prosim o kontrolu logu

Gnomica · Příspěvekod **Gnomica** » 09 dub 2011 14:43

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:40:11, on 9.4.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Hard Disk Sentinel\HDSentinel.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Program Files\CyberLink\PowerCinema\PCMAgent.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\CLML\CLMLSvc.exe
C:\Program Files\CyberLink\PlayMovie\PMVService.exe
C:\Program Files\CyberLink\TV Enhance\TVEService.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe
C:\Program Files\CyberLink\Shared files\brs.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Program Files\QIP Infium\infium.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Rebel\Downloads\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming
O4 - HKLM\..\Run: [PCMAgent] "C:\Program Files\CyberLink\PowerCinema\PCMAgent.exe"
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\CyberLink\PowerCinema\Kernel\CLML\CLMLSvc.exe"
O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\CyberLink\PlayMovie\PMVService.exe"
O4 - HKLM\..\Run: [TVEService] "C:\Program Files\CyberLink\TV Enhance\TVEService.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [RemoteControl] C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe
O4 - HKLM\..\Run: [BDRegion] C:\Program Files\Cyberlink\Shared files\brs.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [EPSON SX100 Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIEDE.EXE /FU "C:\Users\Rebel\AppData\Local\Temp\E_S1876.tmp" /EF "HKCU"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O17 - HKLM\System\CCS\Services\Tcpip\..\{7AB478B5-68B1-44D2-BAB1-5EDD7704FF6C}: NameServer = 10.0.0.138
O17 - HKLM\System\CS1\Services\Tcpip\..\{7AB478B5-68B1-44D2-BAB1-5EDD7704FF6C}: NameServer = 10.0.0.138
O17 - HKLM\System\CS2\Services\Tcpip\..\{7AB478B5-68B1-44D2-BAB1-5EDD7704FF6C}: NameServer = 10.0.0.138
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: O&O Defrag Agent (OODefragAgent) - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: TVEnhance Background Capture Service (TBCS) (TVECapSvc) - Unknown owner - C:\Program Files\CyberLink\TV Enhance\Kernel\TV\TVECapSvc.exe
O23 - Service: TVEnhance Task Scheduler (TTS)) (TVESched) - Unknown owner - C:\Program Files\CyberLink\TV Enhance\Kernel\TV\TVESched.exe

--
End of file - 5793 bytes

Reklama

Příspěvekod **Žbeky** » 09 dub 2011 14:48

Nějaké problémy?

V HJT fixni:

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Gnomica · Příspěvekod **Gnomica** » 09 dub 2011 15:11

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Verze databáze: 6319

Windows 6.1.7601 Service Pack 1
Internet Explorer 8.0.7601.17514

9.4.2011 15:08:02
mbam-log-2011-04-09 (15-08-02).txt

Typ kontroly: Rychlý test
Testované objekty: 139986
Uplynulý čas: 1 minut, 18 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

Příspěvekod **Žbeky** » 09 dub 2011 15:32

Nějaké problémy?

Gnomica · Příspěvekod **Gnomica** » 09 dub 2011 15:36

se systemem jako takovym žadne jen z TV kartou vytvoreni logu me bylo doporučno tak proč ne

i tak dik za kontrolu :smile:

