snizeni vykonu pc

[HHM]

hoj mam problem s kterym si nevim rady a Pic mi rekl at sem hodim log s HiJackThis

vice infa o problemu zde -> viewtopic.php?f=7&t=49489&start=12

zde je log ->

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{84E30B68-B2DB-4322-B4A2-81350070D4B8}: NameServer = 127.0.0.1,192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{84E30B68-B2DB-4322-B4A2-81350070D4B8}: NameServer = 127.0.0.1,192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{84E30B68-B2DB-4322-B4A2-81350070D4B8}: NameServer = 127.0.0.1,192.168.1.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe

[Reklama]

[Pic]

Ten log není celý. Dej sem nově kompletní.

[HHM]

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:54:16, on 29.1.2010
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Opera\opera.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{84E30B68-B2DB-4322-B4A2-81350070D4B8}: NameServer = 127.0.0.1,192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{84E30B68-B2DB-4322-B4A2-81350070D4B8}: NameServer = 127.0.0.1,192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{84E30B68-B2DB-4322-B4A2-81350070D4B8}: NameServer = 127.0.0.1,192.168.1.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe

--
End of file - 4067 bytes

[HHM]

pridavam log z combofixu kdyby namohou nekomu pomohlo

ComboFix 10-01-28.05 - HHM 29.01.2010 14:00:18.1.2 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.2046.1192 [GMT 1:00]
Spuštěný z: c:\users\HHM\Desktop\ComboFix.exe
* Rezidentní štít AV je zapnutý

.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\temp
c:\windows\system32\scvhost.exe

.
((((((((((((((((((((((((( Soubory vytvořené od 2009-12-28 do 2010-01-29 )))))))))))))))))))))))))))))))
.

