Totalni zpomaleni netu

[motji]

Zkuste kouknout do virové truhly.

Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

[memart]

Zdravim!
Nevidel jsem hned odpoved, naskocila nova stranka
Takze:
- Neni nic ve virove truhle, nebyla takovamoznost, jen smazat
- MBAM nenasel nic, pri obou testech same 0.

Co ted?

[motji]

Spusťte combofix podle tohoto návodu
http://www.bleepingcomputer.com/combofi ... t-combofix

[memart]

Zdravim Vas!
Udelal jsem Combofix, ale nazalost, mikrofom se stava nefunkcnim ve chvile kdyz s druhou stranou navaze spojeni.

Tady je log:

ComboFix 11-01-27.05 - Ing. Markovic 28.01.2011 12:43:03.11.2 - FAT32x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2046.1520 [GMT 1:00]
Spuštěný z: c:\documents and settings\Ing. Markovic\Plocha\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Ing. Markovic\Data aplikací\Local
c:\windows\system32\_000006_.tmp.dll

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-12-28 do 2011-01-28 )))))))))))))))))))))))))))))))
.

2011-01-26 20:42 . 2010-12-20 17:09 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-01-26 20:42 . 2010-12-20 17:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-01-26 20:42 . 2011-01-26 20:42 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-01-26 19:27 . 2011-01-26 19:27 -------- d-----w- c:\program files\FinalWire
2011-01-23 18:43 . 2006-08-31 01:43 266240 ----a-w- c:\windows\Cmi6501Uninstall.exe
2011-01-23 18:43 . 2006-09-06 00:04 1419968 ----a-w- c:\windows\system32\drivers\c6501.sys
2011-01-23 18:43 . 2006-08-30 20:38 253952 ----a-w- c:\windows\system32\c6501rm.exe
2011-01-23 18:43 . 2006-06-27 21:54 32768 ----a-w- c:\windows\system32\c6501p.dll
2011-01-23 18:43 . 2005-12-27 00:23 53248 ----a-w- c:\windows\system32\c6501rm.dll
2011-01-23 18:43 . 2001-11-23 19:08 712704 ----a-w- c:\windows\system32\c6501a3d.dll
2011-01-23 18:42 . 2011-01-23 18:42 -------- d-----w- c:\program files\C-Media
2011-01-23 00:10 . 2011-01-23 00:10 -------- d-----w- c:\program files\TeamSpeak 3 Client
2011-01-23 00:10 . 2011-01-23 00:10 -------- d-----w- c:\program files\Ventrilo
2011-01-22 20:10 . 2011-01-22 20:10 -------- d-----w- c:\documents and settings\Ing. Markovic\Data aplikací\Mumble
2011-01-22 20:10 . 2011-01-22 20:10 -------- d-----w- c:\program files\Mumble
2011-01-22 12:58 . 2011-01-22 12:58 -------- d-----w- c:\windows\system32\wbem\Repository
2011-01-05 16:59 . 2009-12-10 10:16 200704 ----a-w- c:\windows\system32\ssleay32.dll
2011-01-05 16:59 . 2009-12-10 10:16 180224 ----a-w- c:\windows\system32\W32N55.dll
2011-01-05 16:59 . 2009-12-10 10:16 796032 ----a-w- c:\windows\system32\Scutum.dll
2011-01-05 16:59 . 2009-12-10 10:16 19072 ----a-w- c:\windows\system32\drivers\Scutum50.sys
2011-01-05 16:59 . 2009-12-10 10:16 147456 ----a-w- c:\windows\system32\DiagFunc.dll
2011-01-05 16:59 . 2009-12-10 10:16 1085440 ----a-w- c:\windows\system32\libeay32.dll
2011-01-05 16:59 . 2009-12-10 10:15 152968 ----a-w- c:\windows\system32\RalinkGina.dll
2011-01-05 16:59 . 2010-04-14 18:31 238944 ----a-w- c:\windows\system32\RaCoInst.dll
2011-01-05 16:59 . 2010-04-14 17:39 827488 ----a-w- c:\windows\system32\drivers\rt2870.sys
2011-01-05 16:59 . 2011-01-05 16:59 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Tenda Driver
2011-01-05 16:35 . 2011-01-05 16:36 -------- d-----w- c:\program files\Tenda
2011-01-04 02:05 . 2011-01-04 02:05 -------- d-----w- c:\documents and settings\Ing. Markovic\Local Settings\Data aplikací\Mumble
2010-12-30 20:36 . 2010-12-30 20:36 -------- d-----w- c:\program files\Seznam.cz