Příspěvekod **Žbeky** » 09 dub 2011 15:39

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah

Gnomica · Příspěvekod **Gnomica** » 09 dub 2011 16:08

ComboFix 11-04-08.02 - Rebel 09.04.2011 15:52:25.2.2 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3327.2537 [GMT 2:00]
Spuštěný z: c:\users\Rebel\Downloads\ComboFix.exe
AV: ESET Smart Security 4.2 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 4.2 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-03-09 do 2011-04-09 )))))))))))))))))))))))))))))))
.
.
2011-04-09 13:55 . 2011-04-09 13:55 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-04-09 12:55 . 2011-04-09 12:55 -------- d-----w- c:\programdata\Malwarebytes
2011-04-09 12:55 . 2010-12-20 16:09 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-04-09 12:55 . 2011-04-09 12:55 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-04-09 12:55 . 2010-12-20 16:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-04-08 06:51 . 2011-03-23 09:11 6792528 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{1F43C4EB-2B69-493F-B961-B766C40DECC2}\mpengine.dll
2011-04-06 13:55 . 2011-04-06 13:55 -------- d-----w- c:\windows\Sun
2011-04-06 12:31 . 2011-04-06 12:31 -------- d-----w- c:\program files\Virtual Dub Mod
2011-04-05 13:53 . 2011-04-05 13:53 -------- d-----w- c:\program files\Google
2011-04-05 11:32 . 2011-04-05 12:08 -------- d-----w- C:\Fraps
2011-04-02 16:28 . 2011-04-07 10:57 -------- d-----w- c:\program files\Vob Blanker
2011-04-01 16:39 . 2011-04-01 16:39 -------- d--h--w- c:\windows\PIF
2011-04-01 09:12 . 2011-04-09 13:49 -------- d-----w- c:\program files\QIP Infium
2011-03-31 21:48 . 2011-03-31 21:48 86016 ----a-w- c:\windows\system32\frapsvid.dll
2011-03-31 19:58 . 2011-03-31 19:58 -------- d-----w- c:\program files\IrfanView
2011-03-29 20:26 . 2011-03-29 20:26 -------- d-----w- c:\program files\Common Files\EZB Systems
2011-03-28 19:32 . 2011-03-28 19:34 -------- d-----w- c:\program files\Audio checker
2011-03-28 19:32 . 2011-03-28 19:32 -------- d-----w- c:\program files\True Audio
2011-03-28 19:31 . 2011-03-28 19:31 -------- d-----w- c:\program files\FinalWire
2011-03-27 21:50 . 2011-04-09 13:46 -------- d-----r- c:\users\Public
2011-03-27 21:17 . 2007-01-26 00:42 2831232 ----a-w- c:\windows\system32\drivers\3xHybrid.sys
2011-03-27 10:54 . 2011-03-27 10:54 -------- d-----w- c:\program files\epson
2011-03-27 10:54 . 2007-07-12 22:00 71680 ----a-w- c:\windows\system32\escwiad.dll
2011-03-27 10:53 . 2009-07-29 07:12 86528 ----a-w- c:\windows\system32\E_FLBEDE.DLL
2011-03-27 10:53 . 2009-07-29 07:12 8192 ----a-w- c:\windows\system32\E_DCINST.DLL
2011-03-27 10:53 . 2009-07-29 07:12 78848 ----a-w- c:\windows\system32\E_FD4BEDE.DLL
2011-03-27 10:53 . 2011-03-27 10:54 -------- d-----w- c:\programdata\EPSON
2011-03-27 09:56 . 2011-03-27 09:57 -------- d-----w- c:\program files\Microsoft Works
2011-03-27 09:56 . 2011-03-27 09:56 -------- d-----w- c:\windows\PCHEALTH
2011-03-27 09:56 . 2011-03-27 09:56 -------- d-----w- c:\program files\Microsoft.NET
2011-03-27 09:55 . 2011-03-27 09:58 -------- d-----w- c:\programdata\Microsoft Help
2011-03-27 09:55 . 2011-03-27 09:55 -------- d-----r- C:\MSOCache
2011-03-27 09:37 . 2011-03-27 09:37 -------- d-----w- c:\program files\Common Files\Adobe Systems Shared
2011-03-27 09:17 . 2011-03-27 09:17 -------- d-----w- c:\program files\Common Files\CyberLink
2011-03-26 22:24 . 2011-03-26 22:24 -------- d-----w- c:\program files\ImgBurn
2011-03-26 22:07 . 2011-03-26 22:07 -------- d-----w- c:\program files\Mozilla Thunderbird
2011-03-26 21:44 . 2011-03-27 08:28 -------- d-----w- c:\programdata\Blizzard Entertainment
2011-03-26 21:23 . 2011-03-26 21:23 -------- d-----w- c:\programdata\Blizzard
2011-03-26 21:10 . 2011-03-26 21:17 -------- d-----w- c:\program files\Common Files\Blizzard Entertainment
2011-03-26 21:01 . 2011-03-26 21:01 -------- d-----w- c:\program files\FileZilla FTP Client
2011-03-26 21:00 . 2011-03-26 21:00 -------- d-----w- c:\program files\CCleaner
2011-03-26 20:56 . 2011-03-27 09:37 -------- d-----w- c:\program files\Common Files\Adobe
2011-03-26 20:46 . 2011-04-03 12:42 -------- d-----w- c:\program files\Hard Disk Sentinel
2011-03-26 20:46 . 2011-03-26 20:46 -------- d-----w- c:\programdata\AVS4YOU
2011-03-26 20:45 . 2011-03-26 20:45 -------- d-----w- c:\program files\Common Files\AVSMedia
2011-03-26 20:45 . 2011-03-26 20:46 -------- d-----w- c:\program files\AVS4YOU
2011-03-26 20:45 . 2008-08-13 09:22 974848 ----a-w- c:\windows\system32\mfc70.dll
2011-03-26 20:45 . 2008-08-13 09:22 487424 ----a-w- c:\windows\system32\msvcp70.dll
2011-03-26 20:45 . 2008-08-13 09:22 344064 ----a-w- c:\windows\system32\msvcr70.dll
2011-03-26 20:45 . 2008-08-13 09:22 1700352 ----a-w- c:\windows\system32\GdiPlus.dll
2011-03-26 20:45 . 2008-08-13 09:22 24576 ----a-w- c:\windows\system32\msxml3a.dll
2011-03-26 20:43 . 2011-03-26 20:43 -------- d-----w- c:\program files\Monkey's Audio
2011-03-26 20:43 . 2009-03-17 09:38 364544 ----a-w- c:\windows\system32\MACDll.dll
