Heuristics.Broken.Executable :( Vyřešeno

[Wanizator]

Zdravím, prosím Vás, mám problém s tímto virem, který vidíte na obrázku, můžu skenovat každý den a každý den mi to něco najde. Nevím si s tím rady. Poradí prosím Vás někdo?

[Reklama]

[memphisto]

Vítej na fóru PC-HELP.CZ

Zas tak hrozný "vir" to nebude, protože podle názvu to spíše vypadá na poškozené exe soubory a heuristickou detekcí byly odhaleny, jako možné nebezpečí. Dej se mol z HijackThis (návod v podpisu a mrkneme na to)

[Wanizator]

Ahoj, děkuji za uvítání.

Zdě je výpis:


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:41:12, on 24.1.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16700)
Boot mode: Normal

Running processes:
C:\Windows\vVX6000.exe
D:\Spyware Terminator\SpywareTerminatorUpdate.exe
D:\DAEMON Tools Lite\DTLite.exe
D:\QIP Infium\infium.exe
D:\Spybot - Search & Destroy\TeaTimer.exe
D:\Avira\AntiVir Desktop\avgnt.exe
C:\Users\K-azi\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\K-azi\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\K-azi\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\K-azi\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\K-azi\AppData\Local\Google\Chrome\Application\chrome.exe
D:\HiJackThis\Trend Micro\HiJackThis\HiJackThis.exe
C:\Windows\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - D:\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [avgnt] "D:\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [SpywareTerminatorUpdate] "D:\Spyware Terminator\SpywareTerminatorUpdate.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Infium] "D:\QIP Infium\infium.exe" /autorun
O4 - HKCU\..\Run: [SpybotSD TeaTimer] D:\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\Spybot - Search & Destroy\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD Reservation Manager - Advanced Micro Devices - D:\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - D:\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - D:\Avira\AntiVir Desktop\avguard.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Inkjet Printer/Scanner Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: O&O Defrag (OODefragAgent) - O&O Software GmbH - D:\OO Software\oodag.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - D:\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - D:\Spyware Terminator\sp_rsser.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - D:\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WDDMService - WDC - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
O23 - Service: WD File Management Engine (WDFME) - Unknown owner - C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
O23 - Service: WD File Management Shadow Engine (WDSC) - Unknown owner - C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8855 bytes

[memphisto]

Odinstaluj Spybot

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Vypni si rez.ochrany i firewall.
Stáhni si Dr. Web CureIt
dej update , po aktualizaci dej start.
Tlacitky dole muzeš soubor léčit(systémové soubory), smazat, přesunout nebo přejmenovat


Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

[Wanizator]

Jelikož používám internetový prohlížeč Google Chrome, tak jsem to vymazal pomocí něho. Všechno, krom uložených hesel. Druhý program nic nenašel a třetí taky ne :).


Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Verze databáze: 5590

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

24.1.2011 18:02:20
mbam-log-2011-01-24 (18-02-20).txt

Typ kontroly: Rychlý test
Testované objekty: 155225
Uplynulý čas: 56 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

[memphisto]

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah

[Wanizator]

Zde je výpis :):


ComboFix 11-01-25.01 - K-azi 26.01.2011 6:58.1.2 - x64
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.4094.2703 [GMT 1:00]
Spuštěný z: c:\users\K-azi\Downloads\ComboFix.exe
AV: AntiVir Desktop *Disabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}
AV: TrustPort Antivirus *Disabled/Updated* {C3AD9610-D79C-79A3-8C7B-CAB50B3AA5DC}
SP: AntiVir Desktop *Disabled/Updated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}
SP: TrustPort Antivirus *Disabled/Updated* {78CC77F4-F1A6-762D-B6CB-F1C770BDEF61}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.

((((((((((((((((((((((((( Soubory vytvořené od 2010-12-26 do 2011-01-26 )))))))))))))))))))))))))))))))
.

2011-01-26 06:01 . 2011-01-26 06:01 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-01-25 05:44 . 2011-01-20 09:39 7844688 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{652CD8AD-6E79-4380-9025-FBA1804BD8E2}\mpengine.dll
2011-01-24 20:03 . 2011-01-14 07:11 48696 ----a-w- c:\windows\system32\drivers\avasdmft.sys
2011-01-24 20:03 . 2011-01-24 20:04 -------- d-----w- c:\program files (x86)\Common Files\TrustPort
2011-01-24 20:03 . 2011-01-14 07:13 39336 ----a-w- c:\windows\system32\drivers\tpsec.sys
2011-01-24 16:57 . 2010-12-20 17:09 38224 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-01-24 16:57 . 2011-01-24 16:57 -------- d-----w- c:\programdata\Malwarebytes
2011-01-24 16:57 . 2011-01-24 16:57 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2011-01-24 16:57 . 2010-12-20 17:08 24152 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-01-24 07:08 . 2011-01-24 07:31 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2011-01-23 15:46 . 2011-01-23 15:46 9344 ----a-w- c:\windows\SysWow64\drivers\oreansx64.sys
2011-01-23 10:49 . 2011-01-23 10:49 -------- d-----w- c:\programdata\CanonIJ
2011-01-22 15:19 . 2010-12-14 13:43 34624 ----a-w- c:\windows\system32\TURegOpt.exe
2011-01-22 15:19 . 2010-12-14 13:39 25920 ----a-w- c:\windows\system32\authuitu.dll
2011-01-22 15:19 . 2010-12-14 13:39 36160 ----a-w- c:\windows\system32\uxtuneup.dll
2011-01-22 15:19 . 2010-12-14 13:39 29504 ----a-w- c:\windows\SysWow64\uxtuneup.dll
2011-01-22 15:19 . 2010-12-14 13:39 21312 ----a-w- c:\windows\SysWow64\authuitu.dll
2011-01-22 15:18 . 2011-01-22 15:20 -------- d-----w- c:\programdata\TuneUp Software
2011-01-22 15:18 . 2011-01-22 15:18 -------- d-sh--w- c:\programdata\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
2011-01-22 14:37 . 2010-10-19 09:41 270720 ------w- c:\windows\system32\MpSigStub.exe
2011-01-22 14:23 . 2010-12-13 07:40 83120 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-01-22 14:23 . 2010-12-13 07:40 116568 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-01-22 14:23 . 2011-01-22 14:23 -------- d-----w- c:\programdata\Avira
2011-01-22 13:21 . 2010-12-17 06:56 545 ----a-w- c:\windows\UC.PIF
2011-01-22 13:21 . 2010-12-17 06:56 545 ----a-w- c:\windows\RAR.PIF
2011-01-22 13:21 . 2010-12-17 06:56 545 ----a-w- c:\windows\PKZIP.PIF
2011-01-22 13:21 . 2010-12-17 06:56 545 ----a-w- c:\windows\PKUNZIP.PIF
2011-01-22 13:21 . 2010-12-17 06:56 545 ----a-w- c:\windows\NOCLOSE.PIF
2011-01-22 13:21 . 2010-12-17 06:56 545 ----a-w- c:\windows\LHA.PIF
2011-01-22 13:21 . 2010-12-17 06:56 545 ----a-w- c:\windows\ARJ.PIF
2011-01-22 06:04 . 2011-01-22 06:04 -------- d-----r- C:\MSOCache
2011-01-21 13:55 . 2011-01-25 12:51 214520 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2011-01-21 13:55 . 2011-01-25 12:51 214520 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2011-01-21 13:55 . 2011-01-21 13:55 75064 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2011-01-21 13:47 . 2011-01-21 13:48 -------- d-----w- c:\program files (x86)\Microsoft LifeCam
2011-01-21 13:47 . 2011-01-21 13:48 -------- d-----w- c:\program files\Microsoft LifeCam
2011-01-21 13:43 . 2011-01-21 13:43 -------- d-----w- c:\program files (x86)\Common Files\Skype
2011-01-21 11:50 . 2011-01-21 11:50 -------- d-----w- C:\$AVG
2011-01-21 05:05 . 2011-01-21 05:10 -------- d-----w- c:\program files (x86)\InstallShield Installation Information
2011-01-21 04:59 . 2011-01-21 04:59 -------- d-----w- c:\program files (x86)\Common Files\InstallShield
2011-01-21 04:58 . 2011-01-21 04:58 -------- d-sh--w- c:\windows\ftpcache
2011-01-21 04:56 . 2011-01-21 04:56 -------- d-----w- c:\windows\cs
2011-01-21 04:56 . 2011-01-21 04:56 -------- d-----w- c:\program files (x86)\Microsoft SQL Server Compact Edition
2011-01-21 04:55 . 2011-01-21 04:55 -------- d-----w- c:\program files (x86)\Windows Live
2011-01-21 04:53 . 2010-08-11 05:13 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll
2011-01-21 04:53 . 2010-08-11 04:44 2983424 ----a-w- c:\windows\SysWow64\UIRibbon.dll
2011-01-21 04:53 . 2010-08-11 04:35 1164800 ----a-w- c:\windows\SysWow64\UIRibbonRes.dll
2011-01-21 04:53 . 2010-08-11 05:19 3860992 ----a-w- c:\windows\system32\UIRibbon.dll
2011-01-21 04:51 . 2008-10-27 09:04 518480 ----a-w- c:\windows\system32\XAudio2_3.dll
2011-01-20 20:14 . 2011-01-20 20:14 -------- d-----w- c:\program files (x86)\MSXML 4.0
2011-01-20 20:00 . 2011-01-20 20:00 -------- d-----w- c:\program files\Microsoft Synchronization Services
2011-01-20 20:00 . 2011-01-20 20:00 -------- d-----w- c:\windows\PCHEALTH
2011-01-20 20:00 . 2011-01-20 20:00 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2011-01-20 20:00 . 2011-01-20 20:00 -------- d-----w- c:\program files (x86)\Microsoft.NET
2011-01-20 19:58 . 2011-01-20 19:58 -------- d-----w- c:\program files\Microsoft Analysis Services
2011-01-20 19:58 . 2011-01-20 19:58 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services
2011-01-20 19:50 . 2011-01-20 19:50 -------- d-----w- c:\programdata\Nokia
2011-01-20 19:44 . 2011-01-20 19:44 -------- d-----w- c:\programdata\PC Suite
2011-01-20 19:42 . 2011-01-20 19:43 -------- d-----w- c:\program files (x86)\Common Files\Nokia
2011-01-20 19:42 . 2011-01-20 19:42 -------- d-----w- c:\program files\DIFX
2011-01-20 19:42 . 2008-08-28 10:44 25600 ----a-w- c:\windows\system32\drivers\pccsmcfdx64.sys
2011-01-20 19:42 . 2011-01-20 19:42 -------- dc----w- c:\windows\system32\DRVSTORE
2011-01-20 19:42 . 2011-01-20 19:42 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
2011-01-20 19:41 . 2010-07-30 13:18 57856 ----a-w- c:\windows\system32\nmwcdclsX64.dll
2011-01-20 19:39 . 2011-01-20 19:39 -------- d-----w- c:\program files\VibrateGameDeviceDriver
2011-01-20 19:39 . 2011-01-20 19:39 -------- d-----w- c:\program files (x86)\VibrateGameDeviceDriver
2011-01-20 19:34 . 2011-01-20 19:34 -------- d-----w- c:\program files\Canon
2011-01-20 19:34 . 2011-01-20 19:34 -------- d--h--w- c:\windows\system32\CanonIJ Uninstaller Information
2011-01-20 19:33 . 2011-01-20 19:33 -------- d--h--w- c:\programdata\CanonBJ
2011-01-20 19:33 . 2008-05-26 19:00 82944 ----a-w- c:\windows\system32\Spool\prtprocs\x64\CNMPP9E.DLL
2011-01-20 19:33 . 2008-05-26 19:00 27648 ----a-w- c:\windows\system32\Spool\prtprocs\x64\CNMPD9E.DLL
2011-01-20 19:33 . 2011-01-20 19:37 -------- d-----w- c:\program files (x86)\Canon
2011-01-20 19:32 . 2008-05-26 19:00 279040 ----a-w- c:\windows\system32\CNMLM9E.DLL
2011-01-20 19:26 . 2011-01-20 19:26 -------- d-----w- c:\users\Default\AppData\Local\Western Digital
2011-01-20 19:25 . 2011-01-20 19:25 -------- d-----w- c:\program files\Western Digital
2011-01-20 19:22 . 2011-01-20 19:26 -------- d-----w- c:\programdata\Western Digital
2011-01-20 19:21 . 2011-01-21 04:43 -------- d-----w- c:\program files (x86)\Western Digital
2011-01-20 19:11 . 2011-01-20 19:11 254528 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-01-20 15:58 . 2009-11-25 11:47 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll
2011-01-20 15:58 . 2009-11-25 11:47 49472 ----a-w- c:\windows\SysWow64\netfxperf.dll
2011-01-20 15:58 . 2009-11-25 11:47 48960 ----a-w- c:\windows\system32\netfxperf.dll
2011-01-20 15:58 . 2009-11-25 11:47 297808 ----a-w- c:\windows\SysWow64\mscoree.dll
2011-01-20 15:58 . 2009-11-25 11:47 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe
2011-01-20 15:58 . 2009-11-25 11:47 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll
2011-01-20 15:58 . 2009-11-25 11:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2011-01-20 15:58 . 2009-11-25 11:47 444752 ----a-w- c:\windows\system32\mscoree.dll
2011-01-20 15:58 . 2009-11-25 11:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe
2011-01-20 15:58 . 2009-11-25 11:47 1942856 ----a-w- c:\windows\system32\dfshim.dll
2011-01-20 15:58 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2011-01-20 15:57 . 2011-01-20 15:57 -------- d-----w- c:\windows\SysWow64\Wat
2011-01-20 15:57 . 2011-01-20 15:57 -------- d-----w- c:\windows\system32\Wat
2011-01-20 15:57 . 2011-01-25 12:30 -------- d-----w- c:\program files (x86)\WinClamAVShield
2011-01-20 15:55 . 2011-01-20 15:55 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2011-01-20 15:55 . 2011-01-20 19:42 -------- d-----w- c:\program files (x86)\Nokia
2011-01-20 15:47 . 2011-01-25 13:36 -------- d-----w- c:\programdata\Spyware Terminator
2011-01-20 15:41 . 2011-01-21 13:43 -------- d-----w- c:\programdata\Skype
2011-01-20 15:36 . 2011-01-20 20:15 -------- d-----w- c:\programdata\Microsoft Help
2011-01-20 15:34 . 2009-09-10 06:28 311808 ----a-w- c:\windows\system32\msv1_0.dll
2011-01-20 15:34 . 2009-09-10 05:52 257024 ----a-w- c:\windows\SysWow64\msv1_0.dll
2011-01-20 15:24 . 2011-01-20 15:24 -------- d-----w- c:\programdata\ATI
2011-01-20 15:24 . 2011-01-20 15:24 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies
2011-01-20 15:24 . 2011-01-20 15:24 -------- d-----w- c:\program files (x86)\ATI Technologies
2011-01-20 15:23 . 2010-02-18 08:18 46136 ----a-w- c:\windows\system32\drivers\amdiox64.sys
2011-01-20 15:23 . 2011-01-20 15:23 -------- d-----w- c:\program files\Common Files\ATI Technologies
2011-01-20 15:23 . 2011-01-20 15:53 -------- d-----w- c:\program files (x86)\DAEMON Tools Toolbar
2011-01-20 15:22 . 2011-01-21 11:50 -------- d-----w- c:\programdata\DAEMON Tools Lite
2011-01-20 15:21 . 2011-01-20 15:21 -------- d-----w- c:\program files\ATI
2011-01-20 15:19 . 2010-10-27 05:06 2048 ----a-w- c:\windows\system32\tzres.dll
2011-01-20 15:17 . 2011-01-20 15:17 -------- d-----w- c:\programdata\ashampoo
2011-01-20 15:17 . 2009-12-11 10:29 153160 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2011-01-20 15:17 . 2009-12-11 09:24 1446912 ----a-w- c:\windows\system32\lsasrv.dll
2011-01-20 15:17 . 2009-12-11 07:39 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2011-01-20 15:17 . 2009-12-11 07:36 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2011-01-20 15:03 . 2011-01-20 15:03 -------- d--h--w- c:\programdata\Common Files
2011-01-20 15:02 . 2011-01-22 14:21 -------- d-----w- c:\programdata\AVG10
2011-01-20 15:00 . 2010-01-09 07:19 139264 ----a-w- c:\windows\system32\cabview.dll
2011-01-20 15:00 . 2010-01-09 06:52 132608 ----a-w- c:\windows\SysWow64\cabview.dll
2011-01-20 15:00 . 2009-12-29 08:03 220672 ----a-w- c:\windows\system32\wintrust.dll
2011-01-20 15:00 . 2009-12-29 06:55 172032 ----a-w- c:\windows\SysWow64\wintrust.dll
2011-01-20 14:58 . 2011-01-24 06:48 -------- d-sh--w- c:\windows\Installer
2011-01-20 14:58 . 2011-01-20 15:02 -------- d-----w- c:\programdata\MFAData
2011-01-20 14:56 . 2011-01-24 16:27 -------- d-----w- c:\users\K-azi
2011-01-20 14:50 . 2011-01-20 14:50 0 ----a-w- c:\windows\ativpsrm.bin
2011-01-20 14:46 . 2011-01-20 14:55 -------- d-----w- c:\windows\Panther
2011-01-20 14:37 . 2011-01-20 14:37 -------- d-----w- C:\Windows.old

