Prosím o kontrolu logu

roman m · Příspěvekod **roman m** » 15 pro 2015 22:16

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:13:49, on 15/12/2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18124)
CHROME: 6.0.0.12757
FIREFOX: 42.0 (x86 cs)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\WeatherTool\2.0.1.11170\weather.exe
C:\Program Files\M-Audio\M-Track\MAPanel.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Garmin\Express Tray\tray.exe
C:\Users\roman\AppData\Roaming\Gameo\gameo.exe
C:\Program Files\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Users\roman\AppData\Roaming\Gameo\gameo.exe
C:\Users\roman\AppData\Roaming\Gameo\gameo.exe
C:\Windows\system32\RunDll32.exe
C:\Program Files\Opera\22.0.1471.50\opera.exe
C:\Program Files\Opera\22.0.1471.50\opera_crashreporter.exe
C:\Program Files\Opera\22.0.1471.50\opera.exe
C:\Program Files\Opera\22.0.1471.50\opera.exe
C:\Program Files\Opera\22.0.1471.50\opera.exe
C:\Program Files\Opera\22.0.1471.50\opera.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\roman\Desktop\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [M-Audio Panel Launcher] C:\PROGRA~1\M-Audio\M-Track\MAPanel.exe 0
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Logitech Download Assistant] C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [uTorrent] "C:\Users\roman\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files\Garmin\Express Tray\tray.exe"
O4 - HKCU\..\Run: [Gameo] C:\Users\roman\AppData\Roaming\Gameo\gameo.exe "C:\Users\roman\AppData\Roaming\Gameo\gameo.dat" mode:minimized
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files\Garmin\Device Interaction Service\GarminService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: M-Track Audio Device Monitor (MTrackAudioDevMon) - M-Audio - C:\Program Files\M-Audio\M-Track\AudioDevMon.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files\Origin\OriginClientService.exe
O23 - Service: The Desktop Weather Service (TheDesktopWeatherService) - Unknown owner - C:\Program Files\WeatherTool\2.0.1.11170\WeatherService.exe