2011-03-26 20:43 . 2009-01-19 18:39 246424 ----a-w- c:\windows\system32\unicows.dll
2011-03-26 20:42 . 2011-03-26 20:42 -------- d-----w- c:\program files\FLAC
2011-03-26 20:41 . 2011-03-26 20:41 -------- d-----w- c:\program files\Medieval Software
2011-03-26 20:39 . 2011-03-26 20:39 -------- d-----w- c:\program files\Exact Audio Copy
2011-03-26 20:35 . 2011-03-26 20:35 -------- d-----w- c:\program files\uTorrent
2011-03-26 20:31 . 2011-03-26 20:31 -------- d-----w- c:\program files\AIMP2
2011-03-26 20:13 . 2011-03-26 20:14 -------- d-----w- c:\programdata\Nero
2011-03-26 20:13 . 2011-03-26 20:14 -------- d-----w- c:\program files\Common Files\Nero
2011-03-26 20:13 . 2011-03-26 20:13 -------- d-----w- c:\program files\Nero
2011-03-26 20:07 . 2010-11-29 06:56 545 ----a-w- c:\windows\UC.PIF
2011-03-26 20:07 . 2010-11-29 06:56 545 ----a-w- c:\windows\RAR.PIF
2011-03-26 20:07 . 2010-11-29 06:56 545 ----a-w- c:\windows\PKZIP.PIF
2011-03-26 20:07 . 2011-03-26 20:07 -------- d-----w- C:\totalcmd
2011-03-26 20:07 . 2010-11-29 06:56 545 ----a-w- c:\windows\PKUNZIP.PIF
2011-03-26 20:07 . 2010-11-29 06:56 545 ----a-w- c:\windows\NOCLOSE.PIF
2011-03-26 20:07 . 2010-11-29 06:56 545 ----a-w- c:\windows\LHA.PIF
2011-03-26 20:07 . 2010-11-29 06:56 545 ----a-w- c:\windows\ARJ.PIF
2011-03-26 20:03 . 2011-04-05 12:53 -------- d-----w- c:\program files\Notepad++
2011-03-26 20:01 . 2011-03-28 10:23 -------- d-----w- c:\program files\The KMPlayer
2011-03-26 20:00 . 2010-03-15 10:31 165376 ----a-w- c:\windows\system32\unrar.dll
2011-03-26 20:00 . 2011-02-28 08:00 80896 ----a-w- c:\windows\system32\ff_vfw.dll
2011-03-26 20:00 . 2011-02-15 22:30 121344 ----a-w- c:\windows\system32\lagarith.dll
2011-03-26 20:00 . 2010-12-07 18:40 183808 ----a-w- c:\windows\system32\xvidvfw.dll
2011-03-26 20:00 . 2010-12-07 18:22 810496 ----a-w- c:\windows\system32\xvidcore.dll
2011-03-26 20:00 . 2010-11-03 19:08 237568 ----a-w- c:\windows\system32\yv12vfw.dll
2011-03-26 20:00 . 2010-01-17 16:18 151552 ----a-w- c:\windows\system32\ac3acm.acm
2011-03-26 20:00 . 2008-09-24 19:41 839680 ----a-w- c:\windows\system32\lameACM.acm
2011-03-26 20:00 . 2006-04-02 13:47 630784 ----a-w- c:\windows\system32\vp7vfw.dll
2011-03-26 20:00 . 2011-03-26 20:00 -------- d-----w- c:\program files\K-Lite Codec Pack
2011-03-26 19:55 . 2011-04-06 15:24 -------- d-----w- c:\program files\JDownloader
2011-03-26 19:54 . 2011-03-26 19:54 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2011-03-26 19:54 . 2011-03-26 19:54 -------- d-----w- c:\program files\DAEMON Tools Lite
2011-03-26 19:54 . 2011-03-26 19:54 -------- d-----w- c:\programdata\DAEMON Tools Lite
2011-03-26 19:51 . 2011-03-26 19:51 -------- d-----w- c:\windows\system32\Macromed
2011-03-26 19:51 . 2011-03-26 19:51 -------- d-----w- c:\program files\Common Files\Java
2011-03-26 19:51 . 2011-03-26 19:50 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-03-26 19:50 . 2011-03-26 19:50 -------- d-----w- c:\program files\Java
2011-03-26 19:43 . 2011-01-17 05:47 161792 ----a-w- c:\windows\system32\d3d10_1.dll
2011-03-26 19:43 . 2011-02-19 06:30 805376 ----a-w- c:\windows\system32\FntCache.dll
2011-03-26 19:43 . 2011-02-19 06:30 1076736 ----a-w- c:\windows\system32\DWrite.dll
2011-03-26 19:43 . 2011-02-19 06:30 739840 ----a-w- c:\windows\system32\d2d1.dll
2011-03-26 19:43 . 2011-02-03 05:54 219008 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2011-03-26 19:43 . 2011-01-07 07:46 870912 ----a-w- c:\windows\system32\XpsPrint.dll
2011-03-26 19:43 . 2011-01-07 07:46 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2011-03-26 19:24 . 2011-03-26 19:24 -------- d-----w- c:\program files\ESET
2011-03-26 19:17 . 2011-03-26 19:17 -------- d-----w- c:\windows\system32\SPReview
2011-03-26 19:06 . 2011-03-26 19:06 -------- d-----w- c:\windows\system32\EventProviders
2011-03-26 18:09 . 2010-06-02 03:55 74072 ----a-w- c:\windows\system32\XAPOFX1_5.dll
2011-03-26 18:09 . 2010-06-02 03:55 527192 ----a-w- c:\windows\system32\XAudio2_7.dll
2011-03-26 18:09 . 2010-06-02 03:55 239960 ----a-w- c:\windows\system32\xactengine3_7.dll
2011-03-26 18:09 . 2010-05-26 10:41 470880 ----a-w- c:\windows\system32\d3dx10_43.dll
2011-03-26 18:09 . 2010-05-26 10:41 248672 ----a-w- c:\windows\system32\d3dx11_43.dll
2011-03-26 18:09 . 2010-05-26 10:41 2106216 ----a-w- c:\windows\system32\D3DCompiler_43.dll
2011-03-26 18:09 . 2010-05-26 10:41 1998168 ----a-w- c:\windows\system32\D3DX9_43.dll
2011-03-26 18:09 . 2010-05-26 10:41 1868128 ----a-w- c:\windows\system32\d3dcsx_43.dll
2011-03-26 18:06 . 2009-09-29 16:56 82432 ----a-w- c:\windows\system32\msxml4r.dll
2011-03-26 18:06 . 2009-09-29 16:56 44544 ----a-w- c:\windows\system32\msxml4a.dll
2011-03-26 18:06 . 2009-09-29 16:56 1233920 ----a-w- c:\windows\system32\msxml4.dll
2011-03-26 18:05 . 2011-03-27 09:16 -------- d-----w- c:\program files\CyberLink
2011-03-26 18:05 . 2011-03-27 09:21 -------- d-----w- c:\programdata\CyberLink
2011-03-26 18:04 . 2011-03-26 18:05 -------- d-----w- c:\programdata\Logishrd
2011-03-26 18:04 . 2011-03-26 18:04 -------- d-----w- c:\program files\Logitech
