Prosím o kontrolu logu pc se seká Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

standacich
Level 3
Level 3
Příspěvky: 526
Registrován: říjen 12
Bydliště: Hustopeče
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu pc se seká

Příspěvekod standacich » 27 pro 2014 14:21

Zoek.exe v5.0.0.0 Updated 24-12-2014
Tool run by Standa on so 27.12.2014 at 14:01:38,78.
Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Standa\Desktop\zoek.exe [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2014-12-02-104145.log 9144 bytes

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\Users\Standa\AppData\Roaming\DAEMON Tools Pro deleted successfully
C:\Users\Guest\AppData\Local\NokiaAccount deleted successfully
C:\Users\Standa\AppData\Local\LG Electronics deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\suohc23s.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.useDBForOrder", true);

Added to C:\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\suohc23s.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\Standa\AppData\Roaming\Mozilla\Firefox\Profiles\evpi7ez6.default\prefs.js:
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.useDBForOrder", true);

Added to C:\Users\Standa\AppData\Roaming\Mozilla\Firefox\Profiles\evpi7ez6.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Deleting Files \ Folders ======================

C:\Users\Guest\AppData\Local\AVG Web TuneUp deleted
C:\Users\Standa\AppData\Local\AVG Web TuneUp deleted
C:\PROGRA~3\AVG Web TuneUp deleted
C:\PROGRA~3\Avg_Update_1214tb deleted
C:\Users\Guest\AppData\LocalLow\AVG Web TuneUp deleted
C:\Users\Standa\AppData\LocalLow\AVG Web TuneUp deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Web TuneUp deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\Users\Standa\Desktop\CENZURA Pro YTD v4.1 Final.lnk deleted
"C:\PROGRA~2\AVG Web TuneUp\TBAPI.dll" deleted
"C:\PROGRA~2\AVG Web TuneUp" not deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\suohc23s.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\Standa\AppData\Roaming\Mozilla\Firefox\Profiles\evpi7ez6.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

ProfilePath: C:\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\suohc23s.default
- Undetermined - leethax@leethax.net
- leethax.net extension - %ProfilePath%\extensions\leethax@leethax.net.xpi
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Standa\AppData\Roaming\Mozilla\Firefox\Profiles\evpi7ez6.default
9860727E477F17B88E39AF8B69B0407A - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll - Shockwave Flash


==== Chromium Look ======================


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

==== Reset Google Chrome ======================

C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Standa\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Standa\AppData\Roaming\Opera Software\Opera Stable\Preferences was reset successfully
C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Standa\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Standa\AppData\Roaming\Opera Software\Opera Stable\Web Data was reset successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Guest\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Standa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Guest\AppData\Local\Mozilla\Firefox\Profiles\suohc23s.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Standa\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\Standa\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=340 folders=109 109128477 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\Guest\AppData\Local\temp emptied successfully
C:\Users\Public\AppData\Local\temp emptied successfully
C:\Users\Standa\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Standa\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\PROGRA~2\AVG Web TuneUp" not found

==== EOF on so 27.12.2014 at 14:20:22,80 ======================

Reklama
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu pc se seká

Příspěvekod jaro3 » 28 pro 2014 10:24

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

standacich
Level 3
Level 3
Příspěvky: 526
Registrován: říjen 12
Bydliště: Hustopeče
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu pc se seká

Příspěvekod standacich » 28 pro 2014 12:11

ComboFix 14-12-25.01 - Standa 28.12.2014 10:34:41.3.2 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.4095.2510 [GMT 1:00]
Spuštěný z: c:\users\Guest\Desktop\ComboFix.exe
AV: AVG AntiVirus Free Edition 2015 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: AVG AntiVirus Free Edition 2015 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-11-28 do 2014-12-28 )))))))))))))))))))))))))))))))
.
.
2014-12-28 10:59 . 2014-12-28 10:59 -------- d-----w- c:\users\Standa\AppData\Local\temp
2014-12-28 10:59 . 2014-12-28 10:59 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-12-27 22:45 . 2014-12-27 22:45 -------- d-----w- c:\users\Standa\AppData\Local\O&O
2014-12-27 22:30 . 2014-12-27 23:10 -------- d-----w- c:\windows\system32\oodag
2014-12-27 22:29 . 2014-12-27 22:29 -------- d-----w- c:\program files\OO Software
2014-12-27 22:28 . 2014-12-27 22:28 -------- d-----w- c:\programdata\OO Software
2014-12-27 19:00 . 2014-12-27 19:00 -------- d-----w- c:\program files (x86)\ToniArts
2014-12-27 18:59 . 2004-07-15 23:20 733184 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iKernel.dll
2014-12-27 18:59 . 2004-07-15 23:20 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\ctor.dll
2014-12-27 18:59 . 2004-07-15 23:19 266240 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iscript.dll
2014-12-27 18:59 . 2004-07-15 23:18 172032 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iuser.dll
2014-12-27 18:59 . 2004-07-15 23:18 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\DotNetInstaller.exe
2014-12-27 18:59 . 2014-12-27 18:59 303236 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\setup.dll
2014-12-27 18:59 . 2014-12-27 18:59 180356 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iGdi.dll
2014-12-27 14:57 . 2014-12-27 14:57 -------- d-----w- c:\users\Standa\AppData\Local\Chromium
2014-12-27 14:38 . 2014-12-27 14:38 -------- d-----w- c:\program files (x86)\Rockstar Games
2014-12-27 14:05 . 2014-12-27 14:34 -------- d-----w- c:\program files (x86)\L.A. Noire
2014-12-27 13:20 . 2014-12-27 13:20 -------- d-----w- c:\users\Standa\AppData\Roaming\DAEMON Tools Pro
2014-12-27 13:18 . 2014-12-28 10:59 -------- d-----w- c:\users\Guest\AppData\Local\temp
2014-12-27 13:18 . 2014-12-27 13:01 24064 ----a-w- c:\windows\zoek-delete.exe
2014-12-27 10:17 . 2014-12-27 10:18 -------- d-----w- c:\programdata\Barbie Fashion Show
2014-12-26 20:52 . 2014-12-26 20:52 -------- d-----w- c:\program files (x86)\Barbie(TM)
2014-12-26 20:49 . 2004-07-15 23:16 32768 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\Objectps.dll
2014-12-26 20:49 . 2002-12-05 13:12 692224 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iKernel.dll
2014-12-26 20:49 . 2002-12-05 13:10 155648 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iuser.dll
2014-12-26 20:49 . 2002-12-02 14:22 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\DotNetInstaller.exe
2014-12-26 20:49 . 2002-12-02 12:33 57344 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\ctor.dll
2014-12-26 20:49 . 2002-12-02 12:33 237568 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iscript.dll
2014-12-26 20:49 . 2014-12-26 20:49 163972 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iGdi.dll
2014-12-26 20:49 . 2014-12-26 20:49 282756 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\setup.dll
2014-12-26 17:20 . 2014-12-26 17:20 -------- d-----w- c:\programdata\Solidshield
2014-12-26 15:34 . 2014-12-26 15:34 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2014-12-26 15:34 . 2014-11-21 05:14 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-12-26 15:34 . 2014-11-21 05:14 93400 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-12-26 15:34 . 2014-11-21 05:14 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-12-26 15:29 . 2014-12-27 20:53 -------- d-----w- C:\AdwCleaner
2014-12-26 14:55 . 2014-12-26 15:07 -------- d-----w- c:\users\Standa\AppData\Roaming\vlc
2014-12-26 14:53 . 2014-12-26 14:53 -------- d-----w- c:\program files\VideoLAN
2014-12-24 22:08 . 2014-12-24 22:08 -------- d-----w- c:\users\Guest\AppData\Roaming\KC Softwares
2014-12-24 22:07 . 2014-12-24 22:07 -------- d-----w- c:\program files (x86)\KC Softwares
2014-12-22 23:27 . 2014-12-27 22:00 -------- d-----w- c:\program files (x86)\SpeedFan
2014-12-22 21:00 . 2014-12-28 07:12 129752 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-12-22 18:11 . 2014-12-22 18:11 -------- d-----w- c:\programdata\Ralink Driver
2014-12-22 18:10 . 2014-12-22 18:10 -------- d-----w- c:\users\Standa\AppData\Roaming\InstallShield
2014-12-22 18:09 . 2014-12-22 18:09 -------- d-----w- c:\programdata\InstallShield
2014-12-21 22:08 . 2014-12-21 22:08 -------- d-----w- c:\users\Standa\AppData\Local\Opera Software
2014-12-21 22:08 . 2014-12-21 22:08 -------- d-----w- c:\users\Standa\AppData\Roaming\Opera Software
2014-12-21 22:06 . 2014-12-21 22:12 -------- d-----w- c:\program files (x86)\Opera
2014-12-21 15:48 . 2014-12-21 15:48 -------- d-----w- c:\users\Standa\AppData\Roaming\Mirillis
2014-12-21 15:48 . 2014-12-21 15:48 -------- d-----w- c:\programdata\Mirillis
2014-12-21 15:48 . 2014-12-21 15:48 -------- d-----w- c:\users\Standa\AppData\Local\Mirillis
2014-12-21 15:46 . 2014-12-21 15:46 -------- d-----w- c:\program files (x86)\Mirillis
2014-12-21 13:32 . 2014-12-21 13:32 -------- d-----w- c:\program files (x86)\S.P.D
2014-12-21 13:24 . 2014-12-21 13:29 -------- d-----w- C:\2-click run
2014-12-21 11:25 . 2014-12-21 11:25 -------- d-----w- c:\program files (x86)\Common Files\Nokia
2014-12-20 22:52 . 2014-12-20 22:52 -------- d-----w- c:\users\Guest\AppData\Local\LG Electronics
2014-12-19 11:52 . 2014-12-19 11:52 -------- d-----w- c:\users\Guest\AppData\Roaming\Easeware
2014-12-19 11:52 . 2014-12-19 11:52 -------- d-----w- c:\users\Standa\AppData\Roaming\Easeware
2014-12-19 11:52 . 2014-12-19 11:52 -------- d-----w- c:\program files\Easeware
2014-12-18 06:43 . 2014-12-13 05:09 144384 ----a-w- c:\windows\system32\ieUnatt.exe
2014-12-18 06:43 . 2014-12-13 03:33 115712 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2014-12-17 22:25 . 2014-12-22 20:40 -------- d-----w- c:\program files (x86)\EVGA Precision
2014-12-17 22:23 . 2014-12-17 22:23 -------- d-----w- c:\program files (x86)\GPU-Z