--
End of file - 6591 bytes
ComboFix 15-12-16.01 - roman 15/12/2015 18:53:52.2.2 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.3070.1964 [GMT 0:00]
Running from: c:\users\roman\Desktop\ComboFix.exe
Command switches used :: c:\users\roman\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
FW: avast! Antivirus *Disabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\Adobe Flash Player Updater.job"
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\Tasks\Adobe Flash Player Updater.job
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_SkypeUpdate
.
.
((((((((((((((((((((((((( Files Created from 2015-11-15 to 2015-12-15 )))))))))))))))))))))))))))))))
.
.
2040-02-01 21:48 . 2040-02-01 21:48 2892 ----a-w- c:\windows\system32\audcon.sys
2040-02-01 21:48 . 2040-02-01 21:48 -------- d-----w- c:\programdata\Syncrosoft
2040-02-01 21:47 . 2040-02-01 21:47 -------- d-----w- c:\program files\Syncrosoft
2040-02-01 21:47 . 2011-12-14 19:21 86016 ----a-w- c:\windows\system32\SYNSOPOS.exe
2040-02-01 21:46 . 2012-12-07 15:48 1277952 ----a-w- c:\windows\system32\SYNSOACC.dll
2040-02-01 21:46 . 2040-02-01 21:48 -------- d-----w- c:\programdata\eLicenser
2040-02-01 21:46 . 2040-02-01 21:47 -------- d-----w- c:\program files\eLicenser
2015-12-15 19:08 . 2015-12-15 19:16 -------- d-----w- c:\users\roman\AppData\Local\temp
2015-12-15 19:08 . 2015-12-15 19:08 -------- d-----w- c:\users\Guest\AppData\Local\temp
2015-12-15 19:08 . 2015-12-15 19:08 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-12-15 19:08 . 2015-12-15 19:08 -------- d-----w- c:\users\Administrator\AppData\Local\temp
2015-12-15 19:00 . 2015-12-15 19:00 62576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{4786C997-3350-4BDC-8B2A-FDF8ED002D91}\offreg.2252.dll
2015-12-15 18:34 . 2015-10-29 09:46 8991856 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{4786C997-3350-4BDC-8B2A-FDF8ED002D91}\mpengine.dll
2015-12-10 21:44 . 2015-11-10 00:18 37888 ----a-w- c:\program files\Internet Explorer\DiagnosticsHub_is.dll
2015-12-10 21:44 . 2015-11-10 00:16 489472 ----a-w- c:\program files\Internet Explorer\DiagnosticsHub.DataWarehouse.dll
2015-12-10 21:44 . 2015-11-10 00:12 47616 ----a-w- c:\windows\system32\ieetwproxystub.dll
2015-12-10 21:44 . 2015-11-10 00:06 124416 ----a-w- c:\program files\Internet Explorer\Timeline_is.dll
2015-12-10 21:44 . 2015-11-10 00:03 102912 ----a-w- c:\windows\system32\ieetwcollector.exe
2015-12-10 21:44 . 2015-11-09 23:54 174592 ----a-w- c:\program files\Internet Explorer\DiagnosticsTap.dll
2015-12-10 21:44 . 2015-11-09 23:52 230400 ----a-w- c:\program files\Internet Explorer\DiagnosticsHub.ScriptedSandboxPlugin.dll
2015-12-10 21:44 . 2015-11-09 23:50 60416 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2015-12-10 21:44 . 2015-11-09 23:49 153600 ----a-w- c:\program files\Internet Explorer\Timeline.dll
2015-12-10 21:40 . 2015-11-10 18:39 909824 ----a-w- c:\windows\system32\FntCache.dll
2015-12-10 21:40 . 2015-11-10 18:39 1251328 ----a-w- c:\windows\system32\DWrite.dll
2015-12-10 21:40 . 2015-11-10 17:40 2386944 ----a-w- c:\windows\system32\win32k.sys
2015-12-10 21:40 . 2015-11-10 18:39 811520 ----a-w- c:\windows\system32\user32.dll
2015-12-10 21:40 . 2015-11-11 18:39 1242624 ----a-w- c:\windows\system32\comsvcs.dll
2015-12-10 21:40 . 2015-11-11 18:39 487936 ----a-w- c:\windows\system32\catsrvut.dll
2015-12-10 21:36 . 2015-11-05 19:00 2048 ----a-w- c:\windows\system32\tzres.dll
2015-12-10 20:52 . 2015-12-10 20:54 -------- d-----w- c:\users\roman\AppData\Roaming\Audacity
2015-12-10 20:51 . 2015-12-10 20:52 -------- d-----w- c:\program files\Audacity
2015-12-06 21:38 . 2015-12-06 21:38 -------- d-----w- c:\users\roman\AppData\Roaming\ProductData
2015-12-06 21:35 . 2015-12-06 20:42 24064 ----a-w- c:\windows\zoek-delete.exe
2015-12-06 21:34 . 2015-12-15 19:16 -------- d-----w- c:\programdata\ProductData
2015-12-06 20:42 . 2015-12-06 21:36 -------- d-----w- C:\zoek_backup
2015-12-06 19:12 . 2015-12-06 20:11 30848 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2015-12-06 19:12 . 2015-12-06 19:37 -------- d-----w- c:\programdata\RogueKiller
2015-12-05 09:27 . 2015-12-05 09:27 -------- d-----w- c:\program files\Common Files\AV
2015-11-27 18:25 . 2015-11-27 18:25 -------- d-----w- c:\users\roman\AppData\Local\Apple
2015-11-27 12:28 . 2015-11-27 12:28 -------- d-----w- c:\users\roman\AppData\Local\Adobe
2015-11-26 20:26 . 2015-12-06 18:43 170200 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-11-26 20:26 . 2015-11-26 20:26 -------- d-----w- c:\program files\Malwarebytes Anti-Malware
2015-11-26 20:26 . 2015-10-05 09:50 51928 ----a-w- c:\windows\system32\drivers\mwac.sys
2015-11-26 20:26 . 2015-10-05 09:50 94936 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2015-11-26 20:26 . 2015-10-05 09:50 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
2015-11-26 19:57 . 2015-11-26 19:57 -------- d-----w- c:\programdata\Malwarebytes
2015-11-23 00:09 . 2015-11-23 00:09 -------- d-----w- c:\program files\MSECache
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-12-11 22:59 . 2014-04-30 00:14 796864 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2015-12-11 22:59 . 2014-04-30 00:14 142528 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2015-12-02 13:25 . 2014-04-29 14:09 247976 ------w- c:\windows\system32\MpSigStub.exe
2015-11-11 18:08 . 2015-11-11 18:08 31232 ----a-w- c:\windows\system32\drivers\tssecsrv.sys
2015-11-11 18:08 . 2015-11-11 18:08 15872 ----a-w- c:\windows\system32\icaapi.dll
2015-11-06 23:13 . 2014-04-29 14:54 794952 ----a-w- c:\windows\system32\drivers\aswsnx.sys
2015-11-06 23:13 . 2014-04-29 14:54 435464 ----a-w- c:\windows\system32\drivers\aswsp.sys
2015-10-29 17:50 . 2015-11-11 18:33 5120 ----a-w- c:\windows\system32\shimeng.dll
2015-10-29 17:49 . 2015-11-11 18:33 295936 ----a-w- c:\windows\system32\apphelp.dll
2015-10-29 17:49 . 2015-11-11 18:33 562176 ----a-w- c:\windows\apppatch\AcLayers.dll
2015-10-29 17:49 . 2015-11-11 18:33 2178560 ----a-w- c:\windows\apppatch\AcGenral.dll
2015-10-29 17:49 . 2015-11-11 18:33 62464 ----a-w- c:\windows\system32\aelupsvc.dll
2015-10-29 17:49 . 2015-11-11 18:33 470528 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2015-10-29 17:49 . 2015-11-11 18:33 211968 ----a-w- c:\windows\apppatch\AcXtrnal.dll
2015-10-29 17:49 . 2015-11-11 18:33 20992 ----a-w- c:\windows\system32\sdbinst.exe
2015-10-29 17:39 . 2015-11-11 18:33 2560 ----a-w- c:\windows\apppatch\AcRes.dll
2015-10-20 00:52 . 2015-11-11 18:32 3935680 ----a-w- c:\windows\system32\ntoskrnl.exe
2015-10-20 00:52 . 2015-11-11 18:32 3991488 ----a-w- c:\windows\system32\ntkrnlpa.exe
2015-10-20 00:52 . 2015-11-11 18:32 138176 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2015-10-20 00:52 . 2015-11-11 18:32 67520 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2015-10-20 00:48 . 2015-11-11 18:32 1308160 ----a-w- c:\windows\system32\ntdll.dll
2015-10-20 00:45 . 2015-11-11 18:32 172032 ----a-w- c:\windows\system32\wdigest.dll
2015-10-20 00:45 . 2015-11-11 18:32 65536 ----a-w- c:\windows\system32\TSpkg.dll
2015-10-20 00:45 . 2015-11-11 18:32 43008 ----a-w- c:\windows\system32\srclient.dll
2015-10-20 00:45 . 2015-11-11 18:32 400896 ----a-w- c:\windows\system32\srcore.dll
2015-10-20 00:45 . 2015-11-11 18:32 100352 ----a-w- c:\windows\system32\sspicli.dll
2015-10-20 00:45 . 2015-11-11 18:32 15872 ----a-w- c:\windows\system32\sspisrv.dll
2015-10-20 00:45 . 2015-11-11 18:32 251392 ----a-w- c:\windows\system32\schannel.dll
2015-10-20 00:45 . 2015-11-11 18:32 22016 ----a-w- c:\windows\system32\secur32.dll
2015-10-20 00:45 . 2015-11-11 18:32 655360 ----a-w- c:\windows\system32\rpcrt4.dll
2015-10-20 00:45 . 2015-11-11 18:32 223232 ----a-w- c:\windows\system32\ncrypt.dll
2015-10-20 00:45 . 2015-11-11 18:32 259584 ----a-w- c:\windows\system32\msv1_0.dll
2015-10-20 00:45 . 2015-11-11 18:32 1061376 ----a-w- c:\windows\system32\lsasrv.dll
2015-10-20 00:45 . 2015-11-11 18:32 552960 ----a-w- c:\windows\system32\kerberos.dll
2015-10-20 00:45 . 2015-11-11 18:32 38912 ----a-w- c:\windows\system32\csrsrv.dll
2015-10-20 00:45 . 2015-11-11 18:32 36864 ----a-w- c:\windows\system32\cryptbase.dll
2015-10-20 00:45 . 2015-11-11 18:32 17408 ----a-w- c:\windows\system32\credssp.dll
2015-10-20 00:45 . 2015-11-11 18:32 69632 ----a-w- c:\windows\system32\smss.exe
2015-10-20 00:45 . 2015-11-11 18:32 262656 ----a-w- c:\windows\system32\rstrui.exe
2015-10-20 00:44 . 2015-11-11 18:32 22528 ----a-w- c:\windows\system32\lsass.exe
2015-10-20 00:44 . 2015-11-11 18:32 50176 ----a-w- c:\windows\system32\auditpol.exe
2015-10-20 00:39 . 2015-11-11 18:32 60416 ----a-w- c:\windows\system32\msobjs.dll
2015-10-20 00:39 . 2015-11-11 18:32 146432 ----a-w- c:\windows\system32\msaudite.dll
2015-10-20 00:35 . 2015-11-11 18:32 6656 ----a-w- c:\windows\system32\apisetschema.dll
2015-10-20 00:35 . 2015-11-11 18:32 686080 ----a-w- c:\windows\system32\adtschema.dll
2015-10-19 23:29 . 2015-11-11 18:32 225792 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2015-10-19 23:28 . 2015-11-11 18:32 98304 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2015-10-19 23:28 . 2015-11-11 18:32 124416 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2015-10-13 16:31 . 2015-11-11 18:32 338944 ----a-w- c:\windows\system32\drivers\afd.sys
2015-10-13 16:31 . 2015-11-11 18:32 74752 ----a-w- c:\windows\system32\drivers\tdx.sys
2015-10-13 04:50 . 2015-11-11 18:32 712640 ----a-w- c:\windows\system32\drivers\ndis.sys
2015-10-13 01:29 . 2015-10-13 01:29 875720 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
2015-10-12 11:12 . 2014-04-29 14:54 115640 ----a-w- c:\windows\system32\drivers\aswStm.sys
2015-10-12 11:12 . 2014-04-29 14:54 208664 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2015-10-12 11:12 . 2014-04-29 14:54 49776 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2015-10-12 11:12 . 2014-04-29 14:54 76000 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2015-10-12 11:12 . 2014-04-29 14:54 81728 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2015-10-12 11:12 . 2014-04-29 14:54 24016 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2015-10-12 11:12 . 2015-10-12 11:12 313472 ----a-w- c:\windows\system32\aswBoot.exe
2015-10-12 11:12 . 2015-10-12 11:12 43112 ----a-w- c:\windows\avastSS.scr
2015-10-12 11:12 . 2015-09-08 09:36 107984 ----a-w- c:\windows\system32\drivers\ngvss.sys
2015-10-01 17:50 . 2015-10-13 19:16 50176 ----a-w- c:\windows\system32\setbcdlocale.dll
2015-10-01 17:50 . 2015-11-11 18:30 216064 ----a-w- c:\windows\system32\InkEd.dll
2015-10-01 17:50 . 2015-11-11 18:30 22528 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\jnwppr.dll
2015-10-01 17:50 . 2015-11-11 18:30 19968 ----a-w- c:\windows\system32\jnwmon.dll
2015-10-01 17:50 . 2015-10-13 19:16 50688 ----a-w- c:\windows\system32\appidapi.dll
2015-10-01 17:50 . 2015-10-13 19:16 28160 ----a-w- c:\windows\system32\appidsvc.dll
2015-10-01 17:50 . 2015-10-13 19:16 96768 ----a-w- c:\windows\system32\appidpolicyconverter.exe
2015-10-01 17:50 . 2015-10-13 19:16 16896 ----a-w- c:\windows\system32\appidcertstorecheck.exe
2015-10-01 16:53 . 2015-10-13 19:16 50176 ----a-w- c:\windows\system32\drivers\appid.sys
2015-09-23 13:09 . 2015-11-11 18:30 371920 ----a-w- c:\windows\system32\drivers\cng.sys
2015-09-23 13:09 . 2015-11-11 18:30 251000 ----a-w- c:\windows\system32\bcryptprimitives.dll
2015-09-18 17:47 . 2015-10-15 11:47 23384 ----a-w- c:\windows\system32\CompatTelRunner.exe
2015-09-18 17:44 . 2015-10-15 11:47 587776 ----a-w- c:\windows\system32\invagent.dll
2015-09-18 17:44 . 2015-10-15 11:47 615936 ----a-w- c:\windows\system32\generaltel.dll
2015-09-18 17:44 . 2015-10-15 11:47 423936 ----a-w- c:\windows\system32\devinv.dll
2015-09-18 17:44 . 2015-10-15 11:47 1120768 ----a-w- c:\windows\system32\appraiser.dll
2015-09-18 17:44 . 2015-10-15 11:47 62976 ----a-w- c:\windows\system32\acmigration.dll
2015-09-18 17:35 . 2015-10-15 11:47 999936 ----a-w- c:\windows\system32\aeinv.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2014-08-20 12:58 223432 ----a-w- c:\users\roman\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2014-08-20 12:58 223432 ----a-w- c:\users\roman\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2014-08-20 12:58 223432 ----a-w- c:\users\roman\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2015-10-12 11:12 696120 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"uTorrent"="c:\users\roman\AppData\Roaming\uTorrent\uTorrent.exe" [2015-12-06 2026520]
"GarminExpressTrayApp"="c:\program files\Garmin\Express Tray\tray.exe" [2015-04-08 1010008]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2015-11-06 6133520]
"M-Audio Panel Launcher"="c:\progra~1\M-Audio\M-Track\MAPanel.exe" [2013-04-24 1190096]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2013-05-30 96056]
"Logitech Download Assistant"="c:\windows\System32\LogiLDA.dll" [2012-09-20 1425208]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2015-10-16 157456]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKLM\~\startupfolder\C:^Users^roman^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^GameRanger.lnk]
path=c:\users\roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk
backup=c:\windows\pss\GameRanger.lnk.Startup
backupExtension=.Startup
.
[HKLM\~\startupfolder\C:^Users^roman^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Monitor Ink Alerts - HP Photosmart 5520 series (Network).lnk]
path=c:\users\roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor Ink Alerts - HP Photosmart 5520 series (Network).lnk
backup=c:\windows\pss\Monitor Ink Alerts - HP Photosmart 5520 series (Network).lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2015-10-28 18:49 1067736 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]
2012-04-13 00:05 1163072 ----a-w- c:\program files\DAEMON Tools Pro\DTAgent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EADM]
2015-08-24 15:27 3632112 ----a-w- c:\program files\Origin\Origin.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Photosmart 5520 series (NET)]
2012-10-17 11:05 1837672 ----a-w- c:\program files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2015-10-16 03:47 157456 ----a-w- c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2015-06-30 12:15 53288576 ----a-r- c:\program files\Skype\Phone\Skype.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
2015-12-06 13:07 2026520 ----a-w- c:\users\roman\AppData\Roaming\uTorrent\uTorrent.exe
.
R2 LiveUpdateSvc;LiveUpdate;c:\program files\IObit\LiveUpdate\LiveUpdate.exe [2015-11-10 2934048]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes Anti-Malware\mbamservice.exe [2015-10-05 1135416]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2015-11-10 102912]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys [2015-10-05 51928]
R3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;c:\windows\system32\DRIVERS\MijXfilt.sys [2012-05-12 99400]
R3 Origin Client Service;Origin Client Service;c:\program files\Origin\OriginClientService.exe [2015-08-24 2007048]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2015-03-14 14848]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2013-10-02 49152]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2015-03-14 27136]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2014-04-30 1343400]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam.sys [2015-04-30 20256]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 ngvss;ngvss; [x]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys [2014-06-04 18624]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2015-11-06 794952]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2015-11-06 435464]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2014-05-24 242240]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\system32\drivers\HWiNFO32.SYS [2014-12-22 23840]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2015-03-21 212992]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [2015-10-12 24016]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2015-10-12 76000]