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-01-13 08:47 . 2010-12-15 09:54 38848 ----a-w- c:\windows\avastSS.scr
2011-01-13 08:47 . 2010-12-15 09:54 188216 ----a-w- c:\windows\system32\aswBoot.exe
2010-11-29 16:38 . 2010-11-29 16:38 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2010-11-29 16:38 . 2010-11-29 16:38 69632 ----a-w- c:\windows\system32\QuickTime.qts
2010-11-27 11:10 . 2010-11-25 23:04 17534 ----a-w- c:\windows\system32\mdc8021x.vxd
2010-11-27 11:10 . 2010-11-25 23:04 1726 ----a-w- c:\windows\ndinst.exe
2010-11-19 15:03 . 2010-11-19 15:03 21419 ----a-w- c:\windows\system32\drivers\AegisP.sys
2010-11-18 18:15 . 2007-08-17 09:11 81920 ----a-w- c:\windows\system32\isign32.dll
2010-11-17 21:42 . 2010-11-17 21:42 163232 ----a-w- c:\windows\system32\drivers\afcdp.sys
2010-11-17 21:42 . 2010-11-17 21:42 752128 ----a-w- c:\windows\system32\drivers\tdrpm273.sys
2010-11-17 21:42 . 2010-11-17 21:42 600928 ----a-w- c:\windows\system32\drivers\timntr.sys
2010-11-17 21:42 . 2010-11-17 21:42 170464 ----a-w- c:\windows\system32\drivers\snapman.sys
2010-11-09 15:14 . 2010-08-06 13:17 98392 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2010-11-09 14:52 . 1979-12-31 23:00 249856 ----a-w- c:\windows\system32\odbc32.dll
2010-11-06 00:25 . 2010-11-06 00:25 832512 ----a-w- c:\windows\system32\SETD.tmp
2010-11-06 00:25 . 2010-11-06 00:25 3604480 ----a-w- c:\windows\system32\SET16.tmp
2010-11-06 00:25 . 2010-11-06 00:25 1168384 ----a-w- c:\windows\system32\SETF.tmp
2010-11-06 00:25 . 2010-11-06 00:25 105984 ----a-w- c:\windows\system32\SET10.tmp
2010-11-06 00:25 . 2010-11-06 00:25 63488 ----a-w- c:\windows\system32\SET26.tmp
2010-11-06 00:25 . 2010-11-06 00:25 6075904 ----a-w- c:\windows\system32\SET1F.tmp
2010-11-06 00:25 . 2010-11-06 00:25 52224 ----a-w- c:\windows\system32\SET17.tmp
2010-11-06 00:25 . 2010-11-06 00:25 468480 ----a-w- c:\windows\system32\SET18.tmp
2010-11-06 00:25 . 2010-11-06 00:25 380928 ----a-w- c:\windows\system32\SET21.tmp
2010-11-06 00:25 . 2010-11-06 00:25 268288 ----a-w- c:\windows\system32\SET1B.tmp
2010-11-06 00:25 . 1979-12-31 23:00 832512 ----a-w- c:\windows\system32\WININET.DLL
2010-11-06 00:25 . 1979-12-31 23:00 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-11-06 00:25 . 1979-12-31 23:00 1830912 ----a-w- c:\windows\system32\inetcpl.cpl
2010-11-06 00:25 . 1979-12-31 23:00 17408 ------w- c:\windows\system32\corpol.dll
2010-11-03 12:25 . 1979-12-31 23:00 389120 ----a-w- c:\windows\system32\html.iec
2010-11-02 15:17 . 1979-12-31 23:00 40960 ----a-w- c:\windows\system32\drivers\ndproxy.sys
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{1EA00BE1-6E54-4E2A-8099-680300BF23E1}"= "c:\program files\Seznam.cz\toolbar\toolbar.dll" [2010-10-07 187672]