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-11-26 04:20 . 2010-11-26 04:20 8120320 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2010-11-26 03:19 . 2010-11-26 03:19 21610496 ----a-w- c:\windows\system32\atio6axx.dll
2010-11-26 03:02 . 2010-11-26 03:02 16702976 ----a-w- c:\windows\SysWow64\atioglxx.dll
2010-11-26 02:58 . 2010-11-26 02:58 143360 ----a-w- c:\windows\system32\atiapfxx.exe
2010-11-26 02:58 . 2010-11-26 02:58 550400 ----a-w- c:\windows\SysWow64\aticfx32.dll
2010-11-26 02:57 . 2010-11-26 02:57 648704 ----a-w- c:\windows\system32\aticfx64.dll
2010-11-26 02:54 . 2010-11-26 02:54 462848 ----a-w- c:\windows\system32\ATIDEMGX.dll
2010-11-26 02:54 . 2010-11-26 02:54 478720 ----a-w- c:\windows\system32\atieclxx.exe
2010-11-26 02:54 . 2010-11-26 02:54 203776 ----a-w- c:\windows\system32\atiesrxx.exe
2010-11-26 02:53 . 2010-11-26 02:53 120320 ----a-w- c:\windows\system32\atitmm64.dll
2010-11-26 02:52 . 2010-11-26 02:52 423424 ----a-w- c:\windows\system32\atipdl64.dll
2010-11-26 02:52 . 2010-11-26 02:52 356352 ----a-w- c:\windows\SysWow64\atipdlxx.dll
2010-11-26 02:52 . 2010-11-26 02:52 278528 ----a-w- c:\windows\SysWow64\Oemdspif.dll
2010-11-26 02:52 . 2010-11-26 02:52 16384 ----a-w- c:\windows\system32\atimuixx.dll
2010-11-26 02:52 . 2010-11-26 02:52 59392 ----a-w- c:\windows\system32\atiedu64.dll
2010-11-26 02:52 . 2010-11-26 02:52 43520 ----a-w- c:\windows\SysWow64\ati2edxx.dll
2010-11-26 02:49 . 2010-11-26 02:49 4066816 ----a-w- c:\windows\SysWow64\atidxx32.dll
2010-11-26 02:40 . 2009-07-13 21:59 4794368 ----a-w- c:\windows\system32\atidxx64.dll
2010-11-26 02:30 . 2010-11-26 02:30 51200 ----a-w- c:\windows\system32\aticalrt64.dll
2010-11-26 02:30 . 2010-11-26 02:30 4122624 ----a-w- c:\windows\SysWow64\atiumdag.dll
2010-11-26 02:30 . 2010-11-26 02:30 46080 ----a-w- c:\windows\SysWow64\aticalrt.dll
2010-11-26 02:30 . 2010-11-26 02:30 44544 ----a-w- c:\windows\system32\aticalcl64.dll
2010-11-26 02:30 . 2010-11-26 02:30 44032 ----a-w- c:\windows\SysWow64\aticalcl.dll
2010-11-26 02:29 . 2010-11-26 02:29 6815232 ----a-w- c:\windows\system32\aticaldd64.dll
2010-11-26 02:29 . 2009-08-18 01:10 3217408 ----a-w- c:\windows\system32\atiumd6a.dll
2010-11-26 02:28 . 2010-11-26 02:28 5441024 ----a-w- c:\windows\SysWow64\aticaldd.dll
2010-11-26 02:24 . 2010-11-26 02:24 58880 ----a-w- c:\windows\system32\coinst.dll
2010-11-26 02:24 . 2009-08-18 01:15 5258240 ----a-w- c:\windows\system32\atiumd64.dll
2010-11-26 02:22 . 2010-11-26 02:22 3460096 ----a-w- c:\windows\SysWow64\atiumdva.dll
2010-11-26 02:17 . 2010-11-26 02:17 351232 ----a-w- c:\windows\system32\atiadlxx.dll
2010-11-26 02:17 . 2010-11-26 02:17 249856 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2010-11-26 02:17 . 2010-11-26 02:17 14848 ----a-w- c:\windows\system32\atig6pxx.dll
2010-11-26 02:17 . 2010-11-26 02:17 12800 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2010-11-26 02:17 . 2010-11-26 02:17 12800 ----a-w- c:\windows\system32\atiglpxx.dll
2010-11-26 02:17 . 2010-11-26 02:17 31744 ----a-w- c:\windows\system32\atig6txx.dll
2010-11-26 02:16 . 2010-11-26 02:16 27136 ----a-w- c:\windows\SysWow64\atigktxx.dll
2010-11-26 02:16 . 2010-11-26 02:16 289792 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2010-11-26 02:16 . 2010-11-26 02:16 39936 ----a-w- c:\windows\system32\atiuxp64.dll
2010-11-26 02:15 . 2010-11-26 02:15 30720 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2010-11-26 02:15 . 2010-11-26 02:15 37888 ----a-w- c:\windows\system32\atiu9p64.dll
2010-11-26 02:15 . 2010-11-26 02:15 28672 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2010-11-26 02:15 . 2010-11-26 02:15 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2010-11-26 02:09 . 2010-11-26 02:09 53760 ----a-w- c:\windows\system32\atimpc64.dll
2010-11-26 02:09 . 2010-11-26 02:09 53760 ----a-w- c:\windows\system32\amdpcom64.dll
2010-11-26 02:09 . 2010-11-26 02:09 52736 ----a-w- c:\windows\SysWow64\atimpc32.dll
2010-11-26 02:09 . 2010-11-26 02:09 52736 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2010-11-17 12:04 . 2010-11-17 12:04 115216 ----a-w- c:\windows\system32\drivers\AtihdW76.sys
2010-11-10 01:28 . 2010-11-10 01:28 301936 ----a-w- c:\windows\WLXPGSS.SCR
2010-11-02 05:16 . 2011-01-20 15:20 1114624 ----a-w- c:\windows\system32\schedsvc.dll
2010-11-02 05:10 . 2011-01-20 15:20 285696 ----a-w- c:\windows\system32\schtasks.exe
2010-11-02 04:34 . 2011-01-20 15:20 179712 ----a-w- c:\windows\SysWow64\schtasks.exe
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpywareTerminatorUpdate"="d:\spyware terminator\SpywareTerminatorUpdate.exe" [2011-01-20 3318784]
"DAEMON Tools Lite"="d:\daemon tools lite\DTLite.exe" [2011-01-20 1305408]
"Infium"="d:\qip infium\infium.exe" [2011-01-13 6012800]
"SpybotSD TeaTimer"="d:\spybot - search & destroy\TeaTimer.exe" [2009-03-05 2260480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"LifeCam"="c:\program files (x86)\Microsoft LifeCam\LifeExp.exe" [2010-05-20 119152]
"avgnt"="d:\avira\AntiVir Desktop\avgnt.exe" [2010-12-13 281768]
"AntivirusCommunicatorAgent"="d:\trustport\Antivirus\bin\avcom.exe" [2011-01-14 772664]
"TrustPortTray"="c:\program files (x86)\Common Files\TrustPort\Bin\tptray.exe" [2011-01-14 703032]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

R1 oreansx64;oreansx64;c:\windows\syswow64\drivers\oreansx64.sys [2011-01-23 9344]
R3 avas_service;TrustPort Antivirus On-Access Scanner Agent;d:\trustport\Antivirus\bin\avas.exe [2011-01-14 494136]
R3 avasdmft;TrustPort Antivirus On-Access Scanner (W2K/XP) MF;c:\windows\system32\DRIVERS\avasdmft.sys [2011-01-14 48696]
R3 dsio;TrustPort Raw IO Driver;c:\program files (x86)\Common Files\TrustPort\bin\dsio.sys [2011-01-14 18488]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-01-20 1255736]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-01-20 254528]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-11-26 203776]
S2 AMD Reservation Manager;AMD Reservation Manager;d:\ati technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe [2010-06-17 194496]
S2 AntiVirSchedulerService;Avira AntiVir Scheduler;d:\avira\AntiVir Desktop\sched.exe [2010-12-13 135336]
S2 OODefragAgent;O&O Defrag;d:\oo software\oodag.exe [2011-01-12 3134792]
S2 SBSDWSCService;SBSD Security Center Service;d:\spybot - search & destroy\SDWinSec.exe [2009-01-26 1153368]
S2 sp_rsdrv2;Spyware Terminator Driver Filter;c:\windows\system32\DRIVERS\stflt.sys [2010-07-07 50696]
S2 tpmgma_service;TrustPort Core Service;c:\program files (x86)\Common Files\TrustPort\bin\tpmgma.exe [2011-01-14 402288]
S2 tpsec;TrustPort Security Filter;c:\windows\system32\drivers\tpsec.sys [2011-01-14 39336]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;d:\tuneup utilities 2011\TuneUpUtilitiesService64.exe [2010-12-14 2019648]
S2 WDDMService;WDDMService;c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2010-11-08 288256]
S2 WDFME;WD File Management Engine;c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [2010-11-08 1060352]
S2 WDSC;WD File Management Shadow Engine;c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [2010-11-08 485376]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-11-26 8120320]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-11-26 289792]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2010-11-17 115216]
S3 avss_service;TrustPort Antivirus Service Scanner Provider;d:\trustport\Antivirus\bin\avss.exe [2011-01-14 289336]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;d:\tuneup utilities 2011\TuneUpUtilitiesDriver64.sys [2010-11-29 11856]
S3 VX6000;Microsoft LifeCam VX-6000;c:\windows\system32\DRIVERS\VX6000Xp.sys [2010-05-20 2143600]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys [2009-02-13 14464]

.

--------- x86-64 -----------


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"="d:\microsoft office\Office14\BCSSync.exe" [2010-03-13 112512]
"VX6000"="c:\windows\vVX6000.exe" [2010-05-20 764784]
"OODefragTray"="d:\oo software\oodtray.exe" [2011-01-12 4012360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - d:\micros~1\Office14\EXCEL.EXE/3000
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

Wow6432Node-HKLM-Run-TrustPortDiskProtectionWatchDog - c:\program files (x86)\Common Files\TrustPort\bin\TDWatch.exe


.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\System*]
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

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2011-01-26 07:03:12
ComboFix-quarantined-files.txt 2011-01-26 06:03

Před spuštěním: Volných bajtů: 28 610 060 288
Po spuštění: Volných bajtů: 28 471 250 944

- - End Of File - - 49EF200CD2E01E2F16979CC0C58C2A57

[memphisto]

Máš tam dva antiviry! Který chceš ponechat? Předpokládám, že TrustPort není legálně nabyt, tak asi ten odstřelíme, co?

[Wanizator]

No jasně, ten jsem chtěl vyzkoušet, co to je zač, jelikož jsem ho viděl na vyšších stupních kvality :).

[jaro3]

Nech jen jeden antivir a jeden antispyware.

Odinstaluj taky:
Spyware Terminator

[Wanizator]

Ano, vždy jedu na jeden antivir a Spyware Terminator :). Proč uninstal ST?

[memphisto]

Je zbytečný, všechny dnešní antiviry rezidentní antispyware štít mají. Spybot můžeš taktéž odinstalovat. Pak udělej nový sken Combofixem a dej sem druhý log