Přetížené CPU, kontrola logu

[jaro3]

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

[Reklama]

[luciska]

21:09:49.0576 1492 TDSS rootkit removing tool 2.7.11.0 Feb 9 2012 10:12:57
21:09:49.0842 1492 ============================================================
21:09:49.0842 1492 Current date / time: 2013/05/31 21:09:49.0842
21:09:49.0842 1492 SystemInfo:
21:09:49.0842 1492
21:09:49.0842 1492 OS Version: 5.1.2600 ServicePack: 3.0
21:09:49.0842 1492 Product type: Workstation
21:09:49.0842 1492 ComputerName: DOMA-0DE0B1A62A
21:09:49.0842 1492 UserName: PC
21:09:49.0842 1492 Windows directory: C:\WINDOWS
21:09:49.0842 1492 System windows directory: C:\WINDOWS
21:09:49.0842 1492 Processor architecture: Intel x86
21:09:49.0842 1492 Number of processors: 1
21:09:49.0842 1492 Page size: 0x1000
21:09:49.0842 1492 Boot type: Normal boot
21:09:49.0842 1492 ============================================================
21:09:52.0764 1492 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
21:09:52.0779 1492 \Device\Harddisk0\DR0:
21:09:52.0779 1492 MBR used
21:09:52.0779 1492 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x950A5C1
21:09:52.0810 1492 Initialize success
21:09:52.0810 1492 ============================================================
21:09:56.0217 3248 ============================================================
21:09:56.0217 3248 Scan started
21:09:56.0217 3248 Mode: Manual;
21:09:56.0217 3248 ============================================================
21:09:58.0842 3248 Abiosdsk - ok
21:09:59.0185 3248 abp480n5 - ok
21:09:59.0717 3248 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:09:59.0779 3248 ACPI - ok
21:10:00.0326 3248 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
21:10:00.0326 3248 ACPIEC - ok
21:10:00.0982 3248 adpu160m - ok
21:10:01.0717 3248 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:10:01.0764 3248 aec - ok
21:10:02.0310 3248 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
21:10:02.0373 3248 AFD - ok
21:10:03.0060 3248 Aha154x - ok
21:10:03.0701 3248 aic78u2 - ok
21:10:04.0092 3248 aic78xx - ok
21:10:04.0732 3248 AliIde - ok
21:10:06.0857 3248 Ambfilt (267fc636801edc5ab28e14036349e3be) C:\WINDOWS\system32\drivers\Ambfilt.sys
21:10:08.0092 3248 Ambfilt - ok
21:10:08.0779 3248 amsint - ok
21:10:09.0185 3248 asc - ok
21:10:09.0779 3248 asc3350p - ok
21:10:10.0232 3248 asc3550 - ok
21:10:10.0982 3248 aswFsBlk (4af5f360ba1e8794d32b366e45a64a0a) C:\WINDOWS\system32\drivers\aswFsBlk.sys
21:10:10.0998 3248 aswFsBlk - ok
21:10:11.0514 3248 aswMonFlt (1f7094d4268d46f718c51286dc189791) C:\WINDOWS\system32\drivers\aswMonFlt.sys
21:10:11.0514 3248 aswMonFlt - ok
21:10:12.0123 3248 AswRdr (7b43265f92257a21cbfd88e7a651044c) C:\WINDOWS\system32\drivers\AswRdr.sys
21:10:12.0123 3248 AswRdr - ok
21:10:12.0685 3248 aswRvrt (b680134ba1813b78b47fdd1dff223ca5) C:\WINDOWS\system32\drivers\aswRvrt.sys
21:10:12.0685 3248 aswRvrt - ok
21:10:13.0717 3248 aswSnx (6cab0a5991c5c0fc63f5e66593e71d7e) C:\WINDOWS\system32\drivers\aswSnx.sys
21:10:13.0732 3248 aswSnx - ok
21:10:14.0451 3248 aswSP (99102f60f344bebaf4f6114514fd28d3) C:\WINDOWS\system32\drivers\aswSP.sys
21:10:14.0467 3248 aswSP - ok
21:10:15.0029 3248 aswTdi (1f71f170d90e42efde9633d81d5e12dc) C:\WINDOWS\system32\drivers\aswTdi.sys
21:10:15.0029 3248 aswTdi - ok
21:10:15.0670 3248 aswVmm (16b8e3cd50a460ec32ca680c8210a0a9) C:\WINDOWS\system32\drivers\aswVmm.sys
21:10:15.0748 3248 aswVmm - ok
21:10:16.0264 3248 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:10:16.0264 3248 AsyncMac - ok
21:10:16.0889 3248 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:10:16.0889 3248 atapi - ok
21:10:17.0357 3248 Atdisk - ok
21:10:17.0795 3248 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:10:17.0795 3248 Atmarpc - ok
21:10:18.0342 3248 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:10:18.0342 3248 audstub - ok
21:10:18.0873 3248 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:10:18.0873 3248 Beep - ok
21:10:19.0404 3248 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:10:19.0404 3248 cbidf2k - ok
