možné ze na to má vliv rychlost internetu?? ja ji mam práve celkem malou :D kolem 120kb/s :roll:


* Ne dobré.... byla to chyba na serveru uz to fici v pohode tetkom mam tak maxx 200 vic ne fakt dík moc. :closed:
Nahoru
Uživatelský avatar
Roli
VIP
VIP
Příspěvky: 13399
Registrován: 26 lis 2006 13:37
Bydliště: ČR

Re: Zvýšený latence

#15 Příspěvek od Roli »

Ano může na to mít částečně vliv rychlost připojení a případně i přetížení servru.

Jinak není zač.
| Rsit | Mbam | AVPTool | Cure It |

O víkendu odpočívám :all_coholic:
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“