VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o kontrolu pc

https://forum.viry.cz:443/viewtopic.php?t=120582

Stránka 1 z 1

Prosím o kontrolu pc

Napsal: 23 bře 2012 16:23
od jaroslav.24
Dobry den
prosím o kontrolu pc-je pomalé a zasekané,ačkoliv hry které hraji /diablo/ není natolik náročná hra,aby se my toto dělo.Bojím se že něco běží v pozadí.
Děkuji

Logfile of random's system information tool 1.09 (written by random/random)
Run by Kryton at 2012-03-23 16:15:49
Microsoft Windows XP Home Edition Service Pack 3
System drive D: has 104 GB (68%) free of 153 GB
Total RAM: 1023 MB (61% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:16:02, on 23.3.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\WINDOWS\system32\svchost.exe
D:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
D:\Program Files\Java\jre6\bin\jqs.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\Mixer.exe
D:\Program Files\COMODO\COMODO Internet Security\cfp.exe
D:\WINDOWS\system32\ctfmon.exe
D:\WINDOWS\System32\svchost.exe
D:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
D:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
D:\Program Files\Internet Explorer\iexplore.exe
D:\Program Files\Internet Explorer\iexplore.exe
D:\Documents and Settings\Kryton\Plocha\RSIT.exe
D:\Program Files\trend micro\Kryton.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - D:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [CanonMyPrinter] D:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [COMODO Internet Security] "D:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKCU\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Advanced SystemCare 5] "D:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe" /Manual
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://D:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: WikiKomentáře Google... - res://D:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
O9 - Extra button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - D:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - D:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 7943405625
O17 - HKLM\System\CCS\Services\Tcpip\..\{8B78B8A7-3CF0-48F9-A1DA-729C351CA4B9}: NameServer = 8.26.56.26,156.154.70.22
O17 - HKLM\System\CCS\Services\Tcpip\..\{C46BACF5-A9F0-4206-B3D0-E44ADE3BC90A}: NameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\..\{E02C6548-1F37-40F4-94A2-496892B5BBD9}: NameServer = 8.26.56.26,156.154.70.22
O20 - AppInit_DLLs: D:\WINDOWS\system32\guard32.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - D:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - D:\WINDOWS\system32\browseui.dll
O23 - Service: Advanced SystemCare Service 5 (AdvancedSystemCareService5) - IObit - D:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - D:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - D:\WINDOWS\system32\ati2sgag.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - D:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - D:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - D:\Program Files\Java\jre6\bin\jqs.exe

--
End of file - 6145 bytes

======Scheduled tasks folder======

D:\WINDOWS\tasks\User_Feed_Synchronization-{02CAED95-17C9-400B-A558-BACCE1EC60BB}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - D:\Program Files\Java\jre6\bin\ssv.dll [2012-03-02 325408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - D:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - D:\Program Files\Java\jre6\bin\jp2ssv.dll [2012-03-02 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2012-03-02 79648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"C-Media Mixer"=Mixer.exe /startup []
"CanonMyPrinter"=D:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2010-03-25 2516296]
"COMODO Internet Security"=D:\Program Files\COMODO\COMODO Internet Security\cfp.exe [2012-03-11 6749512]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=D:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Advanced SystemCare 5"=D:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe [2011-12-29 620376]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\D:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Wireless Utility.lnk]
D:\PROGRA~1\EDIMAX\Common\RaUI.exe [2007-12-14 716800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" D:\WINDOWS\system32\guard32.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
D:\WINDOWS\system32\Ati2evxx.dll [2006-11-22 90112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - D:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\Program Files\ICQ7.7\ICQ.exe"="D:\Program Files\ICQ7.7\ICQ.exe:*:Enabled:ICQ7.7"
"D:\Program Files\Diablo II\Diablo II.exe"="D:\Program Files\Diablo II\Diablo II.exe:*:Enabled:Diablo II - Lord of Destruction"
"D:\Program Files\VideoLAN\VLC\vlc.exe"="D:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player 2.0.0"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\Program Files\ICQ7.7\ICQ.exe"="D:\Program Files\ICQ7.7\ICQ.exe:*:Enabled:ICQ7.7"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=D:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=D:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"vidc.VP60"=D:\WINDOWS\system32\vp6vfw.dll
"vidc.VP61"=D:\WINDOWS\system32\vp6vfw.dll