21:10:19.0889 3248 cd20xrnt - ok
21:10:20.0279 3248 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:10:20.0279 3248 Cdaudio - ok
21:10:20.0842 3248 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:10:20.0842 3248 Cdfs - ok
21:10:21.0389 3248 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:10:21.0389 3248 Cdrom - ok
21:10:21.0873 3248 Changer - ok
21:10:22.0357 3248 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
21:10:22.0357 3248 CmBatt - ok
21:10:22.0748 3248 CmdIde - ok
21:10:23.0295 3248 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
21:10:23.0295 3248 Compbatt - ok
21:10:23.0779 3248 Cpqarray - ok
21:10:24.0123 3248 dac2w2k - ok
21:10:24.0482 3248 dac960nt - ok
21:10:24.0920 3248 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:10:24.0920 3248 Disk - ok
21:10:25.0920 3248 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
21:10:26.0373 3248 dmboot - ok
21:10:26.0982 3248 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
21:10:27.0029 3248 dmio - ok
21:10:27.0592 3248 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:10:27.0592 3248 dmload - ok
21:10:28.0123 3248 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:10:28.0139 3248 DMusic - ok
21:10:28.0607 3248 dpti2o - ok
21:10:28.0998 3248 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:10:28.0998 3248 drmkaud - ok
21:10:29.0623 3248 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:10:29.0670 3248 Fastfat - ok
21:10:30.0435 3248 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
21:10:30.0435 3248 Fdc - ok
21:10:30.0982 3248 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
21:10:30.0982 3248 Fips - ok
21:10:31.0514 3248 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
21:10:31.0514 3248 Flpydisk - ok
21:10:32.0123 3248 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:10:32.0154 3248 FltMgr - ok
21:10:32.0685 3248 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:10:32.0701 3248 Fs_Rec - ok
21:10:33.0279 3248 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:10:33.0310 3248 Ftdisk - ok
21:10:33.0873 3248 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:10:33.0873 3248 Gpc - ok
21:10:34.0498 3248 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:10:34.0498 3248 HDAudBus - ok
21:10:35.0014 3248 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:10:35.0029 3248 HidUsb - ok
21:10:35.0514 3248 hpn - ok
21:10:36.0139 3248 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
21:10:36.0279 3248 HTTP - ok
21:10:36.0920 3248 hwdatacard (20330198554b7ddb44403af21d6ae179) C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys
21:10:36.0951 3248 hwdatacard - ok
21:10:37.0529 3248 hwusbdev (922065957563d851b5a68b95aadac6ad) C:\WINDOWS\system32\DRIVERS\ewusbdev.sys
21:10:37.0545 3248 hwusbdev - ok
21:10:38.0014 3248 i2omgmt - ok
21:10:38.0373 3248 i2omp - ok
21:10:38.0795 3248 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:10:38.0795 3248 i8042prt - ok
21:10:39.0998 3248 ialm (240d0f5d7caafd87bd8d801a97bbe041) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
21:10:40.0639 3248 ialm - ok
21:10:41.0185 3248 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
21:10:41.0201 3248 Imapi - ok
21:10:41.0701 3248 ini910u - ok
21:10:45.0935 3248 IntcAzAudAddService (063dd51cbdc37b8668e09148e0a118bc) C:\WINDOWS\system32\drivers\RtkHDAud.sys
21:10:45.0998 3248 IntcAzAudAddService - ok
21:10:46.0514 3248 IntelIde (57d928e548b38502abba7a77a6eb7312) C:\WINDOWS\system32\DRIVERS\intelide.sys
21:10:46.0514 3248 IntelIde - ok
21:10:47.0092 3248 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:10:47.0107 3248 intelppm - ok
21:10:47.0607 3248 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:10:47.0623 3248 Ip6Fw - ok
21:10:48.0170 3248 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:10:48.0170 3248 IpFilterDriver - ok
21:10:48.0701 3248 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:10:48.0701 3248 IpInIp - ok
21:10:49.0326 3248 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:10:49.0389 3248 IpNat - ok