2014-12-14 21:16 . 2014-11-12 20:46 615624 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2014-12-12 14:45 . 2014-12-12 14:45 -------- d-----w- c:\program files (x86)\TV Online
2014-12-11 06:34 . 2014-12-11 06:34 -------- d-----w- c:\windows\system32\appraiser
2014-12-10 21:58 . 2014-07-07 02:06 55808 ----a-w- c:\windows\system32\rrinstaller.exe
2014-12-10 21:58 . 2014-07-07 02:06 24576 ----a-w- c:\windows\system32\mfpmp.exe
2014-12-10 21:58 . 2014-07-07 02:02 2048 ----a-w- c:\windows\system32\mferror.dll
2014-12-10 21:58 . 2014-07-07 01:39 23040 ----a-w- c:\windows\SysWow64\mfpmp.exe
2014-12-10 21:58 . 2014-07-07 01:37 2048 ----a-w- c:\windows\SysWow64\mferror.dll
2014-12-10 21:58 . 2014-10-18 02:05 4121600 ----a-w- c:\windows\system32\mf.dll
2014-12-10 21:58 . 2014-10-18 01:33 3209728 ----a-w- c:\windows\SysWow64\mf.dll
2014-12-10 21:58 . 2014-07-07 02:06 206848 ----a-w- c:\windows\system32\mfps.dll
2014-12-10 21:58 . 2014-07-07 01:40 103424 ----a-w- c:\windows\SysWow64\mfps.dll
2014-12-10 21:58 . 2014-07-07 01:39 50176 ----a-w- c:\windows\SysWow64\rrinstaller.exe
2014-12-10 19:31 . 2014-12-12 13:56 -------- d-----w- c:\users\Guest\AppData\Roaming\vlc
2014-12-10 19:27 . 2014-12-10 19:27 -------- d-----w- c:\users\Guest\AppData\Local\Readon_Technology
2014-12-10 08:03 . 2014-12-04 02:50 192000 ----a-w- c:\windows\system32\aepic.dll
2014-12-10 08:03 . 2014-12-04 02:44 1083392 ----a-w- c:\windows\system32\aeinv.dll
2014-12-10 08:03 . 2014-12-01 23:28 1232040 ----a-w- c:\windows\system32\aitstatic.exe
2014-12-10 08:03 . 2014-12-04 02:50 741376 ----a-w- c:\windows\system32\invagent.dll
2014-12-10 08:03 . 2014-12-04 02:50 413184 ----a-w- c:\windows\system32\generaltel.dll
2014-12-10 08:03 . 2014-12-04 02:50 396800 ----a-w- c:\windows\system32\devinv.dll
2014-12-10 08:03 . 2014-12-04 02:50 227328 ----a-w- c:\windows\system32\aepdu.dll
2014-12-10 08:01 . 2014-10-03 02:12 310272 ----a-w- c:\windows\system32\WsmWmiPl.dll
2014-12-10 08:01 . 2014-10-03 02:12 2020352 ----a-w- c:\windows\system32\WsmSvc.dll
2014-12-10 08:01 . 2014-10-03 02:12 346624 ----a-w- c:\windows\system32\WSManMigrationPlugin.dll
2014-12-10 08:01 . 2014-10-03 02:11 266240 ----a-w- c:\windows\system32\WSManHTTPConfig.exe
2014-12-10 08:01 . 2014-10-03 01:45 1177088 ----a-w- c:\windows\SysWow64\WsmSvc.dll
2014-12-10 08:01 . 2014-10-03 02:12 181248 ----a-w- c:\windows\system32\WsmAuto.dll
2014-12-10 08:01 . 2014-10-03 01:45 248832 ----a-w- c:\windows\SysWow64\WSManMigrationPlugin.dll
2014-12-10 08:01 . 2014-10-03 01:45 214016 ----a-w- c:\windows\SysWow64\WsmWmiPl.dll
2014-12-10 08:01 . 2014-10-03 01:44 198656 ----a-w- c:\windows\SysWow64\WSManHTTPConfig.exe
2014-12-10 08:01 . 2014-10-03 01:45 145920 ----a-w- c:\windows\SysWow64\WsmAuto.dll
2014-12-10 08:01 . 2014-11-08 03:16 2048 ----a-w- c:\windows\system32\tzres.dll
2014-12-10 08:01 . 2014-11-08 02:45 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2014-12-09 19:54 . 2014-12-27 21:04 -------- d-----w- c:\users\Guest\AppData\Local\CrashDumps
2014-12-08 13:37 . 2014-12-08 13:37 -------- d-sh--w- c:\users\Guest\AppData\Local\EmieBrowserModeList
2014-12-07 10:44 . 2014-12-14 20:17 -------- d-----w- c:\program files\CPUID
2014-12-06 19:32 . 2014-12-27 20:15 -------- d-----w- c:\users\Standa\AppData\Local\CrashDumps
2014-12-06 19:31 . 2014-12-06 19:31 -------- d-----w- c:\programdata\Orbit
2014-12-04 08:59 . 2014-12-04 08:59 -------- d-----w- c:\users\Guest\AppData\Roaming\AVG2015
2014-12-04 08:59 . 2014-12-26 17:27 -------- d-----w- c:\users\Guest\AppData\Local\Avg2015
2014-12-03 22:04 . 2014-12-03 22:03 50976 ----a-w- c:\windows\system32\drivers\avgtpx64.sys
2014-12-03 21:53 . 2014-12-03 21:53 -------- d-----w- c:\users\Standa\AppData\Roaming\AVG2015
2014-12-03 21:52 . 2014-12-03 21:52 -------- d-----w- c:\users\Standa\AppData\Roaming\TuneUp Software
2014-12-03 21:51 . 2014-12-03 23:06 -------- d-----w- c:\programdata\AVG2015
2014-12-03 21:51 . 2014-12-03 21:51 -------- d-----w- C:\$AVG
2014-12-03 21:50 . 2014-12-03 21:50 -------- d-----w- c:\program files (x86)\AVG
2014-12-03 21:34 . 2014-12-28 08:31 -------- d-----w- c:\programdata\MFAData
2014-12-03 21:34 . 2014-12-03 22:03 -------- d-----w- c:\users\Standa\AppData\Local\Avg2015
2014-12-03 21:34 . 2014-12-03 21:34 -------- d-----w- c:\users\Standa\AppData\Local\MFAData
2014-12-03 21:24 . 2014-12-03 21:24 -------- d-----w- c:\users\Standa\AppData\Roaming\Steam
2014-12-03 21:20 . 2014-12-03 21:20 -------- d-----w- c:\windows\system32\vbox
2014-12-03 21:20 . 2014-12-03 21:20 -------- d-----w- c:\windows\SysWow64\vbox
2014-12-02 13:16 . 2014-11-02 04:20 11632448 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{7D8A7FD8-EBA7-428C-8DF7-97E2BCC6405E}\mpengine.dll
2014-12-02 10:19 . 2014-12-27 13:14 -------- d-----w- C:\zoek_backup
2014-12-01 21:48 . 2014-12-27 12:53 37624 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2014-12-01 21:48 . 2014-12-01 21:48 -------- d-----w- c:\programdata\RogueKiller
2014-12-01 21:16 . 2014-12-01 21:16 -------- d-----w- c:\windows\ERUNT
2014-12-01 09:49 . 2014-12-01 09:49 -------- d-----w- c:\programdata\Malwarebytes
2014-12-01 09:27 . 2014-12-01 09:27 -------- d-sh--w- c:\users\Standa\AppData\Local\EmieBrowserModeList
2014-11-29 20:54 . 2014-11-29 20:54 -------- d-----w- c:\program files\CZ-SK-IPTV
2014-11-29 20:52 . 2014-11-29 20:54 163126 ----a-w- c:\windows\CZ SK IPTV v3.0.0 Uninstaller.exe
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-12-14 21:12 . 2014-05-07 06:34 6656 ----a-w- c:\windows\system32\lpcio.dll
2014-12-10 21:59 . 2014-05-05 17:09 112710672 ----a-w- c:\windows\system32\MRT.exe
2014-12-09 21:12 . 2014-05-05 14:05 71344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-12-09 21:12 . 2014-05-05 14:05 701104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-11-16 13:03 . 2014-11-16 13:03 2162992 ----a-w- c:\windows\system32\YamahaAE.dll
2014-11-16 13:03 . 2014-11-16 13:03 2101848 ----a-w- c:\windows\system32\WavesGUILib64.dll
2014-11-16 13:03 . 2014-11-16 13:03 2117424 ----a-w- c:\windows\system32\SStudio.dll
2014-11-16 13:03 . 2014-11-16 13:03 724728 ----a-w- c:\windows\system32\sltech64.dll
2014-11-16 13:03 . 2014-11-16 13:03 246008 ----a-w- c:\windows\system32\slprp64.dll
2014-11-16 13:03 . 2014-11-16 13:03 1048824 ----a-w- c:\windows\system32\slcnt64.dll