2011-03-26 18:04 . 2011-03-26 18:05 -------- d-----w- c:\program files\Common Files\LogiShrd
2011-03-26 18:01 . 2011-03-27 21:27 -------- d-----w- c:\program files\ASUS
2011-03-26 17:59 . 2011-03-26 17:59 -------- d-----w- C:\NVIDIA
2011-03-26 17:56 . 2011-03-26 17:56 -------- d-----w- c:\program files\Intel
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-03-26 19:16 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2011-02-22 23:51 . 2011-02-22 23:51 4280320 ----a-w- c:\windows\system32\GPhotos.scr
2011-01-25 10:41 . 2011-01-25 10:41 1627976 ----a-w- c:\windows\system32\ooscrsav.scr
2011-01-25 10:40 . 2011-01-25 10:40 275784 ----a-w- c:\windows\system32\oodbs.exe
2011-01-25 10:39 . 2011-01-25 10:39 535880 ----a-w- c:\windows\system32\oodssrs.dll
2011-01-25 10:38 . 2011-01-25 10:38 9544 ----a-w- c:\windows\system32\oodbsrs.dll
2011-03-18 17:55 . 2011-03-26 19:41 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-02-24 10025576]
"EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2010-10-28 1352272]
"PCMAgent"="c:\program files\CyberLink\PowerCinema\PCMAgent.exe" [2009-09-16 148776]
"CLMLServer"="c:\program files\CyberLink\PowerCinema\Kernel\CLML\CLMLSvc.exe" [2009-09-16 202024]
"PlayMovie"="c:\program files\CyberLink\PlayMovie\PMVService.exe" [2009-09-08 177384]
"TVEService"="c:\program files\CyberLink\TV Enhance\TVEService.exe" [2009-09-29 226536]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-01-12 2219184]
"RemoteControl"="c:\program files\ASUS\ASUS Remote\RemoteControlAppl.exe" [2007-02-15 65536]
"BDRegion"="c:\program files\Cyberlink\Shared files\brs.exe" [2011-03-01 75048]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2010-10-28 10:13 64592 ----a-w- c:\program files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS
.
[HKLM\~\startupfolder\C:^Users^Rebel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Registrace produktu.lnk]
path=c:\users\Rebel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Registrace produktu.lnk
backup=c:\windows\pss\Logitech . Registrace produktu.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2010-09-20 22:07 932288 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2011-01-31 08:44 35760 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl10]
2010-02-02 22:08 87336 ------w- c:\program files\CyberLink\PowerDVD10\PDVD10Serv.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2010-10-29 13:49 249064 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
R3 Ph3xIB32;Philips 713x Inbox PCI TV Card;c:\windows\system32\DRIVERS\Ph3xIB32.sys [2009-07-13 1311232]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2011-03-26 691696]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2010-12-21 115008]
S2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2011/03/27 11:17];c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl [2011-03-01 08:57 87536]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2010-12-21 137144]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2011-01-12 810144]
S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2010-12-21 41336]
S2 OODefragAgent;O&O Defrag Agent;c:\program files\OO Software\Defrag\oodag.exe [2011-01-25 2398536]
S2 TVECapSvc;TVEnhance Background Capture Service (TBCS);c:\program files\CyberLink\TV Enhance\Kernel\TV\TVECapSvc.exe [2009-09-29 464224]
S2 TVESched;TVEnhance Task Scheduler (TTS));c:\program files\CyberLink\TV Enhance\Kernel\TV\TVESched.exe [2009-09-29 189792]
S3 3xHybrid;ASUSTek SAA713x PCI Card;c:\windows\system32\DRIVERS\3xHybrid.sys [2007-01-26 2831232]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2011-02-16 340072]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc SensrSvc
.
.
------- Doplňkový sken -------
.
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~1\Office12\EXCEL.EXE/3000
TCP: {7AB478B5-68B1-44D2-BAB1-5EDD7704FF6C} = 10.0.0.138
FF - ProfilePath - c:\users\Rebel\AppData\Roaming\Mozilla\Firefox\Profiles\ayl1k01t.default\
FF - prefs.js: network.proxy.ftp - proxy.nasi.ova.czf
FF - prefs.js: network.proxy.ftp_port - 3128
FF - prefs.js: network.proxy.http - proxy.nasi.ova.czf
FF - prefs.js: network.proxy.http_port - 3128
FF - prefs.js: network.proxy.socks - proxy.nasi.ova.czf
FF - prefs.js: network.proxy.socks_port - 3128
FF - prefs.js: network.proxy.ssl - proxy.nasi.ova.czf
FF - prefs.js: network.proxy.ssl_port - 3128
FF - prefs.js: network.proxy.type - 0
.
.
------- Asociace souborů -------
.
.txt=Notepad++_file
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\{1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10o_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10o_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
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
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2011-04-09 15:56:30
ComboFix-quarantined-files.txt 2011-04-09 13:56
ComboFix2.txt 2011-04-09 13:46
.
Před spuštěním: Volných bajtů: 490 855 882 752
Po spuštění: Volných bajtů: 490 804 674 560
.
- - End Of File - - EEBF26558B26D149701359C10EF07CDC