21:10:49.0967 3248 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:10:49.0982 3248 IPSec - ok
21:10:50.0748 3248 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:10:50.0748 3248 IRENUM - ok
21:10:51.0279 3248 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:10:51.0279 3248 isapnp - ok
21:10:51.0857 3248 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:10:51.0857 3248 Kbdclass - ok
21:10:52.0389 3248 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:10:52.0389 3248 kbdhid - ok
21:10:53.0045 3248 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:10:53.0045 3248 kmixer - ok
21:10:53.0623 3248 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
21:10:53.0639 3248 KSecDD - ok
21:10:54.0107 3248 lbrtfdc - ok
21:10:54.0514 3248 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:10:54.0514 3248 mnmdd - ok
21:10:55.0060 3248 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
21:10:55.0060 3248 Modem - ok
21:10:56.0435 3248 Monfilt (c7d9f9717916b34c1b00dd4834af485c) C:\WINDOWS\system32\drivers\Monfilt.sys
21:10:57.0248 3248 Monfilt - ok
21:10:57.0779 3248 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:10:57.0779 3248 Mouclass - ok
21:10:58.0357 3248 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:10:58.0357 3248 mouhid - ok
21:10:58.0889 3248 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:10:58.0904 3248 MountMgr - ok
21:10:59.0373 3248 mraid35x - ok
21:10:59.0920 3248 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:10:59.0998 3248 MRxDAV - ok
21:11:01.0029 3248 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:11:01.0279 3248 MRxSmb - ok
21:11:02.0060 3248 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:11:02.0060 3248 Msfs - ok
21:11:02.0873 3248 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:11:02.0873 3248 MSKSSRV - ok
21:11:03.0373 3248 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:11:03.0373 3248 MSPCLOCK - ok
21:11:04.0154 3248 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:11:04.0154 3248 MSPQM - ok
21:11:04.0670 3248 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:11:04.0670 3248 mssmbios - ok
21:11:05.0279 3248 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
21:11:05.0310 3248 Mup - ok
21:11:05.0951 3248 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:11:06.0029 3248 NDIS - ok
21:11:06.0560 3248 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:11:06.0560 3248 NdisTapi - ok
21:11:07.0092 3248 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:11:07.0092 3248 Ndisuio - ok
21:11:07.0670 3248 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:11:07.0685 3248 NdisWan - ok
21:11:08.0248 3248 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
21:11:08.0248 3248 NDProxy - ok
21:11:08.0779 3248 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:11:08.0779 3248 NetBIOS - ok
21:11:09.0389 3248 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:11:09.0451 3248 NetBT - ok
21:11:10.0014 3248 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:11:10.0014 3248 Npfs - ok
21:11:11.0139 3248 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:11:11.0467 3248 Ntfs - ok
21:11:11.0998 3248 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:11:11.0998 3248 Null - ok
21:11:12.0560 3248 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:11:12.0576 3248 NwlnkFlt - ok
21:11:13.0107 3248 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:11:13.0107 3248 NwlnkFwd - ok
21:11:13.0701 3248 NwlnkIpx (8b8b1be2dba4025da6786c645f77f123) C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
21:11:13.0717 3248 NwlnkIpx - ok
21:11:14.0295 3248 NwlnkNb (56d34a67c05e94e16377c60609741ff8) C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
21:11:14.0310 3248 NwlnkNb - ok
21:11:14.0857 3248 NwlnkSpx (c0bb7d1615e1acbdc99757f6ceaf8cf0) C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
21:11:14.0857 3248 NwlnkSpx - ok
21:11:15.0560 3248 NWRDR (36b9b950e3d2e100970a48d8bad86740) C:\WINDOWS\system32\DRIVERS\nwrdr.sys
21:11:15.0639 3248 NWRDR - ok
