Prosím o kontrolu logu + pár bluescreenů

[karollin]

Nějak mi to nejde .. Když to přesunu na tu ikonku toho Combofixu, tak se mi to spustí jako normálně jen.. To modré okno píše, že to hledá nějaké ty zákeřné soubory (po hodině stále nic) a seklo se to celkově (takhle 2x za sebou).
Nevíš co to je za ovladač co to může nejspíše způsobovat?
MiliNesse mi odepsal, ale potřebuje, aby mi pomohl, soubor, který se mi vytvořil při BSODU v pc, ale ten mi CCleaner smazal a ten soubor se vytvoří, až mi to znova spadne, ale to je nejspíš problém, protože mi to vždycky blbne tak 2dny v měsíci (ale blbne to zase o to brutálněji - že celý den zápasím s tím, abych pc udržela zapnutý) a pak mám tak měsíc klid..

[Reklama]

[jaro3]

Zkus ten script ještě jednou , ale v nouz. režimu.

[karollin]

Ták, LOG z Combofixu:

ComboFix 11-12-09.02 - Kajushe 11.12.2011 7:56.2.4 - x86 MINIMAL
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.2046.1644 [GMT 1:00]
Spuštěný z: c:\users\Kajushe\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Kajushe\Desktop\CFScript.txt
AV: AVG Internet Security 2012 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
FW: AVG Firewall *Disabled* {621CC794-9486-F902-D092-0484E8EA828B}
SP: AVG Internet Security 2012 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\users\Kajushe\AppData\Local\Temp\catchme.dll"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Temp
c:\windows\system32\sda
c:\windows\system32\sda\SDRTCPRM.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-11-11 do 2011-12-11 )))))))))))))))))))))))))))))))
.
.
V tomto časovém úseku nebyly vytvořeny žádné nové soubory.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-12-05 20:07 . 2007-01-02 01:09 319456 ----a-w- c:\windows\DIFxAPI.dll
2011-11-11 13:41 . 2011-10-28 10:37 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-10-29 16:19 . 2011-10-29 16:19 161792 ----a-w- c:\windows\system32\msls31.dll
2011-10-29 16:19 . 2011-10-29 16:19 1126912 ----a-w- c:\windows\system32\wininet.dll
2011-10-29 16:19 . 2011-10-29 16:19 86528 ----a-w- c:\windows\system32\iesysprep.dll
2011-10-29 16:19 . 2011-10-29 16:19 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2011-10-29 16:19 . 2011-10-29 16:19 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2011-10-29 16:19 . 2011-10-29 16:19 63488 ----a-w- c:\windows\system32\tdc.ocx
2011-10-29 16:19 . 2011-10-29 16:19 48640 ----a-w- c:\windows\system32\mshtmler.dll
2011-10-29 16:19 . 2011-10-29 16:19 367104 ----a-w- c:\windows\system32\html.iec
2011-10-29 16:19 . 2011-10-29 16:19 74752 ----a-w- c:\windows\system32\iesetup.dll
2011-10-29 16:19 . 2011-10-29 16:19 23552 ----a-w- c:\windows\system32\licmgr10.dll
2011-10-29 16:19 . 2011-10-29 16:19 1427456 ----a-w- c:\windows\system32\inetcpl.cpl
2011-10-29 16:19 . 2011-10-29 16:19 420864 ----a-w- c:\windows\system32\vbscript.dll
2011-10-29 16:19 . 2011-10-29 16:19 152064 ----a-w- c:\windows\system32\wextract.exe
2011-10-29 16:19 . 2011-10-29 16:19 150528 ----a-w- c:\windows\system32\iexpress.exe
2011-10-29 16:19 . 2011-10-29 16:19 35840 ----a-w- c:\windows\system32\imgutil.dll
2011-10-29 16:19 . 2011-10-29 16:19 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-10-29 16:19 . 2011-10-29 16:19 1798144 ----a-w- c:\windows\system32\jscript9.dll