S2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys [2015-10-12 115640]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-10-12 1433216]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-10-12 1773696]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 Garmin Device Interaction Service;Garmin Device Interaction Service;c:\program files\Garmin\Device Interaction Service\GarminService.exe [2015-04-08 708616]
S2 MTrackAudioDevMon;M-Track Audio Device Monitor;c:\program files\M-Audio\M-Track\AudioDevMon.exe [2013-04-24 546816]
S2 VBoxAswDrv;VBoxAsw Support Driver;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-10-12 220752]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2014-12-22 77824]
S3 AvastVBoxSvc;AvastVBox COM Service;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-10-12 3219136]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2015-10-05 23256]
S3 MTRACK;Service for M-Audio M-Track;c:\windows\system32\DRIVERS\MAudioMTrack.sys [2013-04-24 446720]
S3 netr28u;RT2870 USB Wireless LAN Card Driver;c:\windows\system32\DRIVERS\netr28u.sys [2015-03-21 1321568]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
utcsvc REG_MULTI_SZ DiagTrack
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-12-12 22:56 1087816 ----a-w- c:\program files\Google\Chrome\Application\39.0.2171.95\Installer\chrmstp.exe
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com
TCP: DhcpNameServer = 192.168.1.254
FF - ProfilePath - c:\users\roman\AppData\Roaming\Mozilla\Firefox\Profiles\hrpuqyjr.default\
FF - prefs.js: browser.startup.homepage - about:home
.
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\atieclxx.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\system32\taskhost.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files\IObit\Smart Defrag 4\AutoUpdate.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\M-Audio\M-Track\MAPanel.exe
c:\windows\system32\sppsvc.exe
c:\windows\system32\conhost.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\iPod\bin\iPodService.exe
c:\program files\IObit\IObit Uninstaller\UninstallMonitor.exe
c:\users\roman\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe
c:\users\roman\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe
c:\windows\system32\wbem\unsecapp.exe
c:\users\roman\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe
.
**************************************************************************
.
Completion time: 2015-12-15 19:21:49 - machine was rebooted
ComboFix-quarantined-files.txt 2015-12-15 19:21
ComboFix2.txt 2015-12-06 22:17
.
Pre-Run: 8,954,544,128 bytes free
Post-Run: 8,978,677,760 bytes free
.
- - End Of File - - CF0B22E02E5121E5361A1E7C5A30A5B4
A36C5E4F47E84449FF07ED3517B43A31

Reklama

roman m · Příspěvekod **roman m** » 15 pro 2015 22:23

aswMBR nemam program aby otevrel log a poslalho tady tak jsem zkusil nejaky stahnout ale jenom mi to natahalo bordel do pc same stupit game jedine co jsem potreboval at mi v opere nacitaji vechny veci ne jenom cast treba na youtube mi vubec nenacitaji uvodni obrazky videji ted uz mi pc nechce slapat vubec total zasek to uz asi pomuze jedine novy ne?

Příspěvekod **jaro3** » 16 pro 2015 09:29

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Users\roman\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED

Stáhni si Memtest:

Políčko , ve kterém je napsáno:
All unused RAM -ponech , jak je.
-dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.

Ještě zkontrolovat HDD na chyby ,popř. zkusit jeho defragmentaci ..

Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.

Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Kdo je online