======List of files/folders created in the last 1 month======

2012-03-23 16:15:50 ----D---- D:\Program Files\trend micro
2012-03-23 16:15:49 ----D---- D:\rsit
2012-03-23 09:37:34 ----D---- D:\Documents and Settings\All Users\Data aplikací\CPA_VA
2012-03-23 09:36:55 ----D---- D:\Documents and Settings\All Users\Data aplikací\Comodo
2012-03-22 17:31:19 ----A---- D:\WINDOWS\system32\cmdcsr.dll
2012-03-22 16:35:33 ----A---- D:\WINDOWS\system32\drivers\sfi.dat
2012-03-22 16:32:28 ----D---- D:\Program Files\COMODO
2012-03-22 16:32:27 ----A---- D:\WINDOWS\system32\gdiplus.dll
2012-03-22 16:26:22 ----D---- D:\Documents and Settings\All Users\Data aplikací\Comodo Downloader
2012-03-20 10:37:34 ----N---- D:\WINDOWS\system32\MpSigStub.exe
2012-03-18 10:21:06 ----A---- D:\WINDOWS\system32\XAudio2_7.dll
2012-03-18 10:21:06 ----A---- D:\WINDOWS\system32\XAPOFX1_5.dll
2012-03-18 10:21:05 ----A---- D:\WINDOWS\system32\xactengine3_7.dll
2012-03-18 10:21:05 ----A---- D:\WINDOWS\system32\D3DCompiler_43.dll
2012-03-18 10:21:04 ----A---- D:\WINDOWS\system32\d3dx11_43.dll
2012-03-18 10:21:04 ----A---- D:\WINDOWS\system32\d3dcsx_43.dll
2012-03-18 10:21:03 ----A---- D:\WINDOWS\system32\d3dx10_43.dll
2012-03-18 10:21:02 ----A---- D:\WINDOWS\system32\XAudio2_6.dll
2012-03-18 10:21:02 ----A---- D:\WINDOWS\system32\XAPOFX1_4.dll
2012-03-18 10:21:02 ----A---- D:\WINDOWS\system32\D3DX9_43.dll
2012-03-18 10:21:01 ----A---- D:\WINDOWS\system32\xactengine3_6.dll
2012-03-18 10:21:01 ----A---- D:\WINDOWS\system32\X3DAudio1_7.dll
2012-03-18 10:21:00 ----A---- D:\WINDOWS\system32\XAudio2_5.dll
2012-03-18 10:21:00 ----A---- D:\WINDOWS\system32\xactengine3_5.dll
2012-03-18 10:20:59 ----A---- D:\WINDOWS\system32\D3DCompiler_42.dll
2012-03-18 10:20:52 ----A---- D:\WINDOWS\system32\d3dcsx_42.dll
2012-03-18 10:20:51 ----A---- D:\WINDOWS\system32\d3dx11_42.dll
2012-03-18 10:20:51 ----A---- D:\WINDOWS\system32\d3dx10_42.dll
2012-03-18 10:20:50 ----A---- D:\WINDOWS\system32\D3DX9_42.dll
2012-03-18 10:20:49 ----A---- D:\WINDOWS\system32\d3dx10_41.dll
2012-03-18 10:20:49 ----A---- D:\WINDOWS\system32\D3DCompiler_41.dll
2012-03-18 10:20:48 ----A---- D:\WINDOWS\system32\XAPOFX1_3.dll
2012-03-18 10:20:48 ----A---- D:\WINDOWS\system32\D3DX9_41.dll
2012-03-18 10:20:47 ----A---- D:\WINDOWS\system32\XAudio2_4.dll
2012-03-18 10:20:47 ----A---- D:\WINDOWS\system32\xactengine3_4.dll
2012-03-18 10:20:47 ----A---- D:\WINDOWS\system32\X3DAudio1_6.dll
2012-03-18 10:20:46 ----A---- D:\WINDOWS\system32\d3dx10_40.dll
2012-03-18 10:20:46 ----A---- D:\WINDOWS\system32\D3DCompiler_40.dll
2012-03-18 10:20:45 ----A---- D:\WINDOWS\system32\D3DX9_40.dll
2012-03-18 10:20:44 ----A---- D:\WINDOWS\system32\XAudio2_3.dll
2012-03-18 10:20:44 ----A---- D:\WINDOWS\system32\XAPOFX1_2.dll
2012-03-18 10:20:43 ----A---- D:\WINDOWS\system32\XAPOFX1_1.dll
2012-03-18 10:20:43 ----A---- D:\WINDOWS\system32\xactengine3_3.dll
2012-03-18 10:20:43 ----A---- D:\WINDOWS\system32\X3DAudio1_5.dll
2012-03-18 10:20:42 ----A---- D:\WINDOWS\system32\XAudio2_2.dll
2012-03-18 10:20:42 ----A---- D:\WINDOWS\system32\xactengine3_2.dll
2012-03-18 10:20:41 ----A---- D:\WINDOWS\system32\d3dx10_39.dll
2012-03-18 10:20:41 ----A---- D:\WINDOWS\system32\D3DCompiler_39.dll
2012-03-18 10:20:40 ----A---- D:\WINDOWS\system32\D3DX9_39.dll
2012-03-18 10:20:39 ----A---- D:\WINDOWS\system32\XAudio2_1.dll
2012-03-18 10:20:39 ----A---- D:\WINDOWS\system32\XAPOFX1_0.dll
2012-03-18 10:20:39 ----A---- D:\WINDOWS\system32\xactengine3_1.dll
2012-03-18 10:20:38 ----A---- D:\WINDOWS\system32\X3DAudio1_4.dll
2012-03-18 10:20:38 ----A---- D:\WINDOWS\system32\d3dx10_38.dll
2012-03-18 10:20:38 ----A---- D:\WINDOWS\system32\D3DCompiler_38.dll
