Prosím o kontrolu logu, děkuji

Jajaj3 · Příspěvekod **Jajaj3** » 18 led 2015 18:10

ComboFix 15-01-18.01 - Matic11 18.01.2015 18:01:16.1.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1977.1490 [GMT 1:00]
Spuštěný z: c:\documents and settings\Matic11\Plocha\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\$msi31uninstall_kb893803v2$
c:\windows\$msi31uninstall_kb893803v2$\msi.dll
c:\windows\$msi31uninstall_kb893803v2$\msiexec.exe
c:\windows\$msi31uninstall_kb893803v2$\msihnd.dll
c:\windows\$msi31uninstall_kb893803v2$\msimsg.dll
c:\windows\$msi31uninstall_kb893803v2$\msisip.dll
c:\windows\$msi31uninstall_kb893803v2$\reg00013
c:\windows\$msi31uninstall_kb893803v2$\reg00014
c:\windows\$msi31uninstall_kb893803v2$\reg00015
c:\windows\$msi31uninstall_kb893803v2$\reg00016
c:\windows\$msi31uninstall_kb893803v2$\reg00017
c:\windows\$msi31uninstall_kb893803v2$\reg00018
c:\windows\$msi31uninstall_kb893803v2$\reg00019
c:\windows\$msi31uninstall_kb893803v2$\reg00020
c:\windows\$msi31uninstall_kb893803v2$\reg00021
c:\windows\$msi31uninstall_kb893803v2$\reg00022
c:\windows\$msi31uninstall_kb893803v2$\reg00023
c:\windows\$msi31uninstall_kb893803v2$\reg00024
c:\windows\$msi31uninstall_kb893803v2$\reg00025
c:\windows\$msi31uninstall_kb893803v2$\reg00026
c:\windows\$msi31uninstall_kb893803v2$\reg00027
c:\windows\$msi31uninstall_kb893803v2$\reg00028
c:\windows\$msi31uninstall_kb893803v2$\reg00029
c:\windows\$msi31uninstall_kb893803v2$\reg00030
c:\windows\$msi31uninstall_kb893803v2$\reg00031
c:\windows\$msi31uninstall_kb893803v2$\reg00032
c:\windows\$msi31uninstall_kb893803v2$\reg00033
c:\windows\$msi31uninstall_kb893803v2$\reg00034
c:\windows\$msi31uninstall_kb893803v2$\reg00035
c:\windows\$msi31uninstall_kb893803v2$\reg00036
c:\windows\$msi31uninstall_kb893803v2$\reg00037
c:\windows\$msi31uninstall_kb893803v2$\reg00038
c:\windows\$msi31uninstall_kb893803v2$\reg00039
c:\windows\$msi31uninstall_kb893803v2$\reg00040
c:\windows\$msi31uninstall_kb893803v2$\reg00041
c:\windows\$msi31uninstall_kb893803v2$\reg00042
c:\windows\$msi31uninstall_kb893803v2$\reg00043
c:\windows\$msi31uninstall_kb893803v2$\reg00044
c:\windows\$msi31uninstall_kb893803v2$\reg00045
c:\windows\$msi31uninstall_kb893803v2$\reg00046
c:\windows\$msi31uninstall_kb893803v2$\reg00047
c:\windows\$msi31uninstall_kb893803v2$\reg00048
c:\windows\$msi31uninstall_kb893803v2$\reg00051
c:\windows\$msi31uninstall_kb893803v2$\reg00052
c:\windows\$msi31uninstall_kb893803v2$\reg00053
c:\windows\$msi31uninstall_kb893803v2$\reg00054
c:\windows\$msi31uninstall_kb893803v2$\reg00055
c:\windows\$msi31uninstall_kb893803v2$\reg00056
c:\windows\$msi31uninstall_kb893803v2$\reg00057
c:\windows\$msi31uninstall_kb893803v2$\reg00058
c:\windows\$msi31uninstall_kb893803v2$\reg00059
c:\windows\$msi31uninstall_kb893803v2$\reg00060
c:\windows\$msi31uninstall_kb893803v2$\reg00061
c:\windows\$msi31uninstall_kb893803v2$\reg00062
c:\windows\$msi31uninstall_kb893803v2$\reg00063
c:\windows\$msi31uninstall_kb893803v2$\reg00064
c:\windows\$msi31uninstall_kb893803v2$\reg00065
c:\windows\$msi31uninstall_kb893803v2$\reg00066
c:\windows\$msi31uninstall_kb893803v2$\reg00067
c:\windows\$msi31uninstall_kb893803v2$\reg00068
c:\windows\$msi31uninstall_kb893803v2$\reg00069
c:\windows\$msi31uninstall_kb893803v2$\reg00070
c:\windows\$msi31uninstall_kb893803v2$\reg00071
c:\windows\$msi31uninstall_kb893803v2$\reg00072
c:\windows\$msi31uninstall_kb893803v2$\reg00073
c:\windows\$msi31uninstall_kb893803v2$\reg00074
c:\windows\$msi31uninstall_kb893803v2$\reg00075
c:\windows\$msi31uninstall_kb893803v2$\reg00076
c:\windows\$msi31uninstall_kb893803v2$\reg00077
c:\windows\$msi31uninstall_kb893803v2$\reg00078
c:\windows\$msi31uninstall_kb893803v2$\reg00079
c:\windows\$msi31uninstall_kb893803v2$\reg00080
c:\windows\$msi31uninstall_kb893803v2$\reg00081
c:\windows\$msi31uninstall_kb893803v2$\reg00082
c:\windows\$msi31uninstall_kb893803v2$\reg00083
c:\windows\$msi31uninstall_kb893803v2$\reg00084
c:\windows\$msi31uninstall_kb893803v2$\reg00085
c:\windows\$msi31uninstall_kb893803v2$\reg00086
c:\windows\$msi31uninstall_kb893803v2$\reg00087
c:\windows\$msi31uninstall_kb893803v2$\reg00088
c:\windows\$msi31uninstall_kb893803v2$\reg00089
c:\windows\$msi31uninstall_kb893803v2$\reg00090
c:\windows\$msi31uninstall_kb893803v2$\reg00091
c:\windows\$msi31uninstall_kb893803v2$\reg00092
c:\windows\$msi31uninstall_kb893803v2$\reg00093
c:\windows\$msi31uninstall_kb893803v2$\reg00094
c:\windows\$msi31uninstall_kb893803v2$\reg00095
c:\windows\$msi31uninstall_kb893803v2$\reg00096
c:\windows\$msi31uninstall_kb893803v2$\reg00097
c:\windows\$msi31uninstall_kb893803v2$\reg00098
c:\windows\$msi31uninstall_kb893803v2$\reg00099
c:\windows\$msi31uninstall_kb893803v2$\reg00100
c:\windows\$msi31uninstall_kb893803v2$\reg00101
c:\windows\$msi31uninstall_kb893803v2$\reg00102
c:\windows\$msi31uninstall_kb893803v2$\reg00103
c:\windows\$msi31uninstall_kb893803v2$\reg00104
c:\windows\$msi31uninstall_kb893803v2$\reg00105
c:\windows\$msi31uninstall_kb893803v2$\reg00106
c:\windows\$msi31uninstall_kb893803v2$\reg00107
c:\windows\$msi31uninstall_kb893803v2$\reg00108
c:\windows\$msi31uninstall_kb893803v2$\reg00109
c:\windows\$msi31uninstall_kb893803v2$\reg00110
c:\windows\$msi31uninstall_kb893803v2$\reg00111
c:\windows\$msi31uninstall_kb893803v2$\reg00112
c:\windows\$msi31uninstall_kb893803v2$\reg00113
c:\windows\$msi31uninstall_kb893803v2$\reg00114
c:\windows\$msi31uninstall_kb893803v2$\reg00115
c:\windows\$msi31uninstall_kb893803v2$\reg00116
c:\windows\$msi31uninstall_kb893803v2$\spuninst\spuninst.exe
c:\windows\$msi31uninstall_kb893803v2$\spuninst\spuninst.inf
c:\windows\$msi31uninstall_kb893803v2$\spuninst\spuninst.txt
c:\windows\$msi31uninstall_kb893803v2$\spuninst\updspapi.dll
c:\windows\system32\TZLog.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-12-18 do 2015-01-18 )))))))))))))))))))))))))))))))
.
.
2015-01-18 08:57 . 2015-01-18 08:47 24064 ----a-w- c:\windows\zoek-delete.exe
2015-01-18 08:47 . 2015-01-18 08:54 -------- d-----w- C:\zoek_backup
2015-01-17 11:47 . 2015-01-18 08:37 35064 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2015-01-17 11:46 . 2015-01-17 11:47 -------- d-----w- c:\documents and settings\All Users\Data aplikací\RogueKiller
2015-01-17 11:40 . 2015-01-17 11:40 -------- d-----w- c:\windows\ERUNT
2015-01-17 09:30 . 2015-01-17 09:30 -------- d-----w- c:\documents and settings\Administrator
2015-01-17 09:15 . 2015-01-17 09:15 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2015-01-17 09:08 . 2015-01-18 16:45 -------- d-----w- C:\AdwCleaner
2015-01-16 22:00 . 2008-02-22 12:06 53248 ----a-w- c:\windows\system32\CSVer.dll
2015-01-16 21:54 . 2011-02-16 16:52 11520 ----a-w- c:\windows\system32\drivers\wdcsam.sys
2015-01-16 21:54 . 2015-01-16 21:54 -------- d-----w- c:\program files\Western Digital
2015-01-13 20:02 . 2015-01-13 20:02 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache
2015-01-12 13:15 . 2015-01-12 13:15 -------- d-sh--w- c:\documents and settings\Matic11\IETldCache
2015-01-12 12:49 . 2014-03-06 17:58 522240 -c----w- c:\windows\system32\dllcache\jsdbgui.dll
2015-01-12 12:49 . 2011-08-16 10:45 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
2015-01-12 12:48 . 2014-03-06 17:58 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2015-01-12 12:48 . 2014-03-06 17:58 630272 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2015-01-12 12:48 . 2014-03-06 17:58 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2015-01-12 12:48 . 2014-03-06 17:58 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2015-01-12 12:48 . 2014-03-06 17:58 2006016 -c----w- c:\windows\system32\dllcache\iertutil.dll
2015-01-12 12:48 . 2014-03-06 17:58 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2015-01-12 12:48 . 2014-03-06 17:58 11113472 -c----w- c:\windows\system32\dllcache\ieframe.dll
2015-01-12 12:45 . 2015-01-12 12:47 -------- dc-h--w- c:\windows\ie8
2015-01-12 11:14 . 2015-01-15 15:54 -------- d-----w- c:\windows\system32\MRT
2015-01-12 10:57 . 2015-01-12 13:15 -------- d-----w- c:\windows\SxsCaPendDel
2015-01-11 18:45 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2015-01-11 18:41 . 2014-02-26 23:28 13312 -c----w- c:\windows\system32\dllcache\xp_eos.exe
2015-01-11 18:41 . 2014-02-26 23:28 13312 ------w- c:\windows\system32\xp_eos.exe
2015-01-11 18:37 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2015-01-11 18:16 . 2013-07-03 02:12 25088 -c----w- c:\windows\system32\dllcache\hidparse.sys
2015-01-11 18:16 . 2013-07-03 01:59 14976 -c----w- c:\windows\system32\dllcache\usbscan.sys
2015-01-11 18:12 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2015-01-11 18:11 . 2013-02-12 00:32 12928 -c----w- c:\windows\system32\dllcache\usb8023x.sys
2015-01-11 18:11 . 2013-02-12 00:32 12928 -c----w- c:\windows\system32\dllcache\usb8023.sys
2015-01-11 18:10 . 2013-07-17 00:58 123008 -c----w- c:\windows\system32\dllcache\usbvideo.sys
2015-01-11 18:10 . 2013-07-17 00:58 46848 -c----w- c:\windows\system32\dllcache\irbus.sys
2015-01-11 18:10 . 2013-07-17 00:58 60160 -c----w- c:\windows\system32\dllcache\usbaudio.sys
2015-01-11 18:03 . 2012-05-28 18:16 536576 -c----w- c:\windows\system32\dllcache\msado15.dll
2015-01-11 18:02 . 2012-07-04 14:05 139784 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2015-01-11 18:02 . 2013-08-09 00:55 32384 -c----w- c:\windows\system32\dllcache\usbccgp.sys
2015-01-11 18:02 . 2013-08-09 00:55 5376 -c----w- c:\windows\system32\dllcache\usbd.sys
2015-01-11 17:40 . 2011-07-08 14:02 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2015-01-11 17:40 . 2012-01-11 19:07 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll
2015-01-11 17:40 . 2012-01-11 19:07 3072 ------w- c:\windows\system32\iacenc.dll
2015-01-11 17:40 . 2013-11-27 20:21 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2015-01-11 17:35 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2015-01-09 14:47 . 2008-04-14 03:22 221184 ----a-w- c:\windows\system32\wmpns.dll
2015-01-09 14:24 . 2015-01-12 13:15 -------- d-----w- c:\windows\system32\cs-cz
2015-01-09 14:24 . 2015-01-09 14:24 -------- d-----w- c:\windows\system32\cs
2015-01-09 14:24 . 2015-01-09 14:24 -------- d-----w- c:\windows\system32\bits
2015-01-09 14:24 . 2015-01-09 14:24 -------- d-----w- c:\windows\l2schemas
2015-01-09 14:07 . 2015-01-09 14:07 291352 ----a-w- c:\windows\system32\aswBoot.exe
2015-01-09 14:07 . 2015-01-09 14:07 43152 ----a-w- c:\windows\avastSS.scr
2015-01-05 14:25 . 2015-01-05 16:12 -------- d-----w- c:\documents and settings\Matic11\(Ne)zadani
2015-01-05 14:07 . 2015-01-06 20:58 -------- d-----w- c:\documents and settings\Matic11\Lets dance 5
2014-12-29 15:19 . 2014-12-29 15:19 -------- d-----w- c:\documents and settings\Matic11\Local Settings\Data aplikací\Sun
2014-12-29 15:06 . 2015-01-18 08:54 -------- d-----w- c:\windows\system32\GroupPolicy
2014-12-29 14:04 . 2014-12-29 14:04 -------- d-----w- c:\program files\Common Files\Java
2014-12-29 14:04 . 2014-12-29 14:01 144896 ----a-w- c:\windows\system32\javacpl.cpl
2014-12-29 14:04 . 2014-12-29 14:01 867240 ----a-w- c:\windows\system32\npDeployJava1.dll
2014-12-29 14:04 . 2014-12-29 14:01 789416 ----a-w- c:\windows\system32\deployJava1.dll
2014-12-29 14:04 . 2014-12-29 14:03 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-12-29 14:01 . 2014-12-29 14:01 -------- d-----w- c:\program files\Java
2014-12-29 13:58 . 2014-12-29 13:58 -------- d-----w- c:\program files\Seznam.cz
2014-12-29 13:56 . 2015-01-16 21:28 -------- d-----w- c:\documents and settings\Matic11\Data aplikací\Seznam.cz
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-01-13 20:02 . 2013-03-19 16:26 701616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2015-01-13 20:02 . 2011-12-02 22:37 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2015-01-09 14:08 . 2012-04-11 19:05 787800 ----a-w- c:\windows\system32\drivers\aswsnx.sys
2015-01-09 14:08 . 2009-07-25 00:23 423784 ----a-w- c:\windows\system32\drivers\aswsp.sys
2015-01-09 14:07 . 2014-10-03 14:33 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2015-01-09 14:07 . 2014-10-03 14:27 206248 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2015-01-09 14:07 . 2014-10-03 14:27 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2015-01-09 14:07 . 2014-10-03 14:27 70384 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2015-01-09 14:07 . 2009-07-25 00:23 55240 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2015-01-09 14:07 . 2009-07-25 00:23 57928 ----a-w- c:\windows\system32\drivers\aswTdi.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2015-01-09 14:07 723976 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2009-07-24 16871936]
"AzMixerSel"="c:\program files\Realtek\Audio\InstallShield\AzMixerSel.exe" [2009-07-24 53248]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-07-24 150040]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-07-24 170520]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-07-24 141848]
"StatusAutoRun3045B"="c:\program files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmpl.exe" [2011-04-22 3658240]
"AvastUI.exe"="c:\program files\Alwil Software\Avast5\AvastUI.exe" [2015-01-10 5227112]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-11-1 576104]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"SoftwareSASGeneration"= 1 (0x1)
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^HP Digital Imaging Monitor.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk
backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2009-02-27 15:10 35696 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DocuPrint 3045B RUN]
2011-04-22 08:29 357376 ----a-w- c:\program files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmRun.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2014-10-27 16:26 107912 ----atw- c:\documents and settings\Matic11\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2007-03-11 19:34 49152 ----a-w- c:\program files\HP\HP Software Update\hpwuSchd2.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Launcher3045B]
2011-04-22 09:09 2570752 ----a-w- c:\program files\Xerox Office Printing\WorkCentre SSW\Launcher\xrlaunch.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 03:22 1695232 ------w- c:\program files\Messenger\msmsgs.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroCheck]
2001-07-09 09:50 155648 ----a-r- c:\windows\system32\NeroCheck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2013-03-12 06:32 253816 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\QIP\\qip.exe"=
"c:\\Documents and Settings\\Matic11\\Local Settings\\Data aplikací\\Google\\Chrome\\Application\\chrome.exe"=
"c:\\Documents and Settings\\Matic11\\Data aplikací\\uTorrent\\uTorrent.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"1886:TCP"= 1886:TCP:Genieo
.
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [3.10.2014 15:27 49944]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [3.10.2014 15:27 206248]
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [24.10.2009 10:19 721904]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswsnx.sys [11.4.2012 20:05 787800]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswsp.sys [25.7.2009 1:23 423784]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [3.10.2014 15:33 24184]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [3.10.2014 15:27 70384]
S2 XRNADB;XRcnStatutsDatabase;c:\program files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmdb.exe [22.4.2011 9:28 79872]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM);c:\windows\system32\drivers\s1018bus.sys [15.12.2010 15:15 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter;c:\windows\system32\drivers\s1018mdfl.sys [15.12.2010 15:15 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver;c:\windows\system32\drivers\s1018mdm.sys [15.12.2010 15:15 114728]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s1018mgmt.sys [15.12.2010 15:15 106208]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS);c:\windows\system32\drivers\s1018nd5.sys [15.12.2010 15:15 26024]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface;c:\windows\system32\drivers\s1018obex.sys [15.12.2010 15:15 104744]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM);c:\windows\system32\drivers\s1018unic.sys [15.12.2010 15:15 109864]
S3 s1039bus;Sony Ericsson Device 1039 driver (WDM);c:\windows\system32\drivers\s1039bus.sys [8.9.2011 19:50 98672]
S3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter;c:\windows\system32\drivers\s1039mdfl.sys [8.9.2011 19:50 14960]
S3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver;c:\windows\system32\drivers\s1039mdm.sys [8.9.2011 19:50 124016]
S3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s1039mgmt.sys [8.9.2011 19:50 117872]
S3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS);c:\windows\system32\drivers\s1039nd5.sys [8.9.2011 19:50 25456]
S3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface;c:\windows\system32\drivers\s1039obex.sys [8.9.2011 19:50 113904]
S3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM);c:\windows\system32\drivers\s1039unic.sys [8.9.2011 19:50 123504]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [16.1.2015 22:54 11520]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
.
Obsah adresáře 'Naplánované úlohy'
.
2015-01-18 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-03-19 20:02]
.
2015-01-18 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\Alwil Software\Avast5\AvastEmUpdate.exe [2015-01-09 14:07]
.
2015-01-13 c:\windows\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
- c:\windows\system32\xp_eos.exe [2015-01-11 23:28]
.
2015-01-18 c:\windows\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
- c:\windows\system32\xp_eos.exe [2015-01-11 23:28]
.
.
------- Doplňkový sken -------
.
uStart Page = https://www.seznam.cz/?clid=22668
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Send to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send To Bluetooth - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\documents and settings\Matic11\Data aplikací\Mozilla\Firefox\Profiles\sawzu2c4.default\
FF - prefs.js: browser.search.selectedEngine - Seznam
.
.
------- Asociace souborů -------
.
.scr=AutoCADScriptFile
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-Need For Speed High Stakes - d:\nfs highstakessetup\Uninst.isu
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2015-01-18 18:06
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
Celkový čas: 2015-01-18 18:08:21
ComboFix-quarantined-files.txt 2015-01-18 17:08
.
Před spuštěním: Volných bajtů: 18 153 857 024
Po spuštění: Volných bajtů: 18 095 538 176
.
WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - 3C4E8BA0693AD540438A9B18DE7C08A9
413FC2A0C716421B3158746D63736515

Reklama

Příspěvekod **jaro3** » 19 led 2015 09:31

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

Stáhni si [url=http://files.avast.com/files/rootkit-scanner/aswmbr.exe]aswMBR[/url]
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Prosím o kontrolu logu, děkuji

Re: Prosím o kontrolu logu, děkuji

Re: Prosím o kontrolu logu, děkuji

Kdo je online