2010-01-29 13:04 . 2010-01-29 13:04 -------- d-----w- c:\users\HHM\AppData\Local\temp
2010-01-29 13:04 . 2010-01-29 13:04 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-01-29 12:05 . 2010-01-29 12:05 -------- d-----w- c:\program files\IObit
2010-01-29 11:34 . 2010-01-29 11:34 -------- d-----w- c:\windows\LastGood
2010-01-29 10:57 . 2010-01-29 11:07 -------- d-----w- c:\users\HHM\AppData\Roaming\Media Player Classic
2010-01-29 10:50 . 2009-12-12 14:15 178176 ----a-w- c:\windows\system32\unrar.dll
2010-01-29 10:50 . 2006-04-02 12:47 630784 ----a-w- c:\windows\system32\vp7vfw.dll
2010-01-29 10:50 . 2004-05-18 18:16 39936 ----a-w- c:\windows\system32\huffyuv.dll
2010-01-29 10:50 . 2004-01-25 16:18 217088 ----a-w- c:\windows\system32\yv12vfw.dll
2010-01-29 10:50 . 2009-05-29 21:37 205824 ----a-w- c:\windows\system32\xvidvfw.dll
2010-01-29 10:50 . 2009-05-29 21:31 881664 ----a-w- c:\windows\system32\xvidcore.dll
2010-01-29 10:50 . 2010-01-04 18:00 85504 ----a-w- c:\windows\system32\ff_vfw.dll
2010-01-29 10:50 . 2010-01-29 11:54 -------- d-----w- c:\program files\K-Lite Codec Pack
2010-01-29 10:21 . 2010-01-29 10:21 -------- d-----w- c:\programdata\Creative Labs
2010-01-29 09:52 . 2010-01-29 09:52 -------- d-----w- C:\RaidTool
2010-01-29 09:52 . 2009-05-20 14:25 151552 ----a-w- c:\windows\system32\xRaidAPI.dll
2010-01-29 09:52 . 2007-11-19 10:01 1970176 ----a-w- c:\windows\system32\xRaidSetup.exe
2010-01-29 09:52 . 2010-01-29 11:54 -------- d-----w- c:\windows\RaidTool
2010-01-29 09:51 . 2010-01-29 09:51 -------- d-----w- c:\program files\Intel
2010-01-29 09:51 . 2009-12-14 11:33 53248 ----a-w- c:\windows\system32\CSVer.dll
2010-01-29 09:51 . 2010-01-29 09:51 -------- d-----w- C:\Intel
2010-01-29 09:45 . 2009-04-02 10:33 2873820 ------w- c:\windows\system32\Sens_oal.dll
2010-01-29 09:45 . 2010-01-29 09:45 -------- d-----w- c:\program files\Common Files\Creative Labs Shared
2010-01-29 09:44 . 2010-01-29 09:56 -------- d-----w- c:\programdata\Creative
2010-01-29 09:44 . 2005-06-15 10:07 11264 ----a-w- c:\windows\INRES.DLL
2010-01-29 09:34 . 2010-01-29 09:35 -------- d-----w- c:\program files\Driver Genius
2010-01-28 19:25 . 2009-06-22 21:43 737280 ----a-w- c:\windows\system32\ChilkatUtil.dll
2010-01-28 19:25 . 2009-06-22 21:43 1994752 ----a-w- c:\windows\system32\ChilkatMail_v7_9.dll
2010-01-28 19:25 . 2009-06-22 21:43 1277952 ----a-w- c:\windows\system32\ChilkatCert.dll
2010-01-28 18:38 . 2010-01-28 18:38 -------- d-----w- c:\program files\Trend Micro
2010-01-26 19:08 . 2010-01-26 19:09 7436315 ----a-w- c:\windows\REGBK00.ZIP
2010-01-26 13:25 . 2010-01-26 13:25 -------- d---a-w- c:\windows\rundll16.exe