2012-03-18 10:20:37 ----A---- D:\WINDOWS\system32\D3DX9_38.dll
2012-03-18 10:20:36 ----A---- D:\WINDOWS\system32\XAudio2_0.dll
2012-03-18 10:20:36 ----A---- D:\WINDOWS\system32\xactengine3_0.dll
2012-03-18 10:20:35 ----A---- D:\WINDOWS\system32\X3DAudio1_3.dll
2012-03-18 10:20:34 ----A---- D:\WINDOWS\system32\d3dx10_37.dll
2012-03-18 10:20:34 ----A---- D:\WINDOWS\system32\D3DCompiler_37.dll
2012-03-18 10:20:33 ----A---- D:\WINDOWS\system32\xactengine2_10.dll
2012-03-18 10:20:33 ----A---- D:\WINDOWS\system32\D3DX9_37.dll
2012-03-18 10:20:32 ----A---- D:\WINDOWS\system32\d3dx10_36.dll
2012-03-18 10:20:32 ----A---- D:\WINDOWS\system32\D3DCompiler_36.dll
2012-03-18 10:20:31 ----A---- D:\WINDOWS\system32\d3dx9_36.dll
2012-03-18 10:20:30 ----A---- D:\WINDOWS\system32\xactengine2_9.dll
2012-03-18 10:20:29 ----A---- D:\WINDOWS\system32\d3dx10_35.dll
2012-03-18 10:20:29 ----A---- D:\WINDOWS\system32\D3DCompiler_35.dll
2012-03-18 10:20:28 ----A---- D:\WINDOWS\system32\d3dx9_35.dll
2012-03-18 10:20:27 ----A---- D:\WINDOWS\system32\xactengine2_8.dll
2012-03-18 10:20:27 ----A---- D:\WINDOWS\system32\X3DAudio1_2.dll
2012-03-18 10:20:26 ----A---- D:\WINDOWS\system32\d3dx10_34.dll
2012-03-18 10:20:26 ----A---- D:\WINDOWS\system32\D3DCompiler_34.dll
2012-03-18 10:20:25 ----A---- D:\WINDOWS\system32\xinput1_3.dll
2012-03-18 10:20:25 ----A---- D:\WINDOWS\system32\d3dx9_34.dll
2012-03-18 10:20:23 ----A---- D:\WINDOWS\system32\xactengine2_7.dll
2012-03-18 10:20:19 ----A---- D:\WINDOWS\system32\d3dx10_33.dll
2012-03-18 10:20:19 ----A---- D:\WINDOWS\system32\D3DCompiler_33.dll
2012-03-18 10:20:16 ----A---- D:\WINDOWS\system32\d3dx9_33.dll
2012-03-18 10:20:15 ----A---- D:\WINDOWS\system32\xactengine2_6.dll
2012-03-18 10:20:15 ----A---- D:\WINDOWS\system32\xactengine2_5.dll
2012-03-18 10:20:14 ----A---- D:\WINDOWS\system32\d3dx9_32.dll
2012-03-18 10:20:13 ----A---- D:\WINDOWS\system32\xactengine2_4.dll
2012-03-18 10:20:13 ----A---- D:\WINDOWS\system32\x3daudio1_1.dll
2012-03-18 10:20:12 ----A---- D:\WINDOWS\system32\d3dx9_31.dll
2012-03-18 10:20:11 ----A---- D:\WINDOWS\system32\xinput1_2.dll
2012-03-18 10:20:11 ----A---- D:\WINDOWS\system32\xactengine2_3.dll
2012-03-18 10:19:17 ----D---- D:\WINDOWS\Logs
2012-03-17 18:42:08 ----A---- D:\WINDOWS\system32\RegistryDefragBootTime.exe
2012-03-17 18:31:54 ----A---- D:\WINDOWS\system32\SmartDefragBootTime.exe
2012-03-17 18:31:54 ----A---- D:\WINDOWS\system32\drivers\SmartDefragDriver.sys
2012-03-17 18:26:44 ----D---- D:\Documents and Settings\All Users\Data aplikací\IObit
2012-03-17 18:26:12 ----D---- D:\Program Files\IObit
2012-03-15 12:05:19 ----ASH---- D:\pagefile.sys
2012-03-14 21:58:02 ----HDC---- D:\WINDOWS\$NtUninstallKB2641653$
2012-03-14 21:53:16 ----HDC---- D:\WINDOWS\$NtUninstallKB2621440$
2012-03-14 21:52:35 ----HDC---- D:\WINDOWS\$NtUninstallKB2647518$
2012-03-08 20:17:00 ----A---- D:\WINDOWS\system32\drivers\AegisP.sys
2012-03-08 20:16:45 ----A---- D:\WINDOWS\system32\drivers\rt73.sys
2012-03-08 20:16:37 ----D---- D:\Program Files\EDIMAX
2012-03-07 18:36:37 ----D---- D:\Documents and Settings\All Users\Data aplikací\Motive
2012-03-07 16:37:26 ----DC---- D:\WINDOWS\system32\DRVSTORE
2012-03-04 19:13:14 ----A---- D:\WINDOWS\DIIUnin.dat
2012-03-04 19:13:12 ----A---- D:\WINDOWS\DIIUnin.pif
2012-03-04 19:13:11 ----A---- D:\WINDOWS\DIIUnin.exe
2012-03-04 19:08:51 ----D---- D:\Program Files\Diablo II
2012-03-02 20:51:53 ----A---- D:\WINDOWS\system32\drivers\USBSTOR.SYS
2012-03-02 13:13:25 ----D---- D:\Program Files\Common Files\Java
2012-03-02 13:12:22 ----A---- D:\WINDOWS\system32\javaws.exe
2012-03-02 13:12:22 ----A---- D:\WINDOWS\system32\javaw.exe
2012-03-02 13:12:22 ----A---- D:\WINDOWS\system32\java.exe