[HKEY_CLASSES_ROOT\clsid\{1ea00be1-6e54-4e2a-8099-680300bf23e1}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{34AB3C4C-DA1A-4067-96F4-31452C7CFE65}"= "c:\program files\Seznam.cz\listicka.dll" [2010-10-07 1961240]

[HKEY_CLASSES_ROOT\clsid\{34ab3c4c-da1a-4067-96f4-31452c7cfe65}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SAOB Monitor"="c:\program files\Acronis\OnlineBackupStandalone\TrueImageMonitor.exe" [2010-09-02 2536752]
"TrueImageMonitor.exe"="c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe" [2010-09-23 5502312]
"Služba Acronis Scheduler2"="c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe" [2010-09-23 391144]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-10-21 198160]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2010-11-29 421888]
"avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2010-09-07 2838912]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-07-02 98304]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Tenda Wireless Utility.lnk - c:\program files\Tenda\Common\RaUI.exe [2011-1-5 379392]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLinkedConnections"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^AutoUpdate Monitor.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\AutoUpdate Monitor.lnk
backup=c:\windows\pss\AutoUpdate Monitor.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^HP Digital Imaging Monitor.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk
backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Rychlý začátek s aplikací HP Photosmart Premier.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Rychlý začátek s aplikací HP Photosmart Premier.lnk
backup=c:\windows\pss\Rychlý začátek s aplikací HP Photosmart Premier.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Tenda W311U.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Tenda W311U.lnk
backup=c:\windows\pss\Tenda W311U.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^Ing. Markovic^Nabídka Start^Programy^Po spuštění^OpenOffice.org 3.1.lnk]
path=c:\documents and settings\Ing. Markovic\Nabídka Start\Programy\Po spuštění\OpenOffice.org 3.1.lnk
backup=c:\windows\pss\OpenOffice.org 3.1.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
c:\windows\system32\dumprep 0 -k [X]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
c:\program files\Common Files\Nokia\MPlatform\NokiaMServer [X]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2010-09-20 22:07 932288 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2010-09-23 03:47 35760 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
2009-04-24 03:21 203928 ----a-w- e:\alcohol120\Alcohol 120\AxCmd.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
2008-04-14 04:22 15360 ----a-w- c:\windows\system32\ctfmon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2010-04-03 17:43 136176 ----a-w- c:\documents and settings\Ing. Markovic\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igndlm.exe]
2009-05-14 18:03 1103216 ----a-w- c:\program files\IGN\Download Manager\DLM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2010-11-10 23:40 421160 ----a-w- c:\program files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
2006-09-29 20:58 49152 ----a-w- c:\program files\CyberLink\PowerDVD\Language\Language.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaOviSuite2]
2010-09-02 09:26 672632 ----a-w- c:\program files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-11-29 16:38 421888 ----a-w- c:\program files\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
2009-07-02 11:32 98304 ----a-w- c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2010-05-14 10:44 248552 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
2009-10-21 07:28 198160 ----a-w- c:\program files\Common Files\Real\Update_OB\realsched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"WMPNetworkSvc"=3 (0x3)
"STI Simulator"=2 (0x2)
"StarWindServiceAE"=2 (0x2)
"ose"=3 (0x3)
"odserv"=3 (0x3)
"npggsvc"=3 (0x3)
"LightScribeService"=2 (0x2)
"JavaQuickStarterService"=2 (0x2)
"idsvc"=3 (0x3)
"gupdate"=2 (0x2)
"DAUpdaterSvc"=3 (0x3)
"avg9wd"=2 (0x2)
"ATI Smart"=2 (0x2)
"Ati HotKey Poller"=2 (0x2)
"afcdpsrv"=2 (0x2)
"avast! Web Scanner"=3 (0x3)
"avast! Mail Scanner"=3 (0x3)
"avast! Antivirus"=2 (0x2)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Skype\\Skype old\\Skype.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\CyberLink\\PowerDVD\\PowerDVD.exe"=
"c:\\WINDOWS\\System32\\DPNSvr.exe"=
"c:\\Program Files\\Common Files\\Nokia\\Service Layer\\A\\nsl_host_process.exe"=
"c:\\Program Files\\Nokia\\Nokia Software Updater\\nsu_ui_client.exe"=
"c:\\Program Files\\TeamViewer\\Version4\\TeamViewer.exe"=
"c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
"c:\\WINDOWS\\System32\\dpvsetup.exe"=
"c:\\WINDOWS\\System32\\dxdiag.exe"=
"c:\\Program Files\\DNA\\btdna.exe"=
"e:\\Dragon Age\\bin_ship\\daorigins.exe"=
"e:\\Dragon Age\\DAOriginsLauncher.exe"=
"e:\\Dragon Age\\bin_ship\\daupdatersvc.service.exe"=
"d:\\Program Files\\TelMe - DeskCall NG\\DeskCallEvo.exe"=
"d:\\Program Files\\PoivY\\PoivY.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\ICQ7.2\\ICQ.exe"=
"c:\\Program Files\\ICQ7.2\\aolload.exe"=
"c:\\Program Files\\VoipGain.com\\VoipGain\\VoipGain.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe"=
"c:\\WINDOWS\\System32\\mmc.exe"=
"c:\\Program Files\\Ventrilo\\Ventrilo.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3724:TCP"= 3724:TCP:Blizzard Downloader: 3724