21:11:16.0248 3248 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\drivers\Parport.sys
21:11:16.0264 3248 Parport - ok
21:11:16.0779 3248 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:11:16.0779 3248 PartMgr - ok
21:11:17.0326 3248 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
21:11:17.0326 3248 ParVdm - ok
21:11:17.0889 3248 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
21:11:17.0889 3248 PCI - ok
21:11:18.0373 3248 PCIDump - ok
21:11:18.0826 3248 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
21:11:18.0826 3248 PCIIde - ok
21:11:19.0326 3248 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
21:11:19.0357 3248 Pcmcia - ok
21:11:19.0826 3248 PDCOMP - ok
21:11:20.0170 3248 PDFRAME - ok
21:11:20.0545 3248 PDRELI - ok
21:11:20.0889 3248 PDRFRAME - ok
21:11:21.0232 3248 perc2 - ok
21:11:21.0592 3248 perc2hib - ok
21:11:22.0045 3248 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:11:22.0045 3248 PptpMiniport - ok
21:11:22.0576 3248 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:11:22.0592 3248 Ptilink - ok
21:11:23.0060 3248 ql1080 - ok
21:11:23.0482 3248 Ql10wnt - ok
21:11:23.0826 3248 ql12160 - ok
21:11:24.0170 3248 ql1240 - ok
21:11:24.0529 3248 ql1280 - ok
21:11:24.0920 3248 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:11:24.0920 3248 RasAcd - ok
21:11:25.0420 3248 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:11:25.0420 3248 Rasl2tp - ok
21:11:25.0998 3248 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:11:25.0998 3248 RasPppoe - ok
21:11:26.0529 3248 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:11:26.0545 3248 Raspti - ok
21:11:27.0154 3248 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:11:27.0232 3248 Rdbss - ok
21:11:27.0764 3248 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:11:27.0764 3248 RDPCDD - ok
21:11:28.0404 3248 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:11:28.0498 3248 rdpdr - ok
21:11:29.0123 3248 RDPWD (43af5212bd8fb5ba6eed9754358bd8f7) C:\WINDOWS\system32\drivers\RDPWD.sys
21:11:29.0170 3248 RDPWD - ok
21:11:29.0732 3248 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:11:29.0732 3248 redbook - ok
21:11:30.0295 3248 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
21:11:30.0310 3248 rtl8139 - ok
21:11:31.0014 3248 SbFw (419883201ca9ad697ccfb8fc46dd6f78) C:\WINDOWS\system32\drivers\SbFw.sys
21:11:31.0029 3248 SbFw - ok
21:11:31.0545 3248 SBFWIMCL (f01b8409a11c319e3c5b9dd418676d2c) C:\WINDOWS\system32\DRIVERS\sbfwim.sys
21:11:31.0545 3248 SBFWIMCL - ok
21:11:32.0170 3248 sbhips (31ca701f26ea66468ad3c3c6498755ce) C:\WINDOWS\system32\drivers\sbhips.sys
21:11:32.0170 3248 sbhips - ok
21:11:32.0685 3248 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:11:32.0685 3248 Secdrv - ok
21:11:33.0326 3248 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\drivers\Serial.sys
21:11:33.0342 3248 Serial - ok
21:11:33.0873 3248 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
21:11:33.0873 3248 Sfloppy - ok
21:11:34.0357 3248 Simbad - ok
21:11:34.0701 3248 Sparrow - ok
21:11:35.0107 3248 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:11:35.0123 3248 splitter - ok
21:11:35.0701 3248 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
21:11:35.0701 3248 sr - ok
21:11:36.0435 3248 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
21:11:36.0607 3248 Srv - ok
21:11:37.0107 3248 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
21:11:37.0123 3248 swenum - ok
21:11:37.0670 3248 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
21:11:37.0670 3248 swmidi - ok
21:11:38.0201 3248 symc810 - ok
21:11:38.0607 3248 symc8xx - ok
21:11:38.0967 3248 sym_hi - ok
21:11:39.0326 3248 sym_u3 - ok
21:11:39.0826 3248 SynTP (a63401d180863a2cefce51798542ae5f) C:\WINDOWS\system32\DRIVERS\SynTP.sys
21:11:39.0904 3248 SynTP - ok
21:11:40.0435 3248 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
21:11:40.0451 3248 sysaudio - ok
21:11:41.0139 3248 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:11:41.0342 3248 Tcpip - ok
21:11:41.0857 3248 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