======List of files/folders modified in the last 1 month======

2012-03-23 16:15:50 ----RD---- D:\Program Files
2012-03-23 16:06:30 ----D---- D:\Documents and Settings\Kryton\Data aplikací\ICQ
2012-03-23 15:51:15 ----D---- D:\WINDOWS\system32\CatRoot2
2012-03-23 15:50:55 ----D---- D:\WINDOWS\Temp
2012-03-23 15:50:47 ----D---- D:\WINDOWS
2012-03-23 13:22:24 ----A---- D:\WINDOWS\SchedLgU.Txt
2012-03-23 12:28:41 ----D---- D:\WINDOWS\system32\config
2012-03-23 09:59:33 ----D---- D:\WINDOWS\system32
2012-03-23 09:38:49 ----SHD---- D:\WINDOWS\Installer
2012-03-23 09:37:08 ----D---- D:\WINDOWS\system32\drivers
2012-03-23 09:36:46 ----SD---- D:\WINDOWS\Tasks
2012-03-21 23:44:24 ----D---- D:\Program Files\VVSN
2012-03-21 11:24:24 ----D---- D:\Program Files\DAEMON Tools
2012-03-20 14:24:16 ----D---- D:\WINDOWS\Registration
2012-03-20 11:55:41 ----D---- D:\WINDOWS\Prefetch
2012-03-20 10:24:32 ----HD---- D:\WINDOWS\inf
2012-03-20 10:24:30 ----SD---- D:\Documents and Settings\All Users\Data aplikací\Microsoft
2012-03-20 10:24:01 ----SD---- D:\Documents and Settings\Kryton\Data aplikací\Microsoft
2012-03-20 10:18:51 ----D---- D:\Documents and Settings\All Users\Data aplikací\AVAST Software
2012-03-18 10:20:09 ----RSD---- D:\WINDOWS\assembly
2012-03-18 10:19:26 ----D---- D:\WINDOWS\system32\DirectX
2012-03-18 09:24:10 ----A---- D:\WINDOWS\win.ini
2012-03-18 09:24:10 ----A---- D:\WINDOWS\system.ini
2012-03-17 18:31:56 ----D---- D:\Documents and Settings\Kryton\Data aplikací\IObit
2012-03-17 12:18:07 ----D---- D:\WINDOWS\pss
2012-03-14 21:58:05 ----RSHDC---- D:\WINDOWS\system32\dllcache
2012-03-14 21:57:58 ----HD---- D:\WINDOWS\$hf_mig$
2012-03-14 21:54:16 ----A---- D:\WINDOWS\system32\MRT.exe
2012-03-12 08:38:48 ----D---- D:\Documents and Settings\All Users\Data aplikací\CanonIJPLM
2012-03-11 22:13:18 ----A---- D:\WINDOWS\system32\guard32.dll
2012-03-11 16:17:06 ----D---- D:\Documents and Settings\Kryton\Data aplikací\vlc
2012-03-08 20:58:09 ----D---- D:\WINDOWS\system32\LogFiles
2012-03-08 20:18:42 ----D---- D:\WINDOWS\system32\CatRoot
2012-03-08 20:16:36 ----HD---- D:\Program Files\InstallShield Installation Information
2012-03-07 18:36:44 ----D---- D:\Program Files\Common Files\Motive
2012-03-07 16:48:06 ----D---- D:\WINDOWS\system32\drivers\etc
2012-03-07 16:38:37 ----A---- D:\WINDOWS\system32\PerfStringBackup.INI
2012-03-02 15:49:03 ----D---- D:\Program Files\Google
2012-03-02 14:55:35 ----D---- D:\WINDOWS\WinSxS
2012-03-02 13:13:25 ----D---- D:\Program Files\Common Files
2012-03-02 13:12:08 ----A---- D:\WINDOWS\system32\deployJava1.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 Inspect;COMODO Internet Security Firewall Driver; D:\WINDOWS\System32\DRIVERS\inspect.sys [2012-03-11 97760]
R0 PxHelp20;PxHelp20; D:\WINDOWS\System32\Drivers\PxHelp20.sys [2007-03-08 43528]
R0 SmartDefragDriver;SmartDefragDriver; D:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [2010-11-26 14776]
R0 sptd;sptd; D:\WINDOWS\System32\Drivers\sptd.sys [2012-01-29 664064]
R0 uagp35;Filtr Microsoft AGPv3.5; D:\WINDOWS\system32\DRIVERS\uagp35.sys [2008-04-13 44672]
R1 AmdK7;Ovladač procesoru AMD K7; D:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41600]
R1 cmderd;COMODO Internet Security Eradication Driver; D:\WINDOWS\System32\DRIVERS\cmderd.sys [2012-03-11 18056]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; D:\WINDOWS\System32\DRIVERS\cmdguard.sys [2012-03-11 494968]
R1 cmdHlp;COMODO Internet Security Helper Driver; D:\WINDOWS\System32\DRIVERS\cmdhlp.sys [2012-03-11 31704]
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; D:\WINDOWS\system32\DRIVERS\tcpip6.sys [2010-02-11 226880]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.7.5.0; D:\WINDOWS\system32\DRIVERS\AegisP.sys [2012-03-08 21361]
R3 ati2mtag;ati2mtag; D:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2006-11-22 2829824]
R3 cmpci;C-Media PCI Audio Driver (WDM); D:\WINDOWS\system32\drivers\cmaudio.sys [2002-01-29 370382]
R3 dtscsi;dtscsi; D:\WINDOWS\System32\Drivers\dtscsi.sys [2012-01-29 223128]
R3 RT73;RT73 USB Wireless LAN Card Driver; D:\WINDOWS\system32\DRIVERS\rt73.sys [2008-01-15 459520]
R3 SISNIC;SiS PCI Fast Ethernet Adapter Driver; D:\WINDOWS\system32\DRIVERS\sisnic.sys [2004-08-03 32768]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; D:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-13 12288]
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\D:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS []
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\D:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\D:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\D:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\D:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS []
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\D:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; D:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Třída USB Printer; D:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; D:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; D:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; D:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; D:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 6to4;Pomocná služba protokolu IPv6; D:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 AdvancedSystemCareService5;Advanced SystemCare Service 5; D:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe [2011-12-29 497496]
R2 Ati HotKey Poller;Ati HotKey Poller; D:\WINDOWS\system32\Ati2evxx.exe [2006-11-22 430080]
R2 cmdAgent;COMODO Internet Security Helper Service; D:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2012-03-11 1983232]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; D:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2010-04-05 116104]
R2 JavaQuickStarterService;Java Quick Starter; D:\Program Files\Java\jre6\bin\jqs.exe [2012-03-02 153376]
S2 ATI Smart;ATI Smart; D:\WINDOWS\system32\ati2sgag.exe [2006-11-22 520192]
S3 aspnet_state;Stavová služba ASP.NET; D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; d:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; d:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; D:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WinRM;Windows Remote Management (WS-Management); D:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; D:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; D:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; d:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Re: Prosím o kontrolu pc