Příspěvekod **Žbeky** » 09 dub 2011 16:15

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::

Registry::
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"=-
"ConsentPromptBehaviorUser"=-
"EnableLUA"=-
"EnableUIADesktopToggle"=-
"PromptOnSecureDesktop"=-

RegLock::
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu

Gnomica · Příspěvekod **Gnomica** » 09 dub 2011 16:42

((((((((((((((((((((((((( Soubory vytvořené od 2011-03-09 do 2011-04-09 )))))))))))))))))))))))))))))))
.
.
2011-04-09 12:55 . 2011-04-09 14:16 -------- d-----w- c:\programdata\Malwarebytes
2011-04-08 06:51 . 2011-03-23 09:11 6792528 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{1F43C4EB-2B69-493F-B961-B766C40DECC2}\mpengine.dll
2011-04-06 13:55 . 2011-04-06 13:55 -------- d-----w- c:\windows\Sun
2011-04-06 12:31 . 2011-04-06 12:31 -------- d-----w- c:\program files\Virtual Dub Mod
2011-04-05 13:53 . 2011-04-05 13:53 -------- d-----w- c:\program files\Google
2011-04-05 11:32 . 2011-04-05 12:08 -------- d-----w- C:\Fraps
2011-04-02 16:28 . 2011-04-07 10:57 -------- d-----w- c:\program files\Vob Blanker
2011-04-01 16:39 . 2011-04-01 16:39 -------- d--h--w- c:\windows\PIF
2011-04-01 09:12 . 2011-04-09 14:02 -------- d-----w- c:\program files\QIP Infium
2011-03-31 21:48 . 2011-03-31 21:48 86016 ----a-w- c:\windows\system32\frapsvid.dll
2011-03-31 19:58 . 2011-03-31 19:58 -------- d-----w- c:\program files\IrfanView
2011-03-29 20:26 . 2011-03-29 20:26 -------- d-----w- c:\program files\Common Files\EZB Systems
2011-03-28 19:32 . 2011-03-28 19:34 -------- d-----w- c:\program files\Audio checker
2011-03-28 19:32 . 2011-03-28 19:32 -------- d-----w- c:\program files\True Audio
2011-03-28 19:31 . 2011-03-28 19:31 -------- d-----w- c:\program files\FinalWire
2011-03-27 21:50 . 2011-04-09 13:46 -------- d-----r- c:\users\Public
2011-03-27 21:17 . 2007-01-26 00:42 2831232 ----a-w- c:\windows\system32\drivers\3xHybrid.sys
2011-03-27 10:54 . 2011-03-27 10:54 -------- d-----w- c:\program files\epson
2011-03-27 10:54 . 2007-07-12 22:00 71680 ----a-w- c:\windows\system32\escwiad.dll
2011-03-27 10:53 . 2009-07-29 07:12 86528 ----a-w- c:\windows\system32\E_FLBEDE.DLL
2011-03-27 10:53 . 2009-07-29 07:12 8192 ----a-w- c:\windows\system32\E_DCINST.DLL
2011-03-27 10:53 . 2009-07-29 07:12 78848 ----a-w- c:\windows\system32\E_FD4BEDE.DLL
2011-03-27 10:53 . 2011-03-27 10:54 -------- d-----w- c:\programdata\EPSON
2011-03-27 09:56 . 2011-03-27 09:57 -------- d-----w- c:\program files\Microsoft Works
2011-03-27 09:56 . 2011-03-27 09:56 -------- d-----w- c:\windows\PCHEALTH
2011-03-27 09:56 . 2011-03-27 09:56 -------- d-----w- c:\program files\Microsoft.NET
2011-03-27 09:55 . 2011-03-27 09:58 -------- d-----w- c:\programdata\Microsoft Help
2011-03-27 09:55 . 2011-03-27 09:55 -------- d-----r- C:\MSOCache
2011-03-27 09:37 . 2011-03-27 09:37 -------- d-----w- c:\program files\Common Files\Adobe Systems Shared
2011-03-27 09:17 . 2011-03-27 09:17 -------- d-----w- c:\program files\Common Files\CyberLink
2011-03-26 22:24 . 2011-03-26 22:24 -------- d-----w- c:\program files\ImgBurn
2011-03-26 22:07 . 2011-03-26 22:07 -------- d-----w- c:\program files\Mozilla Thunderbird
2011-03-26 21:44 . 2011-03-27 08:28 -------- d-----w- c:\programdata\Blizzard Entertainment
2011-03-26 21:23 . 2011-03-26 21:23 -------- d-----w- c:\programdata\Blizzard
2011-03-26 21:10 . 2011-03-26 21:17 -------- d-----w- c:\program files\Common Files\Blizzard Entertainment
2011-03-26 21:01 . 2011-03-26 21:01 -------- d-----w- c:\program files\FileZilla FTP Client
2011-03-26 21:00 . 2011-03-26 21:00 -------- d-----w- c:\program files\CCleaner
2011-03-26 20:56 . 2011-03-27 09:37 -------- d-----w- c:\program files\Common Files\Adobe
2011-03-26 20:46 . 2011-04-03 12:42 -------- d-----w- c:\program files\Hard Disk Sentinel
2011-03-26 20:46 . 2011-03-26 20:46 -------- d-----w- c:\programdata\AVS4YOU
2011-03-26 20:45 . 2011-03-26 20:45 -------- d-----w- c:\program files\Common Files\AVSMedia
2011-03-26 20:45 . 2011-03-26 20:46 -------- d-----w- c:\program files\AVS4YOU
2011-03-26 20:45 . 2008-08-13 09:22 974848 ----a-w- c:\windows\system32\mfc70.dll
2011-03-26 20:45 . 2008-08-13 09:22 487424 ----a-w- c:\windows\system32\msvcp70.dll
2011-03-26 20:45 . 2008-08-13 09:22 344064 ----a-w- c:\windows\system32\msvcr70.dll
2011-03-26 20:45 . 2008-08-13 09:22 1700352 ----a-w- c:\windows\system32\GdiPlus.dll
2011-03-26 20:45 . 2008-08-13 09:22 24576 ----a-w- c:\windows\system32\msxml3a.dll
2011-03-26 20:43 . 2011-03-26 20:43 -------- d-----w- c:\program files\Monkey's Audio
2011-03-26 20:43 . 2009-03-17 09:38 364544 ----a-w- c:\windows\system32\MACDll.dll
2011-03-26 20:43 . 2009-01-19 18:39 246424 ----a-w- c:\windows\system32\unicows.dll
2011-03-26 20:42 . 2011-03-26 20:42 -------- d-----w- c:\program files\FLAC
2011-03-26 20:41 . 2011-03-26 20:41 -------- d-----w- c:\program files\Medieval Software
2011-03-26 20:39 . 2011-03-26 20:39 -------- d-----w- c:\program files\Exact Audio Copy
2011-03-26 20:35 . 2011-03-26 20:35 -------- d-----w- c:\program files\uTorrent
