Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:54:27, on 23.6.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Dominix9511\Hama S1\S1_2k.exe
C:\Program Files\Logitech\GamePanel Software\Applets\LCDMedia.exe
C:\Program Files\Logitech\GamePanel Software\Applets\ColorOnly\LCDYT.exe
C:\Program Files\Logitech\GamePanel Software\Applets\ColorOnly\LCDMovieViewer.exe
C:\Program Files\Logitech\GamePanel Software\Applets\ColorOnly\LCDWebCam.exe
C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe
C:\Windows\SysWOW64\FLSDEVCP.EXE
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Users\Dominix9511\Downloads\HiJackThis.exe
C:\QIP Infium JadrisPack\qip.exe
C:\QIP Infium JadrisPack\Plugins\GadgetEngine\GadgetEngine.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [BCU] "C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe"
O4 - HKLM\..\Run: [SPIRunE] Rundll32 SPIRunE.dll,RunDLLEntry
O4 - HKLM\..\Run: [VolPanel] "C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe" /r
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [FLSDeviceControlPanel] C:\Windows\system32\FLSDEVCP.EXE
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [La_View Mouse] C:\PROGRA~2\DOMINI~1\HAMAS1~1\S1_2k.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-3856061918-3961861139-3108342825-1005\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-3856061918-3961861139-3108342825-1005\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MIF5BA~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube Download - C:\Users\Dominix9511\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Dominix9511\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MIF5BA~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MIF5BA~1\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files (x86)\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files (x86)\ICQ7.5\ICQ.exe
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MIF5BA~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{E8114FBE-966A-4464-8B57-DA523A761804}: NameServer = 89.31.40.3,89.31.40.13
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AODService - Unknown owner - C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe (file missing)
O23 - Service: ASDR - Unknown owner - C:\Windows\SysWOW64\ASDR.exe
O23 - Service: ATK Fast User Switch Service (ATKFUSService) - Unknown owner - C:\Windows\system32\ATKFUSService.exe (file missing)
O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14713 bytes
Prosím o Kontrolu logu - Sekání PC
-
Dominix
- nováček
- Příspěvky: 4
- Registrován: červen 11
- Bydliště: Český Krumlov
- Pohlaví:
- Stav:
Offline
- Kontakt:
Re: Prosím o Kontrolu logu - Sekání PC
Tady je ještě log z Malwarebyte's Anti-Malware
Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org
Verze databáze: 6927
Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421
23.6.2011 18:05:34
mbam-log-2011-06-23 (18-05-29).txt
Typ: Rychlá kontrola
Kontrolované objekty: 199123
Uplynulý čas: 5 minut, 8 sekund
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 4
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
c:\Users\dominix9511\downloads\Keygen.exe (Trojan.Agent.CK) -> No action taken.
c:\Users\dominix9511\downloads\mediapluginsetup.exe (Spyware.GamePlayLabs) -> No action taken.
c:\Users\dominix9511\downloads\sony_vegas_10_keygen.exe (RiskWare.Tool.CK) -> No action taken.
c:\Users\dominix9511\downloads\z_ip-patch_2.exe (Backdoor.Bifrose) -> No action taken.
Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org
Verze databáze: 6927
Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421
23.6.2011 18:05:34
mbam-log-2011-06-23 (18-05-29).txt
Typ: Rychlá kontrola
Kontrolované objekty: 199123
Uplynulý čas: 5 minut, 8 sekund
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 4
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
c:\Users\dominix9511\downloads\Keygen.exe (Trojan.Agent.CK) -> No action taken.
c:\Users\dominix9511\downloads\mediapluginsetup.exe (Spyware.GamePlayLabs) -> No action taken.
c:\Users\dominix9511\downloads\sony_vegas_10_keygen.exe (RiskWare.Tool.CK) -> No action taken.
c:\Users\dominix9511\downloads\z_ip-patch_2.exe (Backdoor.Bifrose) -> No action taken.
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o Kontrolu logu - Sekání PC
. Takže spusť znovu MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Ukaž výsledky
- ujisti se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Odstranit označené
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
Můžeš sem pak vložit nový log z MbAM.
Odinstaluj:
Contribute Toolbar
Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod
Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Ukaž výsledky
- ujisti se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Odstranit označené
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
Můžeš sem pak vložit nový log z MbAM.
Odinstaluj:
Contribute Toolbar
Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod
Kód: Vybrat vše
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-3856061918-3961861139-3108342825-1005\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
-
Dominix
- nováček
- Příspěvky: 4
- Registrován: červen 11
- Bydliště: Český Krumlov
- Pohlaví:
- Stav:
Offline
- Kontakt:
Re: Prosím o Kontrolu logu - Sekání PC
MBaM log ->
Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org
Verze databáze: 6938
Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421
24.6.2011 16:44:27
mbam-log-2011-06-24 (16-44-27).txt
Typ: Rychlá kontrola
Kontrolované objekty: 199476
Uplynulý čas: 5 minut, 24 sekund
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 4
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
c:\Users\dominix9511\downloads\Keygen.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
c:\Users\dominix9511\downloads\mediapluginsetup.exe (Spyware.GamePlayLabs) -> Quarantined and deleted successfully.
c:\Users\dominix9511\downloads\sony_vegas_10_keygen.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
c:\Users\dominix9511\downloads\z_ip-patch_2.exe (Backdoor.Bifrose) -> Quarantined and deleted successfully.
Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org
Verze databáze: 6938
Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421
24.6.2011 16:44:27
mbam-log-2011-06-24 (16-44-27).txt
Typ: Rychlá kontrola
Kontrolované objekty: 199476
Uplynulý čas: 5 minut, 24 sekund
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 4
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
c:\Users\dominix9511\downloads\Keygen.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
c:\Users\dominix9511\downloads\mediapluginsetup.exe (Spyware.GamePlayLabs) -> Quarantined and deleted successfully.
c:\Users\dominix9511\downloads\sony_vegas_10_keygen.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
c:\Users\dominix9511\downloads\z_ip-patch_2.exe (Backdoor.Bifrose) -> Quarantined and deleted successfully.