Napsal: 24 bře 2012 07:18
od Mc_Murphy
Zdravím. :162:

Vydž minutku, na logu se intenzivně pracuje. Obrázek

Re: Prosím o kontrolu pc

Napsal: 24 bře 2012 07:31
od Mc_Murphy
:arrow: Konečně nějaký skalní fanoušek Diabla - taky hraju dodnes. :| :happy:
:arrow: A podle názvu počítače Obrázek soudím, že jsi i fanda Red Dwarfa - tak to jsi můj člověk. :idea: :thumbsup:
:arrow: V logu žádnou havěť nevidím, jen tam máš v nastavení DNS IP adresy do USA: 8.26.56.26 a 156.154.70.22 - ty asi nemáš nastaveny schválně, co? :?:

:!: Doporučuji svižně odinstalovat Advanced SystemCare 5 a následně i vše od IObit. Jsou to čínské šmejdy, které hledají nesmyslné a neexistující problémy. Tvůrci software ukradli databázi havěti jiné renomované společnosti a účinek na PC je spíše nulový až negativní. :boxed:


:arrow: Stáhni RogueKiller - http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
  • Ukonči všechny programy!
  • Spusť RogueKiller. Pokud používáš Win Vista či Win 7, klikni na jeho ikonu pravým myšítkem a dej Run As Administrator či Spustit jako správce.
  • Počkej, než program dokončí Prescan.
  • Potom klikni na [Prohledat] a počkej, až prohlídka proběhne.
  • Klikni na tlačítko [Zpráva] - otevře se log, ten mi sem vlož.

Re: Prosím o kontrolu pc

Napsal: 24 bře 2012 09:12
od jaroslav.24
Děkuji
Samozřejmě že v usa nikoho neznám a čínu taky nemusím,takže jsem program odinstaloval.Zde je log

RogueKiller V7.3.2 [03/20/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v: Normální režim
Uživatel: Kryton [Práva správce]
Mód: Kontrola -- Datum: 03/24/2012 09:08:52

¤¤¤ Škodlivé procesy: 0 ¤¤¤

¤¤¤ Záznamy Registrů: 9 ¤¤¤
[DNS] HKLM\[...]\ControlSet001\Parameters\Interfaces\{8B78B8A7-3CF0-48F9-A1DA-729C351CA4B9} : NameServer (8.26.56.26,156.154.70.22) -> FOUND
[DNS] HKLM\[...]\ControlSet001\Parameters\Interfaces\{C46BACF5-A9F0-4206-B3D0-E44ADE3BC90A} : NameServer (10.0.0.138) -> FOUND
[DNS] HKLM\[...]\ControlSet001\Parameters\Interfaces\{E02C6548-1F37-40F4-94A2-496892B5BBD9} : NameServer (8.26.56.26,156.154.70.22) -> FOUND
[DNS] HKLM\[...]\ControlSet002\Parameters\Interfaces\{C46BACF5-A9F0-4206-B3D0-E44ADE3BC90A} : NameServer (10.0.0.138) -> FOUND
[DNS] HKLM\[...]\ControlSet003\Parameters\Interfaces\{8B78B8A7-3CF0-48F9-A1DA-729C351CA4B9} : NameServer (8.26.56.26,156.154.70.22) -> FOUND
[DNS] HKLM\[...]\ControlSet003\Parameters\Interfaces\{C46BACF5-A9F0-4206-B3D0-E44ADE3BC90A} : NameServer (10.0.0.138) -> FOUND
[DNS] HKLM\[...]\ControlSet003\Parameters\Interfaces\{E02C6548-1F37-40F4-94A2-496892B5BBD9} : NameServer (8.26.56.26,156.154.70.22) -> FOUND
[HJ] HKCU\[...]\Advanced : Start_ShowRecentDocs (0) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač: [NAHRÁNO] ¤¤¤
IRP[IRP_MJ_CREATE] : Unknown -> HOOKED ([MAJOR] atapi.sys @ 0xF76B6B40)
IRP[IRP_MJ_CLOSE] : Unknown -> HOOKED ([MAJOR] atapi.sys @ 0xF76B6B40)
IRP[IRP_MJ_DEVICE_CONTROL] : Unknown -> HOOKED ([MAJOR] atapi.sys @ 0xF76B6B40)
IRP[IRP_MJ_INTERNAL_DEVICE_CONTROL] : Unknown -> HOOKED ([MAJOR] atapi.sys @ 0xF76B6B40)
IRP[IRP_MJ_SYSTEM_CONTROL] : Unknown -> HOOKED ([MAJOR] atapi.sys @ 0xF76B6B40)
IRP[IRP_MJ_DEVICE_CHANGE] : Unknown -> HOOKED ([MAJOR] atapi.sys @ 0xF76B6B40)

