Prosím o kontrolu Logu

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Odpovědět
DarkMoon97
Level 2.5
Level 2.5
Příspěvky: 377
Registrován: únor 13
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod DarkMoon97 » 02 kvě 2013 11:41

11:33:29.0751 5532 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
11:33:29.0753 5532 sermouse - ok
11:33:29.0777 5532 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
11:33:29.0782 5532 SessionEnv - ok
11:33:29.0795 5532 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
11:33:29.0797 5532 sffdisk - ok
11:33:29.0812 5532 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:33:29.0814 5532 sffp_mmc - ok
11:33:29.0824 5532 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
11:33:29.0825 5532 sffp_sd - ok
11:33:29.0846 5532 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
11:33:29.0847 5532 sfloppy - ok
11:33:29.0882 5532 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:33:29.0887 5532 SharedAccess - ok
11:33:29.0919 5532 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:33:29.0926 5532 ShellHWDetection - ok
11:33:29.0942 5532 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
11:33:29.0944 5532 sisagp - ok
11:33:29.0966 5532 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:33:29.0967 5532 SiSRaid2 - ok
11:33:29.0984 5532 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
11:33:29.0986 5532 SiSRaid4 - ok
11:33:30.0035 5532 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
11:33:30.0037 5532 SkypeUpdate - ok
11:33:30.0065 5532 [ BF302072DC8374CF4E118FD88AA817A2 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
11:33:30.0065 5532 SmartDefragDriver - ok
11:33:30.0088 5532 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:33:30.0090 5532 Smb - ok
11:33:30.0120 5532 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:33:30.0124 5532 SNMPTRAP - ok
11:33:30.0169 5532 [ DC8D2952FB6FFBAEC67BD1B93A34DF11 ] speedfan C:\Windows\system32\speedfan.sys
11:33:30.0173 5532 speedfan - ok
11:33:30.0196 5532 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
11:33:30.0198 5532 spldr - ok
11:33:30.0235 5532 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
11:33:30.0241 5532 Spooler - ok
11:33:30.0297 5532 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
11:33:30.0340 5532 sppsvc - ok
11:33:30.0359 5532 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
11:33:30.0364 5532 sppuinotify - ok
11:33:30.0386 5532 [ 68103A2B441BBF3908EBB587F0704D6C ] sptd C:\Windows\System32\Drivers\sptd.sys
11:33:30.0390 5532 sptd - ok
11:33:30.0409 5532 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
11:33:30.0412 5532 srv - ok
11:33:30.0426 5532 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:33:30.0429 5532 srv2 - ok
11:33:30.0443 5532 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:33:30.0446 5532 srvnet - ok
11:33:30.0457 5532 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:33:30.0462 5532 SSDPSRV - ok
11:33:30.0478 5532 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:33:30.0484 5532 SstpSvc - ok
11:33:30.0492 5532 Steam Client Service - ok
11:33:30.0511 5532 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
11:33:30.0512 5532 stexstor - ok
11:33:30.0533 5532 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
11:33:30.0541 5532 StiSvc - ok
11:33:30.0547 5532 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
11:33:30.0548 5532 storflt - ok
11:33:30.0576 5532 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
11:33:30.0577 5532 storvsc - ok
11:33:30.0594 5532 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
11:33:30.0595 5532 swenum - ok
11:33:30.0603 5532 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
11:33:30.0610 5532 swprv - ok
11:33:30.0615 5532 Synth3dVsc - ok
11:33:30.0651 5532 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
11:33:30.0677 5532 SysMain - ok
11:33:30.0703 5532 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:33:30.0708 5532 TabletInputService - ok
11:33:30.0728 5532 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
11:33:30.0734 5532 TapiSrv - ok
11:33:30.0746 5532 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
11:33:30.0751 5532 TBS - ok
11:33:30.0786 5532 [ 7C0507D2391AF5933600CBCED799F277 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:33:30.0804 5532 Tcpip - ok
11:33:30.0828 5532 [ 7C0507D2391AF5933600CBCED799F277 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
11:33:30.0834 5532 TCPIP6 - ok
11:33:30.0862 5532 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:33:30.0864 5532 tcpipreg - ok
11:33:30.0894 5532 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:33:30.0895 5532 TDPIPE - ok
11:33:30.0909 5532 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:33:30.0911 5532 TDTCP - ok
11:33:30.0941 5532 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:33:30.0943 5532 tdx - ok
11:33:30.0952 5532 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
11:33:30.0954 5532 TermDD - ok
11:33:30.0972 5532 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
11:33:30.0981 5532 TermService - ok
11:33:30.0991 5532 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
11:33:30.0995 5532 Themes - ok
11:33:31.0010 5532 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
11:33:31.0012 5532 THREADORDER - ok
11:33:31.0026 5532 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
11:33:31.0031 5532 TrkWks - ok
11:33:31.0067 5532 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:33:31.0070 5532 TrustedInstaller - ok
11:33:31.0083 5532 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:33:31.0085 5532 tssecsrv - ok
11:33:31.0093 5532 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
11:33:31.0095 5532 TsUsbFlt - ok
11:33:31.0100 5532 tsusbhub - ok
11:33:31.0123 5532 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:33:31.0125 5532 tunnel - ok
11:33:31.0152 5532 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
11:33:31.0154 5532 uagp35 - ok
11:33:31.0178 5532 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:33:31.0181 5532 udfs - ok
11:33:31.0200 5532 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:33:31.0205 5532 UI0Detect - ok
11:33:31.0234 5532 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:33:31.0236 5532 uliagpkx - ok
11:33:31.0293 5532 [ 3B7E264485F361EA5A65FEEF89F2352F ] UltiDev Cassini Web Server for ASP.NET 2.0 C:\Program Files\UltiDev\Cassini Web Server for ASP.NET 2.0\UltiDevCassinWebServer2a.exe
11:33:31.0294 5532 UltiDev Cassini Web Server for ASP.NET 2.0 - ok
11:33:31.0319 5532 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
11:33:31.0320 5532 umbus - ok
11:33:31.0341 5532 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
11:33:31.0343 5532 UmPass - ok
11:33:31.0365 5532 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
11:33:31.0370 5532 UmRdpService - ok
11:33:31.0400 5532 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
11:33:31.0406 5532 upnphost - ok
11:33:31.0417 5532 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:33:31.0419 5532 usbccgp - ok
11:33:31.0445 5532 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:33:31.0447 5532 usbcir - ok
11:33:31.0461 5532 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
11:33:31.0463 5532 usbehci - ok
11:33:31.0484 5532 [ E5B14557793164DB879EE56F5B59C3E2 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
11:33:31.0485 5532 usbfilter - ok
11:33:31.0503 5532 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:33:31.0507 5532 usbhub - ok
11:33:31.0516 5532 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
11:33:31.0518 5532 usbohci - ok
11:33:31.0533 5532 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:33:31.0534 5532 usbprint - ok
11:33:31.0554 5532 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
11:33:31.0555 5532 usbscan - ok
11:33:31.0567 5532 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
11:33:31.0569 5532 USBSTOR - ok
11:33:31.0586 5532 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
11:33:31.0587 5532 usbuhci - ok
11:33:31.0604 5532 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
11:33:31.0609 5532 UxSms - ok
11:33:31.0617 5532 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
11:33:31.0619 5532 VaultSvc - ok
11:33:31.0634 5532 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
11:33:31.0636 5532 vdrvroot - ok
11:33:31.0653 5532 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
11:33:31.0661 5532 vds - ok
11:33:31.0680 5532 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:33:31.0682 5532 vga - ok
11:33:31.0704 5532 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
11:33:31.0706 5532 VgaSave - ok
11:33:31.0711 5532 VGPU - ok
11:33:31.0731 5532 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
11:33:31.0733 5532 vhdmp - ok
11:33:31.0750 5532 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
11:33:31.0752 5532 viaagp - ok
11:33:31.0767 5532 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
11:33:31.0769 5532 ViaC7 - ok
11:33:31.0796 5532 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
11:33:31.0797 5532 viaide - ok
11:33:31.0829 5532 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
11:33:31.0831 5532 vmbus - ok
11:33:31.0848 5532 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
11:33:31.0849 5532 VMBusHID - ok
11:33:31.0868 5532 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:33:31.0870 5532 volmgr - ok
11:33:31.0888 5532 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:33:31.0892 5532 volmgrx - ok
11:33:31.0906 5532 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:33:31.0909 5532 volsnap - ok
11:33:31.0936 5532 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
11:33:31.0938 5532 vsmraid - ok
11:33:31.0975 5532 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
11:33:31.0987 5532 VSS - ok
11:33:31.0999 5532 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
11:33:32.0000 5532 vwifibus - ok
11:33:32.0015 5532 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
11:33:32.0022 5532 W32Time - ok
11:33:32.0048 5532 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
11:33:32.0050 5532 WacomPen - ok
11:33:32.0083 5532 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
11:33:32.0085 5532 WANARP - ok
11:33:32.0090 5532 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:33:32.0091 5532 Wanarpv6 - ok
11:33:32.0142 5532 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
11:33:32.0168 5532 WatAdminSvc - ok
11:33:32.0208 5532 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
11:33:32.0233 5532 wbengine - ok
11:33:32.0244 5532 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
11:33:32.0249 5532 WbioSrvc - ok
11:33:32.0264 5532 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:33:32.0270 5532 wcncsvc - ok
11:33:32.0282 5532 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:33:32.0287 5532 WcsPlugInService - ok
11:33:32.0312 5532 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
11:33:32.0313 5532 Wd - ok
11:33:32.0372 5532 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:33:32.0378 5532 Wdf01000 - ok
11:33:32.0387 5532 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:33:32.0391 5532 WdiServiceHost - ok
11:33:32.0396 5532 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:33:32.0400 5532 WdiSystemHost - ok
11:33:32.0416 5532 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
11:33:32.0422 5532 WebClient - ok
11:33:32.0436 5532 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:33:32.0442 5532 Wecsvc - ok
11:33:32.0457 5532 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:33:32.0462 5532 wercplsupport - ok
11:33:32.0478 5532 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
11:33:32.0483 5532 WerSvc - ok
11:33:32.0493 5532 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
11:33:32.0496 5532 WfpLwf - ok
11:33:32.0515 5532 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
11:33:32.0517 5532 WIMMount - ok
11:33:32.0568 5532 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
11:33:32.0575 5532 WinDefend - ok
11:33:32.0586 5532 WinHttpAutoProxySvc - ok
11:33:32.0633 5532 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:33:32.0636 5532 Winmgmt - ok
11:33:32.0713 5532 [ 845AF1BA23C8D5E64DEF61BCC441604C ] WinRing0_1_2_0 C:\Program Files\Razer\Razer Game Booster\Driver\WinRing0.sys
11:33:32.0713 5532 WinRing0_1_2_0 - ok
11:33:32.0735 5532 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
11:33:32.0761 5532 WinRM - ok
11:33:32.0796 5532 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
11:33:32.0798 5532 WinUsb - ok
11:33:32.0822 5532 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
11:33:32.0833 5532 Wlansvc - ok
11:33:32.0886 5532 [ 5E7C103F8475C4289847D15E129C20F7 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:33:32.0912 5532 wlidsvc - ok
11:33:32.0942 5532 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
11:33:32.0942 5532 WmiAcpi - ok
11:33:32.0956 5532 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:33:32.0958 5532 wmiApSrv - ok
11:33:33.0000 5532 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
11:33:33.0017 5532 WMPNetworkSvc - ok
11:33:33.0033 5532 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:33:33.0038 5532 WPCSvc - ok
11:33:33.0057 5532 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:33:33.0062 5532 WPDBusEnum - ok
11:33:33.0090 5532 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:33:33.0091 5532 ws2ifsl - ok
11:33:33.0111 5532 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
11:33:33.0116 5532 wscsvc - ok
11:33:33.0121 5532 WSearch - ok
11:33:33.0201 5532 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
11:33:33.0236 5532 wuauserv - ok
11:33:33.0271 5532 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:33:33.0273 5532 WudfPf - ok
11:33:33.0296 5532 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:33:33.0298 5532 WUDFRd - ok
11:33:33.0323 5532 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:33:33.0328 5532 wudfsvc - ok
11:33:33.0353 5532 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
11:33:33.0359 5532 WwanSvc - ok
11:33:33.0374 5532 ================ Scan global ===============================
11:33:33.0403 5532 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
11:33:33.0423 5532 [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll
11:33:33.0433 5532 [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll
11:33:33.0453 5532 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
11:33:33.0480 5532 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
11:33:33.0486 5532 [Global] - ok
11:33:33.0486 5532 ================ Scan MBR ==================================
11:33:33.0499 5532 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:33:33.0803 5532 \Device\Harddisk0\DR0 - ok
11:33:33.0803 5532 ================ Scan VBR ==================================
11:33:33.0806 5532 [ 6B1960B466A770F7D2514C7E55221AB5 ] \Device\Harddisk0\DR0\Partition1
11:33:33.0807 5532 \Device\Harddisk0\DR0\Partition1 - ok
11:33:33.0819 5532 [ E3BDDE437AA66C412F7642DC50943494 ] \Device\Harddisk0\DR0\Partition2
11:33:33.0820 5532 \Device\Harddisk0\DR0\Partition2 - ok
11:33:33.0822 5532 ============================================================
11:33:33.0822 5532 Scan finished
11:33:33.0822 5532 ============================================================
11:33:33.0830 5316 Detected object count: 0
11:33:33.0830 5316 Actual detected object count: 0
11:33:43.0047 5232 Deinitialize success
Nahoru
Reklama
Top
DarkMoon97
Level 2.5
Level 2.5
Příspěvky: 377
Registrován: únor 13
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod DarkMoon97 » 02 kvě 2013 12:12

ComboFix 13-05-01.03 - Venca 02.05.2013 11:55:33.1.4 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.3199.2145 [GMT 2:00]
Spuštěný z: c:\users\Venca\Desktop\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\programdata\ADDICT-THING
c:\programdata\ADDICT-THING\background.html
c:\programdata\ADDICT-THING\clpgpipppnfekollidlmnoebpkekpkgm.crx
c:\programdata\ADDICT-THING\content.js
c:\programdata\ADDICT-THING\data\content.js
c:\programdata\ADDICT-THING\data\jsondb.js
c:\programdata\ADDICT-THING\jcpbbbapaiahneeinklkepfjemkkhhhj.crx
c:\programdata\ADDICT-THING\settings.ini
c:\programdata\ADDICT-THING\uninstall.exe
c:\programdata\Amazon.ico
c:\programdata\Bcool
c:\programdata\Bcool\aabfcohjjpnbnonbepknfopmhfdfbimf.crx
c:\programdata\Bcool\abpgecgdedbcohlghaajdhebikbjbkfg.crx
c:\programdata\Bcool\background.html
c:\programdata\Bcool\content.js
c:\programdata\Bcool\data\content.js
c:\programdata\Bcool\data\jsondb.js
c:\programdata\Bcool\npmhlnlnjeeccodeefililffbjjblfkl.crx
c:\programdata\Bcool\settings.ini
c:\programdata\MercadoLivre.ico
c:\programdata\Microsoft\Windows\Start Menu\Programs\ADDICT-THING
c:\programdata\Microsoft\Windows\Start Menu\Programs\ADDICT-THING\ADDICT-THING.lnk
c:\programdata\Microsoft\Windows\Start Menu\Programs\ADDICT-THING\Uninstall.lnk
c:\users\Venca\AppData\Local\assembly\tmp
c:\users\Venca\AppData\Roaming\its works.exe
c:\windows\system32\frapsvid.dll
c:\windows\system32\MSDCSC
c:\windows\system32\MSDCSC\Microsoftf.exe
c:\windows\system32\SET9E39.tmp
c:\windows\system32\SETA0BA.tmp
c:\windows\system32\SETA39D.tmp
c:\windows\system32\SETA72E.tmp
c:\windows\system32\SETB0C5.tmp
c:\windows\system32\SETB3B7.tmp
c:\windows\system32\SETB3E8.tmp
c:\windows\system32\SETB4D5.tmp
c:\windows\system32\tmp8C50.tmp
c:\windows\system32\tmp8C80.tmp
c:\windows\system32\tmpB953.tmp
c:\windows\system32\tmpBAAB.tmp
c:\windows\system32\update
c:\windows\system32\update\diablo121016.cl
c:\windows\system32\update\diakgcn121016.cl
c:\windows\system32\update\igfxupdate.exe
c:\windows\system32\update\libcurl-4.dll
c:\windows\system32\update\libeay32.dll
c:\windows\system32\update\libidn-11.dll
c:\windows\system32\update\libusb-1.0.dll
c:\windows\system32\update\phatk121016.cl
c:\windows\system32\update\phatk121016Redwoodv2w128l4.bin
c:\windows\system32\update\poclbm121016.cl
c:\windows\system32\update\pthreadGC2.dll
c:\windows\system32\update\ssleay32.dll
c:\windows\system32\update\zlib1.dll
c:\windows\system32\URTTemp
c:\windows\system32\URTTemp\regtlib.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-04-02 do 2013-05-02 )))))))))))))))))))))))))))))))
.
.
2013-05-02 10:04 . 2013-05-02 10:06 -------- d-----w- c:\users\Venca\AppData\Local\temp
2013-05-01 14:14 . 2013-05-01 14:14 -------- d-----w- c:\users\Venca\AppData\Roaming\TechSmith
2013-05-01 14:12 . 2013-05-01 14:12 -------- d-----w- c:\program files\QuickTime
2013-05-01 14:12 . 2013-05-01 14:12 -------- d-----w- c:\program files\Common Files\TechSmith Shared
2013-04-28 11:43 . 2013-04-28 11:43 -------- d-----w- c:\programdata\ATI
2013-04-28 11:43 . 2013-04-28 11:43 -------- d-----w- c:\program files\AMD AVT
2013-04-27 16:37 . 2013-04-27 16:37 -------- d-----w- c:\users\Venca\AppData\Roaming\Malwarebytes
2013-04-27 16:36 . 2013-04-27 16:36 -------- d-----w- c:\programdata\Malwarebytes
2013-04-27 16:36 . 2013-04-27 16:36 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-04-27 16:36 . 2013-04-04 12:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-04-27 14:00 . 2013-04-27 14:01 -------- d-----w- c:\program files\MSI Afterburner
2013-04-27 13:57 . 2013-04-27 13:57 -------- d-----w- c:\program files\SpeedFan
2013-04-27 13:52 . 2013-04-27 13:52 -------- d-----w- c:\program files\CPUID
2013-04-27 13:14 . 2013-04-27 13:14 388096 ----a-r- c:\users\Venca\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-04-27 13:14 . 2013-04-27 13:14 -------- d-----w- c:\program files\Trend Micro
2013-04-27 12:10 . 2013-04-27 12:11 -------- d-----w- c:\program files\CamStudio 2.7
2013-04-23 15:17 . 2013-04-23 15:17 -------- d-----w- C:\Fraps
2013-04-22 11:45 . 2013-04-22 11:45 -------- d-----w- c:\program files\Mijagi-MJ4.NL
2013-04-14 13:04 . 2013-04-14 13:08 -------- d-----w- c:\program files\GamePark2
2013-04-13 11:10 . 2013-04-20 17:01 -------- d-----w- c:\users\Venca\AppData\Roaming\vlc
2013-04-09 15:56 . 2013-04-09 15:56 -------- d-----w- c:\program files\Square Enix
2013-04-07 14:01 . 2013-04-07 14:01 -------- d-----w- c:\users\Venca\AppData\Local\SWTOR
2013-04-05 15:41 . 2013-04-05 15:41 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-04-05 15:41 . 2013-04-05 15:41 -------- d-----w- c:\program files\DAEMON Tools Lite
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-01 20:44 . 2013-01-11 18:20 139832 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2013-05-01 20:44 . 2013-01-11 18:13 281768 ----a-w- c:\windows\system32\PnkBstrB.exe
2013-05-01 20:44 . 2012-05-05 18:53 281768 ----a-w- c:\windows\system32\PnkBstrB.xtr
2013-05-01 18:40 . 2013-01-11 18:13 281768 ----a-w- c:\windows\system32\PnkBstrB.ex0
2013-05-01 15:40 . 2013-01-06 15:54 21840 ----atw- c:\windows\system32\SIntfNT.dll
2013-05-01 15:40 . 2013-01-06 15:54 17212 ----atw- c:\windows\system32\SIntf32.dll
2013-05-01 15:40 . 2013-01-06 15:54 12067 ----atw- c:\windows\system32\SIntf16.dll
2013-04-21 11:54 . 2013-01-11 18:13 76888 ----a-w- c:\windows\system32\PnkBstrA.exe
2013-04-21 11:48 . 2012-05-05 10:39 138056 ----a-w- c:\users\Venca\AppData\Roaming\PnkBstrK.sys
2013-03-29 02:37 . 2013-03-29 02:37 71704 ----a-w- c:\windows\system32\atimpc32.dll
2013-03-29 02:37 . 2013-03-29 02:37 71704 ----a-w- c:\windows\system32\amdpcom32.dll
2013-03-29 02:37 . 2010-02-10 13:10 118584 ----a-w- c:\windows\system32\atiuxpag.dll
2013-03-29 02:37 . 2013-02-16 06:35 92304 ----a-w- c:\windows\system32\atiu9pag.dll
2013-03-29 02:37 . 2010-02-10 14:09 970912 ----a-w- c:\windows\system32\aticfx32.dll
2013-03-29 02:36 . 2010-02-10 14:00 7233336 ----a-w- c:\windows\system32\atidxx32.dll
2013-03-29 02:36 . 2010-02-10 13:24 4450264 ----a-w- c:\windows\system32\atiumdva.dll
2013-03-29 02:36 . 2013-02-16 06:34 5944264 ----a-w- c:\windows\system32\atiumdag.dll
2013-03-29 02:33 . 2013-03-29 02:33 9986048 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2013-03-29 02:13 . 2013-03-29 02:13 180224 ----a-w- c:\windows\system32\clinfo.exe
2013-03-29 02:13 . 2013-03-29 02:13 798734 ----a-w- c:\windows\system32\amdocl_ld32.exe
2013-03-29 02:13 . 2013-03-29 02:13 995342 ----a-w- c:\windows\system32\amdocl_as32.exe
2013-03-29 02:13 . 2013-03-29 02:13 65536 ----a-w- c:\windows\system32\OpenVideo.dll
2013-03-29 02:12 . 2013-03-29 02:12 56320 ----a-w- c:\windows\system32\OVDecode.dll
2013-03-29 02:10 . 2013-02-02 14:42 23810560 ----a-w- c:\windows\system32\amdocl.dll
2013-03-29 02:09 . 2013-02-02 14:40 50176 ----a-w- c:\windows\system32\OpenCL.dll
2013-03-29 02:00 . 2013-03-29 02:00 62976 ----a-w- c:\windows\system32\coinst_12.104.dll
2013-03-29 01:57 . 2013-03-29 01:57 163840 ----a-w- c:\windows\system32\atiapfxx.exe
2013-03-29 01:55 . 2013-03-29 01:55 46080 ----a-w- c:\windows\system32\aticalrt.dll
2013-03-29 01:55 . 2013-03-29 01:55 44032 ----a-w- c:\windows\system32\aticalcl.dll
2013-03-29 01:51 . 2013-03-29 01:51 13703168 ----a-w- c:\windows\system32\aticaldd.dll
2013-03-29 01:48 . 2013-03-29 01:48 19870720 ----a-w- c:\windows\system32\atioglxx.dll
2013-03-29 01:35 . 2013-03-29 01:35 442368 ----a-w- c:\windows\system32\atidemgy.dll
2013-03-29 01:34 . 2013-03-29 01:34 492544 ----a-w- c:\windows\system32\atieclxx.exe
2013-03-29 01:34 . 2013-03-29 01:34 219136 ----a-w- c:\windows\system32\atiesrxx.exe
2013-03-29 01:32 . 2013-03-29 01:32 163840 ----a-w- c:\windows\system32\atitmmxx.dll
2013-03-29 01:32 . 2013-03-29 01:32 25600 ----a-w- c:\windows\system32\atimuixx.dll
2013-03-29 01:32 . 2013-03-29 01:32 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2013-03-29 01:10 . 2012-09-28 01:13 430080 ----a-w- c:\windows\system32\atiadlxx.dll
2013-03-29 01:10 . 2013-03-29 01:10 14848 ----a-w- c:\windows\system32\atiglpxx.dll
2013-03-29 01:09 . 2012-09-28 01:13 34816 ----a-w- c:\windows\system32\atigktxx.dll
2013-03-29 01:08 . 2013-03-29 01:08 463872 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2013-03-29 01:07 . 2013-03-29 01:07 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2013-03-13 10:41 . 2012-10-11 14:36 693976 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-03-13 10:41 . 2012-05-20 09:39 73432 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-03-06 23:33 . 2013-03-12 12:33 164736 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-03-06 23:33 . 2013-03-12 12:33 49248 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-03-06 23:33 . 2013-02-22 15:45 368176 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-03-06 23:33 . 2013-02-22 15:45 62376 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-03-06 23:33 . 2013-02-22 15:45 765736 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-03-06 23:33 . 2013-02-22 15:45 60656 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-03-06 23:33 . 2013-02-22 15:45 66336 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-03-06 23:33 . 2013-02-22 15:45 29816 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-03-06 23:32 . 2013-02-21 19:09 41664 ----a-w- c:\windows\avastSS.scr
2013-03-06 23:32 . 2013-02-22 15:44 228600 ----a-w- c:\windows\system32\aswBoot.exe
2013-02-14 11:41 . 2013-02-14 11:41 79872 ----a-w- c:\windows\system32\drivers\AtihdW73.sys
2013-02-14 11:40 . 2013-02-14 11:40 84480 ----a-w- c:\windows\system32\DelayAPO.dll
2013-02-08 00:45 . 2013-03-08 11:55 6954968 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{69F98CB7-6936-4EC6-A40C-08CE85A419FB}\mpengine.dll
2013-02-02 14:34 . 2013-02-02 14:34 4083200 ----a-w- c:\windows\system32\amdsc.dll
2013-02-01 18:53 . 2013-02-01 18:53 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-02-01 18:53 . 2012-05-05 11:33 859552 ----a-w- c:\windows\system32\npdeployJava1.dll
2013-02-01 18:53 . 2012-05-05 11:33 780192 ----a-w- c:\windows\system32\deployJava1.dll
2013-02-01 17:20 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2010-01-26 09:11 . 2012-05-25 13:16 444283 ----a-w- c:\program files\Common Files\WinPcapNmap.exe
2013-03-30 12:15 . 2013-02-06 14:32 263064 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{D5974A72-C81C-4DC3-BE77-A8A7BBC8864E}]
2012-09-09 11:59 427688 ----a-w- c:\program files\DAP\LinkVerifier.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-03-06 23:32 121968 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2013-04-16 14:10 576976 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-04-16 14:10 576976 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2013-04-16 14:10 576976 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2013-04-16 14:10 576976 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"="c:\users\Venca\AppData\Local\Akamai\netsession_win.exe" [2013-01-26 4480768]
"SmartRAM"="c:\program files\IObit\Advanced SystemCare 6\Suo10_SmartRAM.exe" [2013-01-15 547648]
"Pando Media Booster"="c:\program files\Pando Networks\Media Booster\PMB.exe" [2012-12-19 3093624]
"Dxtory Update Checker 2.0"="c:\program files\Dxtory Software\Dxtory2.0\UpdateChecker.exe" [2010-10-17 93696]
"cz.seznam.software.autoupdate"="c:\users\Venca\AppData\Roaming\Seznam.cz\szninstall.exe" [2012-09-13 1009288]
"cz.seznam.software.szndesktop"="c:\users\Venca\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" [2013-01-22 92152]
"Steam"="c:\program files\Steam\Steam.exe" [2013-04-19 1631144]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-03-14 3672640]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-11-19 9874024]
"NUSB3MON"="c:\program files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
"Monitor"="c:\windows\PixArt\PAC207\Monitor.exe" [2007-12-10 323584]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"PAC207_Monitor"="c:\windows\PixArt\PAC207\Monitor.exe" [2007-12-10 323584]
"Gaming Mouse Driver"="c:\program files\Gaming Mouse\Monitor.EXE" [2011-09-09 200704]
"LogMeIn Hamachi Ui"="c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe" [2012-12-10 2254768]
"VDownloader"="c:\program files\VDownloader\VDownloader.exe" [2012-12-20 879104]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-03-06 4767304]
"seznam-listicka-distribuce"="c:\program files\Seznam.cz\distribution\szninstall.exe" [2012-09-13 1009288]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2013-03-28 642656]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"="c:\users\Venca\AppData\Local\Akamai\netsession_win.exe" [2013-01-26 4480768]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
GamePark klient 2.lnk - c:\program files\GamePark2\gpcl.exe [2013-4-14 409088]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\d3dGearLoad.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\persistentroutes]
"173.245.61.58,255.255.255.255,10.0.0.32,1"=""
"62.75.206.182,255.255.255.255,10.0.0.32,1"=""
"83.125.22.190,255.255.255.255,10.0.0.32,1"=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
@="Service"
.
[HKLM\~\startupfolder\C:^Users^Venca^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Xfire.lnk]
backup=c:\windows\pss\Xfire.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\4StoryPrePatch]
2012-05-08 08:59 327680 ----a-w- c:\program files\Gameforge4D\4Story_CZ\PrePatch.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Aeria Ignite]
2012-09-10 18:08 1411224 ----a-w- c:\program files\Aeria Games\Ignite\aeriaignite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish]
2012-08-27 11:12 1121016 ----a-w- c:\program files\Clownfish\Clownfish.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2013-03-14 08:23 3672640 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
2011-07-28 23:08 1259376 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
2012-12-10 16:29 2254768 ----a-w- c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2012-11-09 10:27 17877168 ----a-r- c:\program files\Skype\Phone\Skype.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
2013-04-19 21:10 1631144 ----a-w- c:\program files\Steam\Steam.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2012-07-03 07:04 252848 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VDownloader]
2012-12-20 21:25 879104 ----a-w- c:\program files\VDownloader\VDownloader.exe
.
R2 Connectify;Connectify;c:\program files\Connectify\ConnectifyService.exe [x]
R2 PCSUService;PC Speed Up Service;c:\program files\Zrychleni Pocitace\PCSUService.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x]
R3 apf001;apf001;c:\aeriagames\Wolfteam\apf001.sys [x]
R3 aswVmm;aswVmm; [x]
R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files\Razer\Razer Game Booster\Driver\WinRing0.sys [x]
S0 aswRvrt;aswRvrt; [x]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 cnnctfy2;Connectify LightWeight Filter;c:\windows\system32\DRIVERS\cnnctfy2.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S2 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files\IObit\Advanced SystemCare 6\ASCService.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [x]
S2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;c:\program files\Hi-Rez Studios\HiPatchService.exe [x]
S2 IMFservice;IMF Service;c:\program files\IObit\IObit Malware Fighter\IMFsrv.exe [x]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [x]
S2 PanService;PandoraService;c:\program files\PANDORA.TV\PanService\PandoraService.exe [x]
S2 SearchIndexer;Search Indexer;c:\windows\system32\svchost.exe [x]
S2 UltiDev Cassini Web Server for ASP.NET 2.0;UltiDev Cassini Web Server for ASP.NET 2.0;c:\program files\UltiDev\Cassini Web Server for ASP.NET 2.0\UltiDevCassinWebServer2a.exe [x]
S3 amdiox86;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox86.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [x]
S3 PAC207;Trust 100K Series Webcam;c:\windows\system32\DRIVERS\PFC027.SYS [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc Mcx2Svc SensrSvc
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
SearchIndexer
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-04-12 18:52 1642448 ----a-w- c:\program files\Google\Chrome\Application\26.0.1410.64\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-05-02 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-11 10:41]
.
2013-05-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-05-05 09:01]
.
2013-05-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-05-05 09:01]
.
2013-05-02 c:\windows\Tasks\SpeedUpMyPC.job
- c:\program files\Uniblue\SpeedUpMyPC\spmonitor.exe [2013-03-24 09:23]
.
2013-05-02 c:\windows\Tasks\spmonitor.job
- c:\program files\Uniblue\SpeedUpMyPC\spmonitor.exe [2013-03-24 09:23]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/?clid=12454
mStart Page = hxxp://www.google.com
uInternet Settings,ProxyOverride = <local>
IE: &Download with &DAP - c:\program files\DAP\dapextie.htm
IE: &Verify with DAP - c:\program files\DAP\dapverify.htm
IE: Download &all with DAP - c:\program files\DAP\dapextie2.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: Search the Web - c:\program files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
TCP: DhcpNameServer = 10.0.0.138
Name-Space Handler: FTP\ZDA - {5BFA1DAF-5EDC-11D2-959E-00C00C02DA5E} - c:\program files\DAP\dapie.dll
Name-Space Handler: HTTP\ZDA - {5BFA1DAF-5EDC-11D2-959E-00C00C02DA5E} - c:\program files\DAP\dapie.dll
FF - ProfilePath - c:\users\Venca\AppData\Roaming\Mozilla\Firefox\Profiles\nbxdpa7n.default\
FF - prefs.js: browser.search.selectedEngine - Zboží.cz
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/?clid=12454
FF - prefs.js: keyword.URL - hxxp://search.seznam.cz/?sourceid=undefined&q=
FF - ExtSQL: 2013-03-04 10:48; {ea614400-e918-4741-9a97-7a972ff7c30b}; c:\users\Venca\AppData\Roaming\Mozilla\Firefox\Profiles\nbxdpa7n.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
FF - ExtSQL: !HIDDEN! 2012-05-29 11:57; smartwebprinting@hp.com; c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{5A54562D-5341-5400-76A7-7A786E7484D7} - (no file)
HKCU-Run-Microsoftf.exe - c:\windows\System32\MSDCSC\Microsoftf.exe
MSConfigStartUp-Advanced SystemCare 5 - c:\program files\IObit\Advanced SystemCare 5\ASCTray.exe
MSConfigStartUp-Optimizer Pro - c:\program files\Optimizer Pro\OptProLauncher.exe
AddRemove-ContinueToSave - c:\progra~2\INSTAL~1\CONTIN~1\Setup.exe
AddRemove-Optimizer Pro_is1 - c:\program files\Optimizer Pro\unins000.exe
AddRemove-{0E931A51-A183-4E66-8562-D82896E74C67} - c:\progra~2\INSTAL~1\{0E931~1\Setup.exe
AddRemove-{71277DC4-4217-462A-9FF4-62D7815B2C69} - c:\programdata\ADDICT-THING\uninstall.exe
AddRemove-{E751A6CE-DC3F-7A11-9A60-AB547BFCA751} - c:\progra~2\INSTAL~1\{ADFB0~1\Setup.exe
AddRemove-{F38ADCA4-AF7C-4C73-9021-6F1EA15D15EA} - c:\program files\InstallShield Installation Information\{F38ADCA4-AF7C-4C73-9021-6F1EA15D15EA}\Setup.exeUNINSTALL
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\atieclxx.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\system32\conhost.exe
c:\windows\system32\taskhost.exe
c:\program files\Gaming Mouse\OSD.exe
c:\program files\Gaming Mouse\Applets\CpuRam.exe
c:\program files\Gaming Mouse\Applets\EmailPOP3.EXE
c:\program files\Gaming Mouse\Applets\OSDSkype.exe
c:\program files\Gaming Mouse\Applets\OSDMSN.EXE
c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe
c:\windows\system32\PnkBstrA.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\users\Venca\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
c:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
c:\windows\system32\sppsvc.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
.
**************************************************************************
.
Celkový čas: 2013-05-02 12:11:18 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-05-02 10:11
.
Před spuštěním: Volných bajtů: 371 575 791 616
Po spuštění: Volných bajtů: 371 654 934 528
.
- - End Of File - - 48A6A7814920ADDE81364CD7763F8581
Nahoru
Uživatelský avatar
Žbeky
Moderátor
Guru Level 13
Guru Level 13
Příspěvky: 22288
Registrován: květen 08
Bydliště: Vsetín - Pardubice
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod Žbeky » 02 kvě 2013 19:01

Antivir máš mít při skenování vyplý.

Máš tam plno balastu jako IOBIT SmartRAM, Advanced system care, Zrychlení počítače a já nevím co ještě. Odinstaluj to, je to k ničemu

IP
173.245.61.58
62.75.206.182
83.125.22.190
znáš?

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::

Folder::
c:\users\Venca\AppData\Roaming\Seznam.cz
c:\program files\Skype\Updater
c:\program files\Google\Update

File::
c:\windows\system32\drivers\EagleXNt.sys
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\Tasks\SpeedUpMyPC.job
c:\windows\Tasks\spmonitor.job

Driver::
SkypeUpdate
EagleXNt
SearchIndexer

NetSvc::
SearchIndexer

RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
Obrázek

- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu


Toto otestuj na Virustotal
c:\windows\system32\SIntfNT.dll
c:\windows\system32\SIntf32.dll
c:\windows\system32\SIntf16.dll
c:\windows\System32\d3dGearLoad.dll
c:\windows\system32\svchost.exe

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/40 , nebo 1/40. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.
V SZ řeším jen záležitosti týkající se fóra. Na prosby a žádosti o technickou podporu nereaguji. Díky za pochopení.

HiJackThis + návod - HW Monitor - Jak označit příspěvek za vyřešený - Pravidla fóra
Nahoru
DarkMoon97
Level 2.5
Level 2.5
Příspěvky: 377
Registrován: únor 13
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod DarkMoon97 » 02 kvě 2013 22:48

Na antivir jsem zapomněl :oops:
Ty zbytečné programy jsem vymazal... .
Ty IP nepoznávám.. Co to znamená ?

ComboFix 13-05-01.03 - Venca 02.05.2013 22:21:37.2.4 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.3199.1638 [GMT 2:00]
Spuštěný z: c:\users\Venca\Desktop\HRY\ComboFix.exe
Použité ovládací přepínače :: c:\users\Venca\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\system32\drivers\EagleXNt.sys"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\Tasks\SpeedUpMyPC.job"
"c:\windows\Tasks\spmonitor.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Google\Update
c:\program files\Google\Update\1.3.21.135\GoogleCrashHandler.exe
c:\program files\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
c:\program files\Google\Update\1.3.21.135\GoogleUpdate.exe
c:\program files\Google\Update\1.3.21.135\GoogleUpdateBroker.exe
c:\program files\Google\Update\1.3.21.135\GoogleUpdateHelper.msi
c:\program files\Google\Update\1.3.21.135\GoogleUpdateOnDemand.exe
c:\program files\Google\Update\1.3.21.135\GoogleUpdateSetup.exe
c:\program files\Google\Update\1.3.21.135\goopdate.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_am.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_ar.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_bg.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_bn.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_ca.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_cs.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_da.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_de.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_el.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_en-GB.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_en.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_es-419.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_es.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_et.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_fa.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_fi.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_fil.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_fr.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_gu.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_hi.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_hr.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_hu.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_id.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_is.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_it.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_iw.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_ja.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_kn.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_ko.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_lt.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_lv.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_ml.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_mr.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_ms.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_nl.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_no.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_pl.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_pt-BR.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_pt-PT.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_ro.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_ru.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_sk.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_sl.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_sr.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_sv.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_sw.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_ta.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_te.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_th.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_tr.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_uk.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_ur.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_vi.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_zh-CN.dll
c:\program files\Google\Update\1.3.21.135\goopdateres_zh-TW.dll
c:\program files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
c:\program files\Google\Update\1.3.21.135\psmachine.dll
c:\program files\Google\Update\1.3.21.135\psuser.dll
c:\program files\Google\Update\Download\{3C122445-AECE-4309-90B7-85A6AEF42AC0}\0.0.0.0\gsync.msi
c:\program files\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.135\GoogleUpdateSetup.exe
c:\program files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\26.0.1410.64\26.0.1410.64_25.0.1364.172_chrome_updater.exe
c:\program files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\26.0.1410.64\26.0.1410.64_chrome_installer.exe
c:\program files\Google\Update\Download\{74AF07D8-FB8F-4D51-8AC7-927721D56EBB}\0.0.0.0\GoogleEarth-Win-Bundle-7.0.3.8542.exe
c:\program files\Google\Update\GoogleUpdate.exe
c:\program files\Skype\Updater
c:\program files\Skype\Updater\Updater.dll
c:\program files\Skype\Updater\Updater.exe
c:\users\Venca\AppData\Roaming\Seznam.cz
c:\users\Venca\AppData\Roaming\Seznam.cz\bin\ffkill.exe
c:\users\Venca\AppData\Roaming\Seznam.cz\bin\chromeUpdateInstallExt.dll
c:\users\Venca\AppData\Roaming\Seznam.cz\bin\chromeUpdatePref.exe
c:\users\Venca\AppData\Roaming\Seznam.cz\bin\libfoxcub.dll
c:\users\Venca\AppData\Roaming\Seznam.cz\bin\libfoxloader.dll
c:\users\Venca\AppData\Roaming\Seznam.cz\bin\lightspeed.dll
c:\users\Venca\AppData\Roaming\Seznam.cz\bin\msvcp100.dll
c:\users\Venca\AppData\Roaming\Seznam.cz\bin\msvcr100.dll
c:\users\Venca\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
c:\users\Venca\AppData\Roaming\Seznam.cz\bin\unlockInstance.dll
c:\users\Venca\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe
c:\users\Venca\AppData\Roaming\Seznam.cz\conf\libfoxcub\emailstates.conf
c:\users\Venca\AppData\Roaming\Seznam.cz\conf\libfoxcub\foxcub.conf
c:\users\Venca\AppData\Roaming\Seznam.cz\conf\libfoxcub\regcfg.conf
c:\users\Venca\AppData\Roaming\Seznam.cz\conf\libfoxcub\remote.conf
c:\users\Venca\AppData\Roaming\Seznam.cz\conf\szndesktop.conf
c:\users\Venca\AppData\Roaming\Seznam.cz\conf\szndesktop.d\chromepartner.conf
c:\users\Venca\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libfoxcub.conf
c:\users\Venca\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libfoxloader.conf
c:\users\Venca\AppData\Roaming\Seznam.cz\conf\szndesktop.d\unlockInstance.conf
c:\users\Venca\AppData\Roaming\Seznam.cz\conf\unlockInstance.conf
c:\users\Venca\AppData\Roaming\Seznam.cz\data\chrome\partner.conf
c:\users\Venca\AppData\Roaming\Seznam.cz\data\listickaconfig.webpak
c:\users\Venca\AppData\Roaming\Seznam.cz\data\listickanastaveni.webpak
c:\users\Venca\AppData\Roaming\Seznam.cz\data\speeddial.webpak
c:\users\Venca\AppData\Roaming\Seznam.cz\data\szndesktop.webpak
c:\users\Venca\AppData\Roaming\Seznam.cz\install.log
c:\users\Venca\AppData\Roaming\Seznam.cz\install\com.microsoft.msdn.msvcr100-10.0.40219.325-win32.zip
c:\users\Venca\AppData\Roaming\Seznam.cz\install\cz.seznam.software.autoupdate-1.0.8-win32.zip
c:\users\Venca\AppData\Roaming\Seznam.cz\install\cz.seznam.software.chromelisticka-1.5.4-win32.zip
c:\users\Venca\AppData\Roaming\Seznam.cz\install\cz.seznam.software.ielisticka3-3.0.59-win32.zip
c:\users\Venca\AppData\Roaming\Seznam.cz\install\cz.seznam.software.libfoxcub-3.0.59-win32.zip
c:\users\Venca\AppData\Roaming\Seznam.cz\install\cz.seznam.software.libfoxloader-3.0.0-win32.zip
c:\users\Venca\AppData\Roaming\Seznam.cz\install\cz.seznam.software.libszndesktop-2.0.20-win32.zip
c:\users\Venca\AppData\Roaming\Seznam.cz\install\cz.seznam.software.lightspeed-1210-12.10.7-win32.zip
c:\users\Venca\AppData\Roaming\Seznam.cz\install\cz.seznam.software.pp-1.0.2-win32.zip
c:\users\Venca\AppData\Roaming\Seznam.cz\install\cz.seznam.software.szndesktop-2.0.20-win32.zip
c:\users\Venca\AppData\Roaming\Seznam.cz\install\cz.seznam.software.szninstall-1.1.9-win32.zip
c:\users\Venca\AppData\Roaming\Seznam.cz\install\cz.seznam.software.sznsetup-1.1.18-win32.zip
c:\users\Venca\AppData\Roaming\Seznam.cz\install\packages.inf
c:\users\Venca\AppData\Roaming\Seznam.cz\install\szn-software-base-1.0.0-win32.zip
c:\users\Venca\AppData\Roaming\Seznam.cz\install\szn-software-fflisticka-2.5.13-win32.zip
c:\users\Venca\AppData\Roaming\Seznam.cz\install\szn-software-listicka-3.0.0-win32.zip
c:\users\Venca\AppData\Roaming\Seznam.cz\packages.inf
c:\users\Venca\AppData\Roaming\Seznam.cz\partner.conf
c:\users\Venca\AppData\Roaming\Seznam.cz\sources.inf
c:\users\Venca\AppData\Roaming\Seznam.cz\szninstall.exe
c:\users\Venca\AppData\Roaming\Seznam.cz\sznsetup.exe
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\com_microsoft_msdn_msvcr100_10_0_40219_325.install.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\com_microsoft_msdn_msvcr100_10_0_40219_325.uninstall.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_autoupdate_1_0_8.install.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_autoupdate_1_0_8.uninstall.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_chromelisticka_1_6_1.install.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_chromelisticka_1_6_1.uninstall.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_ielisticka3_3_0_59.install.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_ielisticka3_3_0_59.uninstall.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxcub_3_0_59.install.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxcub_3_0_59.uninstall.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_0_0.install.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_0_0.uninstall.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libszndesktop_2_0_20.install.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libszndesktop_2_0_20.uninstall.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_lightspeed_1210_12_10_7.install.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_lightspeed_1210_12_10_7.uninstall.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_pp_1_0_2.install.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_pp_1_0_2.uninstall.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_szndesktop_2_0_20.install.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_szndesktop_2_0_20.uninstall.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_szninstall_1_1_9.install.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_szninstall_1_1_9.uninstall.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_sznsetup_1_1_18.install.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_sznsetup_1_1_18.uninstall.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\szn_software_base_1_0_0.install.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\szn_software_base_1_0_0.uninstall.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\szn_software_fflisticka_2_5_14.install.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\szn_software_fflisticka_2_5_14.uninstall.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\szn_software_listicka_3_0_0.install.bat
c:\users\Venca\AppData\Roaming\Seznam.cz\uninstall\szn_software_listicka_3_0_0.uninstall.bat
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\system32\drivers\etc\hosts.ics
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_EAGLEXNT
-------\Service_EagleXNt
-------\Service_SearchIndexer
-------\Service_SkypeUpdate
-------\Service_gupdate
-------\Service_gupdatem
-------\Service_gupdate
-------\Service_gupdatem
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-04-02 do 2013-05-02 )))))))))))))))))))))))))))))))
.
.
2013-05-02 20:40 . 2013-05-02 20:40 -------- d-----w- c:\users\Venca\AppData\Local\temp
2013-05-02 20:40 . 2013-05-02 20:40 -------- d-----w- c:\users\Vedant\AppData\Local\temp
2013-05-02 20:40 . 2013-05-02 20:40 -------- d-----w- c:\users\hedev\AppData\Local\temp
2013-05-02 20:40 . 2013-05-02 20:40 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-05-02 20:09 . 2013-05-02 20:09 -------- d-----w- c:\users\Venca\AppData\Roaming\Apple Computer
2013-05-02 10:00 . 2013-05-02 13:56 60872 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{69F98CB7-6936-4EC6-A40C-08CE85A419FB}\offreg.dll
2013-05-01 14:14 . 2013-05-01 14:14 -------- d-----w- c:\users\Venca\AppData\Roaming\TechSmith
2013-05-01 14:12 . 2013-05-01 14:12 -------- d-----w- c:\program files\QuickTime
2013-05-01 14:12 . 2013-05-01 14:12 -------- d-----w- c:\program files\Common Files\TechSmith Shared
2013-04-28 11:43 . 2013-04-28 11:43 -------- d-----w- c:\programdata\ATI
2013-04-28 11:43 . 2013-04-28 11:43 -------- d-----w- c:\program files\AMD AVT
2013-04-27 16:37 . 2013-04-27 16:37 -------- d-----w- c:\users\Venca\AppData\Roaming\Malwarebytes
2013-04-27 16:36 . 2013-04-27 16:36 -------- d-----w- c:\programdata\Malwarebytes
2013-04-27 16:36 . 2013-04-27 16:36 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-04-27 16:36 . 2013-04-04 12:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-04-27 14:00 . 2013-04-27 14:01 -------- d-----w- c:\program files\MSI Afterburner
2013-04-27 13:57 . 2013-04-27 13:57 -------- d-----w- c:\program files\SpeedFan
2013-04-27 13:52 . 2013-04-27 13:52 -------- d-----w- c:\program files\CPUID
2013-04-27 13:14 . 2013-04-27 13:14 388096 ----a-r- c:\users\Venca\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-04-27 13:14 . 2013-04-27 13:14 -------- d-----w- c:\program files\Trend Micro
2013-04-27 12:10 . 2013-04-27 12:11 -------- d-----w- c:\program files\CamStudio 2.7
2013-04-23 15:17 . 2013-04-23 15:17 -------- d-----w- C:\Fraps
2013-04-22 11:45 . 2013-04-22 11:45 -------- d-----w- c:\program files\Mijagi-MJ4.NL
2013-04-14 13:04 . 2013-04-14 13:08 -------- d-----w- c:\program files\GamePark2
2013-04-13 11:10 . 2013-05-02 16:41 -------- d-----w- c:\users\Venca\AppData\Roaming\vlc
2013-04-09 15:56 . 2013-04-09 15:56 -------- d-----w- c:\program files\Square Enix
2013-04-07 14:01 . 2013-04-07 14:01 -------- d-----w- c:\users\Venca\AppData\Local\SWTOR
2013-04-05 15:41 . 2013-04-05 15:41 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-04-05 15:41 . 2013-04-05 15:41 -------- d-----w- c:\program files\DAEMON Tools Lite
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-02 18:32 . 2013-01-11 18:20 139832 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2013-05-02 18:31 . 2013-01-11 18:13 281768 ----a-w- c:\windows\system32\PnkBstrB.exe
2013-05-02 18:31 . 2012-05-05 18:53 281768 ----a-w- c:\windows\system32\PnkBstrB.xtr
2013-05-02 16:49 . 2013-01-11 18:13 281768 ----a-w- c:\windows\system32\PnkBstrB.ex0
2013-05-01 15:40 . 2013-01-06 15:54 21840 ----atw- c:\windows\system32\SIntfNT.dll
2013-05-01 15:40 . 2013-01-06 15:54 17212 ----atw- c:\windows\system32\SIntf32.dll
2013-05-01 15:40 . 2013-01-06 15:54 12067 ----atw- c:\windows\system32\SIntf16.dll
2013-04-21 11:54 . 2013-01-11 18:13 76888 ----a-w- c:\windows\system32\PnkBstrA.exe
2013-04-21 11:48 . 2012-05-05 10:39 138056 ----a-w- c:\users\Venca\AppData\Roaming\PnkBstrK.sys
2013-03-29 02:37 . 2013-03-29 02:37 71704 ----a-w- c:\windows\system32\atimpc32.dll
2013-03-29 02:37 . 2013-03-29 02:37 71704 ----a-w- c:\windows\system32\amdpcom32.dll
2013-03-29 02:37 . 2010-02-10 13:10 118584 ----a-w- c:\windows\system32\atiuxpag.dll
2013-03-29 02:37 . 2013-02-16 06:35 92304 ----a-w- c:\windows\system32\atiu9pag.dll
2013-03-29 02:37 . 2010-02-10 14:09 970912 ----a-w- c:\windows\system32\aticfx32.dll
2013-03-29 02:36 . 2010-02-10 14:00 7233336 ----a-w- c:\windows\system32\atidxx32.dll
2013-03-29 02:36 . 2010-02-10 13:24 4450264 ----a-w- c:\windows\system32\atiumdva.dll
2013-03-29 02:36 . 2013-02-16 06:34 5944264 ----a-w- c:\windows\system32\atiumdag.dll
2013-03-29 02:33 . 2013-03-29 02:33 9986048 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2013-03-29 02:13 . 2013-03-29 02:13 180224 ----a-w- c:\windows\system32\clinfo.exe
2013-03-29 02:13 . 2013-03-29 02:13 798734 ----a-w- c:\windows\system32\amdocl_ld32.exe
2013-03-29 02:13 . 2013-03-29 02:13 995342 ----a-w- c:\windows\system32\amdocl_as32.exe
2013-03-29 02:13 . 2013-03-29 02:13 65536 ----a-w- c:\windows\system32\OpenVideo.dll
2013-03-29 02:12 . 2013-03-29 02:12 56320 ----a-w- c:\windows\system32\OVDecode.dll
2013-03-29 02:10 . 2013-02-02 14:42 23810560 ----a-w- c:\windows\system32\amdocl.dll
2013-03-29 02:09 . 2013-02-02 14:40 50176 ----a-w- c:\windows\system32\OpenCL.dll
2013-03-29 02:00 . 2013-03-29 02:00 62976 ----a-w- c:\windows\system32\coinst_12.104.dll
2013-03-29 01:57 . 2013-03-29 01:57 163840 ----a-w- c:\windows\system32\atiapfxx.exe
2013-03-29 01:55 . 2013-03-29 01:55 46080 ----a-w- c:\windows\system32\aticalrt.dll
2013-03-29 01:55 . 2013-03-29 01:55 44032 ----a-w- c:\windows\system32\aticalcl.dll
2013-03-29 01:51 . 2013-03-29 01:51 13703168 ----a-w- c:\windows\system32\aticaldd.dll
2013-03-29 01:48 . 2013-03-29 01:48 19870720 ----a-w- c:\windows\system32\atioglxx.dll
2013-03-29 01:35 . 2013-03-29 01:35 442368 ----a-w- c:\windows\system32\atidemgy.dll
2013-03-29 01:34 . 2013-03-29 01:34 492544 ----a-w- c:\windows\system32\atieclxx.exe
2013-03-29 01:34 . 2013-03-29 01:34 219136 ----a-w- c:\windows\system32\atiesrxx.exe
2013-03-29 01:32 . 2013-03-29 01:32 163840 ----a-w- c:\windows\system32\atitmmxx.dll
2013-03-29 01:32 . 2013-03-29 01:32 25600 ----a-w- c:\windows\system32\atimuixx.dll
2013-03-29 01:32 . 2013-03-29 01:32 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2013-03-29 01:10 . 2012-09-28 01:13 430080 ----a-w- c:\windows\system32\atiadlxx.dll
2013-03-29 01:10 . 2013-03-29 01:10 14848 ----a-w- c:\windows\system32\atiglpxx.dll
2013-03-29 01:09 . 2012-09-28 01:13 34816 ----a-w- c:\windows\system32\atigktxx.dll
2013-03-29 01:08 . 2013-03-29 01:08 463872 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2013-03-29 01:07 . 2013-03-29 01:07 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2013-03-13 10:41 . 2012-10-11 14:36 693976 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-03-13 10:41 . 2012-05-20 09:39 73432 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-03-06 23:33 . 2013-03-12 12:33 164736 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-03-06 23:33 . 2013-03-12 12:33 49248 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-03-06 23:33 . 2013-02-22 15:45 368176 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-03-06 23:33 . 2013-02-22 15:45 62376 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-03-06 23:33 . 2013-02-22 15:45 765736 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-03-06 23:33 . 2013-02-22 15:45 60656 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-03-06 23:33 . 2013-02-22 15:45 66336 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-03-06 23:33 . 2013-02-22 15:45 29816 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-03-06 23:32 . 2013-02-21 19:09 41664 ----a-w- c:\windows\avastSS.scr
2013-03-06 23:32 . 2013-02-22 15:44 228600 ----a-w- c:\windows\system32\aswBoot.exe
2013-02-14 11:41 . 2013-02-14 11:41 79872 ----a-w- c:\windows\system32\drivers\AtihdW73.sys
2013-02-14 11:40 . 2013-02-14 11:40 84480 ----a-w- c:\windows\system32\DelayAPO.dll
2013-02-08 00:45 . 2013-03-08 11:55 6954968 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{69F98CB7-6936-4EC6-A40C-08CE85A419FB}\mpengine.dll
2013-02-02 14:34 . 2013-02-02 14:34 4083200 ----a-w- c:\windows\system32\amdsc.dll
2010-01-26 09:11 . 2012-05-25 13:16 444283 ----a-w- c:\program files\Common Files\WinPcapNmap.exe
2013-03-30 12:15 . 2013-02-06 14:32 263064 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{D5974A72-C81C-4DC3-BE77-A8A7BBC8864E}]
2012-09-09 11:59 427688 ----a-w- c:\program files\DAP\LinkVerifier.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-03-06 23:32 121968 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2013-04-16 14:10 576976 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-04-16 14:10 576976 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2013-04-16 14:10 576976 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2013-04-16 14:10 576976 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"="c:\users\Venca\AppData\Local\Akamai\netsession_win.exe" [2013-01-26 4480768]
"Pando Media Booster"="c:\program files\Pando Networks\Media Booster\PMB.exe" [2012-12-19 3093624]
"Dxtory Update Checker 2.0"="c:\program files\Dxtory Software\Dxtory2.0\UpdateChecker.exe" [2010-10-17 93696]
"Steam"="c:\program files\Steam\Steam.exe" [2013-04-19 1631144]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-03-14 3672640]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-11-19 9874024]
"NUSB3MON"="c:\program files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
"Monitor"="c:\windows\PixArt\PAC207\Monitor.exe" [2007-12-10 323584]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"PAC207_Monitor"="c:\windows\PixArt\PAC207\Monitor.exe" [2007-12-10 323584]
"Gaming Mouse Driver"="c:\program files\Gaming Mouse\Monitor.EXE" [2011-09-09 200704]
"LogMeIn Hamachi Ui"="c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe" [2012-12-10 2254768]
"VDownloader"="c:\program files\VDownloader\VDownloader.exe" [2012-12-20 879104]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-03-06 4767304]
"seznam-listicka-distribuce"="c:\program files\Seznam.cz\distribution\szninstall.exe" [2012-09-13 1009288]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2013-03-28 642656]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"="c:\users\Venca\AppData\Local\Akamai\netsession_win.exe" [2013-01-26 4480768]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
GamePark klient 2.lnk - c:\program files\GamePark2\gpcl.exe [2013-4-14 409088]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\d3dGearLoad.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\persistentroutes]
"173.245.61.58,255.255.255.255,10.0.0.32,1"=""
"62.75.206.182,255.255.255.255,10.0.0.32,1"=""
"83.125.22.190,255.255.255.255,10.0.0.32,1"=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKLM\~\startupfolder\C:^Users^Venca^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Xfire.lnk]
backup=c:\windows\pss\Xfire.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\4StoryPrePatch]
2012-05-08 08:59 327680 ----a-w- c:\program files\Gameforge4D\4Story_CZ\PrePatch.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Aeria Ignite]
2012-09-10 18:08 1411224 ----a-w- c:\program files\Aeria Games\Ignite\aeriaignite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish]
2012-08-27 11:12 1121016 ----a-w- c:\program files\Clownfish\Clownfish.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2013-03-14 08:23 3672640 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
2011-07-28 23:08 1259376 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
2012-12-10 16:29 2254768 ----a-w- c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2012-11-09 10:27 17877168 ----a-r- c:\program files\Skype\Phone\Skype.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
2013-04-19 21:10 1631144 ----a-w- c:\program files\Steam\Steam.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2012-07-03 07:04 252848 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VDownloader]
2012-12-20 21:25 879104 ----a-w- c:\program files\VDownloader\VDownloader.exe
.
R2 Connectify;Connectify;c:\program files\Connectify\ConnectifyService.exe [x]
R2 PCSUService;PC Speed Up Service;c:\program files\Zrychleni Pocitace\PCSUService.exe [x]
R3 apf001;apf001;c:\aeriagames\Wolfteam\apf001.sys [x]
R3 aswVmm;aswVmm; [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files\Razer\Razer Game Booster\Driver\WinRing0.sys [x]
S0 aswRvrt;aswRvrt; [x]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 cnnctfy2;Connectify LightWeight Filter;c:\windows\system32\DRIVERS\cnnctfy2.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [x]
S2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;c:\program files\Hi-Rez Studios\HiPatchService.exe [x]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [x]
S2 PanService;PandoraService;c:\program files\PANDORA.TV\PanService\PandoraService.exe [x]
S2 UltiDev Cassini Web Server for ASP.NET 2.0;UltiDev Cassini Web Server for ASP.NET 2.0;c:\program files\UltiDev\Cassini Web Server for ASP.NET 2.0\UltiDevCassinWebServer2a.exe [x]
S3 amdiox86;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox86.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [x]
S3 PAC207;Trust 100K Series Webcam;c:\windows\system32\DRIVERS\PFC027.SYS [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc Mcx2Svc SensrSvc
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-04-12 18:52 1642448 ----a-w- c:\program files\Google\Chrome\Application\26.0.1410.64\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-05-02 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-11 10:41]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/?clid=12454
mStart Page = hxxp://www.google.com
uInternet Settings,ProxyOverride = <local>
IE: &Download with &DAP - c:\program files\DAP\dapextie.htm
IE: &Verify with DAP - c:\program files\DAP\dapverify.htm
IE: Download &all with DAP - c:\program files\DAP\dapextie2.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: Search the Web - c:\program files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
Name-Space Handler: FTP\ZDA - {5BFA1DAF-5EDC-11D2-959E-00C00C02DA5E} - c:\program files\DAP\dapie.dll
Name-Space Handler: HTTP\ZDA - {5BFA1DAF-5EDC-11D2-959E-00C00C02DA5E} - c:\program files\DAP\dapie.dll
FF - ProfilePath - c:\users\Venca\AppData\Roaming\Mozilla\Firefox\Profiles\nbxdpa7n.default\
FF - prefs.js: browser.search.selectedEngine - Zboží.cz
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/?clid=12454
FF - prefs.js: keyword.URL - hxxp://search.seznam.cz/?sourceid=undefined&q=
FF - ExtSQL: 2013-03-04 10:48; {ea614400-e918-4741-9a97-7a972ff7c30b}; c:\users\Venca\AppData\Roaming\Mozilla\Firefox\Profiles\nbxdpa7n.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
FF - ExtSQL: !HIDDEN! 2012-05-29 11:57; smartwebprinting@hp.com; c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKCU-Run-SmartRAM - c:\program files\IObit\Advanced SystemCare 6\Suo10_SmartRAM.exe
HKCU-Run-cz.seznam.software.autoupdate - c:\users\Venca\AppData\Roaming\Seznam.cz\szninstall.exe
HKCU-Run-cz.seznam.software.szndesktop - c:\users\Venca\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe
AddRemove-SeznamInstall - c:\users\Venca\AppData\Roaming\Seznam.cz\szninstall.exe
.
.
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\atieclxx.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\conhost.exe
c:\program files\IObit\Smart Defrag 2\SmartDefrag.exe
c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe
c:\windows\system32\PnkBstrA.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\Gaming Mouse\OSD.exe
c:\program files\Gaming Mouse\Applets\CpuRam.exe
c:\program files\Gaming Mouse\Applets\EmailPOP3.EXE
c:\program files\Gaming Mouse\Applets\OSDSkype.exe
c:\program files\Gaming Mouse\Applets\OSDMSN.EXE
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
c:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
c:\windows\system32\sppsvc.exe
.
**************************************************************************
.
Celkový čas: 2013-05-02 22:46:36 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-05-02 20:46
ComboFix2.txt 2013-05-02 10:11
.
Před spuštěním: Volných bajtů: 370 406 469 632
Po spuštění: Volných bajtů: 370 135 912 448
.
- - End Of File - - 78AF80654C257505A34B57397BE0E535
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod jaro3 » 03 kvě 2013 10:22

"173.245.61.58,255.255.255.255,10.0.0.32,1"=""
"62.75.206.182,255.255.255.255,10.0.0.32,1"=""
"83.125.22.190,255.255.255.255,10.0.0.32,1"=""
Ty IP znáš všechny?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
DarkMoon97
Level 2.5
Level 2.5
Příspěvky: 377
Registrován: únor 13
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod DarkMoon97 » 03 kvě 2013 11:55

Ne, opravdu nepoznávám ani jednu.. Za chvilku dodám ten Virustotal.
Nahoru
DarkMoon97
Level 2.5
Level 2.5
Příspěvky: 377
Registrován: únor 13
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod DarkMoon97 » 03 kvě 2013 12:02

https://www.virustotal.com/cs/file/21d5 ... 367574992/

https://www.virustotal.com/cs/file/48f7 ... 367575085/

https://www.virustotal.com/cs/file/d263 ... 367575163/

https://www.virustotal.com/cs/file/4d02 ... 367575204/

https://www.virustotal.com/cs/file/1211 ... 367575268/

U posledního (svchost) mi to našlo 1/46, jinak všude 0/46
Nahoru
Uživatelský avatar
Žbeky
Moderátor
Guru Level 13
Guru Level 13
Příspěvky: 22288
Registrován: květen 08
Bydliště: Vsetín - Pardubice
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod Žbeky » 03 kvě 2013 23:27

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::

Registry::
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\persistentroutes]
"173.245.61.58,255.255.255.255,10.0.0.32,1"=-
"62.75.206.182,255.255.255.255,10.0.0.32,1"=-
"83.125.22.190,255.255.255.255,10.0.0.32,1"=-

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
Obrázek

- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu


Stáhni si aswMBR na svojí plochu.
Poklepej na aswMBR.exe. Klikni na Scan.
Po skenu klikni na aswASW.log a ulož si ho na plochu, vlož sem celý obsah toho logu.
V SZ řeším jen záležitosti týkající se fóra. Na prosby a žádosti o technickou podporu nereaguji. Díky za pochopení.

HiJackThis + návod - HW Monitor - Jak označit příspěvek za vyřešený - Pravidla fóra
Nahoru
DarkMoon97
Level 2.5
Level 2.5
Příspěvky: 377
Registrován: únor 13
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod DarkMoon97 » 06 kvě 2013 15:33

ComboFix 13-05-06.01 - Venca 06.05.2013 15:16:11.4.4 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.3199.2280 [GMT 2:00]
Spuštěný z: c:\users\Venca\Desktop\HRY\ComboFix.exe
Použité ovládací přepínače :: c:\users\Venca\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
Nakažená kopie c:\windows\system32\Services.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\erdnt\cache\services.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-04-06 do 2013-05-06 )))))))))))))))))))))))))))))))
.
.
2013-05-06 13:25 . 2013-05-06 13:25 -------- d-----w- c:\users\Vedant\AppData\Local\temp
2013-05-06 13:25 . 2013-05-06 13:25 -------- d-----w- c:\users\hedev\AppData\Local\temp
2013-05-06 13:25 . 2013-05-06 13:25 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-05-05 09:35 . 2013-04-18 13:28 64344 ----a-w- c:\windows\system32\drivers\RzFilter.sys
2013-05-05 09:35 . 2013-04-18 13:28 102232 ----a-w- c:\windows\system32\drivers\RzDxgk.sys
2013-05-05 09:34 . 2013-05-05 09:34 -------- d-----w- c:\windows\Razer Core
2013-05-04 11:59 . 2013-05-04 11:59 -------- d-----w- c:\users\Venca\AppData\Local\Adobe
2013-05-03 19:55 . 2013-05-03 19:55 -------- d-----w- c:\windows\Symbols
2013-05-02 20:40 . 2013-05-06 13:25 -------- d-----w- c:\users\Venca\AppData\Local\temp
2013-05-02 20:09 . 2013-05-02 20:09 -------- d-----w- c:\users\Venca\AppData\Roaming\Apple Computer
2013-05-01 14:14 . 2013-05-01 14:14 -------- d-----w- c:\users\Venca\AppData\Roaming\TechSmith
2013-05-01 14:12 . 2013-05-01 14:12 -------- d-----w- c:\program files\QuickTime
2013-05-01 14:12 . 2013-05-01 14:12 -------- d-----w- c:\program files\Common Files\TechSmith Shared
2013-04-28 11:43 . 2013-04-28 11:43 -------- d-----w- c:\programdata\ATI
2013-04-28 11:43 . 2013-04-28 11:43 -------- d-----w- c:\program files\AMD AVT
2013-04-27 16:37 . 2013-04-27 16:37 -------- d-----w- c:\users\Venca\AppData\Roaming\Malwarebytes
2013-04-27 16:36 . 2013-04-27 16:36 -------- d-----w- c:\programdata\Malwarebytes
2013-04-27 16:36 . 2013-04-27 16:36 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-04-27 16:36 . 2013-04-04 12:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-04-27 14:00 . 2013-04-27 14:01 -------- d-----w- c:\program files\MSI Afterburner
2013-04-27 13:57 . 2013-04-27 13:57 -------- d-----w- c:\program files\SpeedFan
2013-04-27 13:52 . 2013-04-27 13:52 -------- d-----w- c:\program files\CPUID
2013-04-27 13:14 . 2013-04-27 13:14 388096 ----a-r- c:\users\Venca\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-04-27 13:14 . 2013-04-27 13:14 -------- d-----w- c:\program files\Trend Micro
2013-04-27 12:10 . 2013-04-27 12:11 -------- d-----w- c:\program files\CamStudio 2.7
2013-04-23 15:17 . 2013-04-23 15:17 -------- d-----w- C:\Fraps
2013-04-22 11:45 . 2013-04-22 11:45 -------- d-----w- c:\program files\Mijagi-MJ4.NL
2013-04-14 13:04 . 2013-04-14 13:08 -------- d-----w- c:\program files\GamePark2
2013-04-13 11:10 . 2013-05-02 16:41 -------- d-----w- c:\users\Venca\AppData\Roaming\vlc
2013-04-09 15:56 . 2013-04-09 15:56 -------- d-----w- c:\program files\Square Enix
2013-04-07 14:01 . 2013-04-07 14:01 -------- d-----w- c:\users\Venca\AppData\Local\SWTOR
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-04 11:53 . 2012-10-11 14:36 691592 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-05-04 11:53 . 2012-05-20 09:39 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-05-03 10:50 . 2013-01-11 18:20 139832 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2013-05-03 10:49 . 2013-01-11 18:13 281768 ----a-w- c:\windows\system32\PnkBstrB.exe
2013-05-03 10:49 . 2012-05-05 18:53 281768 ----a-w- c:\windows\system32\PnkBstrB.xtr
2013-05-02 18:31 . 2013-01-11 18:13 281768 ----a-w- c:\windows\system32\PnkBstrB.ex0
2013-05-01 15:40 . 2013-01-06 15:54 21840 ----atw- c:\windows\system32\SIntfNT.dll
2013-05-01 15:40 . 2013-01-06 15:54 17212 ----atw- c:\windows\system32\SIntf32.dll
2013-05-01 15:40 . 2013-01-06 15:54 12067 ----atw- c:\windows\system32\SIntf16.dll
2013-04-21 11:54 . 2013-01-11 18:13 76888 ----a-w- c:\windows\system32\PnkBstrA.exe
2013-04-21 11:48 . 2012-05-05 10:39 138056 ----a-w- c:\users\Venca\AppData\Roaming\PnkBstrK.sys
2013-04-05 15:41 . 2013-04-05 15:41 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-03-29 02:37 . 2013-03-29 02:37 71704 ----a-w- c:\windows\system32\atimpc32.dll
2013-03-29 02:37 . 2013-03-29 02:37 71704 ----a-w- c:\windows\system32\amdpcom32.dll
2013-03-29 02:37 . 2010-02-10 13:10 118584 ----a-w- c:\windows\system32\atiuxpag.dll
2013-03-29 02:37 . 2013-02-16 06:35 92304 ----a-w- c:\windows\system32\atiu9pag.dll
2013-03-29 02:37 . 2010-02-10 14:09 970912 ----a-w- c:\windows\system32\aticfx32.dll
2013-03-29 02:36 . 2010-02-10 14:00 7233336 ----a-w- c:\windows\system32\atidxx32.dll
2013-03-29 02:36 . 2010-02-10 13:24 4450264 ----a-w- c:\windows\system32\atiumdva.dll
2013-03-29 02:36 . 2013-02-16 06:34 5944264 ----a-w- c:\windows\system32\atiumdag.dll
2013-03-29 02:33 . 2013-03-29 02:33 9986048 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2013-03-29 02:13 . 2013-03-29 02:13 180224 ----a-w- c:\windows\system32\clinfo.exe
2013-03-29 02:13 . 2013-03-29 02:13 798734 ----a-w- c:\windows\system32\amdocl_ld32.exe
2013-03-29 02:13 . 2013-03-29 02:13 995342 ----a-w- c:\windows\system32\amdocl_as32.exe
2013-03-29 02:13 . 2013-03-29 02:13 65536 ----a-w- c:\windows\system32\OpenVideo.dll
2013-03-29 02:12 . 2013-03-29 02:12 56320 ----a-w- c:\windows\system32\OVDecode.dll
2013-03-29 02:10 . 2013-02-02 14:42 23810560 ----a-w- c:\windows\system32\amdocl.dll
2013-03-29 02:09 . 2013-02-02 14:40 50176 ----a-w- c:\windows\system32\OpenCL.dll
2013-03-29 02:00 . 2013-03-29 02:00 62976 ----a-w- c:\windows\system32\coinst_12.104.dll
2013-03-29 01:57 . 2013-03-29 01:57 163840 ----a-w- c:\windows\system32\atiapfxx.exe
2013-03-29 01:55 . 2013-03-29 01:55 46080 ----a-w- c:\windows\system32\aticalrt.dll
2013-03-29 01:55 . 2013-03-29 01:55 44032 ----a-w- c:\windows\system32\aticalcl.dll
2013-03-29 01:51 . 2013-03-29 01:51 13703168 ----a-w- c:\windows\system32\aticaldd.dll
2013-03-29 01:48 . 2013-03-29 01:48 19870720 ----a-w- c:\windows\system32\atioglxx.dll
2013-03-29 01:35 . 2013-03-29 01:35 442368 ----a-w- c:\windows\system32\atidemgy.dll
2013-03-29 01:34 . 2013-03-29 01:34 492544 ----a-w- c:\windows\system32\atieclxx.exe
2013-03-29 01:34 . 2013-03-29 01:34 219136 ----a-w- c:\windows\system32\atiesrxx.exe
2013-03-29 01:32 . 2013-03-29 01:32 163840 ----a-w- c:\windows\system32\atitmmxx.dll
2013-03-29 01:32 . 2013-03-29 01:32 25600 ----a-w- c:\windows\system32\atimuixx.dll
2013-03-29 01:32 . 2013-03-29 01:32 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2013-03-29 01:10 . 2012-09-28 01:13 430080 ----a-w- c:\windows\system32\atiadlxx.dll
2013-03-29 01:10 . 2013-03-29 01:10 14848 ----a-w- c:\windows\system32\atiglpxx.dll
2013-03-29 01:09 . 2012-09-28 01:13 34816 ----a-w- c:\windows\system32\atigktxx.dll
2013-03-29 01:08 . 2013-03-29 01:08 463872 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2013-03-29 01:07 . 2013-03-29 01:07 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2013-03-06 23:33 . 2013-03-12 12:33 164736 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-03-06 23:33 . 2013-03-12 12:33 49248 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-03-06 23:33 . 2013-02-22 15:45 368176 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-03-06 23:33 . 2013-02-22 15:45 62376 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-03-06 23:33 . 2013-02-22 15:45 765736 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-03-06 23:33 . 2013-02-22 15:45 60656 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-03-06 23:33 . 2013-02-22 15:45 66336 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-03-06 23:33 . 2013-02-22 15:45 29816 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-03-06 23:32 . 2013-02-21 19:09 41664 ----a-w- c:\windows\avastSS.scr
2013-03-06 23:32 . 2013-02-22 15:44 228600 ----a-w- c:\windows\system32\aswBoot.exe
2013-02-14 11:41 . 2013-02-14 11:41 79872 ----a-w- c:\windows\system32\drivers\AtihdW73.sys
2013-02-14 11:40 . 2013-02-14 11:40 84480 ----a-w- c:\windows\system32\DelayAPO.dll
2013-02-08 00:45 . 2013-03-08 11:55 6954968 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{69F98CB7-6936-4EC6-A40C-08CE85A419FB}\mpengine.dll
2010-01-26 09:11 . 2012-05-25 13:16 444283 ----a-w- c:\program files\Common Files\WinPcapNmap.exe
2013-03-30 12:15 . 2013-02-06 14:32 263064 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{D5974A72-C81C-4DC3-BE77-A8A7BBC8864E}]
2012-09-09 11:59 427688 ----a-w- c:\program files\DAP\LinkVerifier.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-03-06 23:32 121968 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2013-04-16 14:10 576976 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-04-16 14:10 576976 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2013-04-16 14:10 576976 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2013-04-16 14:10 576976 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"="c:\users\Venca\AppData\Local\Akamai\netsession_win.exe" [2013-01-26 4480768]
"Pando Media Booster"="c:\program files\Pando Networks\Media Booster\PMB.exe" [2012-12-19 3093624]
"Dxtory Update Checker 2.0"="c:\program files\Dxtory Software\Dxtory2.0\UpdateChecker.exe" [2010-10-17 93696]
"Steam"="c:\program files\Steam\Steam.exe" [2013-04-19 1631144]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-03-14 3672640]
"Razer Comms"="c:\program files\Razer\Core\RazerCore.exe" [2013-04-22 977112]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-11-19 9874024]
"NUSB3MON"="c:\program files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
"Monitor"="c:\windows\PixArt\PAC207\Monitor.exe" [2007-12-10 323584]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"PAC207_Monitor"="c:\windows\PixArt\PAC207\Monitor.exe" [2007-12-10 323584]
"Gaming Mouse Driver"="c:\program files\Gaming Mouse\Monitor.EXE" [2011-09-09 200704]
"LogMeIn Hamachi Ui"="c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe" [2012-12-10 2254768]
"VDownloader"="c:\program files\VDownloader\VDownloader.exe" [2012-12-20 879104]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-03-06 4767304]
"seznam-listicka-distribuce"="c:\program files\Seznam.cz\distribution\szninstall.exe" [2012-09-13 1009288]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2013-03-28 642656]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"="c:\users\Venca\AppData\Local\Akamai\netsession_win.exe" [2013-01-26 4480768]
.
c:\users\Venca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
GamePark klient 2.lnk - c:\program files\GamePark2\gpcl.exe [2013-4-14 409088]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\d3dGearLoad.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKLM\~\startupfolder\C:^Users^Venca^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Xfire.lnk]
backup=c:\windows\pss\Xfire.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\4StoryPrePatch]
2012-05-08 08:59 327680 ----a-w- c:\program files\Gameforge4D\4Story_CZ\PrePatch.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Aeria Ignite]
2012-09-10 18:08 1411224 ----a-w- c:\program files\Aeria Games\Ignite\aeriaignite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish]
2012-08-27 11:12 1121016 ----a-w- c:\program files\Clownfish\Clownfish.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2013-03-14 08:23 3672640 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
2011-07-28 23:08 1259376 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
2012-12-10 16:29 2254768 ----a-w- c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2012-11-09 10:27 17877168 ----a-r- c:\program files\Skype\Phone\Skype.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
2013-04-19 21:10 1631144 ----a-w- c:\program files\Steam\Steam.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2012-07-03 07:04 252848 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VDownloader]
2012-12-20 21:25 879104 ----a-w- c:\program files\VDownloader\VDownloader.exe
.
R2 Connectify;Connectify;c:\program files\Connectify\ConnectifyService.exe [x]
R2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;c:\program files\Hi-Rez Studios\HiPatchService.exe [x]
R2 PCSUService;PC Speed Up Service;c:\program files\Zrychleni Pocitace\PCSUService.exe [x]
R3 apf001;apf001;c:\aeriagames\Wolfteam\apf001.sys [x]
R3 aswVmm;aswVmm; [x]
R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files\Razer\Razer Game Booster\Driver\WinRing0.sys [x]
S0 aswRvrt;aswRvrt; [x]
S0 RzFilter;RzFilter;c:\windows\system32\drivers\RzFilter.sys [x]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 cnnctfy2;Connectify LightWeight Filter;c:\windows\system32\DRIVERS\cnnctfy2.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [x]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [x]
S2 PanService;PandoraService;c:\program files\PANDORA.TV\PanService\PandoraService.exe [x]
S2 RzOvlMon;Razer Overlay Subsystem Emergency Service;c:\program files\Razer\Core\rzovlmon.exe [x]
S2 UltiDev Cassini Web Server for ASP.NET 2.0;UltiDev Cassini Web Server for ASP.NET 2.0;c:\program files\UltiDev\Cassini Web Server for ASP.NET 2.0\UltiDevCassinWebServer2a.exe [x]
S3 amdiox86;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox86.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [x]
S3 PAC207;Trust 100K Series Webcam;c:\windows\system32\DRIVERS\PFC027.SYS [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [x]
S3 RzDxgk;RzDxgk;c:\windows\system32\drivers\RzDxgk.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc Mcx2Svc SensrSvc
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-04-12 18:52 1642448 ----a-w- c:\program files\Google\Chrome\Application\26.0.1410.64\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-05-06 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-11 11:53]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/?clid=12454
mStart Page = hxxp://www.google.com
uInternet Settings,ProxyOverride = <local>
IE: &Download with &DAP - c:\program files\DAP\dapextie.htm
IE: &Verify with DAP - c:\program files\DAP\dapverify.htm
IE: Download &all with DAP - c:\program files\DAP\dapextie2.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: Search the Web - c:\program files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: DhcpNameServer = 10.0.0.138
Name-Space Handler: FTP\ZDA - {5BFA1DAF-5EDC-11D2-959E-00C00C02DA5E} - c:\program files\DAP\dapie.dll
Name-Space Handler: HTTP\ZDA - {5BFA1DAF-5EDC-11D2-959E-00C00C02DA5E} - c:\program files\DAP\dapie.dll
FF - ProfilePath - c:\users\Venca\AppData\Roaming\Mozilla\Firefox\Profiles\nbxdpa7n.default\
FF - prefs.js: browser.search.selectedEngine - Zboží.cz
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/?clid=12454
FF - prefs.js: keyword.URL - hxxp://search.seznam.cz/?sourceid=undefined&q=
FF - ExtSQL: !HIDDEN! 2012-05-29 11:57; smartwebprinting@hp.com; c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\atieclxx.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\system32\conhost.exe
c:\windows\system32\taskhost.exe
c:\program files\IObit\Smart Defrag 2\SmartDefrag.exe
c:\program files\Gaming Mouse\OSD.exe
c:\program files\Gaming Mouse\Applets\CpuRam.exe
c:\program files\Gaming Mouse\Applets\EmailPOP3.EXE
c:\program files\Gaming Mouse\Applets\OSDSkype.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\Gaming Mouse\Applets\OSDMSN.EXE
c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe
c:\windows\system32\PnkBstrA.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\sppsvc.exe
c:\windows\system32\wbem\WmiApSrv.exe
.
**************************************************************************
.
Celkový čas: 2013-05-06 15:32:48 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-05-06 13:32
ComboFix2.txt 2013-05-02 20:46
ComboFix3.txt 2013-05-02 10:11
.
Před spuštěním: Volných bajtů: 390 666 780 672
Po spuštění: Volných bajtů: 390 527 602 688
.
- - End Of File - - 10C7F0E99AA18AE9D2AB54D06DFA9A75
Nahoru
DarkMoon97
Level 2.5
Level 2.5
Příspěvky: 377
Registrován: únor 13
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod DarkMoon97 » 06 kvě 2013 17:10

aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-05-06 15:35:46
-----------------------------
15:35:46.145 OS Version: Windows 6.1.7601 Service Pack 1
15:35:46.145 Number of processors: 4 586 0x503
15:35:46.148 ComputerName: VENCA-PC UserName: Venca
15:35:49.882 Initialize success
15:35:50.248 AVAST engine defs: 13050600
15:35:58.831 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
15:35:58.833 Disk 0 Vendor: ST31000528AS CC46 Size: 953869MB BusType: 3
15:35:58.871 Disk 0 MBR read successfully
15:35:58.873 Disk 0 MBR scan
15:35:58.948 Disk 0 Windows 7 default MBR code
15:35:58.971 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
15:35:59.036 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 953767 MB offset 206848
15:35:59.046 Disk 0 scanning sectors +1953521664
15:35:59.194 Disk 0 scanning C:\Windows\system32\drivers
15:36:09.556 Service scanning
15:36:29.062 Modules scanning
15:36:45.251 Disk 0 trace - called modules:
15:36:45.266 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll >>UNKNOWN [0x9da4f1f8]<<
15:36:45.272 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x9e8eb648]
15:36:45.277 3 CLASSPNP.SYS[a4cf759e] -> nt!IofCallDriver -> [0x9da17918]
15:36:45.281 5 ACPI.sys[a45203d4] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x9da9d610]
15:36:45.288 \Driver\atapi[0x9e780db8] -> IRP_MJ_CREATE -> 0x9da4f1f8
15:36:48.771 AVAST engine scan C:\Windows
15:36:55.756 AVAST engine scan C:\Windows\system32
15:39:38.070 AVAST engine scan C:\Windows\system32\drivers
15:39:54.086 AVAST engine scan C:\Users\Venca
16:02:02.413 Disk 0 MBR has been saved successfully to "C:\Users\Venca\Desktop\MBR.dat"
16:02:02.414 The log file has been saved successfully to "C:\Users\Venca\Desktop\aswMBR.txt"
16:34:44.908 AVAST engine scan C:\ProgramData
16:57:02.872 Scan finished successfully
17:10:06.327 Disk 0 MBR has been saved successfully to "C:\Users\Venca\Desktop\MBR.dat"
17:10:06.390 The log file has been saved successfully to "C:\Users\Venca\Desktop\aswMBR.txt"
17:10:21.891 Disk 0 MBR has been saved successfully to "C:\Users\Venca\Desktop\MBR.dat"
17:10:21.896 The log file has been saved successfully to "C:\Users\Venca\Desktop\1.txt"
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod jaro3 » 07 kvě 2013 10:18

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\persistentroutes]
"173.245.61.58,255.255.255.255,10.0.0.32,1"=""
"62.75.206.182,255.255.255.255,10.0.0.32,1"=""
"83.125.22.190,255.255.255.255,10.0.0.32,1"=""

Hostname: cf-173-245-61-58.cloudflare.com

Posizione dell'IP 173.245.61.58:
San Francisco, (United States)---to asi nebyla Tvoje IP....

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

Vlož nový log z HJT.
Jsou nějaké problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
DarkMoon97
Level 2.5
Level 2.5
Příspěvky: 377
Registrován: únor 13
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu Logu

Příspěvekod DarkMoon97 » 08 kvě 2013 12:16

Problémy už žádné nejsou (BSOD se už dlouho neobjevila :smile: ) Jinak ty IP... . To se někdo napojil na můj PC z Ameriky? :wtf: Dá se tomu nějak vyvarovat?
A tady je ten HJT log :
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:12:43, on 8.5.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16464)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Windows\PixArt\PAC207\Monitor.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Gaming Mouse\Monitor.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\Venca\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\Pando Networks\Media Booster\PMB.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Users\Venca\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\Gaming Mouse\OSD.exe
C:\Program Files\Gaming Mouse\Applets\CpuRam.exe
C:\Program Files\Gaming Mouse\Applets\EmailPOP3.EXE
C:\Program Files\Gaming Mouse\Applets\OSDSkype.exe
C:\Program Files\Gaming Mouse\Applets\OSDMSN.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
C:\Windows\system32\DllHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=12454
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: LinkVerifierBHO - {D5974A72-C81C-4DC3-BE77-A8A7BBC8864E} - C:\Program Files\DAP\LinkVerifier.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [Monitor] C:\Windows\PixArt\PAC207\Monitor.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [PAC207_Monitor] C:\Windows\PixArt\PAC207\Monitor.exe
O4 - HKLM\..\Run: [Gaming Mouse Driver] "C:\Program Files\Gaming Mouse\Monitor.EXE"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [VDownloader] "C:\Program Files\VDownloader\VDownloader.exe" /silent
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Venca\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe
O4 - HKCU\..\Run: [Dxtory Update Checker 2.0] C:\Program Files\Dxtory Software\Dxtory2.0\UpdateChecker.exe
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Razer Comms] C:\Program Files\Razer\Core\RazerCore.exe /ChatApplet
O4 - HKUS\S-1-5-18\..\Run: [Akamai NetSession Interface] "C:\Users\Venca\AppData\Local\Akamai\netsession_win.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Akamai NetSession Interface] "C:\Users\Venca\AppData\Local\Akamai\netsession_win.exe" (User 'Default user')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: GamePark klient 2.lnk = C:\Program Files\GamePark2\gpcl.exe
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: &Verify with DAP - C:\Program Files\DAP\dapverify.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\Windows\System32\d3dGearLoad.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Connectify - Unknown owner - C:\Program Files\Connectify\ConnectifyService.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - C:\Program Files\Hi-Rez Studios\HiPatchService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Razer Overlay Subsystem Emergency Service (RzOvlMon) - Razer - C:\Program Files\Razer\Core\rzovlmon.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: UltiDev Cassini Web Server for ASP.NET 2.0 - UltiDev LLC - C:\Program Files\UltiDev\Cassini Web Server for ASP.NET 2.0\UltiDevCassinWebServer2a.exe

--
End of file - 9411 bytes
Nahoru
Odpovědět

Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 67 hostů