2010-01-26 13:25 . 2010-01-26 13:25 -------- d---a-w- c:\windows\logo1_.exe
2010-01-25 19:59 . 2010-01-25 19:59 -------- d---a-w- c:\windows\VDLL.DLL
2010-01-25 19:59 . 2010-01-25 19:59 -------- d---a-w- c:\windows\system32\runouce.exe
2010-01-25 19:59 . 2010-01-25 19:59 -------- d---a-w- c:\windows\RUNDL132.EXE
2010-01-25 19:59 . 2010-01-25 19:59 -------- d---a-w- c:\windows\logo_1.exe
2010-01-25 19:57 . 2010-01-25 19:57 632064 ----a-w- c:\windows\system32\msvcr80.dll
2010-01-25 19:57 . 2010-01-25 19:57 554240 ----a-w- c:\windows\system32\msvcp80.dll
2010-01-25 19:57 . 2010-01-25 19:57 34048 ----a-w- c:\windows\system32\eEmpty.exe
2010-01-25 19:57 . 2010-01-25 19:57 -------- d-----w- c:\program files\Common Files\MicroWorld
2010-01-25 19:56 . 2010-01-25 19:57 -------- d-----w- c:\programdata\MicroWorld
2010-01-25 19:53 . 2010-01-25 19:53 -------- d-----w- c:\windows\system32\RTCOM
2010-01-25 19:46 . 2010-01-25 19:46 -------- d-----w- c:\program files\CCleaner
2010-01-25 18:09 . 2010-01-25 18:59 -------- d-----w- c:\users\HHM\AppData\Local\Microsoft Games
2010-01-25 14:55 . 2010-01-29 11:54 -------- d-----w- c:\users\HHM\AppData\Roaming\Turbine
2010-01-25 14:55 . 2010-01-25 14:55 -------- d-----w- c:\users\HHM\AppData\Local\Turbine
2010-01-25 14:35 . 2010-01-29 10:25 -------- d-----w- c:\users\HHM\AppData\Local\ApplicationHistory
2010-01-25 14:35 . 2010-01-25 14:35 91 ----a-w- c:\users\HHM\AppData\Local\fusioncache.dat
2010-01-25 14:33 . 2010-01-25 14:33 -------- d-----w- c:\windows\system32\URTTEMP
2010-01-24 17:41 . 2010-01-24 17:41 -------- d-----w- c:\users\HHM\AppData\Local\ElevatedDiagnostics
2010-01-24 16:07 . 2010-01-24 16:07 444952 ----a-w- c:\windows\system32\wrap_oal.dll
2010-01-24 16:07 . 2010-01-24 16:07 109080 ----a-w- c:\windows\system32\OpenAL32.dll
2010-01-24 16:04 . 2004-12-05 18:38 102400 ----a-w- c:\windows\system\OpenAL32.dll
2010-01-24 15:48 . 2010-01-29 11:54 -------- d-----w- c:\users\HHM\AppData\Local\PMB Files
2010-01-24 15:48 . 2010-01-25 14:08 -------- d-----w- c:\programdata\PMB Files
2010-01-24 15:48 . 2010-01-24 15:48 -------- d-----w- c:\program files\Pando Networks
2010-01-24 14:59 . 2010-01-24 14:59 -------- d-----w- c:\program files\Lavalys
2010-01-24 13:30 . 2010-01-24 13:30 -------- d-----w- c:\users\HHM\AppData\Local\ESET
2010-01-24 13:24 . 2010-01-24 13:25 -------- d-----w- c:\users\HHM\AppData\Local\Adobe
2010-01-24 13:24 . 2010-01-24 13:24 -------- d-----w- c:\program files\Common Files\Adobe
2010-01-24 12:55 . 2010-01-24 12:55 -------- d-----w- c:\users\HHM\AppData\Local\RadarSync
2010-01-24 12:24 . 2010-01-24 13:34 -------- d-----w- c:\users\HHM\AppData\Local\eSupport.com
2010-01-23 11:04 . 2010-01-23 11:04 -------- d-----w- c:\programdata\Codemasters