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: WDC WD200BB-00DEA0 +++++
--- User ---
[MBR] f720615c64c73ea93f5d8afcb29f870b
[BSP] 33e331d9740bc271bb1a26c7ab035e4d : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 19085 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: ST3160815A +++++
--- User ---
[MBR] 99ca4b35720c94bc06652f5ebc5f8c14
[BSP] eee391c30f1dc966987a32afe05e2220 : Windows XP MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 152617 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[1].txt >>
RKreport[1].txt

Re: Prosím o kontrolu pc

Napsal: 24 bře 2012 12:05
od Mc_Murphy
:arrow: Takže provedeme opravy.
  • Ukonči všechny programy!
  • Spusť RogueKiller. Pokud používáš Win Vista či Win 7, klikni na jeho ikonu pravým myšítkem a dej Run As Administrator či Spustit jako správce.
  • Počkej, než program dokončí Prescan.
  • Zvol možnost [Prohledat] a počkej, až prohlídka proběhne.
  • V záložce Registry nech všechny nálezy označeny a klikni na tlačítko [Smazat].
  • Pak ještě klikni na tlačítko [Oprava DNS] a potom na [Zpráva] - opět vyskočí log, který mi sem vlož (stačí až ten poslední).

Re: Prosím o kontrolu pc

Napsal: 24 bře 2012 12:44
od jaroslav.24
Tady to je

RogueKiller V7.3.2 [03/20/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v: Normální režim
Uživatel: Kryton [Práva správce]
Mód: Kontrola -- Datum: 03/24/2012 12:44:06

¤¤¤ Škodlivé procesy: 0 ¤¤¤

¤¤¤ Záznamy Registrů: 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač: [NAHRÁNO] ¤¤¤
IRP[IRP_MJ_CREATE] : Unknown -> HOOKED ([MAJOR] atapi.sys @ 0xF76B6B40)
IRP[IRP_MJ_CLOSE] : Unknown -> HOOKED ([MAJOR] atapi.sys @ 0xF76B6B40)
IRP[IRP_MJ_DEVICE_CONTROL] : Unknown -> HOOKED ([MAJOR] atapi.sys @ 0xF76B6B40)
IRP[IRP_MJ_INTERNAL_DEVICE_CONTROL] : Unknown -> HOOKED ([MAJOR] atapi.sys @ 0xF76B6B40)
IRP[IRP_MJ_SYSTEM_CONTROL] : Unknown -> HOOKED ([MAJOR] atapi.sys @ 0xF76B6B40)
IRP[IRP_MJ_DEVICE_CHANGE] : Unknown -> HOOKED ([MAJOR] atapi.sys @ 0xF76B6B40)

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: WDC WD200BB-00DEA0 +++++
--- User ---
[MBR] f720615c64c73ea93f5d8afcb29f870b
[BSP] 33e331d9740bc271bb1a26c7ab035e4d : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 19085 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: ST3160815A +++++
--- User ---
[MBR] 99ca4b35720c94bc06652f5ebc5f8c14
[BSP] eee391c30f1dc966987a32afe05e2220 : Windows XP MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 152617 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[5].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt ; RKreport[5].txt

Re: Prosím o kontrolu pc

Napsal: 24 bře 2012 13:04
od Mc_Murphy
:arrow: OK, tak teď fixni v HJT níže uvedené položky.
  • Fixnout znamená, že spustíš HJT, zvolíš možnost [Do a system scan only] a zaškrtneš čtvereček vlevo od mnou vypsaných položek.
  • Poté klikneš na [Fix checked] a odsouhlasíš [ANO].
  • Položky, které v seznamu nenajdeš, prostě přeskoč.
  • HJT najdeš zde: C:\Program Files\trend micro\Kryton.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: WikiKomentáře Google... - res://D:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
O9 - Extra button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - D:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - D:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe


:arrow: Dále stáhni utilitu OTM z jednoho z těchto odkazů: Ulož ji na Plochu a dvojklikem spusť.