21:11:41.0857 3248 TDPIPE - ok
21:11:42.0389 3248 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
21:11:42.0389 3248 TDTCP - ok
21:11:42.0951 3248 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
21:11:42.0951 3248 TermDD - ok
21:11:43.0420 3248 TosIde - ok
21:11:43.0857 3248 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
21:11:43.0873 3248 Udfs - ok
21:11:44.0342 3248 ultra - ok
21:11:45.0045 3248 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
21:11:45.0232 3248 Update - ok
21:11:45.0810 3248 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:11:45.0826 3248 usbccgp - ok
21:11:46.0373 3248 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:11:46.0373 3248 usbehci - ok
21:11:46.0935 3248 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:11:46.0935 3248 usbhub - ok
21:11:47.0451 3248 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
21:11:47.0451 3248 usbprint - ok
21:11:47.0998 3248 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:11:47.0998 3248 usbscan - ok
21:11:48.0529 3248 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:11:48.0529 3248 USBSTOR - ok
21:11:49.0076 3248 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:11:49.0076 3248 usbuhci - ok
21:11:49.0607 3248 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
21:11:49.0623 3248 VgaSave - ok
21:11:50.0092 3248 ViaIde - ok
21:11:50.0592 3248 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
21:11:50.0592 3248 VolSnap - ok
21:11:53.0107 3248 w29n51 (9ee38ffcb4cbe5bee6c305700ddc4725) C:\WINDOWS\system32\DRIVERS\w29n51.sys
21:11:55.0092 3248 w29n51 - ok
21:11:55.0654 3248 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:11:55.0654 3248 Wanarp - ok
21:11:56.0201 3248 WDICA - ok
21:11:56.0685 3248 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
21:11:56.0701 3248 wdmaud - ok
21:11:56.0810 3248 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
21:11:57.0185 3248 \Device\Harddisk0\DR0 - ok
21:11:57.0201 3248 Boot (0x1200) (c9c0e883b5c1cf37c89578a61057de21) \Device\Harddisk0\DR0\Partition0
21:11:57.0201 3248 \Device\Harddisk0\DR0\Partition0 - ok
21:11:57.0201 3248 ============================================================
21:11:57.0201 3248 Scan finished
21:11:57.0201 3248 ============================================================
21:11:57.0217 3216 Detected object count: 0
21:11:57.0217 3216 Actual detected object count: 0
21:14:30.0732 3724 ============================================================
21:14:30.0732 3724 Scan started
21:14:30.0732 3724 Mode: Manual;
21:14:30.0732 3724 ============================================================
21:14:31.0654 3724 Abiosdsk - ok
21:14:32.0029 3724 abp480n5 - ok
21:14:32.0514 3724 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:14:32.0529 3724 ACPI - ok
21:14:33.0029 3724 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
21:14:33.0029 3724 ACPIEC - ok
21:14:33.0560 3724 adpu160m - ok
21:14:33.0560 3724 Scan interrupted by user!
21:14:33.0560 3724 Scan interrupted by user!
21:14:33.0560 3724 Scan interrupted by user!
21:14:33.0560 3724 ============================================================
21:14:33.0560 3724 Scan finished
21:14:33.0560 3724 ============================================================
21:14:33.0576 3128 Detected object count: 0
21:14:33.0576 3128 Actual detected object count: 0
21:14:34.0389 0332 ============================================================
21:14:34.0389 0332 Scan started
21:14:34.0389 0332 Mode: Manual;
21:14:34.0389 0332 ============================================================
21:14:34.0998 0332 Abiosdsk - ok
21:14:34.0998 0332 Scan interrupted by user!
21:14:34.0998 0332 Scan interrupted by user!
21:14:34.0998 0332 Scan interrupted by user!
21:14:34.0998 0332 ============================================================
21:14:34.0998 0332 Scan finished
21:14:34.0998 0332 ============================================================
21:14:34.0998 3320 Detected object count: 0
21:14:34.0998 3320 Actual detected object count: 0
21:16:36.0873 1976 Deinitialize success

[memphisto]

Ještě ten Combofix

[luciska]

ComboFix 13-05-31.02 - PC 31.05.2013 21:48:27.1.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1014.539 [GMT 2:00]
Spuštěný z: c:\documents and settings\PC\Plocha\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: Sunbelt Personal Firewall *Disabled* {82B1150E-9B37-49FC-83EB-D52197D900D0}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\msmqinst.log
c:\windows\system32\drivers\etc\hosts.ics
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-04-28 do 2013-05-31 )))))))))))))))))))))))))))))))
.
.
2013-05-31 18:22 . 2013-05-31 18:22 -------- d-----w- c:\documents and settings\All Users\Uniblue
2013-05-31 18:14 . 2008-09-24 18:41 839680 ----a-w- c:\windows\system32\lameACM.acm
2013-05-31 18:14 . 2011-12-07 17:32 216064 ----a-w- c:\windows\system32\lagarith.dll
2013-05-31 18:14 . 2013-03-17 16:21 3649536 ----a-w- c:\windows\system32\x264vfw.dll
2013-05-31 18:14 . 2011-06-24 14:44 243200 ----a-w- c:\windows\system32\xvidvfw.dll
2013-05-31 18:14 . 2011-06-24 14:28 650752 ----a-w- c:\windows\system32\xvidcore.dll
2013-05-31 18:14 . 2011-12-21 17:14 151552 ----a-w- c:\windows\system32\ac3acm.acm
2013-05-31 18:14 . 2013-04-29 18:00 112640 ----a-w- c:\windows\system32\ff_vfw.dll
2013-05-31 18:13 . 2013-05-31 18:14 -------- d-----w- c:\program files\K-Lite Codec Pack
2013-05-31 15:54 . 2012-06-09 18:21 178688 ----a-w- c:\windows\system32\unrar.dll
2013-05-31 15:44 . 2008-06-21 02:54 65576 ----a-w- c:\windows\system32\drivers\SbFwIm.sys
2013-05-31 15:44 . 2008-10-31 05:09 270888 ----a-r- c:\windows\system32\drivers\SbFw.sys
2013-05-31 15:44 . 2013-05-31 15:44 -------- d-----w- c:\program files\Sunbelt Software
2013-05-30 16:59 . 2013-05-30 17:00 17613192 ----a-w- c:\windows\system32\FlashPlayerInstaller.exe
2013-05-30 16:49 . 2013-05-30 16:49 -------- d-----w- c:\documents and settings\PC\Data aplikací\Malwarebytes
2013-05-30 16:48 . 2013-05-30 16:48 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2013-05-30 16:48 . 2013-05-30 16:48 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-05-30 16:48 . 2013-04-04 12:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-05-10 07:57 . 2013-05-10 07:57 187456 ----a-w- c:\program files\Internet Explorer\PLUGINS\nppdf32.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-30 17:01 . 2012-08-01 19:34 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-05-30 17:01 . 2011-12-28 21:46 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-05-09 08:59 . 2012-11-12 20:50 174664 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-05-09 08:59 . 2012-11-12 20:50 49376 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-05-09 08:59 . 2012-08-01 20:14 368944 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-05-09 08:59 . 2012-08-01 20:14 56080 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-05-09 08:59 . 2012-08-01 20:14 765736 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-05-09 08:59 . 2012-11-12 20:50 66336 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-05-09 08:59 . 2012-08-01 20:14 49760 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2013-05-09 08:59 . 2012-08-01 20:15 29816 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-05-09 08:58 . 2012-08-01 20:14 41664 ----a-w- c:\windows\avastSS.scr
2013-05-09 08:58 . 2012-08-01 20:13 229648 ----a-w- c:\windows\system32\aswBoot.exe
2013-04-16 22:26 . 2004-08-17 13:49 920064 ----a-w- c:\windows\system32\wininet.dll
2013-04-16 22:26 . 2004-08-17 13:49 43520 ------w- c:\windows\system32\licmgr10.dll
2013-04-16 22:26 . 2004-08-17 13:49 1469440 ------w- c:\windows\system32\inetcpl.cpl
2013-04-12 23:28 . 2004-08-17 13:44 385024 ------w- c:\windows\system32\html.iec
2013-04-12 14:01 . 2004-08-17 13:44 1876352 ----a-w- c:\windows\system32\win32k.sys
2013-03-08 08:36 . 2004-08-17 13:49 293376 ----a-w- c:\windows\system32\winsrv.dll
2013-03-07 15:56 . 2004-08-17 15:45 2072192 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-03-07 15:56 . 2004-08-17 13:45 2195584 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-11-12 18:22 . 2011-12-28 21:46 97208 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58 121968 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
"RTHDCPL"="RTHDCPL.EXE" [2012-06-06 20065936]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Authentication Packages REG_MULTI_SZ msv1_0 nwprovau
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
.
R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [12.11.2012 22:50 49376]
R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [12.11.2012 22:50 174664]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [1.8.2012 22:14 765736]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [1.8.2012 22:14 368944]
R1 SbFw;SbFw;c:\windows\system32\drivers\SbFw.sys [31.5.2013 17:44 270888]
R1 sbhips;Sunbelt HIPS Driver;c:\windows\system32\drivers\sbhips.sys [21.6.2008 4:54 66600]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [1.8.2012 22:15 29816]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [12.11.2012 22:50 66336]
R2 SbPF.Launcher;SbPF.Launcher;c:\program files\Sunbelt Software\Personal Firewall\SbPFLnch.exe [31.10.2008 7:24 95528]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport;c:\windows\system32\drivers\SbFwIm.sys [31.5.2013 17:44 65576]
S2 SPF4;Sunbelt Personal Firewall 4;c:\program files\Sunbelt Software\Personal Firewall\SbPFSvc.exe [31.10.2008 7:24 1365288]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [12.11.2012 23:11 1691480]
S3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\drivers\ewusbdev.sys [12.11.2012 22:53 100736]
.
Obsah adresáře 'Naplánované úlohy'
.
2013-05-31 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-01 17:01]
.
2013-05-31 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2012-08-01 08:58]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Connection Wizard,ShellNext = iexplore
TCP: DhcpNameServer = 10.10.0.34 10.10.192.34
FF - ProfilePath - c:\documents and settings\PC\Data aplikací\Mozilla\Firefox\Profiles\dapslpsp.default\
FF - prefs.js: browser.search.selectedEngine - Seznam
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{41545534-0076-A76A-76A7-7A786E7484D7} - (no file)
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-05-31 22:04
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
Celkový čas: 2013-05-31 22:10:57
ComboFix-quarantined-files.txt 2013-05-31 20:10
.
Před spuštěním: Volných bajtů: 59 333 533 696
Po spuštění: Volných bajtů: 59 457 380 352
.
WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - D6E85411FB0A3D8A672365A6740499E0

[jaro3]

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.


Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

Vlož nový log z HJT+ info o problémech.

[luciska]

aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-05-31 21:39:24
-----------------------------
21:39:24.453 OS Version: Windows 5.1.2600 Service Pack 3
21:39:24.453 Number of processors: 1 586 0xD08
21:39:24.453 ComputerName: DOMA-0DE0B1A62A UserName: PC
21:39:53.156 Initialize success
21:39:54.031 AVAST engine defs: 13053101
21:40:02.250 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-4
21:40:02.250 Disk 0 Vendor: WDC_WD800UE-00HCT0 09.07D09 Size: 76319MB BusType: 3
21:40:03.250 Disk 0 MBR read successfully
21:40:03.265 Disk 0 MBR scan
21:40:03.265 Disk 0 Windows XP default MBR code
21:40:03.265 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 76308 MB offset 63
21:40:03.296 Disk 0 scanning sectors +156280320
21:40:04.031 Disk 0 scanning C:\WINDOWS\system32\drivers
21:41:53.640 Service scanning
21:44:52.234 Modules scanning
21:45:47.875 Disk 0 trace - called modules:
21:45:47.890 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys
21:45:47.890 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86d45ab8]
21:45:48.687 3 CLASSPNP.SYS[f753efd7] -> nt!IofCallDriver -> \Device\0000007b[0x86d5bf18]
21:45:48.687 5 ACPI.sys[f73d5620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-4[0x86d7ed98]
21:45:52.984 AVAST engine scan C:\WINDOWS
21:46:23.968 AVAST engine scan C:\WINDOWS\system32
21:53:31.390 AVAST engine scan C:\WINDOWS\system32\drivers
21:54:11.265 AVAST engine scan C:\Documents and Settings\PC
21:58:09.890 AVAST engine scan C:\Documents and Settings\All Users
21:58:59.468 Scan finished successfully
21:59:47.328 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\PC\Plocha\MBR.dat"
21:59:47.328 The log file has been saved successfully to "C:\Documents and Settings\PC\Plocha\aswMBR.txt"

[luciska]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:46:47, on 31.5.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\PC\Dokumenty\Stažené soubory\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 9931379718
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: SbPF.Launcher - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe

--
End of file - 2601 bytes

[luciska]

stav PC beze změny, stále stejný problém, přetížené CPU 80-100 procen, seka se zvuk, nefunkcni cas

[jaro3]

Stáhni si Memtest:

Do políčka vlož největší velikost Tvé jednotlivé paměti RAM (256,512 nebo 1024,2048) dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.


Je třeba zkontrolovat HDD na chyby , zkusit jeho defragmentaci ..

Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.

Stáhni si Speedfan
http://www.filehippo.com/download_speedfan/
vpravo nahoře Download Latest Version
Nainstaluj a spusť program. V okně Hint , klikni na Close. Počkej určitý čas , až se hodnoty načtou.
Vlož sem prosím obrázek (screen) z toho programu.

[luciska]

memtest ok, defragmentace provedena

----------------------------------------------------------------------------
CrystalDiskInfo 5.6.2 Shizuku Edition (C) 2008-2013 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows XP Professional SP3 [5.1 Build 2600] (x86)
Date : 2013/06/02 22:15:20

-- Controller Map ----------------------------------------------------------
+ Intel(R) 82801FB/FBM Ultra ATA Storage Controllers - 266F [ATA]
+ Primární kanál IDE (0)
- Slimtype DVDRW SOSW-833S
- WDC WD800UE-00HCT0

-- Disk List ---------------------------------------------------------------
(1) WDC WD800UE-00HCT0 : 80,0 GB [0/0/0, pd1] - wd

----------------------------------------------------------------------------
(1) WDC WD800UE-00HCT0
----------------------------------------------------------------------------
Model : WDC WD800UE-00HCT0
Firmware : 09.07D09
Serial Number : WD-WXE506782885
Disk Size : 80,0 GB (8,4/80,0/----/80,0)
Buffer Size : 2048 KB
Queue Depth : 1
# of Sectors : 156301488
Rotation Rate : Neznámy údaj
Interface : Parallel ATA
Major Version : ATA/ATAPI-6
Minor Version : ----
Transfer Mode : Ultra DMA/100
Power On Hours : 5459 hod.
Power On Count : 3492 krát
Temparature : 40 C (104 F)
Health Status : Pozor
Features : S.M.A.R.T., APM, AAM
APM Level : 0080h [ON]
AAM Level : 80FEh [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 198 198 _51 00000000051B Počet chyb čtení
03 186 184 _21 00000000067A Čas na roztočení ploten
04 _97 _97 __0 000000000E02 Počet spuštění/zastavení
05 196 196 140 00000000001D Počet přemapovaných sektorů
07 200 200 __0 000000000000 Počet chybných hledání
09 _93 _93 __0 000000001553 Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _97 _97 __0 000000000DA4 Počet cyklů zapnutí zařízení
C0 196 196 __0 000000000D88 Počet vypnutí disku
C1 129 129 __0 0000000347DC Počet cyklů načítání/vymazání
C2 107 _89 __0 000000000028 Teplota
C4 195 195 __0 000000000005 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000005 Počet podezřelých sektorů
C6 100 253 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 5758 4535 3036 3738 3238 3835
020: 0000 1000 0032 3039 2E30 3744 3039 5744 4320 5744
030: 3830 3055 452D 3030 4843 5430 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0000 0000 0007 3FFF 0010 003F FC10 00FB 0110
060: F8B0 0950 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
080: 007E 0000 346B 5B09 4003 3469 1909 4003 203F 0000
090: 0000 0080 0000 603B 80FE 0000 0000 0000 0000 0000
100: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
110: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
120: 0000 0000 0000 0000 0000 0000 0000 0000 0009 0000
130: 0000 0000 0000 1250 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 FFA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0F 00 C6 C6 1B 05 00 00 00 00 00 03 03
010: 00 BA B8 7A 06 00 00 00 00 00 04 32 00 61 61 02
020: 0E 00 00 00 00 00 05 33 00 C4 C4 1D 00 00 00 00
030: 00 00 07 0E 00 C8 C8 00 00 00 00 00 00 00 09 32
040: 00 5D 5D 53 15 00 00 00 00 00 0A 12 00 64 64 00
050: 00 00 00 00 00 00 0B 12 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 61 61 A4 0D 00 00 00 00 00 C0 32
070: 00 C4 C4 88 0D 00 00 00 00 00 C1 32 00 81 81 DC
080: 47 03 00 00 00 00 C2 22 00 6B 59 28 00 00 00 00
090: 00 00 C4 32 00 C3 C3 05 00 00 00 00 00 00 C5 12
0A0: 00 C8 C8 05 00 00 00 00 00 00 C6 10 00 64 FD 00
0B0: 00 00 00 00 00 00 C7 3E 00 C8 C8 00 00 00 00 00
0C0: 00 00 C8 08 00 64 FD 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 C0 12 01 7B
170: 03 00 01 00 02 3F 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 04 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 5A

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 C8 C6 C8 00 00 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 00 C8 C8 C8 C8 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 00 00 00 00 00
050: 00 00 00 00 00 00 0B 00 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 C0 00
070: 00 00 00 00 00 00 00 00 00 00 C1 00 00 00 00 00
080: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
090: 00 00 C4 00 00 00 00 00 00 00 00 00 00 00 C5 00
0A0: 00 00 00 00 00 00 00 00 00 00 C6 00 00 00 00 00
0B0: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
0C0: 00 00 C8 00 00 00 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 7F

[luciska]

screen ze speedfan

[jaro3]

C4 195 195 __0 000000000005 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000005 Počet podezřelých sektorů

Disk KO. Zazálohuj , reklamuj nebo kup nový disk. Ten disk začne mít možná brzo problémy,.