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)

R0 sptd;sptd;c:\windows\system32\drivers\SPTD.sys [30.9.2009 22:40 721904]
R0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273);c:\windows\system32\drivers\tdrpm273.sys [17.11.2010 22:42 752128]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [15.12.2010 10:54 165584]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [24.8.2009 13:21 142592]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [15.12.2010 10:54 17744]
R2 Scutum50;Scutum50 NDIS Protocol Driver;c:\windows\system32\drivers\Scutum50.sys [5.1.2011 17:59 19072]
R3 Stmatm;ATM/ADSL miniport;c:\windows\system32\drivers\stmatm.sys [20.8.2007 23:29 60255]
S1 SASDIFSV;SASDIFSV;\??\c:\program files\SUPERAntiSpyware\SASDIFSV.SYS --> c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [?]
S1 SASKUTIL;SASKUTIL;\??\c:\program files\SUPERAntiSpyware\SASKUTIL.SYS --> c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [?]
S3 afcdp;afcdp;c:\windows\system32\drivers\afcdp.sys [17.11.2010 22:42 163232]
S3 c65013264;C-Media CM6501 Like Sound UDAX Interface;c:\windows\system32\drivers\c6501.sys [23.1.2011 19:43 1419968]
S3 npkycryp;npkycryp;\??\c:\program files\L2 - Hellbound\system1\npkycryp.sys --> c:\program files\L2 - Hellbound\system1\npkycryp.sys [?]
S3 PAC7311;Phenix-Q8;c:\windows\system32\drivers\PA707UCM.SYS [18.10.2005 11:48 154752]
S3 TaurusUsb;ADSL Modem USB Service;c:\windows\system32\drivers\torususb.sys [20.8.2007 23:29 549421]
S3 TKFsAc;TKFsAc;c:\windows\system32\TKFsAc2k.sys [3.8.2009 11:03 88864]
S3 TKFsAv;TKFsAv;c:\windows\system32\TKFsAv2k.sys [8.4.2010 21:51 31488]
S3 TKFsFt;TKFsFt;c:\windows\system32\TKFsFt2k.sys [3.8.2009 11:03 79584]
S3 TKRgAc;TKRgAc;c:\windows\system32\TKRgAc2k.sys [3.8.2009 11:03 41984]
S3 TKRgFt;TKRgFt;c:\windows\system32\TKRgFtXp.sys [3.8.2009 11:03 24704]
S4 afcdpsrv;Služba Acronis Nonstop Backup;c:\program files\Common Files\Acronis\CDP\afcdpsrv.exe [17.11.2010 22:42 3975088]
S4 DAUpdaterSvc;Dragon Age: Prameny - aktualizace obsahu;e:\dragon age\bin_ship\daupdatersvc.service.exe [24.12.2009 20:16 25832]
S4 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [13.6.2010 11:54 136176]
S4 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des -service --> c:\windows\system32\GameMon.des -service [?]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2007-05-15 16:08 452136 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
mLocal Page =
mStart Page = hxxp://www.microsoft.com
uInternet Connection Wizard,ShellNext = iexplore
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: {{0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - c:\program files\Seznam.cz\listicka.dll
FF - ProfilePath - c:\documents and settings\Ing. Markovic\Data aplikací\Mozilla\Firefox\Profiles\7cq9bdj7.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - seznam.cz
FF - prefs.js: network.proxy.type - 0
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Flagfox: {1018e4d6-728f-4b20-ad56-37578a4de76b} - %profile%\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}
FF - Ext: Greasemonkey: {e4a8a97b-f2ed-450b-b12d-ee082ba24781} - %profile%\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
FF - Ext: ICQ Toolbar: {800b5000-a755-47e1-992b-48a1c1357f07} - %profile%\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
FF - Ext: Conduit Engine : engine@conduit.com - %profile%\extensions\engine@conduit.com
FF - Ext: InnoGames EN Community Toolbar: {942cd1d4-9cc1-4d31-876a-ea8f489f7a59} - %profile%\extensions\{942cd1d4-9cc1-4d31-876a-ea8f489f7a59}
FF - Ext: RealPlayer Browser Record Plugin: {ABDE892B-13A8-4d1b-88E6-365A6E755758} - c:\program files\real\realplayer\browserrecord\firefox\ext
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: PC Sync 2 Synchronisation Extension: bkmrksync@nokia.com - c:\program files\Nokia\Nokia PC Suite 7\bkmrksync
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
FF - Ext: Firefox Synchronisation Extension: {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70} - c:\program files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 2250000
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: network.http.max-connections - 48
FF - user.js: network.http.max-connections-per-server - 16
FF - user.js: network.http.max-persistent-connections-per-proxy - 16
FF - user.js: network.http.max-persistent-connections-per-server - 8
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.firstrequest - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 0
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

HKCU-Run-PlayNC Launcher - (no file)
HKLM-Run-C6501Sound - c6501.cpl
ShellExecuteHooks-{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - (no file)
MSConfigStartUp-ATICustomerCare - c:\program files\ATI\ATICustomerCare\ATICustomerCare.exe
MSConfigStartUp-DivXUpdate - c:\program files\DivX\DivX Update\DivXUpdate.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-01-28 12:47
Windows 5.1.2600 Service Pack 3 FAT NTAPI

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet008\Services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-3292285946-3697291689-1907411925-1005\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)

[HKEY_USERS\S-1-5-21-3292285946-3697291689-1907411925-1005\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:46,9f,bb,30,7e,f7,a9,92,55,cb,88,ad,83,9d,1e,ee,17,b3,9e,22,7f,7e,f5,
3f,41,90,a6,03,3a,6e,e4,5a,db,9d,cd,96,77,24,6a,3a,b6,c9,f9,79,7e,6b,63,af,\
"??"=hex:92,6e,ef,e1,98,fd,a0,f3,32,fd,76,2b,9c,ca,30,de
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(1056)
c:\windows\system32\Ati2evxx.dll
.
Celkový čas: 2011-01-28 12:48:46
ComboFix-quarantined-files.txt 2011-01-28 11:48

Před spuštěním: Volných bajtů: 61 948 395 520
Po spuštění: Volných bajtů: 62 175 281 152

- - End Of File - - 9648C91B3822CEE736A0E52235E96E9D

[motji]

Ten mikrofon prostě nefunguje vůbec?