-
Dominix
- nováček
- Příspěvky: 4
- Registrován: červen 11
- Bydliště: Český Krumlov
- Pohlaví:
- Stav:
Offline
- Kontakt:
Re: Prosím o Kontrolu logu - Sekání PC
ComboFix 11-06-24.02 - Dominix9511 24.06.2011 17:02:08.1.6 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.8176.5958 [GMT 2:00]
Spuštěný z: C:\Users\Dominix9511\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
C:\Users\DOMINI~1\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Dominix9511\AppData\Local\Temp\nvSCPAPI64.dll
((((((((((((((((((((((((( Soubory vytvořené od 2011-05-24 do 2011-06-24 )))))))))))))))))))))))))))))))
2011-06-24 15:11:20 . 2011-06-24 15:11:20 -------- d-----w- C:\Users\Default\AppData\Local\temp
2011-06-24 15:11:18 . 2011-06-24 15:11:18 -------- d-----w- C:\Users\LogMeInRemoteUser\AppData\Local\temp
2011-06-24 13:05:14 . 2011-06-07 17:10:37 8873296 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BCC5D38F-C0AC-459E-810D-2CE49B145648}\mpengine.dll
2011-06-23 16:17:02 . 2011-06-23 16:17:13 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{EB995A32-38C9-47B8-9212-33AF7D660E7F}
2011-06-23 15:59:14 . 2011-06-23 15:59:14 -------- d-----w- C:\Users\Dominix9511\AppData\Roaming\Malwarebytes
2011-06-23 15:59:11 . 2011-05-29 07:11:30 39984 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
2011-06-23 15:59:10 . 2011-06-23 15:59:10 -------- d-----w- C:\ProgramData\Malwarebytes
2011-06-23 15:59:07 . 2011-06-23 15:59:12 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-06-23 15:59:07 . 2011-05-29 07:11:20 25912 ----a-w- C:\Windows\system32\drivers\mbam.sys
2011-06-23 14:06:16 . 2011-06-23 14:06:18 -------- d-----w- C:\Program Files (x86)\GamePark
2011-06-22 17:23:37 . 2011-06-22 17:23:48 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{716546B8-DC82-4050-AB1D-AC27E56717D8}
2011-06-19 15:47:29 . 2011-06-19 15:47:42 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{B61FC382-EA9E-4BD1-957B-ECDDDEAE7BB5}
2011-06-16 18:43:42 . 2011-06-16 18:43:42 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{AD3A5EA5-20D6-4140-B55E-5A319DDA3E1A}
2011-06-13 14:31:21 . 2011-06-13 14:31:32 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{73CB0958-5AEF-4CA9-8AE0-381865042B89}
2011-06-12 13:09:19 . 2011-06-12 13:09:29 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{EBDFBA4F-C2BC-41FC-A67B-1CD27516CAF4}
2011-06-11 20:35:42 . 2011-06-11 20:35:52 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{3C1C847F-83DF-4390-AF02-A6800D55BC08}
2011-06-11 18:53:43 . 2011-06-17 13:26:43 -------- d-----w- C:\Users\Dominix9511\AppData\Roaming\go
2011-06-11 18:53:39 . 2011-06-17 13:36:43 -------- d-----w- C:\ProgramData\Easybits GO
2011-06-09 13:41:32 . 2011-06-09 13:41:33 -------- d-----w- C:\Windows\system32\SPReview
2011-06-09 13:40:29 . 2011-06-09 13:40:29 -------- d-----w- C:\Windows\system32\EventProviders
2011-06-09 13:38:12 . 2010-11-05 01:57:12 48976 ----a-w- C:\Windows\system32\netfxperf.dll
2011-06-09 13:38:12 . 2010-11-05 01:57:10 1942856 ----a-w- C:\Windows\system32\dfshim.dll
2011-06-09 13:38:07 . 2010-11-05 01:58:18 1130824 ----a-w- C:\Windows\SysWow64\dfshim.dll
2011-06-09 13:38:05 . 2010-11-20 13:27:27 12288 ----a-w- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2011-06-09 13:38:05 . 2010-11-20 11:07:05 59392 ----a-w- C:\Windows\system32\drivers\TsUsbFlt.sys
2011-06-09 13:38:04 . 2010-11-20 13:27:23 14967808 ----a-w- C:\Program Files\DVD Maker\OmdBase.dll
2011-06-09 13:38:04 . 2010-11-20 13:27:09 3715584 ----a-w- C:\Windows\system32\mstscax.dll
2011-06-09 13:38:04 . 2010-11-20 13:26:01 1838080 ----a-w- C:\Windows\system32\d3d10warp.dll
2011-06-09 13:38:02 . 2010-11-20 12:19:54 3215872 ----a-w- C:\Windows\SysWow64\mstscax.dll
2011-06-09 13:38:00 . 2010-11-20 12:19:33 954752 ----a-w- C:\Windows\SysWow64\mfc40.dll
2011-06-09 13:38:00 . 2010-11-20 12:19:33 954288 ----a-w- C:\Windows\SysWow64\mfc40u.dll
2011-06-09 13:38:00 . 2010-11-20 12:18:25 1171456 ----a-w- C:\Windows\SysWow64\d3d10warp.dll
2011-06-09 13:36:59 . 2010-11-20 13:44:13 1077248 ----a-w- C:\Windows\system32\Narrator.exe
2011-06-09 13:35:00 . 2010-11-20 13:27:28 524288 ----a-w- C:\Windows\system32\wmicmiplugin.dll
2011-06-09 13:35:00 . 2010-11-20 13:27:27 529408 ----a-w- C:\Windows\system32\wbemcomn.dll
2011-06-09 13:35:00 . 2010-11-20 13:27:27 1225216 ----a-w- C:\Windows\system32\wbem\wbemcore.dll