Do levého okna Paste Instructions for Items to be Moved zkopíruj tento script (pouze zelená písmenka v bílém poli!):

Kód: Vybrat vše

:Commands
[ClearAllRestorePoints]
[ResetHosts]
[Purity]
[EmptyTemp]
[EmptyFlash]

:Files
D:\Program Files\IObit
D:\Documents and Settings\Kryton\Data aplikací\IObit
D:\WINDOWS\tasks\User_Feed_Synchronization-{02CAED95-17C9-400B-A558-BACCE1EC60BB}.job
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp /s

:Services
JavaQuickStarterService

:Reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"C-Media Mixer"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\D:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Wireless Utility.lnk]
Nyní klikni na tlačítko [MoveIt!], čímž vše spustíš.
Po restartu mi sem hoď log, který najdeš v C:\_OTM\MovedFiles\

Re: Prosím o kontrolu pc

Napsal: 24 bře 2012 13:25
od jaroslav.24
Tak doufám že jsem to udělal dobře.Tady to je

All processes killed
========== COMMANDS ==========

Restore points cleared and new OTM Restore Point set!
D:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Kryton
->Temp folder emptied: 6167157 bytes
->Temporary Internet Files folder emptied: 26770761 bytes
->Java cache emptied: 1713226 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 574 bytes

User: LocalService
->Temp folder emptied: 65984 bytes
->Temporary Internet Files folder emptied: 331178 bytes

User: NetworkService
->Temp folder emptied: 101614 bytes
->Temporary Internet Files folder emptied: 33237 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2148726 bytes
%systemroot%\System32 .tmp files removed: 2504 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 108 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 14294512 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 78571 bytes
RecycleBin emptied: 3628016 bytes

Total Files Cleaned = 53,00 mb


[EMPTYFLASH]

User: All Users

User: Default User

User: Kryton
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

Total Flash Files Cleaned = 0,00 mb

========== FILES ==========
D:\Program Files\IObit\Smart Defrag 2\LatestNews folder moved successfully.
D:\Program Files\IObit\Smart Defrag 2 folder moved successfully.
D:\Program Files\IObit\Advanced SystemCare 5\Update folder moved successfully.
D:\Program Files\IObit\Advanced SystemCare 5\LatestNews folder moved successfully.
D:\Program Files\IObit\Advanced SystemCare 5\BootTimeLog folder moved successfully.
D:\Program Files\IObit\Advanced SystemCare 5\ASCServiceLog folder moved successfully.
D:\Program Files\IObit\Advanced SystemCare 5 folder moved successfully.
D:\Program Files\IObit folder moved successfully.
D:\Documents and Settings\Kryton\Data aplikací\IObit\Smart Defrag 2 folder moved successfully.
D:\Documents and Settings\Kryton\Data aplikací\IObit\Advanced SystemCare V5\Toolbox folder moved successfully.
D:\Documents and Settings\Kryton\Data aplikací\IObit\Advanced SystemCare V5\Smart RAM folder moved successfully.
D:\Documents and Settings\Kryton\Data aplikací\IObit\Advanced SystemCare V5\Log folder moved successfully.
D:\Documents and Settings\Kryton\Data aplikací\IObit\Advanced SystemCare V5\DiskCheck folder moved successfully.
D:\Documents and Settings\Kryton\Data aplikací\IObit\Advanced SystemCare V5\Boottime folder moved successfully.
D:\Documents and Settings\Kryton\Data aplikací\IObit\Advanced SystemCare V5\Backup folder moved successfully.
D:\Documents and Settings\Kryton\Data aplikací\IObit\Advanced SystemCare V5 folder moved successfully.
D:\Documents and Settings\Kryton\Data aplikací\IObit\Advanced SystemCare V4 folder moved successfully.
D:\Documents and Settings\Kryton\Data aplikací\IObit folder moved successfully.
D:\WINDOWS\tasks\User_Feed_Synchronization-{02CAED95-17C9-400B-A558-BACCE1EC60BB}.job moved successfully.
File/Folder D:\WINDOWS\system32\*.tmp.dll not found.
File/Folder D:\WINDOWS\system32\SET*.tmp not found.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP161.tmp folder moved successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1C7.tmp folder moved successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1EE.tmp folder moved successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP239.tmp folder moved successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP240.tmp folder moved successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP251.tmp folder moved successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP26A.tmp folder moved successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2C.tmp folder moved successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2C6.tmp folder moved successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP31.tmp folder moved successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3AF.tmp folder moved successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5D9.tmp folder moved successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP6B1.tmp folder moved successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP7D7.tmp folder moved successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP823.tmp folder moved successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP923.tmp folder moved successfully.
D:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPA6.tmp folder moved successfully.
D:\WINDOWS\Installer\MSI1D.tmp moved successfully.
D:\WINDOWS\Installer\MSI1E.tmp moved successfully.
D:\WINDOWS\Installer\MSI1F.tmp moved successfully.
D:\WINDOWS\Installer\MSI20.tmp moved successfully.
D:\WINDOWS\Installer\MSI21.tmp moved successfully.
D:\WINDOWS\Installer\MSI22.tmp moved successfully.
D:\WINDOWS\Installer\MSI23.tmp moved successfully.
D:\WINDOWS\Installer\MSI24.tmp moved successfully.
D:\WINDOWS\Installer\MSI2CA.tmp moved successfully.
D:\WINDOWS\Installer\MSI43.tmp moved successfully.
D:\WINDOWS\Installer\MSI44.tmp moved successfully.
D:\WINDOWS\Installer\MSI45.tmp moved successfully.
D:\WINDOWS\Installer\MSI46.tmp moved successfully.
D:\WINDOWS\Installer\MSI47.tmp moved successfully.
D:\WINDOWS\Installer\MSI5DA.tmp moved successfully.
D:\WINDOWS\Installer\MSI7.tmp moved successfully.
D:\WINDOWS\Installer\MSIA.tmp moved successfully.
D:\WINDOWS\Installer\MSIB.tmp moved successfully.
D:\WINDOWS\Installer\MSIC.tmp moved successfully.
D:\WINDOWS\Installer\MSID.tmp moved successfully.
D:\WINDOWS\Installer\MSIE.tmp moved successfully.
D:\WINDOWS\Installer\{FD8E178D-8B4E-42DA-B434-EFF270329B1C}\upd82.tmp moved successfully.
D:\WINDOWS\SoftwareDistribution\AuthCabs\7971f918-a847-4430-9279-4a52d1efe18d\wltD0.tmp moved successfully.
D:\WINDOWS\SoftwareDistribution\Download\0f2bc76cb3ab48ad9125eed669be4404\download\BIT8E.tmp moved successfully.
D:\WINDOWS\SoftwareDistribution\Download\482c3daa7530bcee9ee19a42e573f646\BIT75.tmp moved successfully.
D:\WINDOWS\SoftwareDistribution\Download\6c8a37d93a52be727ef275a68f57a6c0\download\BIT90.tmp moved successfully.
D:\WINDOWS\SoftwareDistribution\Download\9233ebc7832e251b5fe0b4c5ba138c9a\BIT6A.tmp moved successfully.
D:\WINDOWS\SoftwareDistribution\Download\a895d28c086dbd02365a5c9f46ae977a\BIT67.tmp moved successfully.
========== SERVICES/DRIVERS ==========
Service JavaQuickStarterService stopped successfully!
Service JavaQuickStarterService deleted successfully!
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\C-Media Mixer deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\D:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Wireless Utility.lnk\ deleted successfully.

