VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

PROSÍM O KONTROLU LOGU

https://forum.viry.cz:443/viewtopic.php?t=130525

Stránka 1 z 1

PROSÍM O KONTROLU LOGU

Napsal: 27 kvě 2013 15:57
od Segepe
Prosím o kontrolu logu.PC a internet se hodně často seká a je strašně pomalý.
Zde přikládám LOG:

Logfile of random's system information tool 1.09 (written by random/random)
Run by Misa at 2013-05-27 16:51:49
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 3 GB (37%) free of 8 GB
Total RAM: 1012 MB (58% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:51:58, on 27.5.2013
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\igfxext.exe
C:\DOCUME~1\Misa\LOCALS~1\Temp\RtkBtMnt.exe
C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
C:\Program Files\Photodex\ProShow Gold\ScsiAccess.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Misa\Dokumenty\Downloads\RSIT.exe
C:\Program Files\trend micro\Misa.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\Audio\Drivers\AzMixerSel.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Documents and Settings\Misa\Data aplikací\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Documents and Settings\Misa\Data aplikací\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\ProShow Gold\ScsiAccess.exe

--
End of file - 4069 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"LManager"=C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE [2008-05-14 821768]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-04-25 1044480]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-12-30 18082304]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2008-06-19 57344]
"AzMixerSel"=C:\Program Files\Realtek\Audio\Drivers\AzMixerSel.exe [2006-07-17 53248]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-02-28 141848]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-02-28 166424]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-02-28 137752]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-03-21 1061960]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2006-03-02 15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2004-08-17 1667584]
"cz.seznam.software.autoupdate"=C:\Documents and Settings\Misa\Data aplikací\Seznam.cz\szninstall.exe [2013-03-21 1061960]
"cz.seznam.software.szndesktop"=C:\Documents and Settings\Misa\Data aplikací\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-02-15 208896]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\PANDORA.TV\PanService\PandoraService.exe"="C:\Program Files\PANDORA.TV\PanService\PandoraService.exe:*:Enabled:PandoraService"
"F:\Nainstalované hry\Warcraft 3\Warcraft III\Warcraft III.exe"="F:\Nainstalované hry\Warcraft 3\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.FFDS"=ff_vfw.dll
"VIDC.X264"=x264vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm

======List of files/folders created in the last 3 months======

2013-05-27 16:51:49 ----D---- C:\rsit
2013-05-27 16:51:49 ----D---- C:\Program Files\trend micro
2013-05-26 18:23:28 ----SHD---- C:\Config.Msi
2013-05-15 09:14:20 ----D---- C:\63e385db53f9c787868a7dfe
2013-05-06 20:48:47 ----D---- C:\Program Files\Peter
2013-05-06 16:32:09 ----D---- C:\Documents and Settings\Misa\Data aplikací\WinRAR
2013-05-06 16:31:23 ----D---- C:\Program Files\WinRAR
2013-05-05 13:25:06 ----A---- C:\WINDOWS\War3Unin.dat
2013-05-05 13:25:05 ----A---- C:\WINDOWS\War3Unin.pif
2013-05-05 13:25:04 ----A---- C:\WINDOWS\War3Unin.exe
2013-05-05 13:09:08 ----A---- C:\WINDOWS\system32\drivers\dtsoftbus01.sys
2013-05-05 13:08:06 ----D---- C:\Documents and Settings\Misa\Data aplikací\DAEMON Tools Lite
2013-05-05 13:06:46 ----D---- C:\Program Files\DAEMON Tools Lite
2013-05-05 13:05:53 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2013-05-04 22:20:25 ----D---- C:\WINDOWS\system32\appmgmt
2013-05-03 19:06:20 ----D---- C:\Documents and Settings\Misa\Data aplikací\Anthropics
2013-05-03 19:01:04 ----D---- C:\Program Files\Portrait Professional 11 Trial
2013-05-02 19:19:12 ----A---- C:\WINDOWS\WORDPAD.INI
2013-05-01 19:05:57 ----A---- C:\WINDOWS\system32\lagarith.dll
2013-05-01 19:05:56 ----A---- C:\WINDOWS\system32\xvidvfw.dll
2013-05-01 19:05:56 ----A---- C:\WINDOWS\system32\xvidcore.dll
2013-05-01 19:05:56 ----A---- C:\WINDOWS\system32\x264vfw.dll
2013-05-01 19:05:46 ----A---- C:\WINDOWS\system32\unrar.dll
2013-05-01 19:05:25 ----A---- C:\WINDOWS\system32\ff_vfw.dll
2013-05-01 19:05:05 ----D---- C:\Program Files\K-Lite Codec Pack
2013-04-27 08:47:52 ----D---- C:\ab8d125e48a16800e5bea2cf
2013-04-21 16:31:18 ----D---- C:\641ae5780c6212b43d101cb02b
2013-04-11 15:18:46 ----D---- C:\Program Files\Seznam.cz
2013-04-11 15:08:58 ----D---- C:\Documents and Settings\Misa\Data aplikací\Seznam.cz
2013-04-11 15:05:50 ----D---- C:\Documents and Settings\Misa\Data aplikací\Skype
2013-04-11 15:01:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2013-04-09 21:24:35 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2013-03-31 20:46:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
2013-03-31 20:41:16 ----HDC---- C:\WINDOWS\$NtUninstallKB942288-v3$
2013-03-31 20:12:26 ----D---- C:\Program Files\Google
2013-03-29 20:06:39 ----D---- C:\Program Files\Photodex Presenter
2013-03-29 20:06:39 ----D---- C:\Documents and Settings\Misa\Data aplikací\Netscape
2013-03-29 19:58:35 ----D---- C:\Program Files\Photodex
2013-03-29 19:57:41 ----D---- C:\Documents and Settings\Misa\Data aplikací\Photodex
2013-03-29 19:57:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\Photodex
2013-03-20 09:32:52 ----D---- C:\KMPlayer
2013-03-17 14:41:04 ----D---- C:\Program Files\Microsoft Silverlight
2013-03-17 14:36:11 ----D---- C:\Documents and Settings\All Users\Data aplikací\APN
2013-03-11 17:12:14 ----D---- C:\Program Files\PANDORA.TV
2013-03-07 19:34:30 ----A---- C:\WINDOWS\system32\drivers\redbook.sys

======List of files/folders modified in the last 3 months======

2013-05-27 16:51:49 ----RD---- C:\Program Files
2013-05-27 16:29:15 ----D---- C:\WINDOWS\system32\CatRoot2
2013-05-27 16:28:22 ----D---- C:\WINDOWS\Prefetch
2013-05-27 16:15:26 ----D---- C:\WINDOWS\Temp
2013-05-26 20:57:04 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-05-26 18:27:12 ----D---- C:\WINDOWS\WinSxS
2013-05-26 18:26:52 ----D---- C:\WINDOWS\pchealth
2013-05-26 18:26:42 ----HD---- C:\WINDOWS\inf
2013-05-26 18:26:00 ----SHD---- C:\WINDOWS\Installer
2013-05-26 18:24:54 ----D---- C:\WINDOWS\system32\drivers
2013-05-26 18:24:08 ----SD---- C:\WINDOWS\Tasks
2013-05-15 21:24:55 ----D---- C:\WINDOWS\system32
2013-05-15 21:24:54 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2013-05-06 16:50:08 ----D---- C:\WINDOWS\system32\Restore
2013-05-06 16:23:50 ----D---- C:\WINDOWS
2013-05-05 13:11:42 ----DC---- C:\WINDOWS\system32\DRVSTORE
2013-04-21 16:21:02 ----D---- C:\WINDOWS\Help
2013-04-11 15:04:07 ----D---- C:\Program Files\Common Files
2013-04-11 09:11:57 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-04-09 20:59:00 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-03-31 20:42:39 ----RSHDC---- C:\WINDOWS\system32\dllcache
2013-03-31 20:20:18 ----D---- C:\Program Files\Mozilla Firefox
2013-03-31 20:20:15 ----D---- C:\Documents and Settings\Misa\Data aplikací\Mozilla

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2013-05-05 242240]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2006-03-02 39936]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2004-08-04 8832]
R3 AR5416;Atheros AR5008 Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athw.sys [2008-08-20 1318464]
R3 DKbFltr;Dritek Keyboard Filter Driver; C:\WINDOWS\system32\DRIVERS\DKbFltr.sys [2004-12-08 16896]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-15 5854752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-01-06 4968448]
R3 JMCR;JMCR; C:\WINDOWS\system32\DRIVERS\jmcr.sys [2008-07-08 96856]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2008-04-25 225024]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2006-03-02 31616]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2004-08-04 78464]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-04 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-04 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-04 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-04 10880]
S3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-08-07 111360]
S3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2006-03-02 67584]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-04 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-04 15360]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2006-03-02 26496]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-04 19328]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 PanService;PandoraService; C:\Program Files\PANDORA.TV\PanService\PandoraService.exe [2012-06-22 625816]
R2 ScsiAccess;ScsiAccess; C:\Program Files\Photodex\ProShow Gold\ScsiAccess.exe [2013-03-29 186760]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-03-31 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-15 256904]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-03-31 116648]

-----------------EOF-----------------

Re: PROSÍM O KONTROLU LOGU

Napsal: 27 kvě 2013 16:59
od Rudy
Zdravím!
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:files
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

V systému chybí základní zabezpečení - antivir.

Re: PROSÍM O KONTROLU LOGU

Napsal: 27 kvě 2013 17:19
od Segepe
Tady je nový log:

Logfile of random's system information tool 1.09 (written by random/random)
Run by Misa at 2013-05-27 18:17:23
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 3 GB (43%) free of 8 GB
Total RAM: 1012 MB (61% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:17:57, on 27.5.2013
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Photodex\ProShow Gold\ScsiAccess.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Documents and Settings\Misa\Data aplikací\Seznam.cz\szninstall.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\igfxext.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Misa\Dokumenty\Downloads\RSIT.exe
C:\Program Files\trend micro\Misa.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\Audio\Drivers\AzMixerSel.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Documents and Settings\Misa\Data aplikací\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Documents and Settings\Misa\Data aplikací\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\ProShow Gold\ScsiAccess.exe

--
End of file - 4254 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"LManager"=C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE [2008-05-14 821768]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-04-25 1044480]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-12-30 18082304]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2008-06-19 57344]
"AzMixerSel"=C:\Program Files\Realtek\Audio\Drivers\AzMixerSel.exe [2006-07-17 53248]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-02-28 141848]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-02-28 166424]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-02-28 137752]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-03-21 1061960]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2006-03-02 15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2004-08-17 1667584]
"cz.seznam.software.autoupdate"=C:\Documents and Settings\Misa\Data aplikací\Seznam.cz\szninstall.exe [2013-03-21 1061960]
"cz.seznam.software.szndesktop"=C:\Documents and Settings\Misa\Data aplikací\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-02-15 208896]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\PANDORA.TV\PanService\PandoraService.exe"="C:\Program Files\PANDORA.TV\PanService\PandoraService.exe:*:Enabled:PandoraService"
"F:\Nainstalované hry\Warcraft 3\Warcraft III\Warcraft III.exe"="F:\Nainstalované hry\Warcraft 3\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.FFDS"=ff_vfw.dll
"VIDC.X264"=x264vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm

======List of files/folders created in the last 1 month======

2013-05-27 18:08:52 ----D---- C:\_OTM
2013-05-27 16:51:49 ----D---- C:\rsit
2013-05-27 16:51:49 ----D---- C:\Program Files\trend micro
2013-05-26 18:23:28 ----SHD---- C:\Config.Msi
2013-05-15 09:14:20 ----D---- C:\63e385db53f9c787868a7dfe
2013-05-06 20:48:47 ----D---- C:\Program Files\Peter
2013-05-06 16:32:09 ----D---- C:\Documents and Settings\Misa\Data aplikací\WinRAR
2013-05-06 16:31:23 ----D---- C:\Program Files\WinRAR
2013-05-05 13:25:06 ----A---- C:\WINDOWS\War3Unin.dat
2013-05-05 13:25:05 ----A---- C:\WINDOWS\War3Unin.pif
2013-05-05 13:25:04 ----A---- C:\WINDOWS\War3Unin.exe
2013-05-05 13:09:08 ----A---- C:\WINDOWS\system32\drivers\dtsoftbus01.sys
2013-05-05 13:08:06 ----D---- C:\Documents and Settings\Misa\Data aplikací\DAEMON Tools Lite
2013-05-05 13:06:46 ----D---- C:\Program Files\DAEMON Tools Lite
2013-05-05 13:05:53 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2013-05-04 22:20:25 ----D---- C:\WINDOWS\system32\appmgmt
2013-05-03 19:06:20 ----D---- C:\Documents and Settings\Misa\Data aplikací\Anthropics
2013-05-03 19:01:04 ----D---- C:\Program Files\Portrait Professional 11 Trial
2013-05-02 19:19:12 ----A---- C:\WINDOWS\WORDPAD.INI
2013-05-01 19:05:57 ----A---- C:\WINDOWS\system32\lagarith.dll
2013-05-01 19:05:56 ----A---- C:\WINDOWS\system32\xvidvfw.dll
2013-05-01 19:05:56 ----A---- C:\WINDOWS\system32\xvidcore.dll
2013-05-01 19:05:56 ----A---- C:\WINDOWS\system32\x264vfw.dll
2013-05-01 19:05:46 ----A---- C:\WINDOWS\system32\unrar.dll
2013-05-01 19:05:25 ----A---- C:\WINDOWS\system32\ff_vfw.dll
2013-05-01 19:05:05 ----D---- C:\Program Files\K-Lite Codec Pack

======List of files/folders modified in the last 1 month======

2013-05-27 18:11:48 ----D---- C:\WINDOWS\Temp
2013-05-27 18:10:34 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-05-27 18:10:08 ----D---- C:\WINDOWS\system32\drivers
2013-05-27 18:10:06 ----D---- C:\WINDOWS\system32
2013-05-27 18:08:56 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-05-27 18:08:53 ----SD---- C:\WINDOWS\Tasks
2013-05-27 16:51:49 ----RD---- C:\Program Files
2013-05-27 16:29:15 ----D---- C:\WINDOWS\system32\CatRoot2
2013-05-27 16:28:22 ----D---- C:\WINDOWS\Prefetch
2013-05-27 16:20:15 ----D---- C:\Documents and Settings\Misa\Data aplikací\Seznam.cz
2013-05-26 18:27:12 ----SHD---- C:\WINDOWS\Installer
2013-05-26 18:27:12 ----D---- C:\WINDOWS\WinSxS
2013-05-26 18:26:52 ----D---- C:\WINDOWS\pchealth
2013-05-26 18:26:42 ----HD---- C:\WINDOWS\inf
2013-05-15 21:24:54 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2013-05-06 16:50:08 ----D---- C:\WINDOWS\system32\Restore
2013-05-06 16:23:50 ----D---- C:\WINDOWS
2013-05-05 13:11:42 ----DC---- C:\WINDOWS\system32\DRVSTORE
2013-05-04 22:22:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2013-05-04 22:21:48 ----D---- C:\Documents and Settings\Misa\Data aplikací\Skype

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2013-05-05 242240]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2006-03-02 39936]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2004-08-04 8832]
R3 AR5416;Atheros AR5008 Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athw.sys [2008-08-20 1318464]
R3 DKbFltr;Dritek Keyboard Filter Driver; C:\WINDOWS\system32\DRIVERS\DKbFltr.sys [2004-12-08 16896]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-15 5854752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-01-06 4968448]
R3 JMCR;JMCR; C:\WINDOWS\system32\DRIVERS\jmcr.sys [2008-07-08 96856]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2008-04-25 225024]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2006-03-02 31616]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2004-08-04 78464]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-04 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-04 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-04 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-04 10880]
S3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-08-07 111360]
S3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2006-03-02 67584]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-04 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-04 15360]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2006-03-02 26496]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-04 19328]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 PanService;PandoraService; C:\Program Files\PANDORA.TV\PanService\PandoraService.exe [2012-06-22 625816]
R2 ScsiAccess;ScsiAccess; C:\Program Files\Photodex\ProShow Gold\ScsiAccess.exe [2013-03-29 186760]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-03-31 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-15 256904]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-03-31 116648]

-----------------EOF-----------------


O antiviru vím,nainstaluju jej později,jelikož mi nejde ani aktualizace žádného antiviru

Re: PROSÍM O KONTROLU LOGU

Napsal: 27 kvě 2013 18:23
od Rudy
Dejte log ComboFix:
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware.

Re: PROSÍM O KONTROLU LOGU

Napsal: 27 kvě 2013 20:10
od Segepe
Tady je LOG:

ComboFix 13-05-27.02 - Misa 27.05.2013 20:52:54.1.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.1012.643 [GMT 2:00]
Spuštěný z: c:\documents and settings\Misa\Plocha\ComboFix.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-04-27 do 2013-05-27 )))))))))))))))))))))))))))))))
.
.
2013-05-27 16:08 . 2013-05-27 16:08 -------- d-----w- C:\_OTM
2013-05-27 14:51 . 2013-05-27 16:17 -------- d-----w- c:\program files\trend micro
2013-05-27 14:51 . 2013-05-27 14:52 -------- d-----w- C:\rsit
2013-05-15 07:14 . 2013-05-15 07:19 -------- d-----w- C:\63e385db53f9c787868a7dfe
2013-05-06 18:48 . 2013-05-06 18:48 -------- d-----w- c:\program files\Peter
2013-05-05 11:25 . 2013-05-05 11:25 2829 ----a-w- c:\windows\War3Unin.pif
2013-05-05 11:25 . 2013-05-05 11:25 126976 ----a-w- c:\windows\War3Unin.exe
2013-05-05 11:09 . 2013-05-05 11:12 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-05-05 11:08 . 2013-05-05 11:16 -------- d-----w- c:\documents and settings\Misa\Data aplikací\DAEMON Tools Lite
2013-05-05 11:06 . 2013-05-05 11:08 -------- d-----w- c:\program files\DAEMON Tools Lite
2013-05-05 11:05 . 2013-05-05 11:17 -------- d-----w- c:\documents and settings\All Users\Data aplikací\DAEMON Tools Lite
2013-05-03 17:06 . 2013-05-03 17:06 -------- d-----w- c:\documents and settings\Misa\Data aplikací\Anthropics
2013-05-03 17:06 . 2013-05-03 17:06 -------- d-----w- c:\documents and settings\Misa\Local Settings\Data aplikací\Anthropics
2013-05-03 17:01 . 2013-05-03 17:04 -------- d-----w- c:\program files\Portrait Professional 11 Trial
2013-05-01 17:05 . 2011-12-07 18:32 216064 ----a-w- c:\windows\system32\lagarith.dll
2013-05-01 17:05 . 2008-09-24 19:41 839680 ----a-w- c:\windows\system32\lameACM.acm
2013-05-01 17:05 . 2012-07-01 23:15 4102656 ----a-w- c:\windows\system32\x264vfw.dll
2013-05-01 17:05 . 2011-06-24 15:44 243200 ----a-w- c:\windows\system32\xvidvfw.dll
2013-05-01 17:05 . 2011-06-24 15:28 650752 ----a-w- c:\windows\system32\xvidcore.dll
2013-05-01 17:05 . 2011-12-21 18:14 151552 ----a-w- c:\windows\system32\ac3acm.acm
2013-05-01 17:05 . 2012-06-09 18:21 178688 ----a-w- c:\windows\system32\unrar.dll
2013-05-01 17:05 . 2013-03-07 18:00 112640 ----a-w- c:\windows\system32\ff_vfw.dll
2013-05-01 17:05 . 2013-05-01 17:05 -------- d-----w- c:\program files\K-Lite Codec Pack
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-15 19:24 . 2012-10-28 17:25 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-05-15 19:24 . 2012-10-28 17:25 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-03-11 23:10 . 2013-04-09 19:24 237088 ------w- c:\windows\system32\MpSigStub.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"cz.seznam.software.autoupdate"="c:\documents and settings\Misa\Data aplikací\Seznam.cz\szninstall.exe" [2013-03-21 1061960]
"cz.seznam.software.szndesktop"="c:\documents and settings\Misa\Data aplikací\Seznam.cz\bin\wszndesktop.exe" [2013-04-12 92664]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-03-14 3672640]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LManager"="c:\progra~1\LAUNCH~1\QtZgAcer.EXE" [2008-05-14 821768]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-04-25 1044480]
"RTHDCPL"="RTHDCPL.EXE" [2008-12-30 18082304]
"AzMixerSel"="c:\program files\Realtek\Audio\Drivers\AzMixerSel.exe" [2006-07-17 53248]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-02-28 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-02-28 166424]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-02-28 137752]
"seznam-listicka-distribuce"="c:\program files\Seznam.cz\distribution\szninstall.exe" [2013-03-21 1061960]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2006-03-02 15360]
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\PANDORA.TV\\PanService\\PandoraService.exe"=
.
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [5.5.2013 13:09 242240]
R2 PanService;PandoraService;c:\program files\PANDORA.TV\PanService\PandoraService.exe [11.3.2013 17:12 625816]
R3 JMCR;JMCR;c:\windows\system32\drivers\jmcr.sys [8.7.2008 4:16 96856]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-05-24 12:26 1165776 ----a-w- c:\program files\Google\Chrome\Application\27.0.1453.94\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-05-27 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-28 19:24]
.
.
------- Doplňkový sken -------
.
TCP: DhcpNameServer = 178.22.112.22 178.22.118.10
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-05-27 21:01
Windows 5.1.2600 Service Pack 2 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
Celkový čas: 2013-05-27 21:07:57
ComboFix-quarantined-files.txt 2013-05-27 19:07
.
Před spuštěním: 3 332 902 912
Po spuštění: 3 295 596 544
.
WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[Boot Loader]
Timeout=2
Default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[Operating Systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows" /noexecute=optin /fastdetect
.
- - End Of File - - A9AEA96AD3D178A86BEDF3BCCD88C4C2

Re: PROSÍM O KONTROLU LOGU

Napsal: 27 kvě 2013 21:02
od Rudy
CF je také v pořádku. Odinstalujte pomocí T-Cleaneru: http://vyosek.ic.cz/pro_usery/T-Cleaner.exe . Zkuste toto:

Start>spustit>(napsat) cmd>OK. Do otevřeného okna zadejte:
a odentrujte. Odezva by neměla překročit 50ms, měla by být pravidelná a bez výpadků.

Re: PROSÍM O KONTROLU LOGU

Napsal: 28 kvě 2013 15:28
od Segepe
Mám vkládat další LOG?Několikrát se mi tam zobrazilo že vypršel časový limit a několikrát to bylo přes 50 ms jednou dokonce 296 ms a jednou kolem 76

Re: PROSÍM O KONTROLU LOGU

Napsal: 28 kvě 2013 18:29
od Rudy
Je to problém spojení. Vy nyní můžete udělat 2 věci:

1. Použít utilitu WinsockFix: http://www.softpedia.com/get/Tweak/Netw ... kFix.shtml . Utilita reinstaluje protokol TCP/IP.
2. Restartovat modem, příp. další síť. prvek v datové cestě.

Pokud to nepomůže, reklamujte u providera.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz