Prosím o kontrolu logu - Low FPS, etc.

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Odpovědět
4Qwerty7
nováček
Příspěvky: 26
Registrován: srpen 14
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu - Low FPS, etc.

Příspěvekod 4Qwerty7 » 03 srp 2014 18:36

RogueKiller V9.2.4.0 [Jul 11 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Started in : Normal mode
User : James [Admin rights]
Mode : Remove -- Date : 08/03/2014 17:34:37

¤¤¤ Bad processes : 1 ¤¤¤
[Suspicious.Path] explorer.exe -- C:\Users\James\AppData\Local\MEGAsync\ShellExtX32.dll[-] -> UNLOADED

¤¤¤ Registry Entries : 13 ¤¤¤
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\gdrv -> DELETED
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\gdrv -> DELETED
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\gdrv -> DELETED
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 213.46.172.37 213.46.172.36 -> REPLACED ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 213.46.172.37 213.46.172.36 -> REPLACED ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 213.46.172.37 213.46.172.36 -> REPLACED ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{92AC4B64-D136-4922-9CDC-1316819FC862} | DhcpNameServer : 213.46.172.37 213.46.172.36 -> REPLACED ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{92AC4B64-D136-4922-9CDC-1316819FC862} | DhcpNameServer : 213.46.172.37 213.46.172.36 -> REPLACED ()
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{92AC4B64-D136-4922-9CDC-1316819FC862} | DhcpNameServer : 213.46.172.37 213.46.172.36 -> REPLACED ()
[PUM.Policies] HKEY_USERS\S-1-5-21-1677294000-3062607945-2096268717-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> DELETED
[PUM.Policies] HKEY_USERS\S-1-5-21-1677294000-3062607945-2096268717-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> DELETED
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> REPLACED (0)
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> REPLACED (0)

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ HOSTS File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: LOADED) ¤¤¤

¤¤¤ Web browsers : 12 ¤¤¤
[IE:Addon] System : Bing Bar [{8dcb7100-df86-4384-8842-8fa844297b3f}] -> DELETED
[CHROME:Addon] Default : savve oNe [afnhkloifchefdhaekoaoingeoggcomj] -> DELETED
[CHROME:Addon] Default : Help Save [ahldefgplekckalfcolhhnljbbgaiboc] -> ERROR [2]
[CHROME:Addon] Default : Google Docs [aohghmighlieiainnegkcijnfilokake] -> ERROR [2]
[CHROME:Addon] Default : Google Drive [apdfllckaahabafndbhieahigkjlhalf] -> ERROR [2]
[CHROME:Addon] Default : YouTube [blpcfgokakmgnkcojhhkbfbldkacnbeo] -> ERROR [2]
[CHROME:Addon] Default : DowNlooad keepEr [bmnpcdnfmmpkglhijfkpabchcfbjgmhl] -> ERROR [2]
[CHROME:Addon] Default : Google Search [coobgpohoikkiipiblmjeljniedjpjpf] -> ERROR [2]
[CHROME:Addon] Default : avast! Online Security [gomekmidlodglbbmalcneegieacbdmki] -> ERROR [2]
[CHROME:Addon] Default : Google Wallet [nmmhkkegccagdldgiimedpiccmgmieda] -> ERROR [2]
[CHROME:Addon] Default : MySearch [obdaijmnebjomibjmokoaijfodfmbdph] -> ERROR [2]
[CHROME:Addon] Default : Gmail [pjkljhegncpnkpknbcohdijeoejaedia] -> ERROR [2]

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: WDC WD5000AADS-00S9B0 ATA Device +++++
--- User ---
[MBR] e3efdd86f693db6737b8c731a495c3d3
[BSP] 5cd9206f5580b69891e3771fdaa77446 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 476838 MB
User = LL1 ... OK
User = LL2 ... OK


============================================
RKreport_SCN_08032014_162905.log - RKreport_SCN_08032014_173052.log
Nahoru
Reklama
Top
4Qwerty7
nováček
Příspěvky: 26
Registrován: srpen 14
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu - Low FPS, etc.

Příspěvekod 4Qwerty7 » 03 srp 2014 18:51

Sorry že to posílám přez pastebin, ale soubor má + - 200000 znáků :D
Ty za help už předem :D

Soubor: http://pastebin.com/pLHm0XQE
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43294
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu - Low FPS, etc.

Příspěvekod jaro3 » 04 srp 2014 09:09

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
4Qwerty7
nováček
Příspěvky: 26
Registrován: srpen 14
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu - Low FPS, etc.

Příspěvekod 4Qwerty7 » 04 srp 2014 11:13

Znovu, přesáhlo 60k znaků, tím pádem:

pastebin: http://pastebin.com/AsmVxiAy

Mohl bych se zeptat ?
je lepší reinstall windowsů, nebo toto ?

----------EDIT------------
Měl jsem zaplý antivir, musel jsem být v nouzáku a antivir něak nebyl v processech zaplej, nic jsem nenašel, doufám že jsem tím neudělal něaký problém.
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43294
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu - Low FPS, etc.

Příspěvekod jaro3 » 04 srp 2014 18:41

Log rozděl do více příspěvků a vlož sem.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
4Qwerty7
nováček
Příspěvky: 26
Registrován: srpen 14
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu - Low FPS, etc.

Příspěvekod 4Qwerty7 » 04 srp 2014 18:56

ComboFix 14-08-02.02 - James 04.08.2014 9:50.1.1 - x86 MINIMAL
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1033.18.3326.2890 [GMT 1:00]
Spuštěný z: c:\users\James\Desktop\ComboFix.exe
AV: COMODO Antivirus *Enabled/Outdated* {B74CC7D2-B407-E1DC-1033-DD315BCDC8C8}
SP: COMODO Antivirus *Enabled/Updated* {0C2D2636-923D-EE52-2A83-E643204A8275}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\background.html
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\content.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\EZ3.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\lsdb.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\manifest.json
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\background.html
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\content.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\lsdb.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\manifest.json
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\QjEm.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\background.html
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\content.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\lsdb.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\manifest.json
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\zBN2wjlZ4R9.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\background.html
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\content.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\cRJJCO5.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\lsdb.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\manifest.json
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\newtab.html
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\background.html
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\content.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\EZ3.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\background.html
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\content.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\QjEm.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\background.html
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\content.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\zBN2wjlZ4R9.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\background.html
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\content.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\cRJJCO5.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\newtab.html
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\background.html
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\content.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\EZ3.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\background.html
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\content.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\QjEm.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\background.html
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\content.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\zBN2wjlZ4R9.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\background.html
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\content.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\cRJJCO5.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\newtab.html
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\background.html
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\content.js
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\EZ3.js
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\lsdb.js
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\manifest.json
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\background.html
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\content.js
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\lsdb.js
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\manifest.json
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\QjEm.js
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\background.html
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\content.js
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\lsdb.js
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\manifest.json
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\zBN2wjlZ4R9.js
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\background.html
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\content.js
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\cRJJCO5.js
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\lsdb.js
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\manifest.json
c:\users\ASPNET\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\newtab.html
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\background.html
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\content.js
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\EZ3.js
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\lsdb.js
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\manifest.json
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\background.html
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\content.js
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\lsdb.js
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\manifest.json
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\QjEm.js
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\background.html
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\content.js
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\lsdb.js
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\manifest.json
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\zBN2wjlZ4R9.js
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\background.html
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\content.js
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\cRJJCO5.js
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\lsdb.js
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\manifest.json
c:\users\ASPNET\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\newtab.html
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\background.html
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\content.js
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\EZ3.js
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\lsdb.js
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\manifest.json
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\background.html
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\content.js
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\lsdb.js
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\manifest.json
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\QjEm.js
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\background.html
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\content.js
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\lsdb.js
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\manifest.json
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\zBN2wjlZ4R9.js
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\background.html
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\content.js
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\cRJJCO5.js
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\lsdb.js
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\manifest.json
c:\users\ASPNET\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\newtab.html
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\background.html
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\content.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\EZ3.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\lsdb.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\manifest.json
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\background.html
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\content.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\lsdb.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\manifest.json
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\QjEm.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\background.html
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\content.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\lsdb.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\manifest.json
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\zBN2wjlZ4R9.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\background.html
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\content.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\cRJJCO5.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\lsdb.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\manifest.json
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\newtab.html
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\background.html
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\content.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\EZ3.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\background.html
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\content.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\QjEm.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\background.html
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\content.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\zBN2wjlZ4R9.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\background.html
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\content.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\cRJJCO5.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\newtab.html
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\background.html
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\content.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\EZ3.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\background.html
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\content.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\QjEm.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\background.html
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\content.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\zBN2wjlZ4R9.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\background.html
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\content.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\cRJJCO5.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\newtab.html
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\background.html
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\content.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\EZ3.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\background.html
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\content.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\QjEm.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\background.html
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\content.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\zBN2wjlZ4R9.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\background.html
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\content.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\cRJJCO5.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\newtab.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\background.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\content.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\EZ3.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\background.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\content.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\QjEm.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\background.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\content.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\zBN2wjlZ4R9.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\background.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\content.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\cRJJCO5.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\newtab.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\background.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\content.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\EZ3.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\background.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\content.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\QjEm.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl
Nahoru
4Qwerty7
nováček
Příspěvky: 26
Registrován: srpen 14
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu - Low FPS, etc.