2010-01-23 11:04 . 2010-01-23 11:04 -------- d--h--r- c:\users\HHM\AppData\Roaming\SecuROM
2010-01-23 10:50 . 2010-01-23 10:50 -------- d-----w- c:\program files\AGEIA Technologies
2010-01-23 10:50 . 2010-01-23 10:50 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2010-01-23 10:50 . 2010-01-23 10:51 -------- d-----w- c:\program files\NVIDIA Corporation
2010-01-23 10:34 . 2010-01-23 10:34 -------- d-----w- c:\program files\Common Files\Java
2010-01-23 10:34 . 2010-01-23 10:34 411368 ----a-w- c:\windows\system32\deploytk.dll
2010-01-23 10:34 . 2010-01-23 10:34 -------- d-----w- c:\program files\Java
2010-01-23 10:27 . 2010-01-23 10:27 -------- d-----w- c:\users\HHM\AppData\Local\Blizzard Entertainment
2010-01-23 10:11 . 2010-01-26 18:07 -------- d-----w- c:\program files\ESET
2010-01-22 19:34 . 2009-09-04 16:44 515416 ----a-w- c:\windows\system32\XAudio2_5.dll
2010-01-22 19:21 . 2010-01-22 19:21 -------- d-----w- c:\users\HHM\AppData\Roaming\Ubisoft
2010-01-22 19:20 . 2010-01-22 19:20 -------- d-----w- c:\programdata\Tages
2010-01-22 19:08 . 2009-09-10 05:52 257024 ----a-w- c:\windows\system32\msv1_0.dll
2010-01-22 19:07 . 2010-01-22 19:07 -------- d-----w- c:\users\HHM\AppData\Local\Symantec
2010-01-22 19:01 . 2009-10-29 07:22 2048 ----a-w- c:\windows\system32\tzres.dll
2010-01-22 19:01 . 2010-01-22 19:01 -------- d-----w- c:\program files\Microsoft Silverlight
2010-01-22 18:58 . 2010-01-22 18:58 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2010-01-22 18:30 . 2010-01-22 18:30 -------- d-----w- c:\users\HHM\AppData\Local\WindowsUpdate
2010-01-22 18:21 . 2009-10-02 04:06 728648 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2010-01-22 18:21 . 2009-09-03 07:04 1320960 ----a-w- c:\windows\system32\CertEnroll.dll
2010-01-22 18:21 . 2009-08-19 07:20 507568 ----a-w- c:\windows\system32\winload.exe
2010-01-22 18:21 . 2009-08-03 05:35 2613248 ----a-w- c:\windows\explorer.exe
2010-01-22 18:21 . 2009-08-29 06:54 12625408 ----a-w- c:\windows\system32\wmploc.DLL
2010-01-22 18:21 . 2009-08-19 07:20 442920 ----a-w- c:\windows\system32\winresume.exe
2010-01-22 18:20 . 2009-12-19 09:02 977920 ----a-w- c:\windows\system32\wininet.dll
2010-01-22 18:20 . 2009-10-19 14:10 108544 ----a-w- c:\windows\system32\t2embed.dll
2010-01-22 18:20 . 2009-10-19 14:10 70656 ----a-w- c:\windows\system32\fontsub.dll
2010-01-22 18:20 . 2009-08-29 06:57 34816 ----a-w- c:\windows\system32\msasn1.dll
2010-01-22 18:20 . 2009-07-30 04:44 293888 ----a-w- c:\windows\system32\atmfd.dll
2010-01-22 17:59 . 2009-12-17 20:19 30536 ----a-w- c:\windows\system32\TURegOpt.exe
2010-01-22 17:59 . 2009-12-17 20:14 21320 ----a-w- c:\windows\system32\authuitu.dll
2010-01-22 17:59 . 2009-12-17 20:14 30024 ----a-w- c:\windows\system32\uxtuneup.dll
2010-01-22 17:58 . 2010-01-22 17:58 -------- d-----w- c:\users\HHM\AppData\Roaming\TuneUp Software
2010-01-22 17:58 . 2010-01-24 13:06 -------- d-----w- c:\program files\TuneUp Utilities 2010
2010-01-22 17:58 . 2010-01-22 17:58 -------- d-----w- c:\programdata\TuneUp Software
2010-01-22 17:58 . 2010-01-22 17:58 -------- d-sh--w- c:\programdata\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2010-01-22 17:57 . 2010-01-22 18:21 -------- d-----w- c:\users\HHM\AppData\Roaming\IrfanView
2010-01-22 17:57 . 2010-01-22 17:57 -------- d-----w- c:\program files\IrfanView
2010-01-22 17:53 . 2010-01-22 17:53 57560 ----a-w- c:\users\HHM\AppData\Local\GDIPFONTCACHEV1.DAT
2010-01-22 17:37 . 2010-01-29 11:58 -------- d-----w- c:\users\HHM\AppData\Roaming\IObit
2010-01-22 17:37 . 2010-01-29 11:36 -------- d-----w- c:\program files\Advanced SystemCare 3
2010-01-22 17:31 . 2010-01-22 17:45 -------- d-----w- c:\programdata\Blizzard Entertainment
2010-01-22 17:09 . 2010-01-25 15:51 -------- d-----w- c:\users\HHM\AppData\Roaming\skypePM
2010-01-22 17:08 . 2010-01-22 17:08 -------- d-----w- c:\program files\uTorrent
2010-01-22 17:07 . 2010-01-29 12:59 -------- d-----w- c:\users\HHM\AppData\Roaming\uTorrent
2010-01-22 17:05 . 2010-01-25 16:42 -------- d-----w- c:\users\HHM\AppData\Roaming\Skype
2010-01-22 17:05 . 2010-01-22 17:05 -------- d-----w- c:\program files\Common Files\Skype
2010-01-22 17:05 . 2010-01-22 17:05 -------- d-----r- c:\program files\Skype
2010-01-22 17:05 . 2010-01-22 17:05 -------- d-----w- c:\programdata\Skype
2010-01-22 17:01 . 2010-01-22 17:01 -------- d-----w- c:\program files\DAEMON Tools Lite
2010-01-22 17:01 . 2010-01-22 19:01 -------- d-----w- c:\users\HHM\AppData\Roaming\DAEMON Tools Lite
2010-01-22 17:01 . 2010-01-22 17:01 -------- d-----w- c:\programdata\DAEMON Tools Lite
2010-01-22 16:56 . 2010-01-29 09:52 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-01-22 16:56 . 2010-01-22 17:23 -------- d-----w- c:\program files\Common Files\Blizzard Entertainment
2010-01-22 16:56 . 2010-01-22 16:56 -------- d-----w- c:\programdata\Blizzard
2010-01-22 16:56 . 2010-01-29 13:01 -------- d-----w- c:\users\HHM\AppData\Roaming\ICQ
2010-01-22 16:56 . 2010-01-22 16:56 -------- d-----w- c:\users\HHM\AppData\Local\AOL
2010-01-22 16:56 . 2010-01-22 16:58 -------- d-----w- c:\program files\ICQ7.0
2010-01-22 16:47 . 2010-01-14 10:12 181120 ------w- c:\windows\system32\MpSigStub.exe
2010-01-22 16:44 . 2010-01-22 16:44 -------- d-----w- c:\users\HHM\AppData\Local\Opera
2010-01-22 16:43 . 2010-01-22 16:43 -------- d-----w- c:\program files\Opera