2011-03-26 20:31 . 2011-03-26 20:31 -------- d-----w- c:\program files\AIMP2
2011-03-26 20:13 . 2011-03-26 20:14 -------- d-----w- c:\programdata\Nero
2011-03-26 20:13 . 2011-03-26 20:14 -------- d-----w- c:\program files\Common Files\Nero
2011-03-26 20:13 . 2011-03-26 20:13 -------- d-----w- c:\program files\Nero
2011-03-26 20:07 . 2010-11-29 06:56 545 ----a-w- c:\windows\UC.PIF
2011-03-26 20:07 . 2010-11-29 06:56 545 ----a-w- c:\windows\RAR.PIF
2011-03-26 20:07 . 2010-11-29 06:56 545 ----a-w- c:\windows\PKZIP.PIF
2011-03-26 20:07 . 2011-03-26 20:07 -------- d-----w- C:\totalcmd
2011-03-26 20:07 . 2010-11-29 06:56 545 ----a-w- c:\windows\PKUNZIP.PIF
2011-03-26 20:07 . 2010-11-29 06:56 545 ----a-w- c:\windows\NOCLOSE.PIF
2011-03-26 20:07 . 2010-11-29 06:56 545 ----a-w- c:\windows\LHA.PIF
2011-03-26 20:07 . 2010-11-29 06:56 545 ----a-w- c:\windows\ARJ.PIF
2011-03-26 20:03 . 2011-04-05 12:53 -------- d-----w- c:\program files\Notepad++
2011-03-26 20:01 . 2011-03-28 10:23 -------- d-----w- c:\program files\The KMPlayer
2011-03-26 20:00 . 2010-03-15 10:31 165376 ----a-w- c:\windows\system32\unrar.dll
2011-03-26 20:00 . 2011-02-28 08:00 80896 ----a-w- c:\windows\system32\ff_vfw.dll
2011-03-26 20:00 . 2011-02-15 22:30 121344 ----a-w- c:\windows\system32\lagarith.dll
2011-03-26 20:00 . 2010-12-07 18:40 183808 ----a-w- c:\windows\system32\xvidvfw.dll
2011-03-26 20:00 . 2010-12-07 18:22 810496 ----a-w- c:\windows\system32\xvidcore.dll
2011-03-26 20:00 . 2010-11-03 19:08 237568 ----a-w- c:\windows\system32\yv12vfw.dll
2011-03-26 20:00 . 2010-01-17 16:18 151552 ----a-w- c:\windows\system32\ac3acm.acm
2011-03-26 20:00 . 2008-09-24 19:41 839680 ----a-w- c:\windows\system32\lameACM.acm
2011-03-26 20:00 . 2006-04-02 13:47 630784 ----a-w- c:\windows\system32\vp7vfw.dll
2011-03-26 20:00 . 2011-03-26 20:00 -------- d-----w- c:\program files\K-Lite Codec Pack
2011-03-26 19:55 . 2011-04-06 15:24 -------- d-----w- c:\program files\JDownloader
2011-03-26 19:54 . 2011-03-26 19:54 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2011-03-26 19:54 . 2011-03-26 19:54 -------- d-----w- c:\program files\DAEMON Tools Lite
2011-03-26 19:54 . 2011-03-26 19:54 -------- d-----w- c:\programdata\DAEMON Tools Lite
2011-03-26 19:51 . 2011-03-26 19:51 -------- d-----w- c:\windows\system32\Macromed
2011-03-26 19:51 . 2011-03-26 19:51 -------- d-----w- c:\program files\Common Files\Java
2011-03-26 19:51 . 2011-03-26 19:50 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-03-26 19:50 . 2011-03-26 19:50 -------- d-----w- c:\program files\Java
2011-03-26 19:43 . 2011-01-17 05:47 161792 ----a-w- c:\windows\system32\d3d10_1.dll
2011-03-26 19:43 . 2011-02-19 06:30 805376 ----a-w- c:\windows\system32\FntCache.dll
2011-03-26 19:43 . 2011-02-19 06:30 1076736 ----a-w- c:\windows\system32\DWrite.dll
2011-03-26 19:43 . 2011-02-19 06:30 739840 ----a-w- c:\windows\system32\d2d1.dll
2011-03-26 19:43 . 2011-02-03 05:54 219008 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2011-03-26 19:43 . 2011-01-07 07:46 870912 ----a-w- c:\windows\system32\XpsPrint.dll
2011-03-26 19:43 . 2011-01-07 07:46 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2011-03-26 19:24 . 2011-03-26 19:24 -------- d-----w- c:\program files\ESET
2011-03-26 19:17 . 2011-03-26 19:17 -------- d-----w- c:\windows\system32\SPReview
2011-03-26 19:06 . 2011-03-26 19:06 -------- d-----w- c:\windows\system32\EventProviders
2011-03-26 18:09 . 2010-06-02 03:55 74072 ----a-w- c:\windows\system32\XAPOFX1_5.dll
2011-03-26 18:09 . 2010-06-02 03:55 527192 ----a-w- c:\windows\system32\XAudio2_7.dll
2011-03-26 18:09 . 2010-06-02 03:55 239960 ----a-w- c:\windows\system32\xactengine3_7.dll
2011-03-26 18:09 . 2010-05-26 10:41 470880 ----a-w- c:\windows\system32\d3dx10_43.dll
2011-03-26 18:09 . 2010-05-26 10:41 248672 ----a-w- c:\windows\system32\d3dx11_43.dll
2011-03-26 18:09 . 2010-05-26 10:41 2106216 ----a-w- c:\windows\system32\D3DCompiler_43.dll
2011-03-26 18:09 . 2010-05-26 10:41 1998168 ----a-w- c:\windows\system32\D3DX9_43.dll
2011-03-26 18:09 . 2010-05-26 10:41 1868128 ----a-w- c:\windows\system32\d3dcsx_43.dll
2011-03-26 18:06 . 2009-09-29 16:56 82432 ----a-w- c:\windows\system32\msxml4r.dll
2011-03-26 18:06 . 2009-09-29 16:56 44544 ----a-w- c:\windows\system32\msxml4a.dll
2011-03-26 18:06 . 2009-09-29 16:56 1233920 ----a-w- c:\windows\system32\msxml4.dll
2011-03-26 18:05 . 2011-03-27 09:16 -------- d-----w- c:\program files\CyberLink
2011-03-26 18:05 . 2011-03-27 09:21 -------- d-----w- c:\programdata\CyberLink
2011-03-26 18:04 . 2011-03-26 18:05 -------- d-----w- c:\programdata\Logishrd
2011-03-26 18:04 . 2011-03-26 18:04 -------- d-----w- c:\program files\Logitech
2011-03-26 18:04 . 2011-03-26 18:05 -------- d-----w- c:\program files\Common Files\LogiShrd
2011-03-26 18:01 . 2011-03-27 21:27 -------- d-----w- c:\program files\ASUS
2011-03-26 17:59 . 2011-03-26 17:59 -------- d-----w- C:\NVIDIA
2011-03-26 17:56 . 2011-03-26 17:56 -------- d-----w- c:\program files\Intel
2011-03-26 17:56 . 2010-06-17 11:02 53248 ----a-w- c:\windows\system32\CSVer.dll