Příspěvekod 4Qwerty7 » 04 srp 2014 18:57

c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\background.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\content.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\zBN2wjlZ4R9.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\background.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\content.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\cRJJCO5.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\newtab.html
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\background.html
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\content.js
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\EZ3.js
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\lsdb.js
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\manifest.json
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\background.html
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\content.js
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\lsdb.js
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\manifest.json
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\QjEm.js
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\background.html
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\content.js
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\lsdb.js
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\manifest.json
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\zBN2wjlZ4R9.js
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\background.html
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\content.js
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\cRJJCO5.js
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\lsdb.js
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\manifest.json
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\newtab.html
c:\users\James\AppData\Local\Comodo\Dragon\User Data\Default\Preferences
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\background.html
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\content.js
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\EZ3.js
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\lsdb.js
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\afnhkloifchefdhaekoaoingeoggcomj\2.14\manifest.json
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\background.html
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\content.js
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\lsdb.js
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\manifest.json
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ahldefgplekckalfcolhhnljbbgaiboc\108\QjEm.js
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\background.html
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\content.js
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\lsdb.js
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\manifest.json
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\bmnpcdnfmmpkglhijfkpabchcfbjgmhl\1.6\zBN2wjlZ4R9.js
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\background.html
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\content.js
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\cRJJCO5.js
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\lsdb.js
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\manifest.json
c:\users\James\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\obdaijmnebjomibjmokoaijfodfmbdph\2.1\newtab.html
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-07-04 do 2014-08-04 )))))))))))))))))))))))))))))))
.
.
2014-08-04 09:02 . 2014-08-04 09:02 -------- d-----w- c:\users\James\AppData\Local\temp
2014-08-04 09:02 . 2014-08-04 09:02 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-08-03 15:53 . 2014-08-03 15:53 -------- d-----w- c:\program files\Common Files\Java
2014-08-03 15:53 . 2014-07-11 02:02 96680 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-08-03 15:22 . 2014-08-03 16:24 29160 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2014-08-03 15:22 . 2014-08-03 15:22 -------- d-----w- c:\programdata\RogueKiller
2014-08-03 14:15 . 2014-08-03 14:15 -------- d-----w- c:\windows\ERUNT
2014-08-03 11:13 . 2014-08-03 13:41 110296 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-08-03 11:13 . 2014-08-03 11:13 -------- d-----w- c:\program files\Malwarebytes Anti-Malware
2014-08-03 11:13 . 2014-08-03 11:13 -------- d-----w- c:\programdata\Malwarebytes
2014-08-03 11:13 . 2014-05-12 06:26 51928 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-08-03 11:13 . 2014-05-12 06:25 74456 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-08-03 11:13 . 2014-05-12 06:25 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-08-03 11:01 . 2014-08-03 14:07 -------- d-----w- C:\AdwCleaner
2014-08-03 10:32 . 2014-08-03 10:32 -------- d-----w- c:\program files\Common Files\COMODO
2014-08-02 15:08 . 2014-08-02 15:08 -------- d-----w- C:\VTRoot
2014-08-02 15:08 . 2014-08-02 22:25 1009980 ----a-w- c:\windows\system32\drivers\fvstore.dat
2014-08-02 14:12 . 2014-08-04 08:33 854048 ----a-w- c:\windows\system32\drivers\sfi.dat
2014-08-02 14:11 . 2014-08-02 14:13 -------- d-s---w- c:\programdata\Shared Space
2014-08-02 14:11 . 2014-08-03 14:29 -------- d-----w- c:\users\James\AppData\Local\AdTrustMedia
2014-08-02 14:10 . 2014-08-02 14:10 348160 ----a-w- c:\windows\system32\msvcr71.dll
2014-08-02 14:10 . 2014-08-02 14:10 1700352 ----a-w- c:\windows\system32\gdiplus.dll
2014-08-02 14:10 . 2014-08-02 14:10 1060864 ----a-w- c:\windows\system32\mfc71.dll
2014-08-02 14:08 . 2014-08-02 14:11 48392 ----a-w- c:\windows\system32\certsentry.dll
2014-08-02 14:08 . 2014-08-02 14:11 -------- d-----w- c:\program files\Comodo
2014-08-02 14:07 . 2014-08-02 14:07 -------- d-----w- c:\programdata\Comodo Downloader
2014-08-02 14:06 . 2014-08-02 14:12 -------- d-----w- c:\programdata\Comodo
2014-08-02 11:17 . 2014-08-02 11:17 -------- d-----w- c:\program files\Enigma Software Group
2014-08-02 11:16 . 2014-08-02 11:16 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2014-07-28 12:20 . 2014-07-28 12:20 -------- d-----w- c:\users\James\AppData\Roaming\LolClient
2014-07-28 10:14 . 2014-07-28 10:14 -------- d-----w- c:\programdata\Riot Games
2014-07-28 10:14 . 2008-07-12 07:18 467984 ----a-w- c:\windows\system32\d3dx10_39.dll
2014-07-28 10:14 . 2008-07-12 07:18 1493528 ----a-w- c:\windows\system32\D3DCompiler_39.dll
2014-07-28 10:14 . 2008-07-12 07:18 3851784 ----a-w- c:\windows\system32\D3DX9_39.dll
2014-07-28 10:13 . 2014-07-28 10:13 -------- d-----w- C:\Riot Games
2014-07-28 10:12 . 2014-08-03 18:44 -------- d-----w- c:\users\James\AppData\Local\PMB Files
2014-07-28 10:12 . 2014-07-29 13:50 -------- d-----w- c:\programdata\PMB Files
2014-07-28 10:12 . 2014-07-28 10:12 -------- d-----w- c:\users\James\AppData\Roaming\Riot Games
2014-07-26 17:05 . 2014-07-26 17:05 -------- d-----w- c:\programdata\ATI
2014-07-26 17:04 . 2014-07-26 17:04 -------- d-----w- c:\users\James\AppData\Roaming\Raptr
2014-07-26 17:04 . 2014-07-26 17:04 -------- d-----w- c:\program files\Raptr
2014-07-26 17:04 . 2014-07-26 17:04 -------- d-----w- c:\program files\AMD AVT
2014-07-26 16:57 . 2014-07-26 16:57 -------- d-----w- c:\program files\AMD
2014-07-26 11:13 . 2014-07-26 11:13 -------- d-----w- c:\users\James\AppData\Roaming\TeamViewer
2014-07-22 09:56 . 2014-07-22 09:56 -------- d-----w- c:\program files\LogMeIn Hamachi
2014-07-18 17:11 . 2014-07-18 17:11 -------- d-----w- c:\programdata\LumaEmu_SteamCloud
2014-07-18 15:57 . 2006-02-04 02:50 5174 ----a-w- c:\windows\system32\nppt9x.vxd
2014-07-18 15:57 . 2006-02-04 02:50 4682 ----a-w- c:\windows\system32\npptNT2.sys
2014-07-18 15:48 . 2014-07-19 18:08 -------- d-----w- c:\program files\Lineage II
2014-07-18 15:47 . 2014-07-18 15:47 -------- d-----w- c:\users\James\AppData\Roaming\InstallShield
2014-07-17 21:47 . 2014-07-20 14:08 -------- d-----w- c:\program files\Dragon's Prophet
2014-07-17 19:18 . 2014-07-22 14:46 -------- d-----w- c:\users\James\AppData\Roaming\.minecraft
2014-07-13 17:40 . 2014-07-13 17:40 -------- d-----w- c:\users\James\AppData\Roaming\HeroesAndGeneralsDesktop
2014-07-11 13:15 . 2014-07-25 19:32 -------- d-----w- c:\users\James\AppData\Roaming\TS3Client
2014-07-11 13:15 . 2014-07-11 13:15 -------- d-----w- c:\program files\TeamSpeak 3 Client
2014-07-10 16:03 . 2014-07-10 16:03 -------- d-----w- c:\program files\FileZilla FTP Client
2014-07-10 15:51 . 2014-08-03 16:22 -------- d-----w- c:\users\James\AppData\Roaming\FileZilla
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-08-03 13:52 . 2013-11-17 19:48 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-08-03 13:52 . 2013-11-17 19:48 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-07-25 16:51 . 2013-11-15 14:39 16608 ----a-w- c:\windows\gdrv.sys
2014-06-22 13:03 . 2014-05-30 18:57 107552 ----a-w- c:\windows\system32\EasyAntiCheat.exe
2014-05-30 18:49 . 2014-05-18 16:45 139584 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2014-05-30 18:49 . 2014-05-18 16:44 291760 ----a-w- c:\windows\system32\PnkBstrB.exe
2014-05-30 18:49 . 2013-11-27 22:11 291760 ----a-w- c:\windows\system32\PnkBstrB.xtr
2014-05-30 18:35 . 2013-11-27 21:38 291488 ----a-w- c:\windows\system32\PnkBstrB.ex0
2014-05-30 18:30 . 2013-11-27 21:38 138904 ----a-w- c:\users\James\AppData\Roaming\PnkBstrK.sys
2014-05-30 18:29 . 2014-05-18 16:44 76888 ----a-w- c:\windows\system32\PnkBstrA.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\###MegaShellExtPending]
@="{056D528D-CE28-4194-9BA3-BA2E9197FF8C}"
[HKEY_CLASSES_ROOT\CLSID\{056D528D-CE28-4194-9BA3-BA2E9197FF8C}]
2014-05-01 14:15 463360 ----a-w- c:\users\James\AppData\Local\MEGAsync\ShellExtX32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\###MegaShellExtSynced]
@="{05B38830-F4E9-4329-978B-1DD28605D202}"
[HKEY_CLASSES_ROOT\CLSID\{05B38830-F4E9-4329-978B-1DD28605D202}]
2014-05-01 14:15 463360 ----a-w- c:\users\James\AppData\Local\MEGAsync\ShellExtX32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\###MegaShellExtSyncing]
@="{0596C850-7BDD-4C9D-AFDF-873BE6890637}"
[HKEY_CLASSES_ROOT\CLSID\{0596C850-7BDD-4C9D-AFDF-873BE6890637}]
2014-05-01 14:15 463360 ----a-w- c:\users\James\AppData\Local\MEGAsync\ShellExtX32.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HydraVisionDesktopManager"="c:\program files\ATI Technologies\HydraVision\HydraDM.exe" [2011-03-10 393216]
"Akamai NetSession Interface"="c:\users\James\AppData\Local\Akamai\netsession_win.exe" [2014-04-18 4672920]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-10-28 3675352]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2014-05-08 21446272]
"BitTorrent"="c:\users\James\AppData\Roaming\BitTorrent\BitTorrent.exe" [2014-05-03 1643096]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2013-10-24 12017368]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2012-11-05 89184]
"RazerGameBooster"="c:\program files\Razer\Razer Game Booster\RazerGameBooster.exe" [2013-11-22 61152]
"LogMeIn Hamachi Ui"="c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe" [2014-07-21 3816784]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe" [2014-04-17 748256]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cistray.exe" [2014-03-25 1225944]
"tvncontrol"="c:\program files\Common Files\COMODO\GeekBuddyRSP.exe" [2014-07-25 2327248]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2014-07-11 256896]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Start GeekBuddy.lnk - c:\program files\Comodo\GeekBuddy\launcher.exe "unit_manager.exe" [2014-7-25 49360]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
backup=c:\windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish]
2013-11-15 13:33 1279224 ----a-w- c:\program files\Clownfish\Clownfish.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
c:\users\James\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [BU]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2013-10-28 08:29 3675352 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
2014-07-21 17:08 3816784 ----a-w- c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando Media Booster]
2014-07-28 10:12 3089488 ----a-w- c:\program files\Pando Networks\Media Booster\PMB.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Razer Comms]
2013-12-11 00:24 1094848 ----a-w- c:\program files\Razer\Core\RazerCore.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2014-07-11 01:39 256896 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
R1 CFRMD;CFRMD;c:\windows\system32\DRIVERS\CFRMD.sys [2013-05-07 35064]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys [2014-04-16 607168]
R1 HMD;COMODO livePCsupport Hardware Monitor Driver;c:\windows\system32\DRIVERS\hmd.sys [2013-10-07 15400]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2014-04-18 208896]
R2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-04-17 276992]
R2 AODDriver4.3;AODDriver4.3;c:\program files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [2014-02-11 50400]
R2 BBSvc;BingBar Service;c:\program files\Microsoft\BingBar\7.3.132.0\BBSvc.exe [2014-03-12 193696]
R2 CLPSLauncher;COMODO LPS Launcher;c:\program files\Common Files\COMODO\launcher_service.exe [2014-07-25 70864]
R2 DragonUpdater;COMODO Dragon Update Service;c:\program files\Comodo\Dragon\dragon_updater.exe [2014-05-21 2135232]
R2 ES lite Service;ES lite Service for program management.;c:\program files\Gigabyte\EasySaver\ESSVR.EXE [2009-02-05 68136]
R2 GeekBuddyRSP;GeekBuddyRSP Server;c:\program files\Common Files\COMODO\GeekBuddyRSP.exe [2014-07-25 2327248]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2014-07-21 1905488]
R2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;c:\program files\Hi-Rez Studios\HiPatchService.exe [2014-07-18 9216]
R2 LMIGuardianSvc;LMIGuardianSvc;c:\program files\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-07-16 375056]
R2 RzKLService;RzKLService;c:\program files\Razer\Razer Game Booster\RzKLService.exe [2013-11-22 105448]
R2 RzOvlMon;Razer Overlay Subsystem Emergency Service;c:\program files\Razer\Core\rzovlmon.exe [2013-12-11 30912]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-10-23 172192]
R2 TeamViewer9;TeamViewer 9;c:\program files\TeamViewer\Version9\TeamViewer_Service.exe [2014-07-02 5037888]
R3 amdiox86;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox86.sys [x]
R3 AODDriver4.0;AODDriver4.0;c:\program files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [2014-02-11 50400]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2013-12-19 77824]
R3 BBUpdate;BBUpdate;c:\program files\Microsoft\BingBar\7.3.132.0\SeaPort.exe [2014-03-12 247968]
R3 c2wts;Claims to Windows Token Service;c:\program files\Windows Identity Foundation\v3.5\c2wtshost.exe [2010-02-02 15768]
R3 cmdvirth;COMODO Virtual Service Manager;c:\program files\COMODO\COMODO Internet Security\cmdvirth.exe [2014-03-25 1663192]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x]
R3 EasyAntiCheat;EasyAntiCheat;c:\windows\system32\EasyAntiCheat.exe [2014-06-22 107552]
R3 esgiguard;esgiguard;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
R3 EvolveVirtualAdapter;Evolve Virtual Miniport Driver;c:\windows\system32\DRIVERS\evolve.sys [2014-04-30 18584]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-02-06 108032]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
R3 RzDxgk;RzDxgk;c:\windows\system32\drivers\RzDxgk.sys [2013-12-11 102592]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2010-11-20 77184]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys [2009-09-16 27136]
R3 Te.Service;Te.Service;c:\program files\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-08-22 91136]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2010-11-20 25600]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-20 112640]
R3 TunngleService;TunngleService;c:\program files\Tunngle\TnglCtrl.exe [2013-11-07 758224]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 VsEtwService120;Visual Studio ETW Event Collection Service;c:\program files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [2013-10-05 71344]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2013-11-16 1343400]
S0 RzFilter;RzFilter;c:\windows\system32\drivers\RzFilter.sys [2013-12-11 65216]
S1 cmderd;COMODO Internet Security Eradication Driver;c:\windows\system32\DRIVERS\cmderd.sys [2014-04-16 20072]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-12-06 243128]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-06-12 12:39 1091912 ----a-w- c:\program files\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-08-03 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-17 13:52]
.
.
------- Doplňkový sken -------
.
uStart Page = www.google.com
mStart Page = www.google.com
uInternet Settings,ProxyOverride = <local>
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~4\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~1\MICROS~4\Office14\ONBttnIE.dll/105
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: DhcpNameServer = 213.46.172.37 213.46.172.36
TCP: Interfaces\{92AC4B64-D136-4922-9CDC-1316819FC862}: NameServer = 156.154.70.22,156.154.71.22
FF - ProfilePath - c:\users\James\AppData\Roaming\Mozilla\Firefox\Profiles\wpee5yuo.default-1405663708390\
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
HKCU-Run-Clownfish - (no file)
HKLM-Run-ComodoFSFirefox - c:\program files\AdTrustMedia\PrivDog\FinalizeSetup.exe
MSConfigStartUp-cz.seznam.software - c:\users\James\AppData\Roaming\Seznam.cz\szninstall.exe
MSConfigStartUp-mobilegeni daemon - c:\program files\Mobogenie\DaemonProcess.exe
MSConfigStartUp-PC Booster - c:\program files\inKline Global\PC Booster\pcbooster.exe
MSConfigStartUp-PCSpeedUp - c:\program files\Zrychleni Pocitace\PCSUNotifier.exe
MSConfigStartUp-seznam-listicka-distribuce - c:\program files\Seznam.cz\distribution\szninstall.exe
AddRemove-PrivDog - c:\program files\AdTrustMedia\PrivDog\UninstallTrustedAds.exe
AddRemove-{C1A27135-69EB-8D44-7358-34727DD7B820} - c:\programdata\DowNlooad keepEr\JH94pHq6pH.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\CmdAgent\Mode\Configurations]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,59,00,53,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\CmdAgent\Mode\Data]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\CmdAgent\Mode\Options]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Cam]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,59,00,53,00,\
.
Celkový čas: 2014-08-04 10:03:38
ComboFix-quarantined-files.txt 2014-08-04 09:03
.
Před spuštěním: 182 742 126 592 bytes free
Po spuštění: 182 393 249 792 bytes free
.
- - End Of File - - 680E20799F81E3EB70EAC0D00A52392F
A36C5E4F47E84449FF07ED3517B43A31
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43294
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu - Low FPS, etc.

Příspěvekod jaro3 » 04 srp 2014 19:14

Odinstaluj:
McAfee Security Scan


Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

ClearJavaCache::

KillAll::
Folder::
c:\program files\Skype\Updater

Driver::
SkypeUpdate

DDS::
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com

RegLock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)



Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
4Qwerty7
nováček
Příspěvky: 26
Registrován: srpen 14
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu - Low FPS, etc.

Příspěvekod 4Qwerty7 » 04 srp 2014 22:52

ComboFix 14-08-02.02 - James 04.08.2014 21:31:43.2.1 - x86 MINIMAL
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1033.18.3326.2548 [GMT 1:00]
Spuštěný z: c:\users\James\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\James\Desktop\CFScript.txt
AV: COMODO Antivirus *Disabled/Updated* {B74CC7D2-B407-E1DC-1033-DD315BCDC8C8}
SP: COMODO Antivirus *Disabled/Updated* {0C2D2636-923D-EE52-2A83-E643204A8275}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Skype\Updater
c:\program files\Skype\Updater\Updater.dll
c:\program files\Skype\Updater\Updater.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_SkypeUpdate
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-07-04 do 2014-08-04 )))))))))))))))))))))))))))))))
.
.
2014-08-04 20:43 . 2014-08-04 20:45 -------- d-----w- c:\users\James\AppData\Local\temp
2014-08-04 20:43 . 2014-08-04 20:43 -------- d-----w- c:\users\wangzhisong\AppData\Local\temp
2014-08-04 20:43 . 2014-08-04 20:43 -------- d-----w- c:\users\HomeGroupUser$\AppData\Local\temp
2014-08-04 20:43 . 2014-08-04 20:43 -------- d-----w- c:\users\Guest\AppData\Local\temp
2014-08-04 20:43 . 2014-08-04 20:43 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-08-04 20:43 . 2014-08-04 20:43 -------- d-----w- c:\users\ASPNET\AppData\Local\temp
2014-08-04 20:43 . 2014-08-04 20:43 -------- d-----w- c:\users\Administrator\AppData\Local\temp
2014-08-04 18:04 . 2014-08-04 18:04 -------- d-----w- c:\program files\Common Files\Java
2014-08-04 18:04 . 2014-08-04 18:04 96680 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-08-04 17:53 . 2014-08-04 17:53 -------- d-----w- c:\program files\CCleaner
2014-08-03 15:22 . 2014-08-03 16:24 29160 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2014-08-03 15:22 . 2014-08-03 15:22 -------- d-----w- c:\programdata\RogueKiller
2014-08-03 14:15 . 2014-08-03 14:15 -------- d-----w- c:\windows\ERUNT
2014-08-03 11:13 . 2014-08-03 13:41 110296 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-08-03 11:13 . 2014-08-03 11:13 -------- d-----w- c:\program files\Malwarebytes Anti-Malware
2014-08-03 11:13 . 2014-08-03 11:13 -------- d-----w- c:\programdata\Malwarebytes
2014-08-03 11:13 . 2014-05-12 06:26 51928 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-08-03 11:13 . 2014-05-12 06:25 74456 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-08-03 11:13 . 2014-05-12 06:25 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-08-03 11:01 . 2014-08-03 14:07 -------- d-----w- C:\AdwCleaner
2014-08-03 10:32 . 2014-08-03 10:32 -------- d-----w- c:\program files\Common Files\COMODO
2014-08-02 15:08 . 2014-08-02 15:08 -------- d-----w- C:\VTRoot
2014-08-02 15:08 . 2014-08-02 22:25 1009980 ----a-w- c:\windows\system32\drivers\fvstore.dat
2014-08-02 14:12 . 2014-08-04 20:44 903056 ----a-w- c:\windows\system32\drivers\sfi.dat
2014-08-02 14:11 . 2014-08-02 14:13 -------- d-s---w- c:\programdata\Shared Space
2014-08-02 14:11 . 2014-08-03 14:29 -------- d-----w- c:\users\James\AppData\Local\AdTrustMedia
2014-08-02 14:10 . 2014-08-02 14:10 348160 ----a-w- c:\windows\system32\msvcr71.dll
2014-08-02 14:10 . 2014-08-02 14:10 1700352 ----a-w- c:\windows\system32\gdiplus.dll
2014-08-02 14:10 . 2014-08-02 14:10 1060864 ----a-w- c:\windows\system32\mfc71.dll
2014-08-02 14:08 . 2014-08-02 14:11 48392 ----a-w- c:\windows\system32\certsentry.dll
2014-08-02 14:08 . 2014-08-02 14:11 -------- d-----w- c:\program files\Comodo
2014-08-02 14:07 . 2014-08-02 14:07 -------- d-----w- c:\programdata\Comodo Downloader
2014-08-02 14:06 . 2014-08-02 14:12 -------- d-----w- c:\programdata\Comodo
2014-08-02 11:17 . 2014-08-02 11:17 -------- d-----w- c:\program files\Enigma Software Group
2014-08-02 11:16 . 2014-08-02 11:16 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2014-07-28 12:20 . 2014-07-28 12:20 -------- d-----w- c:\users\James\AppData\Roaming\LolClient
2014-07-28 10:14 . 2014-07-28 10:14 -------- d-----w- c:\programdata\Riot Games
2014-07-28 10:14 . 2008-07-12 07:18 467984 ----a-w- c:\windows\system32\d3dx10_39.dll
2014-07-28 10:14 . 2008-07-12 07:18 1493528 ----a-w- c:\windows\system32\D3DCompiler_39.dll
2014-07-28 10:14 . 2008-07-12 07:18 3851784 ----a-w- c:\windows\system32\D3DX9_39.dll
2014-07-28 10:13 . 2014-07-28 10:13 -------- d-----w- C:\Riot Games
2014-07-28 10:12 . 2014-08-04 11:07 -------- d-----w- c:\users\James\AppData\Local\PMB Files
2014-07-28 10:12 . 2014-07-29 13:50 -------- d-----w- c:\programdata\PMB Files
2014-07-28 10:12 . 2014-07-28 10:12 -------- d-----w- c:\users\James\AppData\Roaming\Riot Games
2014-07-26 17:05 . 2014-07-26 17:05 -------- d-----w- c:\programdata\ATI
2014-07-26 17:04 . 2014-07-26 17:04 -------- d-----w- c:\users\James\AppData\Roaming\Raptr
2014-07-26 17:04 . 2014-07-26 17:04 -------- d-----w- c:\program files\Raptr
2014-07-26 17:04 . 2014-07-26 17:04 -------- d-----w- c:\program files\AMD AVT
2014-07-26 16:57 . 2014-07-26 16:57 -------- d-----w- c:\program files\AMD
2014-07-26 11:13 . 2014-07-26 11:13 -------- d-----w- c:\users\James\AppData\Roaming\TeamViewer
2014-07-22 09:56 . 2014-07-22 09:56 -------- d-----w- c:\program files\LogMeIn Hamachi
2014-07-18 17:11 . 2014-07-18 17:11 -------- d-----w- c:\programdata\LumaEmu_SteamCloud
2014-07-18 15:57 . 2006-02-04 02:50 5174 ----a-w- c:\windows\system32\nppt9x.vxd
2014-07-18 15:57 . 2006-02-04 02:50 4682 ----a-w- c:\windows\system32\npptNT2.sys
2014-07-18 15:48 . 2014-07-19 18:08 -------- d-----w- c:\program files\Lineage II
2014-07-18 15:47 . 2014-07-18 15:47 -------- d-----w- c:\users\James\AppData\Roaming\InstallShield
2014-07-17 21:47 . 2014-07-20 14:08 -------- d-----w- c:\program files\Dragon's Prophet
2014-07-17 19:18 . 2014-07-22 14:46 -------- d-----w- c:\users\James\AppData\Roaming\.minecraft
2014-07-13 17:40 . 2014-07-13 17:40 -------- d-----w- c:\users\James\AppData\Roaming\HeroesAndGeneralsDesktop
2014-07-11 13:15 . 2014-08-04 17:55 -------- d-----w- c:\users\James\AppData\Roaming\TS3Client
2014-07-11 13:15 . 2014-07-11 13:15 -------- d-----w- c:\program files\TeamSpeak 3 Client
2014-07-10 16:03 . 2014-07-10 16:03 -------- d-----w- c:\program files\FileZilla FTP Client
2014-07-10 15:51 . 2014-08-04 20:22 -------- d-----w- c:\users\James\AppData\Roaming\FileZilla
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-08-03 13:52 . 2013-11-17 19:48 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-08-03 13:52 . 2013-11-17 19:48 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-07-25 16:51 . 2013-11-15 14:39 16608 ----a-w- c:\windows\gdrv.sys
2014-06-22 13:03 . 2014-05-30 18:57 107552 ----a-w- c:\windows\system32\EasyAntiCheat.exe
2014-05-30 18:49 . 2014-05-18 16:45 139584 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2014-05-30 18:49 . 2014-05-18 16:44 291760 ----a-w- c:\windows\system32\PnkBstrB.exe
2014-05-30 18:49 . 2013-11-27 22:11 291760 ----a-w- c:\windows\system32\PnkBstrB.xtr
2014-05-30 18:35 . 2013-11-27 21:38 291488 ----a-w- c:\windows\system32\PnkBstrB.ex0
2014-05-30 18:30 . 2013-11-27 21:38 138904 ----a-w- c:\users\James\AppData\Roaming\PnkBstrK.sys
2014-05-30 18:29 . 2014-05-18 16:44 76888 ----a-w- c:\windows\system32\PnkBstrA.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\###MegaShellExtPending]
@="{056D528D-CE28-4194-9BA3-BA2E9197FF8C}"
[HKEY_CLASSES_ROOT\CLSID\{056D528D-CE28-4194-9BA3-BA2E9197FF8C}]
2014-05-01 14:15 463360 ----a-w- c:\users\James\AppData\Local\MEGAsync\ShellExtX32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\###MegaShellExtSynced]
@="{05B38830-F4E9-4329-978B-1DD28605D202}"
[HKEY_CLASSES_ROOT\CLSID\{05B38830-F4E9-4329-978B-1DD28605D202}]
2014-05-01 14:15 463360 ----a-w- c:\users\James\AppData\Local\MEGAsync\ShellExtX32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\###MegaShellExtSyncing]
@="{0596C850-7BDD-4C9D-AFDF-873BE6890637}"
[HKEY_CLASSES_ROOT\CLSID\{0596C850-7BDD-4C9D-AFDF-873BE6890637}]
2014-05-01 14:15 463360 ----a-w- c:\users\James\AppData\Local\MEGAsync\ShellExtX32.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HydraVisionDesktopManager"="c:\program files\ATI Technologies\HydraVision\HydraDM.exe" [2011-03-10 393216]
"Akamai NetSession Interface"="c:\users\James\AppData\Local\Akamai\netsession_win.exe" [2014-04-18 4672920]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-10-28 3675352]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2014-05-08 21446272]
"BitTorrent"="c:\users\James\AppData\Roaming\BitTorrent\BitTorrent.exe" [2014-05-03 1643096]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2013-10-24 12017368]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2012-11-05 89184]
"RazerGameBooster"="c:\program files\Razer\Razer Game Booster\RazerGameBooster.exe" [2013-11-22 61152]
"LogMeIn Hamachi Ui"="c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe" [2014-07-21 3816784]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe" [2014-04-17 748256]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cistray.exe" [2014-03-25 1225944]
"tvncontrol"="c:\program files\Common Files\COMODO\GeekBuddyRSP.exe" [2014-07-25 2327248]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2014-07-11 256896]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Start GeekBuddy.lnk - c:\program files\Comodo\GeekBuddy\launcher.exe "unit_manager.exe" [2014-7-25 49360]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
backup=c:\windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish]
2013-11-15 13:33 1279224 ----a-w- c:\program files\Clownfish\Clownfish.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
c:\users\James\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [BU]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2013-10-28 08:29 3675352 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
2014-07-21 17:08 3816784 ----a-w- c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando Media Booster]
2014-07-28 10:12 3089488 ----a-w- c:\program files\Pando Networks\Media Booster\PMB.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Razer Comms]
2013-12-11 00:24 1094848 ----a-w- c:\program files\Razer\Core\RazerCore.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2014-07-11 01:39 256896 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
R2 ES lite Service;ES lite Service for program management.;c:\program files\Gigabyte\EasySaver\ESSVR.EXE [2009-02-05 68136]
R3 amdiox86;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox86.sys [x]
R3 AODDriver4.0;AODDriver4.0;c:\program files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [2014-02-11 50400]
R3 BBUpdate;BBUpdate;c:\program files\Microsoft\BingBar\7.3.132.0\SeaPort.exe [2014-03-12 247968]
R3 c2wts;Claims to Windows Token Service;c:\program files\Windows Identity Foundation\v3.5\c2wtshost.exe [2010-02-02 15768]
R3 cmdvirth;COMODO Virtual Service Manager;c:\program files\COMODO\COMODO Internet Security\cmdvirth.exe [2014-03-25 1663192]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x]
R3 EasyAntiCheat;EasyAntiCheat;c:\windows\system32\EasyAntiCheat.exe [2014-06-22 107552]
R3 esgiguard;esgiguard;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
R3 EvolveVirtualAdapter;Evolve Virtual Miniport Driver;c:\windows\system32\DRIVERS\evolve.sys [2014-04-30 18584]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-02-06 108032]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 RzDxgk;RzDxgk;c:\windows\system32\drivers\RzDxgk.sys [2013-12-11 102592]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2010-11-20 77184]
R3 Te.Service;Te.Service;c:\program files\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-08-22 91136]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2010-11-20 25600]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-20 112640]
R3 TunngleService;TunngleService;c:\program files\Tunngle\TnglCtrl.exe [2013-11-07 758224]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 VsEtwService120;Visual Studio ETW Event Collection Service;c:\program files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [2013-10-05 71344]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2013-11-16 1343400]
S0 RzFilter;RzFilter;c:\windows\system32\drivers\RzFilter.sys [2013-12-11 65216]
S1 CFRMD;CFRMD;c:\windows\system32\DRIVERS\CFRMD.sys [2013-05-07 35064]
S1 cmderd;COMODO Internet Security Eradication Driver;c:\windows\system32\DRIVERS\cmderd.sys [2014-04-16 20072]
S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys [2014-04-16 607168]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-12-06 243128]
S1 HMD;COMODO livePCsupport Hardware Monitor Driver;c:\windows\system32\DRIVERS\hmd.sys [2013-10-07 15400]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2014-04-18 208896]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-04-17 276992]
S2 AODDriver4.3;AODDriver4.3;c:\program files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [2014-02-11 50400]
S2 BBSvc;BingBar Service;c:\program files\Microsoft\BingBar\7.3.132.0\BBSvc.exe [2014-03-12 193696]
S2 CLPSLauncher;COMODO LPS Launcher;c:\program files\Common Files\COMODO\launcher_service.exe [2014-07-25 70864]
S2 DragonUpdater;COMODO Dragon Update Service;c:\program files\Comodo\Dragon\dragon_updater.exe [2014-05-21 2135232]
S2 GeekBuddyRSP;GeekBuddyRSP Server;c:\program files\Common Files\COMODO\GeekBuddyRSP.exe [2014-07-25 2327248]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2014-07-21 1905488]
S2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;c:\program files\Hi-Rez Studios\HiPatchService.exe [2014-07-18 9216]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-07-16 375056]
S2 RzKLService;RzKLService;c:\program files\Razer\Razer Game Booster\RzKLService.exe [2013-11-22 105448]
S2 RzOvlMon;Razer Overlay Subsystem Emergency Service;c:\program files\Razer\Core\rzovlmon.exe [2013-12-11 30912]
S2 TeamViewer9;TeamViewer 9;c:\program files\TeamViewer\Version9\TeamViewer_Service.exe [2014-07-02 5037888]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2013-12-19 77824]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys [2009-09-16 27136]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-06-12 12:39 1091912 ----a-w- c:\program files\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-08-04 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-17 13:52]
.
.
------- Doplňkový sken -------
.
uStart Page = www.google.com
mStart Page = www.google.com
uInternet Settings,ProxyOverride = <local>
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~4\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~1\MICROS~4\Office14\ONBttnIE.dll/105
TCP: Interfaces\{92AC4B64-D136-4922-9CDC-1316819FC862}: NameServer = 156.154.70.22,156.154.71.22
FF - ProfilePath - c:\users\James\AppData\Roaming\Mozilla\Firefox\Profiles\zw896li0.default-1407143357364\
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\CmdAgent\Mode\Configurations]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,59,00,53,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\CmdAgent\Mode\Data]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\CmdAgent\Mode\Options]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Cam]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,59,00,53,00,\
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'lsass.exe'(552)
c:\windows\system32\guard32.dll
.
- - - - - - - > 'Explorer.exe'(700)
c:\windows\system32\guard32.dll
c:\windows\system32\timedate.cpl
c:\windows\system32\MsftEdit.dll
c:\program files\Common Files\microsoft shared\ink\tiptsf.dll
c:\windows\System32\UIAnimation.dll
c:\windows\system32\stobject.dll
c:\windows\System32\netshell.dll
c:\program files\FileZilla FTP Client\libgcc_s_sjlj-1.dll
c:\windows\system32\mssprxy.dll
c:\windows\System32\cscobj.dll
c:\windows\System32\provsvc.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\COMODO\COMODO Internet Security\cmdagent.exe
c:\windows\system32\atieclxx.exe
c:\windows\system32\PnkBstrA.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\COMODO\COMODO Internet Security\cavwp.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\conhost.exe
c:\program files\TeamViewer\Version9\TeamViewer.exe
c:\program files\TeamViewer\Version9\tv_w32.exe
c:\windows\system32\sppsvc.exe
c:\program files\Windows Media Player\wmpnetwk.exe
.
**************************************************************************
.
Celkový čas: 2014-08-04 21:50:09 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-08-04 20:50
.
Před spuštěním: 198 777 724 928 bytes free
Po spuštění: 198 311 047 168 bytes free
.
- - End Of File - - 031CBC68ED574BC670325BC68AED8924
A36C5E4F47E84449FF07ED3517B43A31
Nahoru
4Qwerty7
nováček
Příspěvky: 26
Registrován: srpen 14
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu - Low FPS, etc.

Příspěvekod 4Qwerty7 » 04 srp 2014 22:52

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:52:27, on 4.8.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16518)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\TeamViewer\Version9\TeamViewer.exe
C:\Windows\Explorer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe
C:\Users\James\Desktop\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: DeviceVM Url Search Hook - {0063BF63-BFFF-4B8F-9D26-4267DF7F17DD} - C:\Windows\System32\dvmurl.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [RazerGameBooster] C:\Program Files\Razer\Razer Game Booster\RazerGameBooster.exe -autorun
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
O4 - HKLM\..\Run: [tvncontrol] "C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe" -controlservice -slave
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\James\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [BitTorrent] "C:\Users\James\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED
O4 - Global Startup: Start GeekBuddy.lnk = C:\Program Files\Comodo\GeekBuddy\launcher.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~4\Office14\ONBttnIE.dll/105
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{92AC4B64-D136-4922-9CDC-1316819FC862}: NameServer = 156.154.70.22,156.154.71.22
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: COMODO LPS Launcher (CLPSLauncher) - Comodo Security Solutions, Inc. - C:\Program Files\Common Files\COMODO\launcher_service.exe
O23 - Service: COMODO Internet Security Helper Service (CmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Unknown owner - C:\Program Files\Comodo\Dragon\dragon_updater.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: ES lite Service for program management. (ES lite Service) - Unknown owner - C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE
O23 - Service: GeekBuddyRSP Server (GeekBuddyRSP) - Comodo Security Solutions, Inc. - C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - C:\Program Files\Hi-Rez Studios\HiPatchService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: RzKLService - Razer Inc. - C:\Program Files\Razer\Razer Game Booster\RzKLService.exe
O23 - Service: Razer Overlay Subsystem Emergency Service (RzOvlMon) - Razer, Inc. - C:\Program Files\Razer\Core\rzovlmon.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files\Tunngle\TnglCtrl.exe

--
End of file - 7234 bytes
Nahoru
4Qwerty7
nováček
Příspěvky: 26
Registrován: srpen 14
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu - Low FPS, etc.

Příspěvekod 4Qwerty7 » 04 srp 2014 22:55

aswMBR version 1.0.1.2041 Copyright(c) 2014 AVAST Software
Run date: 2014-08-04 21:54:11
-----------------------------
21:54:11.217 OS Version: Windows 6.1.7601 Service Pack 1
21:54:11.217 Number of processors: 1 586 0x402
21:54:11.217 ComputerName: JAKUB UserName: James
21:54:13.183 Initialize success
21:54:13.230 VM: initialized successfully
21:54:13.261 VM: Amd CPU BiosDisabled
21:54:29.608 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP3T0L0-3
21:54:29.608 Disk 0 Vendor: WDC_WD5000AADS-00S9B0 01.00A01 Size: 476940MB BusType: 3
21:54:29.842 Disk 0 MBR read successfully
21:54:29.857 Disk 0 MBR scan
21:54:29.857 Disk 0 Windows 7 default MBR code
21:54:29.873 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
21:54:29.873 Disk 0 Boot: NTFS code=1
21:54:29.904 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 476838 MB offset 206848
21:54:29.920 Disk 0 scanning sectors +976771072
21:54:30.013 Disk 0 scanning C:\Windows\system32\drivers
21:54:35.598 Service scanning
21:54:56.674 Modules scanning
21:55:05.753 Disk 0 trace - called modules:
21:55:05.784 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll ataport.SYS pciide.sys
21:55:05.800 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86b13948]
21:55:05.800 3 CLASSPNP.SYS[8c3b259e] -> nt!IofCallDriver -> [0x8664d898]
21:55:05.800 5 ACPI.sys[842103d4] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP3T0L0-3[0x8669b340]
21:55:05.800 Scan finished successfully
21:55:23.163 Disk 0 MBR has been saved successfully to "C:\Users\James\Desktop\MBR.dat"
21:55:23.178 The log file has been saved successfully to "C:\Users\James\Desktop\aswMBR.txt"
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43294
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu - Low FPS, etc.

Příspěvekod jaro3 » 05 srp 2014 09:26

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: DeviceVM Url Search Hook - {0063BF63-BFFF-4B8F-9D26-4267DF7F17DD} - C:\Windows\System32\dvmurl.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"


ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.


Co problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
Odpovědět

Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 103 hostů