Prosim o kontrolu logu Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Monda
Level 1
Level 1
Příspěvky: 94
Registrován: srpen 12
Pohlaví: Žena
Stav:
Offline

Re: Prosim o kontrolu logu

Příspěvekod Monda » 09 srp 2012 17:26

ComboFix 12-08-09.01 - Miroslav 7 09.08.2012 16:49:33.2.1 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.1280.645 [GMT 2:00]
Spuštěný z: c:\users\Miroslav 7\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Miroslav 7\Desktop\CFScript.txt
AV: Microsoft Security Essentials *Enabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6}
SP: Microsoft Security Essentials *Enabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\program files\Skype\Updater\Updater.exe"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\MIROSL~1\AppData\Local\Temp\7zS542B\HPSLPSVC32.DLL
c:\users\Miroslav 7\AppData\Local\Temp\7zS542B\HPSLPSVC32.DLL
c:\users\Public\sdelevURL.tmp
c:\windows\msxml4-KB2721691-enu.LOG
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_SkypeUpdate
-------\Service_HPSLPSVC
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-07-09 do 2012-08-09 )))))))))))))))))))))))))))))))
.
.
2012-08-09 15:08 . 2012-08-09 15:08 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-08-09 14:43 . 2012-08-09 14:43 29904 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{21D07D13-EF5A-43CD-91F8-7765BF8EAAFA}\MpKslaae712ce.sys
2012-08-09 11:19 . 2009-06-22 16:58 89600 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\HPZPPLHN.DLL
2012-08-09 11:10 . 2012-08-09 11:10 -------- d-----w- c:\programdata\HP
2012-08-09 10:55 . 2011-03-30 11:05 25088 ----a-w- c:\windows\system32\drivers\teamviewervpn.sys
2012-08-09 10:54 . 2012-08-09 10:54 -------- d-----w- c:\program files\TeamViewer
2012-08-09 10:47 . 2012-08-09 10:47 -------- d-----w- c:\program files\Common Files\Java
2012-08-09 10:44 . 2012-08-09 10:44 -------- d-----w- c:\program files\Oracle
2012-08-09 10:43 . 2012-07-05 20:06 772544 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-08-09 10:43 . 2012-07-05 20:06 687544 ----a-w- c:\windows\system32\deployJava1.dll
2012-08-09 10:42 . 2012-08-09 10:42 -------- d-----w- c:\program files\Java
2012-08-09 10:07 . 2012-06-28 23:44 6891424 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{21D07D13-EF5A-43CD-91F8-7765BF8EAAFA}\mpengine.dll
2012-08-09 08:02 . 2012-08-09 08:02 -------- d--h--w- c:\windows\msdownld.tmp
2012-08-09 06:12 . 2012-06-28 23:44 6891424 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-08-09 06:07 . 2012-08-09 06:07 -------- d-----w- c:\program files\Spirent Communications
2012-08-09 06:06 . 2012-08-09 06:11 -------- d-----w- c:\program files\HTC
2012-08-09 06:06 . 2012-08-09 06:06 -------- d-----w- c:\program files\Common Files\Adobe AIR
2012-08-09 06:04 . 2012-08-09 06:04 -------- d-----w- c:\program files\MSXML 4.0
2012-08-08 15:36 . 2012-08-08 15:36 -------- d-----w- c:\programdata\ATI
2012-08-08 15:08 . 2012-08-08 15:08 -------- d-----w- c:\program files\ATI
2012-08-08 15:08 . 2012-08-08 15:35 -------- d-----w- c:\program files\ATI Technologies
2012-08-08 14:55 . 2012-08-08 14:55 -------- d-----w- C:\ATI
2012-08-08 12:39 . 2012-08-08 12:40 -------- d-----w- c:\program files\CrystalDiskInfo
2012-08-08 10:29 . 2011-02-19 06:30 805376 ----a-w- c:\windows\system32\FntCache.dll
2012-08-08 10:29 . 2011-02-19 06:30 739840 ----a-w- c:\windows\system32\d2d1.dll
2012-08-08 09:56 . 2012-08-08 09:56 -------- d-----w- c:\program files\Verdict Free
2012-08-07 19:23 . 2012-08-07 19:23 -------- d-----w- c:\programdata\Malwarebytes
2012-08-07 19:23 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-08-07 19:23 . 2012-08-07 19:24 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-08-07 15:03 . 2012-08-07 15:03 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2012-08-07 14:08 . 2011-03-25 02:57 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys
2012-08-07 14:08 . 2011-03-25 02:58 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys
2012-08-07 14:08 . 2011-03-25 02:58 284672 ----a-w- c:\windows\system32\drivers\usbport.sys
2012-08-07 14:08 . 2011-03-25 02:57 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys
2012-08-07 14:08 . 2011-03-25 02:57 24064 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2012-08-07 14:08 . 2011-03-25 02:57 5888 ----a-w- c:\windows\system32\drivers\usbd.sys
2012-08-07 14:08 . 2011-03-25 02:58 75776 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2012-08-07 14:07 . 2011-03-11 05:33 1699328 ----a-w- c:\windows\system32\esent.dll
2012-08-07 14:07 . 2011-03-11 05:39 1211264 ----a-w- c:\windows\system32\drivers\ntfs.sys
2012-08-07 14:07 . 2011-03-11 05:31 74240 ----a-w- c:\windows\system32\fsutil.exe
2012-08-07 14:07 . 2011-03-11 05:39 148864 ----a-w- c:\windows\system32\drivers\storport.sys
2012-08-07 14:07 . 2011-03-11 05:38 332160 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2012-08-07 14:07 . 2011-03-11 05:39 143744 ----a-w- c:\windows\system32\drivers\nvstor.sys
2012-08-07 14:07 . 2011-03-11 05:38 80256 ----a-w- c:\windows\system32\drivers\amdsata.sys
2012-08-07 14:07 . 2011-03-11 05:39 117120 ----a-w- c:\windows\system32\drivers\nvraid.sys
2012-08-07 14:07 . 2011-03-11 05:38 22400 ----a-w- c:\windows\system32\drivers\amdxata.sys
2012-08-07 14:07 . 2011-04-28 03:15 393728 ----a-w- c:\windows\system32\drivers\bthport.sys
2012-08-07 14:07 . 2011-04-28 03:15 60416 ----a-w- c:\windows\system32\drivers\BTHUSB.SYS
2012-08-07 12:04 . 2012-08-07 12:04 -------- d-----w- c:\windows\system32\Wat
2012-08-07 11:04 . 2012-06-12 02:40 2345984 ----a-w- c:\windows\system32\win32k.sys
2012-08-07 11:02 . 2012-03-01 05:46 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-08-07 11:02 . 2012-03-01 05:29 5120 ----a-w- c:\windows\system32\wmi.dll
2012-08-07 11:02 . 2012-03-01 05:37 172544 ----a-w- c:\windows\system32\wintrust.dll
2012-08-07 11:02 . 2012-03-01 05:33 159232 ----a-w- c:\windows\system32\imagehlp.dll
2012-08-07 11:00 . 2010-02-11 07:10 293376 ----a-w- c:\windows\system32\browserchoice.exe
2012-08-07 10:54 . 2012-08-09 04:21 -------- d-----w- c:\program files\vbus
2012-08-06 20:04 . 2012-08-06 20:06 -------- d-----w- c:\program files\LG Electronics
2012-08-06 17:26 . 2012-08-06 17:36 -------- d-----w- c:\program files\IrfanView
2012-08-06 15:57 . 1998-06-23 23:00 137000 ----a-w- c:\windows\system32\MSMAPI32.OCX
2012-08-06 15:57 . 2004-03-08 23:00 662288 ----a-w- c:\windows\system32\MSCOMCT2.OCX
2012-08-06 15:57 . 2012-03-14 16:23 54784 ----a-w- c:\windows\system32\pdfcmon.dll
2012-08-06 15:57 . 1998-07-05 23:00 23552 ----a-w- c:\windows\system32\MSMPIDE.DLL
2012-08-06 15:56 . 2012-08-06 16:02 -------- d-----w- c:\program files\PDFCreator
2012-08-06 15:51 . 2012-08-06 15:51 -------- d-----w- c:\program files\Common Files\Windows Live
2012-08-06 15:15 . 2012-08-06 15:16 -------- d-----w- c:\program files\Common Files\Adobe
2012-08-06 15:01 . 2012-08-06 15:05 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-08-06 15:01 . 2012-08-06 15:05 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-06 15:01 . 2012-08-06 15:01 -------- d-----w- c:\windows\system32\Macromed
2012-08-06 14:54 . 2012-08-07 19:58 -------- d-----w- c:\program files\Opera
2012-08-06 14:28 . 2012-08-06 14:31 -------- d-----w- c:\program files\Energie pod palcem
2012-08-06 13:23 . 2011-08-17 04:24 465408 ----a-w- c:\windows\system32\psisdecd.dll
2012-08-06 13:23 . 2011-08-17 04:19 75776 ----a-w- c:\windows\system32\psisrndr.ax
2012-08-06 13:23 . 2011-12-30 05:27 478720 ----a-w- c:\windows\system32\timedate.cpl
2012-08-06 13:23 . 2012-04-28 04:41 919040 ----a-w- c:\windows\system32\rdpcorets.dll
2012-08-06 13:23 . 2012-04-28 03:17 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-08-06 13:22 . 2011-11-05 04:26 2048 ----a-w- c:\windows\system32\tzres.dll
2012-08-06 13:20 . 2012-06-06 05:05 1019904 ----a-w- c:\program files\Common Files\System\ado\msado15.dll
2012-08-06 13:20 . 2012-06-06 05:03 805376 ----a-w- c:\windows\system32\cdosys.dll
2012-08-06 13:20 . 2012-06-06 05:05 57344 ----a-w- c:\program files\Common Files\System\ado\msador15.dll
2012-08-06 13:20 . 2012-06-06 05:05 352256 ----a-w- c:\program files\Common Files\System\ado\msadomd.dll
2012-08-06 13:20 . 2012-06-06 05:05 143360 ----a-w- c:\program files\Common Files\System\ado\msjro.dll
2012-08-06 13:20 . 2012-06-06 05:05 372736 ----a-w- c:\program files\Common Files\System\ado\msadox.dll
2012-08-06 13:20 . 2012-06-06 05:05 212992 ----a-w- c:\program files\Common Files\System\msadc\msadco.dll
2012-08-06 13:20 . 2011-04-29 02:46 311808 ----a-w- c:\windows\system32\drivers\srv.sys
2012-08-06 13:20 . 2011-04-29 02:46 310272 ----a-w- c:\windows\system32\drivers\srv2.sys
2012-08-06 13:20 . 2011-04-29 02:46 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys
2012-08-06 13:20 . 2011-04-25 02:18 338944 ----a-w- c:\windows\system32\drivers\afd.sys
2012-08-06 13:20 . 2011-11-17 05:38 1288472 ----a-w- c:\windows\system32\ntdll.dll
2012-08-06 13:19 . 2011-02-18 05:39 31232 ----a-w- c:\windows\system32\prevhost.exe
2012-08-06 13:18 . 2011-03-03 05:38 132608 ----a-w- c:\windows\system32\dnsrslvr.dll
2012-08-06 13:18 . 2011-03-03 05:36 28672 ----a-w- c:\windows\system32\dnscacheugc.exe
2012-08-06 13:18 . 2011-02-19 04:34 294912 ----a-w- c:\windows\system32\atmfd.dll
2012-08-06 13:18 . 2011-02-19 06:30 34304 ----a-w- c:\windows\system32\atmlib.dll
2012-08-06 13:18 . 2010-09-30 06:47 70656 ----a-w- c:\windows\system32\fontsub.dll
2012-08-06 13:18 . 2011-10-01 04:37 708608 ----a-w- c:\program files\Common Files\System\wab32.dll
2012-08-06 13:14 . 2010-12-17 07:07 542208 ----a-w- c:\windows\system32\kerberos.dll
2012-08-06 13:14 . 2011-07-09 02:30 223744 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2012-08-06 13:14 . 2011-04-27 02:17 96768 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2012-08-06 13:14 . 2011-04-27 02:17 123904 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2012-08-06 13:13 . 2011-08-27 04:26 571904 ----a-w- c:\windows\system32\oleaut32.dll
2012-08-06 13:13 . 2011-08-27 04:26 233472 ----a-w- c:\windows\system32\oleacc.dll
2012-08-06 13:13 . 2011-05-03 04:30 741376 ----a-w- c:\windows\system32\inetcomm.dll
2012-08-06 13:12 . 2011-11-19 14:01 67072 ----a-w- c:\windows\system32\packager.dll
2012-08-06 13:12 . 2012-03-31 04:39 3913072 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-08-06 13:12 . 2012-03-31 04:39 3968368 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-08-06 13:10 . 2011-02-12 05:35 191488 ----a-w- c:\windows\system32\FXSCOVER.exe
2012-08-06 13:10 . 2011-10-15 05:38 534528 ----a-w- c:\windows\system32\EncDec.dll
2012-08-06 13:10 . 2011-03-12 11:23 870912 ----a-w- c:\windows\system32\XpsPrint.dll
2012-08-06 13:10 . 2011-02-24 05:38 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2012-08-06 13:10 . 2011-10-26 04:28 38912 ----a-w- c:\windows\system32\csrsrv.dll
2012-08-06 13:10 . 2010-12-23 05:54 642048 ----a-w- c:\windows\system32\CPFilters.dll
2012-08-06 13:10 . 2010-12-23 05:54 850944 ----a-w- c:\windows\system32\sbe.dll
2012-08-06 13:10 . 2010-12-23 05:50 199680 ----a-w- c:\windows\system32\mpg2splt.ax
2012-08-06 13:10 . 2011-10-26 04:32 1328128 ----a-w- c:\windows\system32\quartz.dll
2012-08-06 13:10 . 2011-10-26 04:32 514560 ----a-w- c:\windows\system32\qdvd.dll
2012-08-06 13:08 . 2011-06-15 08:55 86016 ----a-w- c:\windows\system32\odbccu32.dll
2012-08-06 13:08 . 2011-06-15 08:55 122880 ----a-w- c:\windows\system32\odbccp32.dll
2012-08-06 13:08 . 2011-06-15 08:55 163840 ----a-w- c:\windows\system32\odbctrac.dll
2012-08-06 13:08 . 2011-06-15 08:54 94208 ----a-w- c:\program files\Common Files\System\Ole DB\msdaosp.dll
2012-08-06 13:08 . 2011-01-17 05:47 161792 ----a-w- c:\windows\system32\d3d10_1.dll
2012-08-06 13:08 . 2012-04-26 04:45 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll
2012-08-06 13:08 . 2012-04-26 04:41 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe
2012-08-06 13:08 . 2012-04-26 04:45 58880 ----a-w- c:\windows\system32\rdpwsx.dll
2012-08-06 13:08 . 2011-12-16 07:52 690688 ----a-w- c:\windows\system32\msvcrt.dll
2012-08-06 13:08 . 2012-03-17 07:27 56176 ----a-w- c:\windows\system32\drivers\partmgr.sys
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-06-25 14:04 . 2012-06-25 14:04 1394248 ----a-w- c:\windows\system32\msxml4.dll
2012-06-02 04:40 . 2012-08-06 13:21 225280 ----a-w- c:\windows\system32\schannel.dll
2012-07-14 00:15 . 2012-08-06 07:20 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"RESTART_STICKY_NOTES"="c:\windows\system32\StikyNot.exe" [2009-07-14 354304]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-03-26 931200]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-02-10 61440]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-17 252296]
.
c:\users\Miroslav 7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-01-03 07:37 843712 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2009-02-26 16:36 30040 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Hlídač]
2005-04-04 06:25 569856 ----a-w- c:\program files\Energie pod palcem\Hlidac.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HTC Sync Loader]
2012-04-17 13:05 651264 ----a-w- c:\program files\HTC\HTC Sync 3.0\htcUPCTLoader.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
2012-08-06 09:52 127040 ----a-w- c:\program files\ICQ7.7\ICQ.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Infium]
2012-03-23 14:55 7351760 ----a-w- c:\program files\QIP 2012\qip.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Quick Moto Agent]
2004-03-21 13:43 459776 ----a-w- c:\program files\Quick Moto\Agent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
2010-11-20 21:29 1174016 ----a-w- c:\program files\Windows Sidebar\sidebar.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2012-02-15 11:35 17146504 ----a-r- c:\program files\Skype\Phone\Skype.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
2009-04-14 05:43 604704 ----a-w- c:\windows\SOUNDMAN.EXE
.
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [x]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [x]
R3 lgbusenum;LG Bluetooth Bus Enumerator;c:\windows\system32\DRIVERS\lgbtbus.sys [x]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S1 MpKslaae712ce;MpKslaae712ce;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{21D07D13-EF5A-43CD-91F8-7765BF8EAAFA}\MpKslaae712ce.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
S2 PassThru Service;Internet Pass-Through Service;c:\program files\HTC\Internet Pass-Through\PassThruSvr.exe [x]
S2 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [x]
S3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPService REG_MULTI_SZ HPSLPSVC
.
Obsah adresáře 'Naplánované úlohy'
.
2012-08-06 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-06 15:05]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files\ICQ7.7\ICQ.exe
IE: {{230D1201-7607-4CF6-A11F-9E4BF0A333E0} - {0DB13731-CEFD-43CF-A8FD-B61DCBC4D5B8} - c:\program files\Verdict Free\etnxp.dll
IE: {{2C73F784-D2DE-4422-B070-2E3332FE5744} - {0320AC26-52C8-4316-B2C4-24BB6FA73C9A} - c:\program files\Verdict Free\etnxp.dll
TCP: DhcpNameServer = 10.29.2.1 192.168.0.1
FF - ProfilePath - c:\users\Miroslav 7\AppData\Roaming\Mozilla\Firefox\Profiles\8eykcjjb.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - user.js: browser.cache.memory.capacity - 16000
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.search.openintab - false
FF - user.js: browser.tabs.closeButtons - 1
FF - user.js: browser.tabs.opentabfor.middleclick - true
FF - user.js: browser.tabs.tabMinWidth - 100
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autoFill - false
FF - user.js: browser.urlbar.autofill - true
FF - user.js: browser.urlbar.hideGoButton - false
FF - user.js: content.max.tokenizing.time - 3000000
FF - user.js: content.maxtextrun - 4095
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 1000000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 1000000
FF - user.js: dom.disable_window_status_change - true
FF - user.js: layout.spellcheckDefault - 1
FF - user.js: network.http.max-connections - 48
FF - user.js: network.http.max-connections-per-server - 16
FF - user.js: network.http.max-persistent-connections-per-proxy - 16
FF - user.js: network.http.max-persistent-connections-per-server - 8
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.firstrequest - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: network.prefetch-next - true
FF - user.js: nglayout.initialpaint.delay - 1000
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
.
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Microsoft Security Client\MsMpEng.exe
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\taskhost.exe
c:\program files\TeamViewer\Version6\TeamViewer.exe
c:\windows\system32\conhost.exe
c:\program files\Windows Media Player\wmpnetwk.exe
.
**************************************************************************
.
Celkový čas: 2012-08-09 17:20:47 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-08-09 15:20
ComboFix2.txt 2012-08-08 18:56
.
Před spuštěním: 7 777 992 704
Po spuštění: 7 660 658 688
.
- - End Of File - - E41DBE8641079B82ABBACA894D2ED4AE

Reklama
Monda
Level 1
Level 1
Příspěvky: 94
Registrován: srpen 12
Pohlaví: Žena
Stav:
Offline

Re: Prosim o kontrolu logu

Příspěvekod Monda » 09 srp 2012 17:27

aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-08-09 17:22:06
-----------------------------
17:22:06.656 OS Version: Windows 6.1.7601 Service Pack 1
17:22:06.656 Number of processors: 1 586 0x102
17:22:06.671 ComputerName: MIROSLAV7-PC UserName: Miroslav 7
17:22:19.781 Initialize success
17:22:27.236 Disk 0 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
17:22:27.251 Disk 0 Vendor: ST320410A 3.34 Size: 19092MB BusType: 3
17:22:27.283 Disk 1 (boot) \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP0T1L0-1
17:22:27.298 Disk 1 Vendor: ST3402111A 2AAA Size: 38166MB BusType: 3
17:22:27.330 Disk 2 \Device\Harddisk2\DR2 -> \Device\Ide\IdeDeviceP1T1L0-3
17:22:27.345 Disk 2 Vendor: ST320011A 3.75 Size: 19092MB BusType: 3
17:22:27.408 Disk 1 MBR read successfully
17:22:27.439 Disk 1 MBR scan
17:22:27.470 Disk 1 Windows XP default MBR code
17:22:27.517 Disk 1 Partition 1 00 07 HPFS/NTFS NTFS 28014 MB offset 20789248
17:22:27.564 Disk 1 scanning sectors +78161920
17:22:27.673 Disk 1 scanning C:\Windows\system32\drivers
17:22:39.283 Service scanning
17:23:33.751 Modules scanning
17:24:03.673 Disk 1 trace - called modules:
17:24:03.767 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll ataport.SYS intelide.sys PCIIDEX.SYS atapi.sys dxgkrnl.sys atikmdag.sys dxgmms1.sys
17:24:03.798 1 nt!IofCallDriver -> \Device\Harddisk1\DR1[0x8517fac8]
17:24:03.830 3 CLASSPNP.SYS[87e6e59e] -> nt!IofCallDriver -> [0x84419f08]
17:24:03.876 5 ACPI.sys[8761c3d4] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T1L0-1[0x84418340]
17:24:03.908 Scan finished successfully
17:24:23.376 Disk 1 MBR has been saved successfully to "C:\Users\Miroslav 7\Desktop\MBR.dat"
17:24:23.408 The log file has been saved successfully to "C:\Users\Miroslav 7\Desktop\aswMBR.txt"

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu logu

Příspěvekod jaro3 » 09 srp 2012 21:28

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem
a použij i T-Cleaner
smaže vše po Combu,MWAVu atd.-stáhneš>spustíš

pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj antivir a antispyware ,následně T-Cleaner smaž a zapni si znovu antivir a antispyware.


Málo místa na disku??Máš mít alespoň 15% volného místa pro windows.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 35 hostů