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-29 11:54 . 2010-01-22 19:06 -------- d-----w- c:\programdata\NVIDIA
2010-01-28 17:26 . 2009-07-13 23:40 409088 ----a-w- c:\windows\system32\systemcpl.dll
2010-01-28 17:26 . 2009-07-13 23:36 13824 ----a-w- c:\windows\system32\slwga.dll
2010-01-25 19:52 . 2010-01-25 19:52 -------- d-----w- c:\program files\Realtek
2010-01-25 19:52 . 2010-01-25 19:52 -------- d-----w- c:\program files\Common Files\InstallShield
2010-01-25 14:34 . 2009-07-14 08:44 631116 ----a-w- c:\windows\system32\perfh005.dat
2010-01-25 14:34 . 2009-07-14 08:44 123556 ----a-w- c:\windows\system32\perfc005.dat
2010-01-25 14:24 . 2010-01-25 14:24 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf
2010-01-24 16:07 . 2010-01-22 19:39 -------- d-----w- c:\program files\OpenAL
2010-01-23 10:05 . 2009-07-14 04:52 -------- d-----w- c:\program files\Windows Sidebar
2010-01-22 19:39 . 2010-01-22 19:39 -------- d-----w- c:\program files\BRS
2010-01-22 19:39 . 2010-01-22 19:39 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2010-01-22 19:06 . 2010-01-22 19:06 281760 ----a-w- c:\windows\system32\drivers\atksgt.sys
2010-01-22 19:06 . 2010-01-22 19:06 25888 ----a-w- c:\windows\system32\drivers\lirsgt.sys
2010-01-22 17:01 . 2010-01-22 17:01 691696 ----a-w- c:\windows\system32\drivers\sptd.sys.89380592
2010-01-22 16:22 . 2010-01-22 16:22 -------- d-sh--we c:\programdata\Plocha
2010-01-22 16:22 . 2010-01-22 16:22 -------- d-sh--we c:\programdata\Oblíbené položky
2010-01-22 16:22 . 2010-01-22 16:22 -------- d-sh--we c:\programdata\Šablony
2010-01-22 16:22 . 2010-01-22 16:22 -------- d-sh--we c:\programdata\Nabídka Start
2010-01-22 16:22 . 2010-01-22 16:22 -------- d-sh--we c:\programdata\Dokumenty
2010-01-22 16:22 . 2010-01-22 16:22 -------- d-sh--we c:\programdata\Data aplikací
2010-01-19 18:11 . 2010-01-25 19:52 1640992 ----a-w- c:\windows\system32\RtkPgExt.dll
2010-01-19 18:11 . 2010-01-25 19:52 57376 ----a-w- c:\windows\system32\RtkCoInst.dll
2010-01-19 18:11 . 2010-01-25 19:52 371232 ----a-w- c:\windows\system32\RtkApoApi.dll
2010-01-19 18:11 . 2010-01-25 19:52 2622496 ----a-w- c:\windows\system32\RtkAPO.dll
2010-01-19 17:37 . 2010-01-25 19:52 2991328 ----a-w- c:\windows\system32\drivers\RTKVHDA.sys
2010-01-13 12:17 . 2010-01-25 19:52 1247776 ----a-w- c:\windows\RtlExUpd.dll
2010-01-05 14:57 . 2010-01-25 19:52 297376 ----a-w- c:\windows\system32\FMAPO.dll
2009-12-19 08:11 . 2009-12-19 08:11 249888 ----a-w- c:\windows\system32\drivers\Rt86win7.sys
2009-12-15 17:26 . 2010-01-25 19:52 76488 ----a-w- c:\windows\system32\RTEEL32A.dll
2009-12-15 17:26 . 2010-01-25 19:52 62664 ----a-w- c:\windows\system32\RTEEG32A.dll
2009-12-15 17:26 . 2010-01-25 19:52 357576 ----a-w- c:\windows\system32\RTEEP32A.dll
2009-12-15 17:26 . 2010-01-25 19:52 168648 ----a-w- c:\windows\system32\RTEED32A.dll
2009-12-11 08:55 . 2010-01-25 19:52 293584 ----a-w- c:\windows\system32\RP3DHT32.dll
2009-12-11 08:55 . 2010-01-25 19:52 293584 ----a-w- c:\windows\system32\RP3DAA32.dll
2009-12-04 14:43 . 2010-01-25 19:52 132368 ----a-w- c:\windows\system32\MaxxAudioAPO.dll
2009-12-03 08:27 . 2009-12-03 08:27 80416 ----a-w- c:\windows\system32\RtNicProp32.dll
2009-12-03 08:27 . 2009-12-03 08:27 100896 ----a-w- c:\windows\system32\RTNUninst32.dll
2009-11-30 17:02 . 2009-11-30 17:02 171144 ----a-w- c:\windows\system32\xliveinstall.dll
2009-11-30 17:02 . 2009-11-30 17:02 72840 ----a-w- c:\windows\system32\xliveinstallhost.exe
2009-11-24 08:55 . 2010-01-25 19:52 345328 ----a-w- c:\windows\system32\SRSTSXT.dll
2009-11-24 08:55 . 2010-01-25 19:52 140528 ----a-w- c:\windows\system32\SRSWOW.dll
2009-11-24 08:55 . 2010-01-25 19:52 185584 ----a-w- c:\windows\system32\SRSTSHD.dll
2009-11-24 08:55 . 2010-01-25 19:52 173296 ----a-w- c:\windows\system32\SRSHP360.dll
2009-11-23 13:43 . 2009-11-23 13:43 99440 ----a-w- c:\windows\system32\drivers\jraid.sys
2009-11-19 20:42 . 2010-01-22 19:06 592488 ----a-w- c:\windows\system32\nvuninst.exe
2009-11-18 17:42 . 2010-01-25 19:52 1783056 ----a-w- c:\windows\system32\WavesLib.dll
2009-11-18 17:42 . 2010-01-25 19:52 311568 ----a-w- c:\windows\system32\MaxxAudioAPO20.dll
2009-11-18 17:42 . 2010-01-25 19:52 1938704 ----a-w- c:\windows\system32\MaxxAudioEQ.dll
2009-11-18 06:13 . 2010-01-25 19:52 50776 ----a-w- c:\windows\system32\MBPPCn32.dll
2009-11-18 06:13 . 2010-01-25 19:52 531032 ----a-w- c:\windows\system32\MBAPO32.dll
2009-11-18 06:12 . 2010-01-25 19:52 68696 ----a-w- c:\windows\system32\MBWrp32.dll
2009-11-18 06:12 . 2010-01-25 19:52 53848 ----a-w- c:\windows\system32\MBppld32.dll
2009-11-17 17:13 . 2010-01-25 19:52 96160 ----a-w- c:\windows\system32\AERTARen.dll
2009-11-17 17:10 . 2010-01-25 19:52 146336 ----a-w- c:\windows\system32\AERTACap.dll
2009-11-06 09:59 . 2009-11-06 09:59 15406728 ----a-w- c:\windows\system32\xlive.dll
2009-11-06 09:59 . 2009-11-06 09:59 13642888 ----a-w- c:\windows\system32\xlivefnt.dll
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-09-29 2054360]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-01-19 8452640]
"P17RunE"="P17RunE.dll" [2008-03-28 14848]
"JMB36X IDE Setup"="c:\windows\RaidTool\xInsIDE.exe" [2007-03-20 36864]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk /r \??\C:\0autocheck autochk *