2011-03-26 17:56 . 2011-03-26 17:56 -------- d-----w- C:\Intel
2011-03-26 17:56 . 2011-04-09 14:03 -------- d-----w- c:\windows\system32\wbem\Performance
2011-03-26 17:45 . 2011-03-26 17:49 -------- d-----w- c:\windows\Panther
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-03-26 19:16 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2011-02-22 23:51 . 2011-02-22 23:51 4280320 ----a-w- c:\windows\system32\GPhotos.scr
2011-01-25 10:41 . 2011-01-25 10:41 1627976 ----a-w- c:\windows\system32\ooscrsav.scr
2011-01-25 10:40 . 2011-01-25 10:40 275784 ----a-w- c:\windows\system32\oodbs.exe
2011-01-25 10:39 . 2011-01-25 10:39 535880 ----a-w- c:\windows\system32\oodssrs.dll
2011-01-25 10:38 . 2011-01-25 10:38 9544 ----a-w- c:\windows\system32\oodbsrs.dll
2011-03-18 17:55 . 2011-03-26 19:41 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-02-24 10025576]
"EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2010-10-28 1352272]
"PCMAgent"="c:\program files\CyberLink\PowerCinema\PCMAgent.exe" [2009-09-16 148776]
"CLMLServer"="c:\program files\CyberLink\PowerCinema\Kernel\CLML\CLMLSvc.exe" [2009-09-16 202024]
"PlayMovie"="c:\program files\CyberLink\PlayMovie\PMVService.exe" [2009-09-08 177384]
"TVEService"="c:\program files\CyberLink\TV Enhance\TVEService.exe" [2009-09-29 226536]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-01-12 2219184]
"RemoteControl"="c:\program files\ASUS\ASUS Remote\RemoteControlAppl.exe" [2007-02-15 65536]
"BDRegion"="c:\program files\Cyberlink\Shared files\brs.exe" [2011-03-01 75048]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2010-10-28 10:13 64592 ----a-w- c:\program files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS
.
[HKLM\~\startupfolder\C:^Users^Rebel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Registrace produktu.lnk]
path=c:\users\Rebel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Registrace produktu.lnk
backup=c:\windows\pss\Logitech . Registrace produktu.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2010-09-20 22:07 932288 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2011-01-31 08:44 35760 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl10]
2010-02-02 22:08 87336 ------w- c:\program files\CyberLink\PowerDVD10\PDVD10Serv.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2010-10-29 13:49 249064 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
R3 Ph3xIB32;Philips 713x Inbox PCI TV Card;c:\windows\system32\DRIVERS\Ph3xIB32.sys [2009-07-13 1311232]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2011-03-26 691696]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2010-12-21 115008]
S2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2011/03/27 11:17];c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl [2011-03-01 08:57 87536]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2010-12-21 137144]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2011-01-12 810144]
S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2010-12-21 41336]
S2 OODefragAgent;O&O Defrag Agent;c:\program files\OO Software\Defrag\oodag.exe [2011-01-25 2398536]
S2 TVECapSvc;TVEnhance Background Capture Service (TBCS);c:\program files\CyberLink\TV Enhance\Kernel\TV\TVECapSvc.exe [2009-09-29 464224]
S2 TVESched;TVEnhance Task Scheduler (TTS));c:\program files\CyberLink\TV Enhance\Kernel\TV\TVESched.exe [2009-09-29 189792]
S3 3xHybrid;ASUSTek SAA713x PCI Card;c:\windows\system32\DRIVERS\3xHybrid.sys [2007-01-26 2831232]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2011-02-16 340072]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc SensrSvc
.
.
------- Doplňkový sken -------
.
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~1\Office12\EXCEL.EXE/3000
TCP: {7AB478B5-68B1-44D2-BAB1-5EDD7704FF6C} = 10.0.0.138
FF - ProfilePath - c:\users\Rebel\AppData\Roaming\Mozilla\Firefox\Profiles\ayl1k01t.default\
FF - prefs.js: network.proxy.ftp - proxy.nasi.ova.czf
FF - prefs.js: network.proxy.ftp_port - 3128
FF - prefs.js: network.proxy.http - proxy.nasi.ova.czf
FF - prefs.js: network.proxy.http_port - 3128
FF - prefs.js: network.proxy.socks - proxy.nasi.ova.czf
FF - prefs.js: network.proxy.socks_port - 3128
FF - prefs.js: network.proxy.ssl - proxy.nasi.ova.czf
FF - prefs.js: network.proxy.ssl_port - 3128
FF - prefs.js: network.proxy.type - 0
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\{1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\NVIDIA Corporation\Display\NvXDSync.exe
c:\windows\system32\nvvsvc.exe
c:\windows\system32\taskhost.exe
c:\program files\CyberLink\Shared files\RichVideo.exe
c:\program files\Hard Disk Sentinel\HDSentinel.exe
c:\windows\system32\conhost.exe
c:\program files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
.
**************************************************************************
.
Celkový čas: 2011-04-09 16:29:04 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-04-09 14:29
.
Před spuštěním: Volných bajtů: 490 866 380 800
Po spuštění: Volných bajtů: 490 731 028 480
.
- - End Of File - - 43A5ADDDD0CF0C9E51204B61DCE5997D