2014-11-16 13:03 . 2014-11-16 13:03 889592 ----a-w- c:\windows\system32\sl3apo64.dll
2014-11-16 13:03 . 2014-11-16 13:03 1959128 ----a-w- c:\windows\system32\RTSnMg64.cpl
2014-11-16 13:03 . 2014-11-16 13:03 2834648 ----a-w- c:\windows\system32\RtPgEx64.dll
2014-11-16 13:03 . 2014-11-16 13:03 3962840 ----a-w- c:\windows\system32\drivers\RTKVHD64.sys
2014-11-16 13:03 . 2014-11-16 13:03 628952 ----a-w- c:\windows\system32\RtDataProc64.dll
2014-11-16 13:03 . 2014-11-16 13:03 1022168 ----a-w- c:\windows\system32\RtkApi64.dll
2014-11-16 13:03 . 2014-11-16 13:03 948952 ----a-w- c:\windows\system32\RCoInstII64.dll
2014-11-16 13:03 . 2014-11-16 13:03 60636160 ----a-w- c:\windows\system32\RCoRes64.dat
2014-11-16 13:03 . 2014-11-16 13:03 2800344 ----a-w- c:\windows\system32\RltkAPO64.dll
2014-11-16 13:03 . 2014-11-16 13:03 942384 ----a-w- c:\windows\system32\NAHIMICAPOSettingsIPC.dll
2014-11-16 13:03 . 2014-11-16 13:03 5751048 ----a-w- c:\windows\system32\NAHIMICAPOlfx.dll
2014-11-16 13:03 . 2014-11-16 13:03 12894808 ----a-w- c:\windows\system32\MaxxVoiceAPO3064.dll
2014-11-16 13:03 . 2014-11-16 13:03 956504 ----a-w- c:\windows\system32\MaxxVoiceAPO2064.dll
2014-11-16 13:03 . 2014-11-16 13:03 3959384 ----a-w- c:\windows\system32\MaxxAudioVnN64.dll
2014-11-16 13:03 . 2014-11-16 13:03 28343384 ----a-w- c:\windows\system32\MaxxAudioVnA64.dll
2014-11-16 13:03 . 2014-11-16 13:03 900696 ----a-w- c:\windows\SysWow64\MaxxAudioAPOShell.dll
2014-11-16 13:03 . 2014-11-16 13:03 2041432 ----a-w- c:\windows\system32\MaxxAudioEQ64.dll
2014-11-16 13:03 . 2014-11-16 13:03 1934424 ----a-w- c:\windows\system32\MaxxAudioRealtek264.dll
2014-11-16 13:03 . 2014-11-16 13:03 14863448 ----a-w- c:\windows\system32\MaxxAudioRealtek64.dll
2014-11-16 13:03 . 2014-11-16 13:03 1317976 ----a-w- c:\windows\system32\MaxxAudioAPO6064.dll
2014-11-16 13:03 . 2014-11-16 13:03 1168472 ----a-w- c:\windows\system32\MaxxAudioAPO5064.dll
2014-11-16 13:03 . 2014-11-16 13:03 1136728 ----a-w- c:\windows\system32\MaxxAudioAPO4064.dll
2014-11-16 13:03 . 2014-11-16 13:03 1063512 ----a-w- c:\windows\system32\MaxxAudioAPOShell64.dll
2014-11-16 13:03 . 2014-11-16 13:03 291488 ----a-w- c:\windows\system32\ICEsoundAPO64.dll
2014-11-16 13:03 . 2014-11-16 13:03 6218072 ----a-w- c:\windows\system32\DDPP64A.dll
2014-11-16 13:03 . 2014-11-16 13:03 315736 ----a-w- c:\windows\system32\DDPO64A.dll
2014-11-16 13:03 . 2014-11-16 13:03 261464 ----a-w- c:\windows\system32\DDPA64.dll
2014-11-16 13:03 . 2014-11-16 13:03 1939800 ----a-w- c:\windows\system32\DDPD64A.dll
2014-11-16 13:03 . 2014-11-16 13:03 33592 ----a-w- c:\windows\system32\audioLibVc.dll
2014-11-14 11:56 . 2014-08-09 10:41 98216 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-11-13 00:20 . 2014-07-29 19:49 989056 ----a-w- c:\windows\system32\nvumdshimx.dll
2014-11-13 00:20 . 2014-07-29 19:49 16884632 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2014-11-13 00:20 . 2014-07-29 19:49 3262784 ----a-w- c:\windows\system32\nvapi64.dll
2014-11-13 00:20 . 2014-05-29 09:28 74056 ----a-w- c:\windows\system32\OpenCL.dll
2014-11-13 00:20 . 2014-05-29 09:28 59592 ----a-w- c:\windows\SysWow64\OpenCL.dll
2014-11-12 21:56 . 2014-05-05 14:52 6897352 ----a-w- c:\windows\system32\nvcpl.dll
2014-11-12 21:56 . 2014-05-05 14:52 3534152 ----a-w- c:\windows\system32\nvsvc64.dll
2014-11-12 21:56 . 2014-05-29 09:29 2559808 ----a-w- c:\windows\system32\nvsvcr.dll
2014-11-12 21:56 . 2014-05-05 14:52 934032 ----a-w- c:\windows\system32\nvvsvc.exe
2014-11-12 21:56 . 2014-05-05 14:52 62608 ----a-w- c:\windows\system32\nvshext.dll
2014-11-12 21:56 . 2014-05-05 14:52 386368 ----a-w- c:\windows\system32\nvmctray.dll
2014-11-11 10:29 . 2014-05-05 14:52 4100776 ----a-w- c:\windows\system32\nvcoproc.bin
2014-11-11 03:08 . 2014-11-19 07:40 241152 ----a-w- c:\windows\system32\pku2u.dll
2014-11-11 03:08 . 2014-11-19 07:40 728064 ----a-w- c:\windows\system32\kerberos.dll
2014-11-11 02:44 . 2014-11-19 07:40 186880 ----a-w- c:\windows\SysWow64\pku2u.dll
2014-11-11 02:44 . 2014-11-19 07:40 550912 ----a-w- c:\windows\SysWow64\kerberos.dll
2014-11-04 13:30 . 2014-05-05 14:08 275080 ------w- c:\windows\system32\MpSigStub.exe
2014-10-30 02:03 . 2014-12-10 08:02 165888 ----a-w- c:\windows\system32\charmap.exe
2014-10-29 20:35 . 2014-10-29 20:35 263960 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys
2014-10-25 01:57 . 2014-11-12 07:57 77824 ----a-w- c:\windows\system32\packager.dll
2014-10-25 01:32 . 2014-11-12 07:57 67584 ----a-w- c:\windows\SysWow64\packager.dll
2014-10-18 02:05 . 2014-11-12 07:57 861696 ----a-w- c:\windows\system32\oleaut32.dll
2014-10-18 01:33 . 2014-11-12 07:57 571904 ----a-w- c:\windows\SysWow64\oleaut32.dll
2014-10-14 02:16 . 2014-11-12 07:59 155064 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2014-10-14 02:13 . 2014-11-12 07:59 683520 ----a-w- c:\windows\system32\termsrv.dll
2014-10-14 02:13 . 2014-11-12 07:57 3241984 ----a-w- c:\windows\system32\msi.dll
2014-10-14 02:12 . 2014-11-12 07:59 1460736 ----a-w- c:\windows\system32\lsasrv.dll
2014-10-14 02:09 . 2014-11-12 07:59 146432 ----a-w- c:\windows\system32\msaudite.dll
2014-10-14 02:07 . 2014-11-12 07:59 681984 ----a-w- c:\windows\system32\adtschema.dll
2014-10-14 01:50 . 2014-11-12 07:59 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2014-10-14 01:50 . 2014-11-12 07:57 2363904 ----a-w- c:\windows\SysWow64\msi.dll
2014-10-14 01:49 . 2014-11-12 07:59 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2014-10-14 01:47 . 2014-11-12 07:59 146432 ----a-w- c:\windows\SysWow64\msaudite.dll
2014-10-14 01:46 . 2014-11-12 07:59 681984 ----a-w- c:\windows\SysWow64\adtschema.dll
2014-10-10 13:14 . 2014-10-10 13:14 274200 ----a-w- c:\windows\system32\drivers\avgtdia.sys
2014-10-10 00:57 . 2014-11-12 07:57 3198976 ----a-w- c:\windows\system32\win32k.sys
2014-10-05 19:41 . 2014-10-05 19:41 124184 ----a-w- c:\windows\system32\drivers\avgmfx64.sys
2014-10-03 02:12 . 2014-11-12 07:58 500224 ----a-w- c:\windows\system32\AUDIOKSE.dll
2014-10-03 02:11 . 2014-11-12 07:58 284672 ----a-w- c:\windows\system32\EncDump.dll
2014-10-03 02:11 . 2014-11-12 07:58 680960 ----a-w- c:\windows\system32\audiosrv.dll
2014-10-03 02:11 . 2014-11-12 07:58 440832 ----a-w- c:\windows\system32\AudioEng.dll
2014-10-03 02:11 . 2014-11-12 07:58 296448 ----a-w- c:\windows\system32\AudioSes.dll
2014-10-03 01:44 . 2014-11-12 07:58 442880 ----a-w- c:\windows\SysWow64\AUDIOKSE.dll
2014-10-03 01:44 . 2014-11-12 07:58 374784 ----a-w- c:\windows\SysWow64\AudioEng.dll
2014-10-03 01:44 . 2014-11-12 07:58 195584 ----a-w- c:\windows\SysWow64\AudioSes.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Pro Agent"="c:\program files (x86)\DAEMON Tools Pro\DTAgent.exe" [2012-10-23 3108480]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2014-05-05 399736]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AVG_UI"="c:\program files (x86)\AVG\AVG2015\avgui.exe" [2014-11-09 3653136]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
O&O Defrag Tray.lnk - c:\windows\Installer\{50C961A1-889F-4A4E-9587-2772A45B6AAD}\app_icon.ico [2014-12-27 292878]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer1"=wdmaud.drv
.
R2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 OODefragAgent;O&O Defrag;c:\program files\OO Software\Defrag\oodag.exe;c:\program files\OO Software\Defrag\oodag.exe [x]
R3 athrusb;Atheros Wireless LAN USB device driver;c:\windows\system32\DRIVERS\athrxusb.sys;c:\windows\SYSNATIVE\DRIVERS\athrxusb.sys [x]
R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys;c:\windows\SYSNATIVE\drivers\dgderdrv.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 LgBttPort;LGE Bluetooth TransPort;c:\windows\system32\DRIVERS\lgbtpt64.sys;c:\windows\SYSNATIVE\DRIVERS\lgbtpt64.sys [x]
R3 lgbusenum;LG Bluetooth Bus Enumerator;c:\windows\system32\DRIVERS\lgbtbs64.sys;c:\windows\SYSNATIVE\DRIVERS\lgbtbs64.sys [x]
R3 LGVMODEM;LGE Virtual Modem;c:\windows\system32\DRIVERS\lgvmdm64.sys;c:\windows\SYSNATIVE\DRIVERS\lgvmdm64.sys [x]
R3 nmwcdnsucx64;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsucx64.sys;c:\windows\SYSNATIVE\drivers\nmwcdnsucx64.sys [x]
R3 nmwcdnsux64;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsux64.sys;c:\windows\SYSNATIVE\drivers\nmwcdnsux64.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetAdp.sys [x]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetFlt.sys [x]
R3 VBoxUSB;VirtualBox USB;c:\windows\system32\Drivers\VBoxUSB.sys;c:\windows\SYSNATIVE\Drivers\VBoxUSB.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x]
S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x]
S0 fltsrv;Acronis Storage Filter Management;c:\windows\system32\DRIVERS\fltsrv.sys;c:\windows\SYSNATIVE\DRIVERS\fltsrv.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 Avgdiska;AVG Disk Driver;c:\windows\system32\DRIVERS\avgdiska.sys;c:\windows\SYSNATIVE\DRIVERS\avgdiska.sys [x]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys;c:\windows\SYSNATIVE\drivers\avgtpx64.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2015\avgidsagent.exe;c:\program files (x86)\AVG\AVG2015\avgidsagent.exe [x]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2015\avgwdsvc.exe;c:\program files (x86)\AVG\AVG2015\avgwdsvc.exe [x]
S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Printer Control;Printer Control;c:\windows\system32\PrintCtrl.exe;c:\windows\SYSNATIVE\PrintCtrl.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
S3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
S3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\DRIVERS\vcsvad.sys;c:\windows\SYSNATIVE\DRIVERS\vcsvad.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMSWISSARMY
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-11-26 13:58 1087304 ----a-w- c:\program files (x86)\Google\Chrome\Application\39.0.2171.71\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-12-28 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-05 21:12]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2014-09-17 2799784]
"OODefragTray"="c:\program files\OO Software\Defrag\oodtray.exe" [2014-08-29 4465448]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Standa\AppData\Roaming\Mozilla\Firefox\Profiles\evpi7ez6.default\
FF - prefs.js: browser.startup.homepage - about:home
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
AddRemove-CZ SK IPTV v3.0.0 - c:\windows\CZ SK IPTV v3.0.0
AddRemove-{01db25f3-1b76-4d97-88c8-1c90634d88fb} - c:\programdata\Package Cache\{01db25f3-1b76-4d97-88c8-1c90634d88fb}\vcredist_x86.exe
AddRemove-{0f12c81f-93ef-46ec-bc94-d952c1a775d4} - c:\programdata\Package Cache\{0f12c81f-93ef-46ec-bc94-d952c1a775d4}\vcredist_x64.exe
AddRemove-{2af972c7-13b0-4978-92a8-fee26a4fb4e9} - c:\programdata\Package Cache\{2af972c7-13b0-4978-92a8-fee26a4fb4e9}\vcredist_x86.exe
AddRemove-{35459b22-19a6-44ec-8d34-27eb3131acac} - c:\programdata\Package Cache\{35459b22-19a6-44ec-8d34-27eb3131acac}\vcredist_x64.exe
AddRemove-{51adbf11-493f-431c-a862-967a0fae2944} - c:\programdata\Package Cache\{51adbf11-493f-431c-a862-967a0fae2944}\vcredist_x64.exe
AddRemove-{615bc16d-60f5-482e-91b3-b51d8130963b} - c:\programdata\Package Cache\{615bc16d-60f5-482e-91b3-b51d8130963b}\vcredist_x86.exe
AddRemove-{6c95b50e-cb5a-4a1f-a7b4-8a6004f8dd6a} - c:\programdata\Package Cache\{6c95b50e-cb5a-4a1f-a7b4-8a6004f8dd6a}\vcredist_x86.exe
AddRemove-{a2199617-3609-410f-a8e8-e8806c73545b} - c:\programdata\Package Cache\{a2199617-3609-410f-a8e8-e8806c73545b}\vcredist_x64.exe
AddRemove-{dde2682b-961a-41ea-8d44-6005991b7947} - c:\programdata\Package Cache\{dde2682b-961a-41ea-8d44-6005991b7947}\vcredist_x64.exe
AddRemove-{f0080ca2-80ae-4958-b6eb-e8fa916d744a} - c:\programdata\Package Cache\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}\vcredist_x86.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_15_0_0_246_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_15_0_0_246_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_15_0_0_246_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_15_0_0_246_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_246.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.15"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_246.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_246.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_246.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\System*]
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
.
Celkový čas: 2014-12-28 12:02:58
ComboFix-quarantined-files.txt 2014-12-28 11:02
.
Před spuštěním: 5 124 698 112
Po spuštění: 5 049 462 784
.
- - End Of File - - 6B8A0013330DFEB0CD89403C7074C2AB
A36C5E4F47E84449FF07ED3517B43A31

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu pc se seká

Příspěvekod jaro3 » 29 pro 2014 09:58

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
c:\windows\system32\lpcio.dll

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Nebo na:
http://www.virscan.org/

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

standacich
Level 3
Level 3
Příspěvky: 526
Registrován: říjen 12
Bydliště: Hustopeče
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu pc se seká

Příspěvekod standacich » 29 pro 2014 11:08

c:\windows\system32\lpcio.dll tento soubor nelze najít tak mi to píše mám teda stáhnout aswMBR a proscanovat?

tak jsem skusil dole ve startu vyhledat a našlo mi to ten soubor tak jsem ho přetáhnul do okna pro skenování bude to tak fungovat?

https://www.virustotal.com/cs/file/e3b0 ... 419851705/

standacich
Level 3
Level 3
Příspěvky: 526
Registrován: říjen 12
Bydliště: Hustopeče
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu pc se seká

Příspěvekod standacich » 29 pro 2014 12:19

aswMBR version 1.0.1.2252 Copyright(c) 2014 AVAST Software
Run date: 2014-12-29 12:16:57
-----------------------------
12:16:57.400 OS Version: Windows x64 6.1.7601 Service Pack 1
12:16:57.400 Number of processors: 2 586 0x603
12:16:57.400 ComputerName: STANDA-PC UserName: Standa
12:16:59.366 Initialize success
12:16:59.506 VM: initialized successfully
12:16:59.506 VM: Amd CPU supported
12:17:09.554 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000067
12:17:09.570 Disk 0 Vendor: ST310005 JC45 Size: 953869MB BusType: 3
12:17:09.586 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000069
12:17:09.586 Disk 1 Vendor: SAMSUNG_ ZM10 Size: 152627MB BusType: 3
12:17:09.617 Disk 0 MBR read successfully
12:17:09.617 Disk 0 MBR scan
12:17:09.617 Disk 0 Windows 7 default MBR code
12:17:09.648 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
12:17:09.648 Disk 0 Boot: NTFS code=2
12:17:09.664 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 399900 MB offset 206848
12:17:09.679 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 553866 MB offset 819202048
12:17:09.710 Disk 0 scanning C:\Windows\system32\drivers
12:17:16.247 Service scanning
12:17:27.214 Modules scanning
12:17:27.229 Disk 0 trace - called modules:
12:17:27.245 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa80033a22c0]<<sptd.sys storport.sys hal.dll nvstor64.sys
12:17:27.260 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8003efe060]
12:17:27.276 3 CLASSPNP.SYS[fffff88001adf43f] -> nt!IofCallDriver -> [0xfffffa8003dca550]
12:17:27.292 5 ACPI.sys[fffff8800100b7a1] -> nt!IofCallDriver -> \Device\00000067[0xfffffa8003dcf7b0]
12:17:27.292 \Driver\nvstor64[0xfffffa8003dc1e10] -> IRP_MJ_CREATE -> 0xfffffa80033a22c0
12:17:27.307 Disk 0 statistics 107070/0/0 @ 10,34 MB/s
12:17:27.307 Scan finished successfully
12:17:48.289 Disk 0 MBR has been saved successfully to "C:\Users\Standa\Desktop\MBR.dat"
12:17:48.289 The log file has been saved successfully to "C:\Users\Standa\Desktop\aswMBR.txt"

Uživatelský avatar
Orcus
člen Security týmu
Elite Level 10.5
Elite Level 10.5
Příspěvky: 10645
Registrován: duben 10
Bydliště: Okolo rostou 3 růže =o)
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu pc se seká

Příspěvekod Orcus » 29 pro 2014 18:18

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

====================================================

Vyčisti systém CCleanerem

====================================================

Stáhni si zde DelFix
http://general-changelog-team.fr/fr/dow ... e/9-delfix

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore) .
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci.

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem. Jinak je zpráva zde:
v C: \ DelFix.txt

Co problémy? + nový log z HJT
Láska hřeje, ale uhlí je uhlí. :fire:



Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.

Pár rad k bezpečnosti PC.

Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix

Pokud budete spokojeni , můžete podpořit naše fórum.

standacich
Level 3
Level 3
Příspěvky: 526
Registrován: říjen 12
Bydliště: Hustopeče
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu pc se seká

Příspěvekod standacich » 29 pro 2014 19:10

Problémy když restaruji pc tak tak chvíli jede v poho ale potom se začne zpomalovat teda když třeba otevřu chrome tak se otvírá i minutu a když chci otevřít nějakou složku nebo soubor tak to stejný musím čekat.Potom ještě když chci odstranit soubor ve složce stažené tak mi to napíše Průzkumník windows přestal pracovat.A plocha se restartuje.
Přikládám ty logy


# DelFix v10.8 - Logfile created 29/12/2014 at 18:56:43
# Updated 29/07/2014 by Xplode
# Username : Standa - STANDA-PC
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)

~ Removing disinfection tools ...

Deleted : \zoek_backup
Deleted : \AdwCleaner
Deleted : \ComboFix.txt
Deleted : C:\Users\Standa\Desktop\aswmbr.exe
Deleted : C:\Users\Standa\Desktop\aswMBR.txt
Deleted : C:\Users\Standa\Desktop\MBR.dat
Deleted : C:\Users\Standa\Downloads\RogueKillerX64.exe
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\Swearware
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
Deleted : HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMBR
Deleted : HKLM\SYSTEM\CurrentControlSet\Services\aswMBR

~ Cleaning system restore ...

Deleted : RP #221 [ComboFix created restore point | 12/29/2014 17:49:59]

New restore point created !

standacich
Level 3
Level 3
Příspěvky: 526
Registrován: říjen 12
Bydliště: Hustopeče
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu pc se seká

Příspěvekod standacich » 29 pro 2014 19:11

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:03:55, on 29.12.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17496)

FIREFOX: 34.0.5 (x86 cs)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\AVG\AVG2015\avgui.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Users\Standa\Desktop\Neotvírat\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe"
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: O&O Defrag (OODefragAgent) - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: Printer Control - Unknown owner - C:\Windows\system32\PrintCtrl.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7919 bytes

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu pc se seká

Příspěvekod jaro3 » 30 pro 2014 09:22

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe"


Stáhni si Memtest:

Políčko , ve kterém je napsáno:
All unused RAM -ponech , jak je.
-dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.


Ještě zkontrolovat HDD na chyby ,popř. zkusit jeho defragmentaci ..

Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

standacich
Level 3
Level 3
Příspěvky: 526
Registrován: říjen 12
Bydliště: Hustopeče
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu pc se seká

Příspěvekod standacich » 30 pro 2014 11:04

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

tyto dvě položky mi nejdou fixnout (odstranit) když je dám fixnout a potom pustím scan tak se objeví znovu.
Test pamětí jsem dělal a byl ok to samý i defragmentaci disku.Vložím ti log z CrystalDisku.

----------------------------------------------------------------------------
CrystalDiskInfo 6.2.2 (C) 2008-2014 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Professional SP1 [6.1 Build 7601] (x64)
Date : 2014/12/30 11:04:05

-- Controller Map ----------------------------------------------------------
+ NVIDIA nForce Serial ATA Controller [ATA]
- ST310005 24AS SCSI Disk Device
- HL-DT-ST DVDRAM GH70N SCSI CdRom Device
+ NVIDIA nForce Serial ATA Controller [ATA]
- SAMSUNG HD160JJ SCSI Disk Device
+ AGQ2KEF0 IDE Controller [SCSI]
- WRGB WHYJ0PYRG5 SCSI CdRom Device
- A53423BT IDE Controller [SCSI]

-- Disk List ---------------------------------------------------------------
(1) ST31000524AS : 1000,2 GB [0/0/0, sm] - st
(2) SAMSUNG HD160JJ : 160,0 GB [1/1/0, sm]

----------------------------------------------------------------------------
(1) ST31000524AS
----------------------------------------------------------------------------
Model : ST31000524AS
Firmware : JC45
Serial Number : 5VPA12H8
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : SATA/300 | SATA/600
Power On Hours : 11616 hod.
Power On Count : 3389 krát
Temperature : 31 C (87 F)
Health Status : Dobrý
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : D0D0h [ON]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 117 _99 __6 00000946CBAA Počet chyb čtení
03 100 100 __0 000000000000 Čas na roztočení ploten
04 _97 _97 _20 000000000D5C Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 _84 _60 _30 000013F59B1C Počet chybných hledání
09 _87 _87 __0 000000002D60 Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _97 _97 _20 000000000D3D Počet cyklů zapnutí zařízení
B7 100 100 __0 000000000000 Specifický pro výrobce
B8 100 100 _99 000000000000 Ukončovacích chyb
BB _92 _92 __0 000000000008 Ohlášeno neopravitelných chyb
BC 100 _99 __0 00070007000D Časový limit příkazu
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _69 _47 _45 00001F16001F Teplota toku vzduchu
C2 _31 _53 __0 000D0000001F Teplota
C3 _52 _29 __0 00000946CBAA Počet oprav chybného čtení
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
F0 100 253 __0 ECE500004EBB Čas nastavování hlaviček - v hodinách
F1 100 253 __0 000073824682 Total Host Writes
F2 100 253 __0 0000894EE279 Total Host Reads

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2020 3556 5041 3132 4838
020: 0000 0000 0004 4A43 3435 2020 2020 5354 3331 3030
030: 3035 3234 4153 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 850E 0004 0048 0040
080: 01F0 0029 346B 7F01 4163 3469 BE01 4163 407F 0053
090: 0053 0000 FFFE 0000 D0D0 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 0000 0000 5000 C500
110: 4455 DF9D 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 6DB0
130: 7470 6DB0 7470 2020 0002 0140 0100 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 0000 004F 0280 0000 0000
150: 0008 0000 0000 0000 0000 0000 0000 0000 3F00 9800
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 103F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 1020 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 49A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 0F 00 75 63 AA CB 46 09 00 00 00 03 03
010: 00 64 64 00 00 00 00 00 00 00 04 32 00 61 61 5C
020: 0D 00 00 00 00 00 05 33 00 64 64 00 00 00 00 00
030: 00 00 07 0F 00 54 3C 1C 9B F5 13 00 00 00 09 32
040: 00 57 57 60 2D 00 00 00 00 00 0A 13 00 64 64 00
050: 00 00 00 00 00 00 0C 32 00 61 61 3D 0D 00 00 00
060: 00 00 B7 32 00 64 64 00 00 00 00 00 00 00 B8 32
070: 00 64 64 00 00 00 00 00 00 00 BB 32 00 5C 5C 08
080: 00 00 00 00 00 00 BC 32 00 64 63 0D 00 07 00 07
090: 00 00 BD 3A 00 64 64 00 00 00 00 00 00 00 BE 22
0A0: 00 45 2F 1F 00 16 1F 00 00 00 C2 22 00 1F 35 1F
0B0: 00 00 00 0D 00 00 C3 1A 00 34 1D AA CB 46 09 00
0C0: 00 00 C5 12 00 64 64 00 00 00 00 00 00 00 C6 10
0D0: 00 64 64 00 00 00 00 00 00 00 C7 3E 00 C8 C8 00
0E0: 00 00 00 00 00 00 F0 00 00 64 FD BB 4E 00 00 E5
0F0: EC 2B F1 00 00 64 FD 82 46 82 73 00 00 00 F2 00
100: 00 64 FD 79 E2 4E 89 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 82 00 58 02 00 7B
170: 03 00 01 00 01 AC 02 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 AC 94 F0 FE 13 26 00 00
1B0: 00 00 00 00 01 00 07 05 82 46 82 73 25 00 00 00
1C0: 79 E2 4E 89 5E 08 00 00 00 00 00 00 6E 2C 34 00
1D0: 00 00 00 00 00 00 00 00 D7 1C 00 00 30 00 0D 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 08
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 B5

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 01 06 00 00 00 00 00 00 00 00 00 00 03 00
010: 00 00 00 00 00 00 00 00 00 00 04 14 00 00 00 00
020: 00 00 00 00 00 00 05 24 00 00 00 00 00 00 00 00
030: 00 00 07 1E 00 00 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 61 00 00 00 00
050: 00 00 00 00 00 00 0C 14 00 00 00 00 00 00 00 00
060: 00 00 B7 00 00 00 00 00 00 00 00 00 00 00 B8 63
070: 00 00 00 00 00 00 00 00 00 00 BB 00 00 00 00 00
080: 00 00 00 00 00 00 BC 00 00 00 00 00 00 00 00 00
090: 00 00 BD 00 00 00 00 00 00 00 00 00 00 00 BE 2D
0A0: 00 00 00 00 00 00 00 00 00 00 C2 00 00 00 00 00
0B0: 00 00 00 00 00 00 C3 00 00 00 00 00 00 00 00 00
0C0: 00 00 C5 00 00 00 00 00 00 00 00 00 00 00 C6 00
0D0: 00 00 00 00 00 00 00 00 00 00 C7 00 00 00 00 00
0E0: 00 00 00 00 00 00 F0 00 00 00 00 00 00 00 00 00
0F0: 00 00 F1 00 00 00 00 00 00 00 00 00 00 00 F2 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 60

----------------------------------------------------------------------------
(2) SAMSUNG HD160JJ
----------------------------------------------------------------------------
Model : SAMSUNG HD160JJ
Firmware : ZM100-33
Serial Number : S08HJ1MYC29804
Disk Size : 160,0 GB (8,4/137,4/160,0/160,0)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 312581808
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ATA/ATAPI-7 T13 1532D version 4a
Transfer Mode : ---- | SATA/300
Power On Hours : 12200 hod.
Power On Count : 3260 krát
Temperature : 30 C (86 F)
Health Status : Pozor
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : FE00h [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 253 100 _51 000000000000 Počet chyb čtení
03 100 100 _25 0000000017C0 Čas na roztočení ploten
04 _95 _95 __0 0000000016AE Počet spuštění/zastavení
05 _90 _90 _10 000000000063 Počet přemapovaných sektorů
07 253 253 _51 000000000000 Počet chybných hledání
08 253 253 _15 000000000000 Čas potřebný na vyhledání
09 100 100 __0 000000002FA8 Hodin v činnosti
0A 253 253 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 253 __2 __0 000000000000 Počet pokusů o překalibrování
0C _97 _97 __0 000000000CBC Počet cyklů zapnutí zařízení
BE 148 _61 __0 00000000001E Teplota toku vzduchu
C2 148 _61 __0 00000000001E Teplota
C3 100 100 __0 0000000001D0 Počet oprav chybného čtení
C4 _90 _90 __0 000000000063 Počet udalostí s číslem realokování sektorů
C5 253 100 __0 000000000000 Počet podezřelých sektorů
C6 253 253 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 253 100 __0 000000000000 Počet chyb při zápisu sektorů
C9 253 100 __0 000000000000 Počet chyb při čtení programů z disku
CA 253 253 __0 000000000000 Počet chyb při směrování údajů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 8856 022A 003F 0000 0000 0000
010: 5330 3848 4A31 4D59 4332 3938 3034 2020 2020 2020
020: 0003 4000 0004 5A4D 3130 302D 3333 5341 4D53 554E
030: 4720 4844 3136 304A 4A20 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 0706 0000 004C 0040
080: 00FE 0021 746B 7F01 4023 7469 3C01 4023 40FF 003C
090: 003C 0000 FFFE 0000 FE00 0000 0000 0000 0000 0000
100: 9EB0 12A1 0000 0000 0000 0000 0000 0000 5000 0F00
110: 15C2 9804 0000 0000 0000 0000 0000 0000 0000 0000
120: 0000 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: FFFF 0400 1700 0000 0000 9A00 0300 2400 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 AEA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0F 00 FD 64 00 00 00 00 00 00 00 03 07
010: 00 64 64 C0 17 00 00 00 00 00 04 32 00 5F 5F AE
020: 16 00 00 00 00 00 05 33 00 5A 5A 63 00 00 00 00
030: 00 00 07 0F 00 FD FD 00 00 00 00 00 00 00 08 25
040: 00 FD FD 00 00 00 00 00 00 00 09 32 00 64 64 A8
050: 2F 00 00 00 00 00 0A 33 00 FD FD 00 00 00 00 00
060: 00 00 0B 12 00 FD 02 00 00 00 00 00 00 00 0C 32
070: 00 61 61 BC 0C 00 00 00 00 00 BE 22 00 94 3D 1E
080: 00 00 00 00 00 00 C2 22 00 94 3D 1E 00 00 00 00
090: 00 00 C3 1A 00 64 64 D0 01 00 00 00 00 00 C4 32
0A0: 00 5A 5A 63 00 00 00 00 00 00 C5 12 00 FD 64 00
0B0: 00 00 00 00 00 00 C6 30 00 FD FD 00 00 00 00 00
0C0: 00 00 C7 3E 00 C8 C8 00 00 00 00 00 00 00 C8 0A
0D0: 00 FD 64 00 00 00 00 00 00 00 C9 0A 00 FD 64 00
0E0: 00 00 00 00 00 00 CA 32 00 FD FD 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 82 00 5E 0E 00 5B
170: 03 00 01 00 01 3D 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 D9

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 00 00 00 00 00 00 00 00 00 00 03 19
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 0A 00 00 00 00 00 00 00 00
030: 00 00 07 33 00 00 00 00 00 00 00 00 00 00 08 0F
040: 00 00 00 00 00 00 00 00 00 00 09 00 00 00 00 00
050: 00 00 00 00 00 00 0A 33 00 00 00 00 00 00 00 00
060: 00 00 0B 00 00 00 00 00 00 00 00 00 00 00 0C 00
070: 00 00 00 00 00 00 00 00 00 00 BE 00 00 00 00 00
080: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
090: 00 00 C3 00 00 00 00 00 00 00 00 00 00 00 C4 00
0A0: 00 00 00 00 00 00 00 00 00 00 C5 00 00 00 00 00
0B0: 00 00 00 00 00 00 C6 00 00 00 00 00 00 00 00 00
0C0: 00 00 C7 00 00 00 00 00 00 00 00 00 00 00 C8 00
0D0: 00 00 00 00 00 00 00 00 00 00 C9 00 00 00 00 00
0E0: 00 00 00 00 00 00 CA 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 2B

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu pc se seká

Příspěvekod jaro3 » 30 pro 2014 18:56

(1) ST31000524AS
000000000008 Ohlášeno neopravitelných chyb

(2) SAMSUNG HD160JJ
000000000063 Počet udalostí s číslem realokování sektorů


Oby nejsou OK , to bude příčina těch problémů.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 53 hostů