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Pando Media Booster"=c:\program files\Pando Networks\Media Booster\PMB.exe

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"

R1 ehdrv;ehdrv;c:\windows\System32\drivers\ehdrv.sys [29.9.2009 13:02 108792]
R2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [29.9.2009 13:03 735960]
R2 epfwwfpr;epfwwfpr;c:\windows\System32\drivers\epfwwfpr.sys [29.9.2009 13:05 95896]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [11.1.2010 21:00 240232]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [17.12.2009 21:17 1044808]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\System32\drivers\Rt86win7.sys [19.12.2009 9:11 249888]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [14.10.2009 7:24 10064]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'

2010-01-29 c:\windows\Tasks\AWC AutoSweep.job
- c:\program files\Advanced SystemCare 3\AutoSweep.exe [2010-01-22 12:51]

2010-01-28 c:\windows\Tasks\AWC Update.job
- c:\program files\Advanced SystemCare 3\IObitUpdate.exe [2010-01-22 12:51]
.
.
------- Doplňkový sken -------
.
IE: {{88EB38EF-4D2C-436D-ABD3-56B232674062} - c:\program files\ICQ7.0\ICQ.exe
TCP: {84E30B68-B2DB-4322-B4A2-81350070D4B8} = 127.0.0.1,192.168.1.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)


.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2010-01-29 14:05:58
ComboFix-quarantined-files.txt 2010-01-29 13:05

Před spuštěním: Volných bajtů: 240 116 244 480
Po spuštění: Volných bajtů: 239 941 382 144

- - End Of File - - E46D53F2AD0419171551E61519658DC1

[HHM]

hm zajimavy nikdo nic nepise :(

[Pic]

Kdo Ti radil ten combofix - ten se používá jen pod dozorem zkušeného rádce, jinak můžeš nadělat více škody než užitku. Vyčkej než se objeví nějaký odborník na viry.

[HHM]

cekal sem skoro tyden a co stoho?

[Pic]

Musíš si to hlídat a postrčit to do TOP, aby to viroví odbornicí objevili. Jinak momentálně se tady nikdo z těch zkušených nevyskytuje.

[HHM]

jj obcas sem neco napisu at je to v top, nevyskytuji ? :( to je dost hrozny :(

[Pic]

Uvědom si, že fórum je založeno na dobrovolné vzájemné pomoci a každý z nás nemůže sedět celý den u počítače a každý má i své povinnosti a problémy.

[HHM]

ano to chapu a su si toho vedom

[jaro3]

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab


Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.

Vypni si rez.ochrany i firewall.
Stáhni si Dr. Web CureIt
dej update , po aktualizaci dej start.
Tlacitky dole muzeš soubor léčit, smazat, přesunout nebo přejmenovat

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.