Příspěvekod **Žbeky** » 09 dub 2011 17:21

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

vyčisti systém CCleanerem

a použij i T-Cleaner
smaže vše po Combu,MWAVu atd.-stáhneš>spustíš

pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj AVG , Avast,Avira či Microsoft Security Essentials následně T-Cleaner smaž a zapni si AVG , Avast, Avira či Microsoft Security Essentials

+ Nový HJT log

Jak se chová PC?

Gnomica · Příspěvekod **Gnomica** » 09 dub 2011 17:32

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:28:49, on 9.4.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Hard Disk Sentinel\HDSentinel.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Program Files\CyberLink\PowerCinema\PCMAgent.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\CLML\CLMLSvc.exe
C:\Program Files\CyberLink\PlayMovie\PMVService.exe
C:\Program Files\CyberLink\TV Enhance\TVEService.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe
C:\Program Files\CyberLink\Shared files\brs.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\QIP Infium\infium.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Rebel\Desktop\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming
O4 - HKLM\..\Run: [PCMAgent] "C:\Program Files\CyberLink\PowerCinema\PCMAgent.exe"
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\CyberLink\PowerCinema\Kernel\CLML\CLMLSvc.exe"
O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\CyberLink\PlayMovie\PMVService.exe"
O4 - HKLM\..\Run: [TVEService] "C:\Program Files\CyberLink\TV Enhance\TVEService.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [RemoteControl] C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe
O4 - HKLM\..\Run: [BDRegion] C:\Program Files\Cyberlink\Shared files\brs.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: O&O Defrag Agent (OODefragAgent) - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: TVEnhance Background Capture Service (TBCS) (TVECapSvc) - Unknown owner - C:\Program Files\CyberLink\TV Enhance\Kernel\TV\TVECapSvc.exe
O23 - Service: TVEnhance Task Scheduler (TTS)) (TVESched) - Unknown owner - C:\Program Files\CyberLink\TV Enhance\Kernel\TV\TVESched.exe

--
End of file - 4477 bytes

win je OK ale power cinema to ma uz zasebou po vsem cisteni a tech padu z bsod se pri spusteni rovnou i ukonci z hlaskou ze aplikace prestala pracovat a je ji nutne ukoncit

Příspěvekod **Žbeky** » 09 dub 2011 17:37

Odinstaluj ji, pročisti znovu PC ccleanerem (soubory i registry) a pak znova nainstaluj

prosim o kontrolu logu

prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Re: prosim o kontrolu logu

Kdo je online