[memart]

Kdyby
Ne, funguje kdyz neni za potreby:
- kdyz na neho fouknem, slysim bedny
- kdyz delam test na Skype, nevo u zvuk. zer., take vse OK
- kdyz ale zavolam a udela se spojeni, prestane fungovat (najdnou zeleny a funkcni mikrak dostane cerveny vykricnik a nemuze se navazat hovor.
U Skype neslysieji mne, VoIP hlasi "druha strana nevraci data" a Mumble zmrzne, hlasi konekci na server, ale nemuzu fungovat

[motji]

Zkuste mrknout sem, je to sice u ubuntu, ale možná to budete mít podobně
http://forum.ubuntu.cz/index.php?action ... pic=1918.0

[memart]

No, to mi nepomohlo
Ten Skype soubor vubec nemam, to okinko '20 dB Mic Boost' take ne.

Stejne problem mam obecny, ne jen ve Skype.
A pak je zajimave, ze kdyz jsem kolem tohoto resil, objevila se znovu hlaska o napadeni virem?
Nic jsem nemohl udelat, jen smazat a toto je jedine co jsem byl schopny zaznamenat:

Hlaska pri reseni zvuku.JPG

(95.22 KiB) Staženo 50 x

Co jeste my bylo divne, nemohl jsem odhacknout "vybrat" u vlastnostech hlasu, zvukova zarizeni:

Microfon.JPG

(67.08 KiB) Staženo 50 x

Mozna to tak ma byt, ale je to fixne, ne da se zmanit?

Co ted?

[motji]

Stahněte z mého podpisu AVPTOOl http://www.viry.cz/forum/viewtopic.php?f=29&t=58179

-Podle návodu nainstalujte a proveďte sken
-co najde nechejte léčit, mazat
-sken může trvat několik hodin
-vložte zde log z výsledky

[cernohous13]

Jen vlezu z dotazem - motji promine

Máš tam nastavené C-media CM6501... ?

mikrofon.png (31.85 KiB) Zobrazeno 1056 x

[memart]

Dobry!

1) K tomu poslednimu -> Skype instrukci od kolegy:
- Dekuji! Jo, mam to tam dobre, pouzivam Skype uz 5-6 let a vice krat jse resil tuto problematiku se Skype zvukem.
Prave jsem vyuzil prilezitost overit jestli to nahodou nefunguje, ale NE
Mikrofom pred volanim mam OK, zel. ukazatel poskakuje na zvuk, pak 1-2s po navazani spojeni naskoci vystr. tabulka ze je mikrofom nefunkcni a misto zelene ikony nad Zar. zvuku se objevi cervene
Po zruseni hovoru mikrak znovu funguje a ikona je uz oranzova.
(Tuto zavadu jsem stejne zjistil u Mumble a ani pres VoIP neni spojeni.)

2) Ted ta kontrola s AVPTOOL -> probehla bez zjistenych zavad, hmmm:

Kód: Vybrat vše

Automatická kontrola: dokončeno před 1 hod.   (události: 2, objekty: 903702, čas: 02:01:28)	
31.1.2011 15:10:59	Úloha byla spuštěna			
31.1.2011 17:12:27	Úloha byla dokončena			

[motji]

Zkusím se zeptat kolegy milinesse, opravdu nevím

[MiliNess]

Dobrý večer, těžko říci. Pokusil bych se updatnout ovladač zvukovky.

[memart]

Dekuji!
To jsem udelal, predtim nez jsem Vam zde napsal, ach...
Co to muze byt?

[MiliNess]

Někde jsem viděl řešení podobného problému tím způsobem, že dotyčný nainstaloval do W XP novější ovladač pro Windows Vista.
http://leteckaposta.cz/449782860
případně
http://dlsvr02.asus.com/pub/ASUS/mb/soc ... _Vista.zip
Udělejte si bod obnovy, odinstalujte současný zvukový ovladač a zkuste tento.