OTM by OldTimer - Version 3.1.19.0 log created on 03242012_132027

Files moved on Reboot...

Registry entries deleted on Reboot...

Re: Prosím o kontrolu pc

Napsal: 24 bře 2012 13:45
od Mc_Murphy
Jo, super, provedeno výtečně. :idea:

:???: Jak je na tom počítač? Je to lepší?

Re: Prosím o kontrolu pc

Napsal: 24 bře 2012 13:52
od jaroslav.24
Večer vyskoušíme po síti diablo a kdyby ne tak se ozvu. Zatím moc díky

Re: Prosím o kontrolu pc

Napsal: 24 bře 2012 14:08
od Mc_Murphy
OK, tak se potom ozvi, protože ještě musím uklidit po utilitách, které se použili, aby po mně nezůstal v PC nepořádek. ;)

Re: Prosím o kontrolu pc

Napsal: 24 bře 2012 18:37
od jaroslav.24
Tak teď jsu z toho trochu zmaten,nějak se nám to tady pomotalo. Já naposled psal že jdu vyskoušet diablo po síti. Tak teda u mě to funguje dobře ale zdá se že v druhým počítači to dělá problém.Asi je to moc stará hra a není stavěna na win 7. Seká se to. Takže můžeme ještě uklidit jak jsi říkal???

Re: Prosím o kontrolu pc

Napsal: 24 bře 2012 18:46
od Mc_Murphy
To si jen jeden uživatel popletl thread a hodil nám sem svůj log. Už je to vyřešeno. ;)

Mno to je celkem možné, že si s tím neví radu Win7 - přeci jenom, Diablo je už trošku veterán. :)
Tak tedy dočistíme...


:arrow: Spusť znovu OTM a klikni na tlačítko [CleanUp!], čímž po sobě program uklidí.

:arrow: T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
  • Stáhni a spusť.
  • Pro potvrzení volby mačkej A, Enter.
  • Po použití utilitu smaž.
  • Antiviry mohou tuto utilitu chybně označit jako vir - jedná se o falešný poplach - takže v pohodě stáhni (případně vypni při stahování antivir).
... a pak zbytek...

:arrow: TFC http://oldtimer.geekstogo.com/TFC.exe
  • Stáhni a spusť.
  • Klikni na Start a potvrď OK.
  • Program uklidí a může (nemusí) restartovat PC.
  • Po použití utilitu smaž.
:arrow: Pokud nemáš, stáhni CCleaner z tohoto odkazu.
  • Panel čistič
  • Vše nech jak je, jen dej Analyzovat a poté Spustit CCleaner.
  • Panel registry
  • Klikni na Hledej problémy.
  • Následně na Opravit problémy - zálohu registrů doporučuji udělat, oprav všechny problémy.
  • Postup opakuj, dokud nebude bez problémů - většinou cca 3x.
  • Panel nástroje
  • Zde můžeš odinstalovat nepotřebné programy.
Obrázek CCleaner doporučuji používat cca jednou za týden.

... a pokud nejsou žádné dotazy, bylo by to z mé strany vše. :worship:

Re: Prosím o kontrolu pc

Napsal: 24 bře 2012 19:35
od jaroslav.24
Díky a zatím naschle

Re: Prosím o kontrolu pc

Napsal: 24 bře 2012 19:40
od Mc_Murphy
Není vůbec zač a rádo se stalo. :85: Přeji pěkný den. :fez:

:closed:
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz