Prosím o pomoc počítač se seká zejména při práci s myší

[Aldo]

Logfile of random's system information tool 1.10 (written by random/random)
Run by Alfred at 2014-10-10 17:53:53
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 7 GB (17%) free of 38 GB
Total RAM: 2047 MB (74% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:54:04, on 10.10.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\acs.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\TP-LINK\TWCU\TWCU.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\USB TV\EM28XX\BDARemote.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Alfred\Local Settings\Temporary Internet Files\Content.IE5\5LDJY2BC\RSIT[1].exe
C:\Program Files\trend micro\Alfred.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/?gfe_rd=cr&ei=dKg ... gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [TWCU] "C:\Program Files\TP-LINK\TWCU\TWCU.exe" -nogui
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [RDReminder] C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe -rem
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: BDARemote.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: TP-LINK Configuration Service (ACS) - Unknown owner - C:\WINDOWS\system32\acs.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files\WinPcap\rpcapd.exe

--
End of file - 5971 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\WINDOWS\tasks\Driver Booster Update.job - C:\Program Files\IObit\Driver Booster\AutoUpdate.exe /auto
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-02-26 65024]
"TWCU"=C:\Program Files\TP-LINK\TWCU\TWCU.exe [2006-03-29 364544]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-09-29 61440]
"Logitech Utility"=C:\WINDOWS\Logi_MwX.Exe [2003-11-07 19968]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2004-09-13 49152]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2014-09-22 5088456]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"RDReminder"=C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe -rem []
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"AdvancedSystemCareService7"=2
"MsMpSvc"=2

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
BDARemote.lnk - C:\Program Files\USB TV\EM28XX\BDARemote.exe
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2009-09-30 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\Google\Chrome\Application\chrome.exe"="C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"D:\Program Files\Activision\Wolfenstein\MP\Wolf2MPLite.exe"="D:\Program Files\Activision\Wolfenstein\MP\Wolf2MPLite.exe:*:Disabled:Wolfenstein(TM)"
"D:\Program Files\Activision\Wolfenstein\MP\Wolf2MP.exe"="D:\Program Files\Activision\Wolfenstein\MP\Wolf2MP.exe:*:Disabled:Wolfenstein(TM)"
"D:\Program Files\Activision\Wolfenstein Lite Server\Wolf2MPLite.exe"="D:\Program Files\Activision\Wolfenstein Lite Server\Wolf2MPLite.exe:*:Disabled:Wolfenstein(TM) Lite Server "

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======List of files/folders created in the last 1 month======

2014-11-04 19:34:52 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2014-11-04 18:33:34 ----A---- C:\WINDOWS\ntbtlog.txt
2014-11-01 19:21:20 ----D---- C:\Program Files\ESET
2014-10-31 17:52:22 ----D---- C:\Documents and Settings\Alfred\Data aplikací\ESET
2014-09-30 20:56:11 ----D---- C:\WINDOWS\system32\xlive
2014-09-30 19:52:54 ----D---- C:\Program Files\OpenAL
2014-09-30 19:52:53 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2014-09-30 19:52:53 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2014-09-22 09:20:06 ----A---- C:\WINDOWS\system32\drivers\epfwtdir.sys
2014-09-22 09:20:06 ----A---- C:\WINDOWS\system32\drivers\ehdrv.sys
2014-09-22 09:20:06 ----A---- C:\WINDOWS\system32\drivers\eamonm.sys
2014-09-21 22:41:54 ----D---- C:\WINDOWS\Minidump
2014-09-16 20:47:22 ----A---- C:\WINDOWS\game.ini

======List of files/folders modified in the last 1 month======

2014-11-04 21:06:12 ----D---- C:\WINDOWS\system32\drivers
2014-11-04 19:36:06 ----SHD---- C:\WINDOWS\Installer
2014-11-04 18:34:53 ----D---- C:\Program Files\AVAST Software
2014-11-04 18:34:53 ----D---- C:\Documents and Settings\Alfred\Data aplikací\AVAST Software
2014-11-02 21:39:43 ----SD---- C:\Documents and Settings\Alfred\Data aplikací\Microsoft
2014-11-02 21:19:48 ----RASH---- C:\boot.ini
2014-11-02 21:19:48 ----A---- C:\WINDOWS\win.ini
2014-11-02 21:19:48 ----A---- C:\WINDOWS\system.ini
2014-11-02 21:19:29 ----D---- C:\WINDOWS\pss
2014-11-02 20:58:12 ----D---- C:\WINDOWS\system32\MRT
2014-11-01 21:02:23 ----D---- C:\Documents and Settings\Alfred\Data aplikací\GetRightToGo
2014-11-01 20:13:48 ----D---- C:\WINDOWS\Debug
2014-11-01 19:21:20 ----D---- C:\Program Files
2014-10-31 18:44:12 ----D---- C:\WINDOWS\system32\Restore
2014-10-10 17:54:02 ----D---- C:\Program Files\trend micro
2014-10-10 17:13:12 ----D---- C:\WINDOWS\system32
2014-10-10 17:13:12 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-10-10 17:09:59 ----D---- C:\WINDOWS\Temp
2014-10-09 20:56:27 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-10-09 19:54:25 ----D---- C:\WINDOWS\Prefetch
2014-10-09 18:48:32 ----D---- C:\WINDOWS
2014-10-09 18:48:11 ----D---- C:\WINDOWS\system32\CatRoot2
2014-10-09 18:48:08 ----HD---- C:\WINDOWS\inf
2014-10-09 18:47:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\ProductData
2014-09-30 21:02:36 ----D---- C:\WINDOWS\system32\DirectX
2014-09-30 21:02:11 ----RSD---- C:\WINDOWS\assembly
2014-09-30 20:56:10 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2014-09-30 11:53:41 ----D---- C:\Documents and Settings\Alfred\Data aplikací\DAEMON Tools Lite
2014-09-30 11:53:35 ----D---- C:\WINDOWS\Logs
2014-09-24 18:52:42 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-09-22 22:02:44 ----D---- C:\WINDOWS\system32\config
2014-09-16 20:46:05 ----HD---- C:\Program Files\InstallShield Installation Information
2014-09-16 19:40:59 ----D---- C:\Download
2014-09-16 18:47:19 ----D---- C:\Program Files\Common Files
2014-09-15 20:48:57 ----SD---- C:\WINDOWS\Tasks
2014-09-15 20:37:17 ----D---- C:\Program Files\Red Storm Entertainment
2014-09-15 18:46:51 ----D---- C:\WINDOWS\Microsoft.NET
2014-09-11 23:00:58 ----D---- C:\WINDOWS\WinSxS
2014-09-11 22:18:45 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-09-11 22:18:43 ----D---- C:\Program Files\Internet Explorer
2014-09-11 22:18:28 ----D---- C:\WINDOWS\ie8updates

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 agp440;Filtr Intel sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-14 42368]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 SmartDefragDriver;SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [2013-12-24 15808]
R1 {572f484b-455f-44b0-9d6a-da3ad2071365}Gt;{572f484b-455f-44b0-9d6a-da3ad2071365}Gt; C:\WINDOWS\system32\drivers\{572f484b-455f-44b0-9d6a-da3ad2071365}Gt.sys [2014-06-05 55232]
R1 {572f484b-455f-44b0-9d6a-da3ad2071365}t;{572f484b-455f-44b0-9d6a-da3ad2071365}t; C:\WINDOWS\system32\drivers\{572f484b-455f-44b0-9d6a-da3ad2071365}t.sys [2014-06-14 55232]
R1 {646e947e-f0e6-4d0e-b21e-d62ca97183e2}t;{646e947e-f0e6-4d0e-b21e-d62ca97183e2}t; C:\WINDOWS\system32\drivers\{646e947e-f0e6-4d0e-b21e-d62ca97183e2}t.sys [2014-09-04 55104]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2013-11-03 242240]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2014-09-22 191928]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2014-09-22 135296]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2014-09-22 119792]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.10.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2013-11-03 21275]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-08-26 24184]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2004-08-04 11868]
R2 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2013-03-01 36600]
R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2004-02-24 400384]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-03-19 613244]
R3 AR5416;Atheros Wireless Adapter Service; C:\WINDOWS\system32\DRIVERS\athw.sys [2013-11-04 1987840]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-09-30 3565056]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 HSF_DP;HSF_DP; C:\WINDOWS\system32\DRIVERS\HSFDPSP2.sys [2004-08-04 1041536]
R3 HSFHWBS2;HSFHWBS2; C:\WINDOWS\system32\DRIVERS\HSFBS2S2.sys [2004-08-04 220032]
R3 LCcfltr;Logitech USB Filter Driver; C:\WINDOWS\System32\Drivers\LCcFltr.Sys [2003-11-07 14092]
R3 LHidFlt2;Logitech HID/USB Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFlt2.Sys [2003-11-07 25502]
R3 LHidUsb;Logitech USB Receiver device driver; C:\WINDOWS\System32\Drivers\LHidUsb.Sys [2003-11-07 37884]
R3 LMouFlt2;Logitech Mouse Class Filter Driver; C:\WINDOWS\System32\Drivers\LMouFlt2.sys [2003-11-07 70798]
R3 M1000Srv;M5603C USB2.0 Camera Driver; C:\WINDOWS\System32\Drivers\M1000KNT.sys [2005-07-01 276930]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2013-11-04 130432]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSFCXTS2.sys [2004-08-04 685056]
S3 AR5211;TP-LINK Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2005-12-21 470048]
S3 catchme;catchme; \??\C:\DOCUME~1\Alfred\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2004-12-15 51120]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2004-12-15 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2004-12-15 21744]
S3 L8042PR2;Logitech PS/2 Mouse Filter Driver; C:\WINDOWS\System32\Drivers\l8042pr2.sys [2003-11-07 51486]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACS;TP-LINK Configuration Service; C:\WINDOWS\system32\acs.exe [2005-12-30 36864]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-09-30 602112]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2014-09-16 1350112]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2009-09-29 593920]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-11-04 116648]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2014-05-04 2152736]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2004-09-29 69632]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-24 267440]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-11-04 116648]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2013-03-01 118520]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[motji]

Dobrý večer

Stáhněte AdwCleaner http://www.bleepingcomputer.com/download/adwcleaner/
-Uložte program na plochu a ukončete všechny spuštěné programy .
-spusťte AdwCleaner, klikněte na Scan a po dokončení skenu na Clean
- provede se oprava, restartuje se pc - (případně restartujte) a objeví se log C:\AdwCleaner\AdwCleaner.txt , obsah logu zkopírujte zde.

[Aldo]

Dobrý den, děkuji za Vaš reakci na moji prosbu o pomoc, bohužel až teď mohu dát žádané, stroj mne dost potrápil a později jsem již neměl čas. Po kliknutí na "Clean" jsem totiž přišel o připojení na internet a log nebylo možné odeslat. Takže nová instalace wi-fi připojení a log který zasílám není po novém provedení čištění, ale před ním, jelikož mám obavy aby se situace neopakovala. Takže:

# AdwCleaner v3.311 - Report created 11/10/2014 at 00:14:06
# Updated 30/09/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Alfred - 47D6DB4816BB4C1
# Running from : C:\Documents and Settings\Alfred\Plocha\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****

Service Found : {572f484b-455f-44b0-9d6a-da3ad2071365}Gt
Service Found : {572f484b-455f-44b0-9d6a-da3ad2071365}t
Service Found : {646e947e-f0e6-4d0e-b21e-d62ca97183e2}t
Service Found : ACS

***** [ Files / Folders ] *****

File Found : C:\Documents and Settings\Alfred\daemonprocess.txt
File Found : C:\WINDOWS\system32\acs.exe
File Found : C:\WINDOWS\system32\drivers\{572f484b-455f-44b0-9d6a-da3ad2071365}Gt.sys
File Found : C:\WINDOWS\system32\drivers\{572f484b-455f-44b0-9d6a-da3ad2071365}t.sys
File Found : C:\WINDOWS\system32\drivers\{646e947e-f0e6-4d0e-b21e-d62ca97183e2}t.sys
Folder Found : C:\Documents and Settings\Alfred\Data aplikací\DriverCure
Folder Found : C:\Documents and Settings\Alfred\Data aplikací\ParetoLogic
Folder Found : C:\Documents and Settings\Alfred\Local Settings\Data aplikací\SearchProtect
Folder Found : C:\Documents and Settings\All Users\Data aplikací\ParetoLogic
Folder Found : C:\Program Files\SafePCRepair_89EI

***** [ Scheduled Tasks ] *****

Task Found : Driver Booster Update

***** [ Shortcuts ] *****

Našel jsem ten první log ( po restartu počítače(, tak jej též přikládám:

# AdwCleaner v3.311 - Report created 11/10/2014 at 00:15:50
# Updated 30/09/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Alfred - 47D6DB4816BB4C1
# Running from : C:\Documents and Settings\Alfred\Plocha\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : {572f484b-455f-44b0-9d6a-da3ad2071365}Gt
[#] Service Deleted : {572f484b-455f-44b0-9d6a-da3ad2071365}t
[#] Service Deleted : {646e947e-f0e6-4d0e-b21e-d62ca97183e2}t
Service Deleted : ACS

***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\ParetoLogic
Folder Deleted : C:\Program Files\SafePCRepair_89EI
Folder Deleted : C:\Documents and Settings\Alfred\Local Settings\Data aplikací\SearchProtect
Folder Deleted : C:\Documents and Settings\Alfred\Data aplikací\DriverCure
Folder Deleted : C:\Documents and Settings\Alfred\Data aplikací\ParetoLogic
File Deleted : C:\WINDOWS\system32\drivers\{572f484b-455f-44b0-9d6a-da3ad2071365}Gt.sys
File Deleted : C:\WINDOWS\system32\drivers\{572f484b-455f-44b0-9d6a-da3ad2071365}t.sys
File Deleted : C:\WINDOWS\system32\drivers\{646e947e-f0e6-4d0e-b21e-d62ca97183e2}t.sys
File Deleted : C:\WINDOWS\system32\acs.exe
File Deleted : C:\Documents and Settings\Alfred\daemonprocess.txt

***** [ Scheduled Tasks ] *****

Task Deleted : Driver Booster Update

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [RDReminder]
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\ParetoLogic
Key Deleted : HKLM\SOFTWARE\SearchProtect

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs]

-\\ Google Chrome v37.0.2062.124

[ File : C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Documents and Settings\Alfred\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://search.conduit.com/Results.aspx?ctid=CT3314932&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP1F3BE023-BFBA-48F8-AC28-27C08463CEC3&q={searchTerms}&SSPV=
Deleted [Search Provider] : hxxp://www.search.ask.com/web?p2=%5EAKE%5EOSJ0 ... earchTerms}
Deleted [Search Provider] : hxxp://rts.dsrlte.com/?affID=na&q={searchTerms}
Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}

*************************

AdwCleaner[R0].txt - [3342 octets] - [11/10/2014 00:14:06]
AdwCleaner[S0].txt - [3294 octets] - [11/10/2014 00:15:50]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3354 octets] ##########

[motji]

Tak ted přemýšlím, který soubor je od wifiny
Otestujte na www.virustotal.com
C:\WINDOWS\system32\acs.exe

[Aldo]

Toto je výsledek:

File already analysed
This file was last analysed by VirusTotal on 2014-09-17 04:02:34 UTC, it was first analysed by VirusTotal on 2008-01-07 14:36:49 UTC.

Detection ratio: 1/55

You can take a look at the last analysis or analyse it again now.

Warning! You submitted an empty file (0 bytes size), please make sure no software on your computer is preventing the upload (e.g. antivirus quarantine). Reanalyse View last analysis

Po opakování anylýzy:

SHA256: cbc4ee627d2422a479a9f1d48287e3edb97a6604a79df7581b4e47475415914e
File name: acs.exe
Detection ratio: 1 / 53
Analysis date: 2014-10-11 21:00:19 UTC ( 2 minuty ago )

0 0 Probably harmless! There are strong indicators suggesting that this file is safe to use.
Analysis File detail Additional information Comments Votes Behavioural information

Antivirus Result Update
ByteHero Virus.Win32.Part.g 20141011
AVG  20141011
AVware  20141011
Ad-Aware  20141011

[motji]

To jsem tedy ještě neviděla, aby ADW cleaner mazal tyhle soubory a drivery
Takže nic nemažte a pokračujeme:

Spusťte combofix podle tohoto návodu
http://www.bleepingcomputer.com/combofi ... t-combofix

[Aldo]

Nějak se to z toho odkazu odmítalo spustit, musel jsem jít na web přímo. Tady je výsledek:

ComboFix 14-10-04.01 - Alfred 12.10.2014 13:11:01.3.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2047.1431 [GMT 2:00]
Spuštěný z: c:\documents and settings\Alfred\Dokumenty\Downloads\ComboFix.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_CLTMNGSVC
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-09-12 do 2014-10-12 )))))))))))))))))))))))))))))))
.
.
2014-11-04 17:34 . 2014-11-04 17:34 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ESET
2014-11-01 17:21 . 2014-11-04 17:34 -------- d-----w- c:\program files\ESET
2014-10-31 15:52 . 2014-10-31 15:52 -------- d-----w- c:\documents and settings\Alfred\Local Settings\Data aplikací\ESET
2014-10-31 15:52 . 2014-10-31 15:52 -------- d-----w- c:\documents and settings\Alfred\Data aplikací\ESET
2014-10-31 15:50 . 2014-10-31 15:50 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\ESET
2014-10-11 22:48 . 2014-10-11 22:48 -------- d-----w- c:\documents and settings\Alfred\Data aplikací\CrystalIdea Software
2014-10-11 16:33 . 2014-10-11 16:33 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2014-10-10 23:47 . 2014-10-10 23:47 -------- d-----w- c:\windows\system32\wbem\Repository
2014-10-10 22:14 . 2010-08-30 06:34 536576 ----a-w- c:\windows\system32\sqlite3.dll
2014-10-10 22:14 . 2014-10-11 21:32 -------- d-----w- C:\AdwCleaner
2014-09-30 19:09 . 2014-09-30 19:11 -------- d-----w- c:\documents and settings\Alfred\Local Settings\Data aplikací\kaneandlynch
2014-09-30 18:56 . 2014-09-30 18:56 -------- d-----w- c:\windows\system32\xlive
2014-09-30 17:52 . 2014-09-30 17:52 -------- d-----w- c:\program files\OpenAL
2014-09-30 17:52 . 2014-09-30 19:01 413696 ----a-w- c:\windows\system32\wrap_oal.dll
2014-09-30 17:52 . 2014-09-30 19:01 110592 ----a-w- c:\windows\system32\OpenAL32.dll
2014-09-22 07:20 . 2014-09-22 07:20 191928 ----a-w- c:\windows\system32\drivers\eamonm.sys
2014-09-22 07:20 . 2014-09-22 07:20 135296 ----a-w- c:\windows\system32\drivers\ehdrv.sys
2014-09-22 07:20 . 2014-09-22 07:20 119792 ----a-w- c:\windows\system32\drivers\epfwtdir.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-09-24 16:52 . 2014-03-30 14:58 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-09-24 16:52 . 2014-03-30 14:58 701104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-08-26 14:57 . 2014-05-26 09:06 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-08-23 01:12 . 2004-08-18 12:00 287744 ----a-w- c:\windows\system32\gdi32.dll
2014-08-23 01:02 . 2004-08-18 12:00 1881472 ----a-w- c:\windows\system32\win32k.sys
2014-08-19 19:17 . 2004-08-18 12:00 920064 ----a-w- c:\windows\system32\wininet.dll
2014-08-19 19:17 . 2004-08-18 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2014-08-19 19:17 . 2004-08-18 12:00 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2014-08-19 19:17 . 2004-08-18 12:00 18944 ----a-w- c:\windows\system32\corpol.dll
2014-08-19 18:59 . 2004-08-18 12:00 385024 ----a-w- c:\windows\system32\html.iec
2014-07-31 15:57 . 2014-07-31 15:57 22328 ----a-w- c:\documents and settings\Alfred\Data aplikací\PnkBstrK.sys
2014-07-27 16:49 . 2014-06-28 20:48 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2014-07-26 15:45 . 2014-07-26 15:45 792 ----a-w- c:\windows\system32\ealregsnapshot1.reg
2002-01-14 17:30 . 2002-01-14 17:30 21823560 ----a-w- c:\program files\dotnetfx.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"="c:\program files\CCleaner\CCleaner.exe" [2014-09-26 4811032]
"CCleaner"="c:\program files\CCleaner\CCleaner.exe" [2014-09-26 4811032]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2004-02-26 65024]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-09-29 61440]
"Logitech Utility"="Logi_MwX.Exe" [2003-11-07 19968]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2004-09-13 49152]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2014-09-22 5088456]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2007-02-26 437160]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TWCU]
2006-03-29 14:12 364544 ----a-w- c:\program files\TP-LINK\TWCU\TWCU.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"AdvancedSystemCareService7"=2 (0x2)
"MsMpSvc"=2 (0x2)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"d:\\Program Files\\Activision\\Wolfenstein Lite Server\\Wolf2MPLite.exe"=
"c:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"=
.
R0 SmartDefragDriver;SmartDefragDriver;c:\windows\system32\drivers\SmartDefragDriver.sys [21.3.2014 16:42 15808]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [3.11.2013 19:47 242240]
R1 eamonm;eamonm;c:\windows\system32\drivers\eamonm.sys [22.9.2014 9:20 191928]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [22.9.2014 9:20 135296]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [22.9.2014 9:20 119792]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [26.5.2014 11:06 24184]
R2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [16.9.2014 12:08 1350112]
R2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [1.3.2013 3:48 36600]
R3 M1000Srv;M5603C USB2.0 Camera Driver;c:\windows\system32\drivers\M1000KNT.sys [31.5.2014 18:50 276930]
S2 LiveUpdateSvc;LiveUpdate;c:\program files\IObit\LiveUpdate\LiveUpdate.exe [4.11.2013 1:38 2152736]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-10-11 23:12 1089352 ----a-w- c:\program files\Google\Chrome\Application\38.0.2125.101\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-10-12 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-30 16:52]
.
2014-10-12 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-10-11 23:08]
.
2014-10-12 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-10-11 23:08]
.
.
------- Doplňkový sken -------
.
uStart Page = https://www.google.cz/?gfe_rd=cr&ei=dKg ... gws_rd=ssl
mStart Page = www.google.com
TCP: DhcpNameServer = 62.168.1.254 8.8.8.8
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-10-12 13:18
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-776561741-1708537768-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{B0B78A58-6C47-DDA1-6AA5-7363E8DC83C1}*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
"jakmjmjhffchhcbafbnn"=hex:62,61,61,70,00,00
"jakmjmjhffchhcbafbjn"=hex:62,61,61,70,00,00
"iakffdlelbelikjojm"=hex:6b,61,66,6e,64,70,70,67,6d,67,6e,62,65,66,6b,69,68,68,
64,63,6a,65,00,00
"haimlkhbleneocgo"=hex:6b,61,66,6e,64,70,70,67,6d,67,6e,62,65,66,6b,69,68,68,
64,63,6a,65,00,00
.
[HKEY_USERS\S-1-5-21-776561741-1708537768-839522115-1003\Software\SecuROM\License information*]
"datasecu"=hex:02,72,12,5a,4d,3b,a1,f6,fb,c0,ee,a0,c6,a9,44,88,7e,3e,cc,21,6b,
51,82,6b,7b,15,bf,da,f2,80,7b,11,c0,cd,2d,f7,5d,54,dd,25,d5,6d,eb,9c,eb,49,\
"rkeysecu"=hex:93,c2,27,0d,47,47,ea,0b,ba,ed,3f,75,82,bb,a3,22
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_15_0_0_167_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_15_0_0_167_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(784)
c:\windows\system32\Ati2evxx.dll
.
- - - - - - - > 'explorer.exe'(3852)
c:\program files\Logitech\MouseWare\System\LgWndHk.dll
c:\program files\Common Files\Logitech\Scrolling\LgMsgHk.dll
c:\windows\system32\webcheck.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\acs.exe
c:\windows\system32\msiexec.exe
c:\windows\system32\HPZipm12.exe
c:\windows\SOUNDMAN.EXE
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\Logitech\MouseWare\system\em_exec.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
c:\windows\system32\wbem\unsecapp.exe
.
**************************************************************************
.
Celkový čas: 2014-10-12 13:20:33 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-10-12 11:20
ComboFix2.txt 2014-06-02 22:34
ComboFix3.txt 2010-10-04 19:37
ComboFix4.txt 2010-05-10 16:22
ComboFix5.txt 2014-06-02 22:46
.
Před spuštěním: 7 067 078 656
Po spuštění: 7 913 648 128
.
- - End Of File - - 0DE438A9F476A9D6FABA0D1F17C644E6
413FC2A0C716421B3158746D63736515

[motji]

Kdy jste instaloval Eset?

[Aldo]

Kdy jste instaloval Eset?

Asi tak týden je tomu, před tím jsem měl Avast free

[motji]

Otevřete notepad a vložte do něj:

Kód: Vybrat vše

Folder::
c:\documents and settings\Alfred\Local Settings\Data aplikací\kaneandlynch

-uložte jako cfskript.txt.
-přetáhněte myší nad combofix a pusťte.
-zobrazí se log, obsah vložte zde.

[Aldo]

Otevřete notepad a vložte do něj:

Kód: Vybrat vše

Folder::
c:\documents and settings\Alfred\Local Settings\Data aplikací\kaneandlynch

-uložte jako cfskript.txt.
-přetáhněte myší nad combofix a pusťte.
-zobrazí se log, obsah vložte zde.

Dobrý den, díky že pomáháte, tady to je:

ComboFix 14-10-13.01 - Alfred 14.10.2014 11:46:47.4.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2047.1546 [GMT 2:00]
Spuštěný z: c:\documents and settings\Alfred\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Alfred\Plocha\cfscript.txt
AV: ESET NOD32 Antivirus 8.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
AV: Microsoft Security Essentials *Disabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-09-14 do 2014-10-14 )))))))))))))))))))))))))))))))
.
.
2014-11-04 17:34 . 2014-11-04 17:34 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ESET
2014-11-01 17:21 . 2014-11-04 17:34 -------- d-----w- c:\program files\ESET
2014-10-31 15:52 . 2014-10-31 15:52 -------- d-----w- c:\documents and settings\Alfred\Local Settings\Data aplikací\ESET
2014-10-31 15:52 . 2014-10-31 15:52 -------- d-----w- c:\documents and settings\Alfred\Data aplikací\ESET
2014-10-31 15:50 . 2014-10-31 15:50 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\ESET
2014-10-13 12:01 . 2005-12-30 06:15 36864 ----a-w- c:\windows\system32\acs.exe
2014-10-11 22:48 . 2014-10-11 22:48 -------- d-----w- c:\documents and settings\Alfred\Data aplikací\CrystalIdea Software
2014-10-11 16:33 . 2014-10-11 16:33 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2014-10-10 23:47 . 2014-10-10 23:47 -------- d-----w- c:\windows\system32\wbem\Repository
2014-10-10 22:14 . 2010-08-30 06:34 536576 ----a-w- c:\windows\system32\sqlite3.dll
2014-10-10 22:14 . 2014-10-13 11:56 -------- d-----w- C:\AdwCleaner
2014-09-30 19:09 . 2014-09-30 19:11 -------- d-----w- c:\documents and settings\Alfred\Local Settings\Data aplikací\kaneandlynch
2014-09-30 18:56 . 2014-09-30 18:56 -------- d-----w- c:\windows\system32\xlive
2014-09-30 17:52 . 2014-09-30 17:52 -------- d-----w- c:\program files\OpenAL
2014-09-30 17:52 . 2014-09-30 19:01 413696 ----a-w- c:\windows\system32\wrap_oal.dll
2014-09-30 17:52 . 2014-09-30 19:01 110592 ----a-w- c:\windows\system32\OpenAL32.dll
2014-09-22 07:20 . 2014-09-22 07:20 191928 ----a-w- c:\windows\system32\drivers\eamonm.sys
2014-09-22 07:20 . 2014-09-22 07:20 135296 ----a-w- c:\windows\system32\drivers\ehdrv.sys
2014-09-22 07:20 . 2014-09-22 07:20 119792 ----a-w- c:\windows\system32\drivers\epfwtdir.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-09-24 16:52 . 2014-03-30 14:58 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-09-24 16:52 . 2014-03-30 14:58 701104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-08-26 14:57 . 2014-05-26 09:06 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-08-23 01:12 . 2004-08-18 12:00 287744 ----a-w- c:\windows\system32\gdi32.dll
2014-08-23 01:02 . 2004-08-18 12:00 1881472 ----a-w- c:\windows\system32\win32k.sys
2014-08-19 19:17 . 2004-08-18 12:00 920064 ----a-w- c:\windows\system32\wininet.dll
2014-08-19 19:17 . 2004-08-18 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2014-08-19 19:17 . 2004-08-18 12:00 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2014-08-19 19:17 . 2004-08-18 12:00 18944 ----a-w- c:\windows\system32\corpol.dll
2014-08-19 18:59 . 2004-08-18 12:00 385024 ----a-w- c:\windows\system32\html.iec
2014-07-31 15:57 . 2014-07-31 15:57 22328 ----a-w- c:\documents and settings\Alfred\Data aplikací\PnkBstrK.sys
2014-07-27 16:49 . 2014-06-28 20:48 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2014-07-26 15:45 . 2014-07-26 15:45 792 ----a-w- c:\windows\system32\ealregsnapshot1.reg
2002-01-14 17:30 . 2002-01-14 17:30 21823560 ----a-w- c:\program files\dotnetfx.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"="c:\program files\CCleaner\CCleaner.exe" [2014-09-26 4811032]
"CCleaner"="c:\program files\CCleaner\CCleaner.exe" [2014-09-26 4811032]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2004-02-26 65024]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-09-29 61440]
"Logitech Utility"="Logi_MwX.Exe" [2003-11-07 19968]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2004-09-13 49152]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2014-09-22 5088456]
"TWCU"="c:\program files\TP-LINK\TWCU\TWCU.exe" [2006-03-29 364544]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2007-02-26 437160]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TWCU]
2006-03-29 14:12 364544 ----a-w- c:\program files\TP-LINK\TWCU\TWCU.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"AdvancedSystemCareService7"=2 (0x2)
"MsMpSvc"=2 (0x2)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"=
.
R0 SmartDefragDriver;SmartDefragDriver;c:\windows\system32\drivers\SmartDefragDriver.sys [21.3.2014 16:42 15808]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [3.11.2013 19:47 242240]
R1 eamonm;eamonm;c:\windows\system32\drivers\eamonm.sys [22.9.2014 9:20 191928]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [22.9.2014 9:20 135296]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [22.9.2014 9:20 119792]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [26.5.2014 11:06 24184]
R2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [16.9.2014 12:08 1350112]
R2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [1.3.2013 3:48 36600]
R3 M1000Srv;M5603C USB2.0 Camera Driver;c:\windows\system32\drivers\M1000KNT.sys [31.5.2014 18:50 276930]
S2 LiveUpdateSvc;LiveUpdate;c:\program files\IObit\LiveUpdate\LiveUpdate.exe [4.11.2013 1:38 2152736]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-10-11 23:12 1089352 ----a-w- c:\program files\Google\Chrome\Application\38.0.2125.101\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-10-13 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-30 16:52]
.
2014-10-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-10-11 23:08]
.
2014-10-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-10-11 23:08]
.
.
------- Doplňkový sken -------
.
uStart Page = https://www.google.cz/?gfe_rd=cr&ei=dKg ... gws_rd=ssl
mStart Page = www.google.com
TCP: DhcpNameServer = 62.168.1.254 8.8.8.8
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-10-14 11:51
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-776561741-1708537768-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{B0B78A58-6C47-DDA1-6AA5-7363E8DC83C1}*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
"jakmjmjhffchhcbafbnn"=hex:62,61,61,70,00,00
"jakmjmjhffchhcbafbjn"=hex:62,61,61,70,00,00
"iakffdlelbelikjojm"=hex:6b,61,66,6e,64,70,70,67,6d,67,6e,62,65,66,6b,69,68,68,
64,63,6a,65,00,00
"haimlkhbleneocgo"=hex:6b,61,66,6e,64,70,70,67,6d,67,6e,62,65,66,6b,69,68,68,
64,63,6a,65,00,00
.
[HKEY_USERS\S-1-5-21-776561741-1708537768-839522115-1003\Software\SecuROM\License information*]
"datasecu"=hex:02,72,12,5a,4d,3b,a1,f6,fb,c0,ee,a0,c6,a9,44,88,7e,3e,cc,21,6b,
51,82,6b,7b,15,bf,da,f2,80,7b,11,c0,cd,2d,f7,5d,54,dd,25,d5,6d,eb,9c,eb,49,\
"rkeysecu"=hex:93,c2,27,0d,47,47,ea,0b,ba,ed,3f,75,82,bb,a3,22
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_15_0_0_167_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_15_0_0_167_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(776)
c:\windows\system32\Ati2evxx.dll
.
- - - - - - - > 'explorer.exe'(2228)
c:\program files\Logitech\MouseWare\System\LgWndHk.dll
c:\program files\Common Files\Logitech\Scrolling\LgMsgHk.dll
c:\windows\system32\webcheck.dll
.
Celkový čas: 2014-10-14 11:52:58
ComboFix-quarantined-files.txt 2014-10-14 09:52
ComboFix2.txt 2014-10-12 11:20
ComboFix3.txt 2014-06-02 22:34
ComboFix4.txt 2010-10-04 19:37
ComboFix5.txt 2014-10-14 09:43
.
Před spuštěním: 7 779 344 384
Po spuštění: 7 777 681 408
.
- - End Of File - - 00C939F4E3DEE72DA5A92459AC6ECF43
413FC2A0C716421B3158746D63736515

[motji]

Nesmazalo se to. Až budu u svého pc, smažeme to jinak.
Počítač se chová jak?

[Aldo]

Nesmazalo se to. Až budu u svého pc, smažeme to jinak.
Počítač se chová jak?

V současné době se počítač chová korektně, ale to už chvílemi bylo i předtím a pak zase sekání, procesor na 100%

[Aldo]

Nesmazalo se to. Až budu u svého pc, smažeme to jinak.
Počítač se chová jak?

V současné době se počítač chová korektně, ale to už chvílemi bylo i předtím a pak zase sekání, procesor na 100%

Zase se seká.

[motji]

Omlouvám se, teď jsem pořád v práci

Co ten pc nejvíc vytěžuje, když se seká?
A ještě otázečku - systém máte legální?

Stahněte a nainstalujte http://forum.viry.cz/viewtopic.php?f=29&t=115222
při aktualizaci nepovolte stažení nové verze, na win xp nefunguje.
-udělejte sken a vložte log.

Večer zde budu