2011-06-09 13:34:58 . 2010-11-20 13:27:25 933376 ----a-w- C:\Windows\system32\SmiEngine.dll
2011-06-09 13:34:57 . 2010-11-20 13:25:02 199168 ----a-w- C:\Windows\system32\PkgMgr.exe
2011-06-09 13:34:51 . 2010-11-20 13:26:07 422912 ----a-w- C:\Windows\system32\drvstore.dll
2011-06-09 13:34:51 . 2010-11-20 13:26:07 399872 ----a-w- C:\Windows\system32\dpx.dll
2011-06-08 14:39:42 . 2011-06-24 15:12:48 -------- d-----w- C:\ProgramData\NVIDIA
2011-06-08 14:39:42 . 2011-06-23 15:10:07 -------- d-----w- C:\Users\UpdatusUser
2011-06-08 14:38:43 . 2011-05-25 07:25:42 1016936 ----a-w- C:\Windows\system32\nvvsvc.exe
2011-06-08 14:38:43 . 2011-05-25 07:25:40 2560616 ----a-w- C:\Windows\system32\nvsvcr.dll
2011-06-08 14:38:43 . 2011-05-25 07:25:39 61544 ----a-w- C:\Windows\system32\nvshext.dll
2011-06-08 14:38:43 . 2011-05-25 07:25:39 3040872 ----a-w- C:\Windows\system32\nvsvc64.dll
2011-06-08 14:38:43 . 2011-05-25 07:25:36 117864 ----a-w- C:\Windows\system32\nvmctray.dll
2011-06-08 14:38:43 . 2011-05-25 07:25:30 6300776 ----a-w- C:\Windows\system32\nvcpl.dll
2011-06-08 14:38:43 . 2011-05-25 07:25:28 739432 ----a-w- C:\Windows\system32\easyupdatusapiu64.dll
2011-06-08 14:38:30 . 2011-06-08 14:38:30 -------- d-----w- C:\ProgramData\NVIDIA Corporation
2011-06-08 14:34:37 . 2011-05-25 07:25:48 29288 ----a-w- C:\Windows\system32\nvhdap64.dll
2011-06-08 14:34:37 . 2011-05-25 07:25:48 174184 ----a-w- C:\Windows\system32\drivers\nvhda64v.sys
2011-06-08 14:34:37 . 2011-05-25 07:25:48 1426536 ----a-w- C:\Windows\system32\nvhdagenco642040.dll
2011-06-08 14:34:36 . 2011-05-25 07:25:23 1496168 ----a-w- C:\Windows\system32\nvdispco6420150.dll
2011-06-08 14:34:36 . 2011-05-25 07:25:23 1427048 ----a-w- C:\Windows\system32\nvgenco642090.dll
2011-06-08 14:34:36 . 2011-05-25 07:25:17 2644584 ----a-w- C:\Windows\system32\nvapi64.dll
2011-06-07 10:35:34 . 2011-06-07 10:35:34 103864 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll
2011-06-07 10:35:34 . 2011-06-07 10:35:34 103864 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\nppdf32.dll
2011-06-06 18:59:55 . 2011-06-06 18:59:55 -------- d-----w- C:\Users\Dominix9511\AppData\Local\Quadriga Games
2011-06-06 18:59:18 . 2011-06-09 13:35:18 -------- d-----w- C:\Users\Dominix9511\AppData\Local\NFS Underground 2
2011-06-06 18:56:11 . 2011-06-06 18:56:13 -------- d-----w- C:\Program Files (x86)\Common Files\Wise Installation Wizard
2011-06-06 18:49:30 . 2011-06-06 18:49:30 -------- d-----w- C:\Program Files (x86)\Quadriga Games
2011-06-06 18:44:59 . 2011-06-06 18:44:59 -------- d-----w- C:\Program Files (x86)\EA GAMES
2011-06-04 18:08:01 . 2011-06-04 18:08:12 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{E51FA962-00C2-4E25-8C98-0B4CCEC3368D}
2011-06-04 16:46:14 . 2011-06-04 16:52:46 -------- d-----w- C:\Users\Dominix9511\AppData\Roaming\Audacity
2011-06-04 16:46:05 . 2011-06-04 16:46:09 -------- d-----w- C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)
2011-06-04 16:43:07 . 2011-06-04 16:43:07 -------- d-----w- C:\Program Files (x86)\AnalogX
2011-06-03 11:52:30 . 2011-06-03 11:55:17 -------- d-----w- C:\ProgramData\FLEXnet
2011-06-03 11:35:08 . 2011-06-03 11:35:08 -------- d-----w- C:\Program Files (x86)\Common Files\Macrovision Shared
2011-06-03 10:29:03 . 2011-06-03 10:29:03 -------- d-sh--w- C:\ProgramData\DSS
2011-06-03 10:25:49 . 2010-09-22 11:12:00 19087360 ----a-w- C:\Windows\SysWow64\mkl_blueripple.dll
2011-06-03 10:25:46 . 2011-04-15 23:40:18 809496 ----a-r- C:\Windows\SysWow64\tmpC43C.tmp
2011-06-03 07:32:19 . 2011-06-03 07:32:19 1409 ----a-w- C:\Windows\QTFont.for
2011-05-30 14:16:32 . 2011-05-30 14:16:43 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{551CA116-2BD0-4DAD-A279-55E03BB2F6A5}
2011-05-30 13:02:59 . 2011-05-30 13:02:59 -------- d-----w- C:\Program Files (x86)\LogMeIn Hamachi
2011-05-29 13:10:10 . 2011-05-29 13:10:26 -------- d-----w- C:\Users\Dominix9511\AppData\Local\Nero
2011-05-29 13:02:39 . 2011-05-29 13:02:39 -------- d-----w- C:\Users\Dominix9511\AppData\Roaming\Nero
2011-05-29 12:45:34 . 2011-05-29 13:11:56 -------- d-----w- C:\Program Files (x86)\Nero
2011-05-29 12:45:18 . 2011-05-29 13:12:51 -------- d-----w- C:\Program Files (x86)\Common Files\Nero
2011-05-29 12:45:12 . 2011-05-29 12:46:10 -------- d-----w- C:\ProgramData\Nero
2011-05-27 07:14:29 . 2011-05-27 07:18:13 -------- d-----w- C:\dbTemp
2011-05-26 15:38:55 . 2011-05-26 19:09:34 -------- d-----w- C:\Program Files (x86)\3D-Fahrschule
2011-05-26 07:08:13 . 2011-05-26 07:08:25 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{B91A64BD-922C-4FB2-A9F5-639B23D5F61A}
2011-05-25 15:26:57 . 2011-05-25 15:27:10 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{CCAB99AF-0621-4D22-9974-5C90B373666A}
2011-05-25 15:15:16 . 2011-04-22 22:15:29 27520 ----a-w- C:\Windows\system32\drivers\Diskdump.sys
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
2011-06-24 13:34:01 . 2010-12-03 16:35:10 271200 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe
2011-06-24 13:34:01 . 2010-12-03 16:35:06 271200 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr
2011-06-24 13:31:52 . 2010-12-03 16:35:10 271200 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0
2011-06-09 13:45:09 . 2009-07-14 02:36:51 175616 ----a-w- C:\Windows\system32\msclmd.dll
2011-06-09 13:45:09 . 2009-07-14 02:36:51 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll
2011-06-07 17:10:37 . 2010-12-04 10:02:00 8873296 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-06-03 10:25:47 . 2010-12-03 13:14:07 122904 ----a-w- C:\Windows\system32\OpenAL32.dll
2011-06-03 10:25:47 . 2010-12-03 13:14:07 109080 ----a-w- C:\Windows\SysWow64\OpenAL32.dll
2011-05-20 20:35:28 . 2011-05-20 20:35:28 304744 ----a-w- C:\Windows\SysWow64\nvStreaming.exe
2011-05-17 12:04:07 . 2011-05-17 12:04:07 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2011-05-05 20:00:26 . 2011-05-05 20:00:26 74752 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe
2011-05-05 20:00:26 . 2011-05-05 20:00:26 161792 ----a-w- C:\Windows\SysWow64\msls31.dll
2011-05-05 20:00:26 . 2011-05-05 20:00:26 1126912 ----a-w- C:\Windows\SysWow64\wininet.dll
2011-05-05 20:00:26 . 2011-05-05 20:00:26 110592 ----a-w- C:\Windows\SysWow64\IEAdvpack.dll
2011-05-05 20:00:25 . 2011-05-05 20:00:25 86528 ----a-w- C:\Windows\SysWow64\iesysprep.dll
2011-05-05 20:00:25 . 2011-05-05 20:00:25 76800 ----a-w- C:\Windows\SysWow64\SetIEInstalledDate.exe
2011-05-05 20:00:25 . 2011-05-05 20:00:25 74752 ----a-w- C:\Windows\SysWow64\iesetup.dll
2011-05-05 20:00:25 . 2011-05-05 20:00:25 63488 ----a-w- C:\Windows\SysWow64\tdc.ocx
2011-05-05 20:00:25 . 2011-05-05 20:00:25 48640 ----a-w- C:\Windows\SysWow64\mshtmler.dll
2011-05-05 20:00:25 . 2011-05-05 20:00:25 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll
2011-05-05 20:00:25 . 2011-05-05 20:00:25 367104 ----a-w- C:\Windows\SysWow64\html.iec
2011-05-05 20:00:25 . 2011-05-05 20:00:25 35840 ----a-w- C:\Windows\SysWow64\imgutil.dll
2011-05-05 20:00:25 . 2011-05-05 20:00:25 23552 ----a-w- C:\Windows\SysWow64\licmgr10.dll
2011-05-05 20:00:25 . 2011-05-05 20:00:25 203776 ----a-w- C:\Windows\SysWow64\webcheck.dll
2011-05-05 20:00:25 . 2011-05-05 20:00:25 152064 ----a-w- C:\Windows\SysWow64\wextract.exe
2011-05-05 20:00:25 . 2011-05-05 20:00:25 150528 ----a-w- C:\Windows\SysWow64\iexpress.exe
2011-05-05 20:00:25 . 2011-05-05 20:00:25 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2011-05-05 20:00:25 . 2011-05-05 20:00:25 1427456 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2011-05-05 20:00:25 . 2011-05-05 20:00:25 11776 ----a-w- C:\Windows\SysWow64\mshta.exe
2011-05-05 20:00:25 . 2011-05-05 20:00:25 101888 ----a-w- C:\Windows\SysWow64\admparse.dll
2011-05-05 20:00:24 . 2011-05-05 20:00:24 91648 ----a-w- C:\Windows\system32\SetIEInstalledDate.exe
2011-05-05 20:00:24 . 2011-05-05 20:00:24 89088 ----a-w- C:\Windows\system32\RegisterIEPKEYs.exe
2011-05-05 20:00:24 . 2011-05-05 20:00:24 49664 ----a-w- C:\Windows\system32\imgutil.dll
2011-05-05 20:00:24 . 2011-05-05 20:00:24 48640 ----a-w- C:\Windows\system32\mshtmler.dll
2011-05-05 20:00:24 . 2011-05-05 20:00:24 222208 ----a-w- C:\Windows\system32\msls31.dll
2011-05-05 20:00:24 . 2011-05-05 20:00:24 173056 ----a-w- C:\Windows\system32\ieUnatt.exe
2011-05-05 20:00:24 . 2011-05-05 20:00:24 1389056 ----a-w- C:\Windows\system32\wininet.dll
2011-05-05 20:00:24 . 2011-05-05 20:00:24 135168 ----a-w- C:\Windows\system32\IEAdvpack.dll
2011-05-05 20:00:24 . 2011-05-05 20:00:24 12288 ----a-w- C:\Windows\system32\mshta.exe
2011-05-05 20:00:24 . 2011-05-05 20:00:24 114176 ----a-w- C:\Windows\system32\admparse.dll
2011-05-05 20:00:24 . 2011-05-05 20:00:23 111616 ----a-w- C:\Windows\system32\iesysprep.dll
2011-05-05 20:00:23 . 2011-05-05 20:00:23 85504 ----a-w- C:\Windows\system32\iesetup.dll
2011-05-05 20:00:23 . 2011-05-05 20:00:23 76800 ----a-w- C:\Windows\system32\tdc.ocx
2011-05-05 20:00:23 . 2011-05-05 20:00:23 603648 ----a-w- C:\Windows\system32\vbscript.dll
2011-05-05 20:00:23 . 2011-05-05 20:00:23 448512 ----a-w- C:\Windows\system32\html.iec
2011-05-05 20:00:23 . 2011-05-05 20:00:23 30720 ----a-w- C:\Windows\system32\licmgr10.dll
2011-05-05 20:00:23 . 2011-05-05 20:00:23 249344 ----a-w- C:\Windows\system32\webcheck.dll
2011-05-05 20:00:23 . 2011-05-05 20:00:23 165888 ----a-w- C:\Windows\system32\iexpress.exe
2011-05-05 20:00:23 . 2011-05-05 20:00:23 160256 ----a-w- C:\Windows\system32\wextract.exe
2011-05-05 20:00:23 . 2011-05-05 20:00:23 1492992 ----a-w- C:\Windows\system32\inetcpl.cpl
2011-04-17 07:58:14 . 2011-04-17 07:58:14 159080 ----a-w- C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10138.bin
2011-04-15 23:40:18 . 2011-04-15 23:40:18 809496 ----a-r- C:\Windows\SysWow64\tmpC42C.tmp
2011-04-09 16:55:44 . 2011-04-09 16:55:44 15453336 ----a-w- C:\Windows\SysWow64\xlive.dll
2011-04-09 16:55:42 . 2011-04-09 16:55:42 13642904 ----a-w- C:\Windows\SysWow64\xlivefnt.dll
2011-04-09 07:02:55 . 2011-05-12 04:59:31 5562240 ----a-w- C:\Windows\system32\ntoskrnl.exe
2011-04-09 06:58:56 . 2011-05-19 12:24:21 142336 ----a-w- C:\Windows\system32\poqexec.exe
2011-04-09 06:02:25 . 2011-05-12 04:59:29 3967872 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2011-04-09 06:02:25 . 2011-05-12 04:59:29 3912576 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2011-04-09 05:56:38 . 2011-05-19 12:24:21 123904 ----a-w- C:\Windows\SysWow64\poqexec.exe
2011-04-08 11:28:58 . 2011-04-08 11:28:58 41872 ----a-w- C:\Windows\SysWow64\xfcodec.dll
2011-04-08 11:28:58 . 2011-04-08 11:28:58 27536 ----a-w- C:\Windows\system32\xfcodec64.dll
2011-04-08 05:14:00 . 2011-05-05 06:37:56 1619048 ----a-w- C:\Windows\system32\nvdispco6420140.dll
2011-04-08 05:14:00 . 2011-05-05 06:37:56 1404008 ----a-w- C:\Windows\system32\nvgenco642060.dll
2011-03-31 21:48:38 . 2011-03-31 21:48:38 86016 ----a-w- C:\Windows\SysWow64\frapsvid.dll
2011-03-31 21:48:36 . 2011-03-31 21:48:36 84992 ----a-w- C:\Windows\system32\frapsv64.dll
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.8176.5958 [GMT 2:00]
Spuštěný z: C:\Users\Dominix9511\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
C:\Users\DOMINI~1\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Dominix9511\AppData\Local\Temp\nvSCPAPI64.dll
((((((((((((((((((((((((( Soubory vytvořené od 2011-05-24 do 2011-06-24 )))))))))))))))))))))))))))))))
2011-06-24 15:11:20 . 2011-06-24 15:11:20 -------- d-----w- C:\Users\Default\AppData\Local\temp
2011-06-24 15:11:18 . 2011-06-24 15:11:18 -------- d-----w- C:\Users\LogMeInRemoteUser\AppData\Local\temp
2011-06-24 13:05:14 . 2011-06-07 17:10:37 8873296 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BCC5D38F-C0AC-459E-810D-2CE49B145648}\mpengine.dll
2011-06-23 16:17:02 . 2011-06-23 16:17:13 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{EB995A32-38C9-47B8-9212-33AF7D660E7F}
2011-06-23 15:59:14 . 2011-06-23 15:59:14 -------- d-----w- C:\Users\Dominix9511\AppData\Roaming\Malwarebytes
2011-06-23 15:59:11 . 2011-05-29 07:11:30 39984 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
2011-06-23 15:59:10 . 2011-06-23 15:59:10 -------- d-----w- C:\ProgramData\Malwarebytes
2011-06-23 15:59:07 . 2011-06-23 15:59:12 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-06-23 15:59:07 . 2011-05-29 07:11:20 25912 ----a-w- C:\Windows\system32\drivers\mbam.sys
2011-06-23 14:06:16 . 2011-06-23 14:06:18 -------- d-----w- C:\Program Files (x86)\GamePark
2011-06-22 17:23:37 . 2011-06-22 17:23:48 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{716546B8-DC82-4050-AB1D-AC27E56717D8}
2011-06-19 15:47:29 . 2011-06-19 15:47:42 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{B61FC382-EA9E-4BD1-957B-ECDDDEAE7BB5}
2011-06-16 18:43:42 . 2011-06-16 18:43:42 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{AD3A5EA5-20D6-4140-B55E-5A319DDA3E1A}
2011-06-13 14:31:21 . 2011-06-13 14:31:32 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{73CB0958-5AEF-4CA9-8AE0-381865042B89}
2011-06-12 13:09:19 . 2011-06-12 13:09:29 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{EBDFBA4F-C2BC-41FC-A67B-1CD27516CAF4}
2011-06-11 20:35:42 . 2011-06-11 20:35:52 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{3C1C847F-83DF-4390-AF02-A6800D55BC08}
2011-06-11 18:53:43 . 2011-06-17 13:26:43 -------- d-----w- C:\Users\Dominix9511\AppData\Roaming\go
2011-06-11 18:53:39 . 2011-06-17 13:36:43 -------- d-----w- C:\ProgramData\Easybits GO
2011-06-09 13:41:32 . 2011-06-09 13:41:33 -------- d-----w- C:\Windows\system32\SPReview
2011-06-09 13:40:29 . 2011-06-09 13:40:29 -------- d-----w- C:\Windows\system32\EventProviders
2011-06-09 13:38:12 . 2010-11-05 01:57:12 48976 ----a-w- C:\Windows\system32\netfxperf.dll
2011-06-09 13:38:12 . 2010-11-05 01:57:10 1942856 ----a-w- C:\Windows\system32\dfshim.dll
2011-06-09 13:38:07 . 2010-11-05 01:58:18 1130824 ----a-w- C:\Windows\SysWow64\dfshim.dll
2011-06-09 13:38:05 . 2010-11-20 13:27:27 12288 ----a-w- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2011-06-09 13:38:05 . 2010-11-20 11:07:05 59392 ----a-w- C:\Windows\system32\drivers\TsUsbFlt.sys
2011-06-09 13:38:04 . 2010-11-20 13:27:23 14967808 ----a-w- C:\Program Files\DVD Maker\OmdBase.dll
2011-06-09 13:38:04 . 2010-11-20 13:27:09 3715584 ----a-w- C:\Windows\system32\mstscax.dll
2011-06-09 13:38:04 . 2010-11-20 13:26:01 1838080 ----a-w- C:\Windows\system32\d3d10warp.dll
2011-06-09 13:38:02 . 2010-11-20 12:19:54 3215872 ----a-w- C:\Windows\SysWow64\mstscax.dll
2011-06-09 13:38:00 . 2010-11-20 12:19:33 954752 ----a-w- C:\Windows\SysWow64\mfc40.dll
2011-06-09 13:38:00 . 2010-11-20 12:19:33 954288 ----a-w- C:\Windows\SysWow64\mfc40u.dll
2011-06-09 13:38:00 . 2010-11-20 12:18:25 1171456 ----a-w- C:\Windows\SysWow64\d3d10warp.dll
2011-06-09 13:36:59 . 2010-11-20 13:44:13 1077248 ----a-w- C:\Windows\system32\Narrator.exe
2011-06-09 13:35:00 . 2010-11-20 13:27:28 524288 ----a-w- C:\Windows\system32\wmicmiplugin.dll
2011-06-09 13:35:00 . 2010-11-20 13:27:27 529408 ----a-w- C:\Windows\system32\wbemcomn.dll
2011-06-09 13:35:00 . 2010-11-20 13:27:27 1225216 ----a-w- C:\Windows\system32\wbem\wbemcore.dll
2011-06-09 13:34:58 . 2010-11-20 13:27:25 933376 ----a-w- C:\Windows\system32\SmiEngine.dll
2011-06-09 13:34:57 . 2010-11-20 13:25:02 199168 ----a-w- C:\Windows\system32\PkgMgr.exe
2011-06-09 13:34:51 . 2010-11-20 13:26:07 422912 ----a-w- C:\Windows\system32\drvstore.dll
2011-06-09 13:34:51 . 2010-11-20 13:26:07 399872 ----a-w- C:\Windows\system32\dpx.dll
2011-06-08 14:39:42 . 2011-06-24 15:12:48 -------- d-----w- C:\ProgramData\NVIDIA
2011-06-08 14:39:42 . 2011-06-23 15:10:07 -------- d-----w- C:\Users\UpdatusUser
2011-06-08 14:38:43 . 2011-05-25 07:25:42 1016936 ----a-w- C:\Windows\system32\nvvsvc.exe
2011-06-08 14:38:43 . 2011-05-25 07:25:40 2560616 ----a-w- C:\Windows\system32\nvsvcr.dll
2011-06-08 14:38:43 . 2011-05-25 07:25:39 61544 ----a-w- C:\Windows\system32\nvshext.dll
2011-06-08 14:38:43 . 2011-05-25 07:25:39 3040872 ----a-w- C:\Windows\system32\nvsvc64.dll
2011-06-08 14:38:43 . 2011-05-25 07:25:36 117864 ----a-w- C:\Windows\system32\nvmctray.dll
2011-06-08 14:38:43 . 2011-05-25 07:25:30 6300776 ----a-w- C:\Windows\system32\nvcpl.dll
2011-06-08 14:38:43 . 2011-05-25 07:25:28 739432 ----a-w- C:\Windows\system32\easyupdatusapiu64.dll
2011-06-08 14:38:30 . 2011-06-08 14:38:30 -------- d-----w- C:\ProgramData\NVIDIA Corporation
2011-06-08 14:34:37 . 2011-05-25 07:25:48 29288 ----a-w- C:\Windows\system32\nvhdap64.dll
2011-06-08 14:34:37 . 2011-05-25 07:25:48 174184 ----a-w- C:\Windows\system32\drivers\nvhda64v.sys
2011-06-08 14:34:37 . 2011-05-25 07:25:48 1426536 ----a-w- C:\Windows\system32\nvhdagenco642040.dll
2011-06-08 14:34:36 . 2011-05-25 07:25:23 1496168 ----a-w- C:\Windows\system32\nvdispco6420150.dll
2011-06-08 14:34:36 . 2011-05-25 07:25:23 1427048 ----a-w- C:\Windows\system32\nvgenco642090.dll
2011-06-08 14:34:36 . 2011-05-25 07:25:17 2644584 ----a-w- C:\Windows\system32\nvapi64.dll
2011-06-07 10:35:34 . 2011-06-07 10:35:34 103864 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll
2011-06-07 10:35:34 . 2011-06-07 10:35:34 103864 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\nppdf32.dll
2011-06-06 18:59:55 . 2011-06-06 18:59:55 -------- d-----w- C:\Users\Dominix9511\AppData\Local\Quadriga Games
2011-06-06 18:59:18 . 2011-06-09 13:35:18 -------- d-----w- C:\Users\Dominix9511\AppData\Local\NFS Underground 2
2011-06-06 18:56:11 . 2011-06-06 18:56:13 -------- d-----w- C:\Program Files (x86)\Common Files\Wise Installation Wizard
2011-06-06 18:49:30 . 2011-06-06 18:49:30 -------- d-----w- C:\Program Files (x86)\Quadriga Games
2011-06-06 18:44:59 . 2011-06-06 18:44:59 -------- d-----w- C:\Program Files (x86)\EA GAMES
2011-06-04 18:08:01 . 2011-06-04 18:08:12 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{E51FA962-00C2-4E25-8C98-0B4CCEC3368D}
2011-06-04 16:46:14 . 2011-06-04 16:52:46 -------- d-----w- C:\Users\Dominix9511\AppData\Roaming\Audacity
2011-06-04 16:46:05 . 2011-06-04 16:46:09 -------- d-----w- C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)
2011-06-04 16:43:07 . 2011-06-04 16:43:07 -------- d-----w- C:\Program Files (x86)\AnalogX
2011-06-03 11:52:30 . 2011-06-03 11:55:17 -------- d-----w- C:\ProgramData\FLEXnet
2011-06-03 11:35:08 . 2011-06-03 11:35:08 -------- d-----w- C:\Program Files (x86)\Common Files\Macrovision Shared
2011-06-03 10:29:03 . 2011-06-03 10:29:03 -------- d-sh--w- C:\ProgramData\DSS
2011-06-03 10:25:49 . 2010-09-22 11:12:00 19087360 ----a-w- C:\Windows\SysWow64\mkl_blueripple.dll
2011-06-03 10:25:46 . 2011-04-15 23:40:18 809496 ----a-r- C:\Windows\SysWow64\tmpC43C.tmp
2011-06-03 07:32:19 . 2011-06-03 07:32:19 1409 ----a-w- C:\Windows\QTFont.for
2011-05-30 14:16:32 . 2011-05-30 14:16:43 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{551CA116-2BD0-4DAD-A279-55E03BB2F6A5}
2011-05-30 13:02:59 . 2011-05-30 13:02:59 -------- d-----w- C:\Program Files (x86)\LogMeIn Hamachi
2011-05-29 13:10:10 . 2011-05-29 13:10:26 -------- d-----w- C:\Users\Dominix9511\AppData\Local\Nero
2011-05-29 13:02:39 . 2011-05-29 13:02:39 -------- d-----w- C:\Users\Dominix9511\AppData\Roaming\Nero
2011-05-29 12:45:34 . 2011-05-29 13:11:56 -------- d-----w- C:\Program Files (x86)\Nero
2011-05-29 12:45:18 . 2011-05-29 13:12:51 -------- d-----w- C:\Program Files (x86)\Common Files\Nero
2011-05-29 12:45:12 . 2011-05-29 12:46:10 -------- d-----w- C:\ProgramData\Nero
2011-05-27 07:14:29 . 2011-05-27 07:18:13 -------- d-----w- C:\dbTemp
2011-05-26 15:38:55 . 2011-05-26 19:09:34 -------- d-----w- C:\Program Files (x86)\3D-Fahrschule
2011-05-26 07:08:13 . 2011-05-26 07:08:25 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{B91A64BD-922C-4FB2-A9F5-639B23D5F61A}
2011-05-25 15:26:57 . 2011-05-25 15:27:10 -------- d-----w- C:\Users\Dominix9511\AppData\Local\{CCAB99AF-0621-4D22-9974-5C90B373666A}
2011-05-25 15:15:16 . 2011-04-22 22:15:29 27520 ----a-w- C:\Windows\system32\drivers\Diskdump.sys
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
2011-06-24 13:34:01 . 2010-12-03 16:35:10 271200 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe
2011-06-24 13:34:01 . 2010-12-03 16:35:06 271200 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr
2011-06-24 13:31:52 . 2010-12-03 16:35:10 271200 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0
2011-06-09 13:45:09 . 2009-07-14 02:36:51 175616 ----a-w- C:\Windows\system32\msclmd.dll
2011-06-09 13:45:09 . 2009-07-14 02:36:51 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll
2011-06-07 17:10:37 . 2010-12-04 10:02:00 8873296 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-06-03 10:25:47 . 2010-12-03 13:14:07 122904 ----a-w- C:\Windows\system32\OpenAL32.dll
2011-06-03 10:25:47 . 2010-12-03 13:14:07 109080 ----a-w- C:\Windows\SysWow64\OpenAL32.dll
2011-05-20 20:35:28 . 2011-05-20 20:35:28 304744 ----a-w- C:\Windows\SysWow64\nvStreaming.exe
2011-05-17 12:04:07 . 2011-05-17 12:04:07 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2011-05-05 20:00:26 . 2011-05-05 20:00:26 74752 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe
2011-05-05 20:00:26 . 2011-05-05 20:00:26 161792 ----a-w- C:\Windows\SysWow64\msls31.dll
2011-05-05 20:00:26 . 2011-05-05 20:00:26 1126912 ----a-w- C:\Windows\SysWow64\wininet.dll
2011-05-05 20:00:26 . 2011-05-05 20:00:26 110592 ----a-w- C:\Windows\SysWow64\IEAdvpack.dll
2011-05-05 20:00:25 . 2011-05-05 20:00:25 86528 ----a-w- C:\Windows\SysWow64\iesysprep.dll
2011-05-05 20:00:25 . 2011-05-05 20:00:25 76800 ----a-w- C:\Windows\SysWow64\SetIEInstalledDate.exe
2011-05-05 20:00:25 . 2011-05-05 20:00:25 74752 ----a-w- C:\Windows\SysWow64\iesetup.dll
2011-05-05 20:00:25 . 2011-05-05 20:00:25 63488 ----a-w- C:\Windows\SysWow64\tdc.ocx
2011-05-05 20:00:25 . 2011-05-05 20:00:25 48640 ----a-w- C:\Windows\SysWow64\mshtmler.dll
2011-05-05 20:00:25 . 2011-05-05 20:00:25 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll
2011-05-05 20:00:25 . 2011-05-05 20:00:25 367104 ----a-w- C:\Windows\SysWow64\html.iec
2011-05-05 20:00:25 . 2011-05-05 20:00:25 35840 ----a-w- C:\Windows\SysWow64\imgutil.dll
2011-05-05 20:00:25 . 2011-05-05 20:00:25 23552 ----a-w- C:\Windows\SysWow64\licmgr10.dll
2011-05-05 20:00:25 . 2011-05-05 20:00:25 203776 ----a-w- C:\Windows\SysWow64\webcheck.dll
2011-05-05 20:00:25 . 2011-05-05 20:00:25 152064 ----a-w- C:\Windows\SysWow64\wextract.exe
2011-05-05 20:00:25 . 2011-05-05 20:00:25 150528 ----a-w- C:\Windows\SysWow64\iexpress.exe
2011-05-05 20:00:25 . 2011-05-05 20:00:25 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2011-05-05 20:00:25 . 2011-05-05 20:00:25 1427456 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2011-05-05 20:00:25 . 2011-05-05 20:00:25 11776 ----a-w- C:\Windows\SysWow64\mshta.exe
2011-05-05 20:00:25 . 2011-05-05 20:00:25 101888 ----a-w- C:\Windows\SysWow64\admparse.dll
2011-05-05 20:00:24 . 2011-05-05 20:00:24 91648 ----a-w- C:\Windows\system32\SetIEInstalledDate.exe
2011-05-05 20:00:24 . 2011-05-05 20:00:24 89088 ----a-w- C:\Windows\system32\RegisterIEPKEYs.exe
2011-05-05 20:00:24 . 2011-05-05 20:00:24 49664 ----a-w- C:\Windows\system32\imgutil.dll
2011-05-05 20:00:24 . 2011-05-05 20:00:24 48640 ----a-w- C:\Windows\system32\mshtmler.dll
2011-05-05 20:00:24 . 2011-05-05 20:00:24 222208 ----a-w- C:\Windows\system32\msls31.dll
2011-05-05 20:00:24 . 2011-05-05 20:00:24 173056 ----a-w- C:\Windows\system32\ieUnatt.exe
2011-05-05 20:00:24 . 2011-05-05 20:00:24 1389056 ----a-w- C:\Windows\system32\wininet.dll
2011-05-05 20:00:24 . 2011-05-05 20:00:24 135168 ----a-w- C:\Windows\system32\IEAdvpack.dll
2011-05-05 20:00:24 . 2011-05-05 20:00:24 12288 ----a-w- C:\Windows\system32\mshta.exe
2011-05-05 20:00:24 . 2011-05-05 20:00:24 114176 ----a-w- C:\Windows\system32\admparse.dll
2011-05-05 20:00:24 . 2011-05-05 20:00:23 111616 ----a-w- C:\Windows\system32\iesysprep.dll
2011-05-05 20:00:23 . 2011-05-05 20:00:23 85504 ----a-w- C:\Windows\system32\iesetup.dll
2011-05-05 20:00:23 . 2011-05-05 20:00:23 76800 ----a-w- C:\Windows\system32\tdc.ocx
2011-05-05 20:00:23 . 2011-05-05 20:00:23 603648 ----a-w- C:\Windows\system32\vbscript.dll
2011-05-05 20:00:23 . 2011-05-05 20:00:23 448512 ----a-w- C:\Windows\system32\html.iec
2011-05-05 20:00:23 . 2011-05-05 20:00:23 30720 ----a-w- C:\Windows\system32\licmgr10.dll
2011-05-05 20:00:23 . 2011-05-05 20:00:23 249344 ----a-w- C:\Windows\system32\webcheck.dll
2011-05-05 20:00:23 . 2011-05-05 20:00:23 165888 ----a-w- C:\Windows\system32\iexpress.exe
2011-05-05 20:00:23 . 2011-05-05 20:00:23 160256 ----a-w- C:\Windows\system32\wextract.exe
2011-05-05 20:00:23 . 2011-05-05 20:00:23 1492992 ----a-w- C:\Windows\system32\inetcpl.cpl
2011-04-17 07:58:14 . 2011-04-17 07:58:14 159080 ----a-w- C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10138.bin
2011-04-15 23:40:18 . 2011-04-15 23:40:18 809496 ----a-r- C:\Windows\SysWow64\tmpC42C.tmp
2011-04-09 16:55:44 . 2011-04-09 16:55:44 15453336 ----a-w- C:\Windows\SysWow64\xlive.dll
2011-04-09 16:55:42 . 2011-04-09 16:55:42 13642904 ----a-w- C:\Windows\SysWow64\xlivefnt.dll
2011-04-09 07:02:55 . 2011-05-12 04:59:31 5562240 ----a-w- C:\Windows\system32\ntoskrnl.exe
2011-04-09 06:58:56 . 2011-05-19 12:24:21 142336 ----a-w- C:\Windows\system32\poqexec.exe
2011-04-09 06:02:25 . 2011-05-12 04:59:29 3967872 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2011-04-09 06:02:25 . 2011-05-12 04:59:29 3912576 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2011-04-09 05:56:38 . 2011-05-19 12:24:21 123904 ----a-w- C:\Windows\SysWow64\poqexec.exe
2011-04-08 11:28:58 . 2011-04-08 11:28:58 41872 ----a-w- C:\Windows\SysWow64\xfcodec.dll
2011-04-08 11:28:58 . 2011-04-08 11:28:58 27536 ----a-w- C:\Windows\system32\xfcodec64.dll
2011-04-08 05:14:00 . 2011-05-05 06:37:56 1619048 ----a-w- C:\Windows\system32\nvdispco6420140.dll
2011-04-08 05:14:00 . 2011-05-05 06:37:56 1404008 ----a-w- C:\Windows\system32\nvgenco642060.dll
2011-03-31 21:48:38 . 2011-03-31 21:48:38 86016 ----a-w- C:\Windows\SysWow64\frapsvid.dll
2011-03-31 21:48:36 . 2011-03-31 21:48:36 84992 ----a-w- C:\Windows\system32\frapsv64.dll
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o Kontrolu logu - Sekání PC
Log je třeba zkopírovat celý a vložit ho sem...
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 67 hostů