2011-10-29 16:19 . 2011-10-29 16:19 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2011-10-29 16:19 . 2011-10-29 16:19 11776 ----a-w- c:\windows\system32\mshta.exe
2011-10-29 16:19 . 2011-10-29 16:19 101888 ----a-w- c:\windows\system32\admparse.dll
2011-10-29 16:18 . 2011-10-29 16:18 110592 ----a-w- c:\windows\system32\IEAdvpack.dll
2011-10-29 09:11 . 2006-11-02 10:32 101888 ----a-w- c:\windows\system32\ifxcardm.dll
2011-10-29 09:11 . 2006-11-02 10:32 82432 ----a-w- c:\windows\system32\axaltocm.dll
2011-10-28 10:12 . 2011-10-28 10:12 377344 ----a-w- c:\windows\system32\winhttp.dll
2011-10-28 10:11 . 2011-10-28 10:11 40960 ----a-w- c:\windows\system32\drivers\cs-CZ\http.sys.mui
2011-10-27 21:02 . 2011-10-27 21:02 499712 ----a-w- c:\windows\system32\kerberos.dll
2011-10-27 21:00 . 2011-10-27 21:00 1793536 ----a-w- c:\windows\system32\NlsLexicons0045.dll
2011-10-27 21:00 . 2011-10-27 21:00 1808896 ----a-w- c:\windows\system32\NlsLexicons0046.dll
2011-10-27 21:00 . 2011-10-27 21:00 1558016 ----a-w- c:\windows\system32\NlsLexicons0049.dll
2011-10-27 21:00 . 2011-10-27 21:00 1411072 ----a-w- c:\windows\system32\NlsLexicons0047.dll
2011-10-27 21:00 . 2011-10-27 21:00 1782272 ----a-w- c:\windows\system32\NlsLexicons0039.dll
2011-10-27 21:00 . 2011-10-27 21:00 1236992 ----a-w- c:\windows\system32\NlsLexicons0020.dll
2011-10-27 21:00 . 2011-10-27 21:00 2136064 ----a-w- c:\windows\system32\NlsLexicons0021.dll
2011-10-27 21:00 . 2011-10-27 21:00 5499904 ----a-w- c:\windows\system32\NlsLexicons0022.dll
2011-10-27 21:00 . 2011-10-27 21:00 7964672 ----a-w- c:\windows\system32\NlsLexicons0024.dll
2011-10-27 21:00 . 2011-10-27 21:00 6224896 ----a-w- c:\windows\system32\NlsLexicons0027.dll
2011-10-27 21:00 . 2011-10-27 21:00 5791232 ----a-w- c:\windows\system32\NlsLexicons0026.dll
2011-10-27 21:00 . 2011-10-27 21:00 4175872 ----a-w- c:\windows\system32\NlsLexicons0010.dll
2011-10-27 21:00 . 2011-10-27 21:00 2466816 ----a-w- c:\windows\system32\NlsLexicons0011.dll
2011-10-27 21:00 . 2011-10-27 21:00 6781440 ----a-w- c:\windows\system32\NlsLexicons0019.dll
2011-10-27 21:00 . 2011-10-27 21:00 4981248 ----a-w- c:\windows\system32\NlsLexicons0013.dll
2011-10-27 21:00 . 2011-10-27 21:00 3331072 ----a-w- c:\windows\system32\NlsLexicons0018.dll
2011-10-27 21:00 . 2011-10-27 21:00 11722752 ----a-w- c:\windows\system32\NlsLexicons0001.dll
2011-10-27 21:00 . 2011-10-27 21:00 4164096 ----a-w- c:\windows\system32\NlsLexicons0002.dll
2011-10-27 21:00 . 2011-10-27 21:00 1452544 ----a-w- c:\windows\system32\NlsLexicons0003.dll
2011-10-27 21:00 . 2011-10-27 21:00 3419136 ----a-w- c:\windows\system32\NlsLexicons004a.dll
2011-10-27 21:00 . 2011-10-27 21:00 1702912 ----a-w- c:\windows\system32\NlsLexicons004b.dll
2011-10-27 21:00 . 2011-10-27 21:00 4093440 ----a-w- c:\windows\system32\NlsLexicons004c.dll
2011-10-27 21:00 . 2011-10-27 21:00 1972736 ----a-w- c:\windows\system32\NlsLexicons004e.dll
2011-10-27 21:00 . 2011-10-27 21:00 6014976 ----a-w- c:\windows\system32\NlsLexicons001a.dll
2011-10-27 21:00 . 2011-10-27 21:00 4096 ----a-w- c:\windows\system32\NlsLexicons002a.dll
2011-10-27 21:00 . 2011-10-27 21:00 4045824 ----a-w- c:\windows\system32\NlsLexicons003e.dll
2011-10-27 21:00 . 2011-10-27 21:00 6585856 ----a-w- c:\windows\system32\NlsLexicons001b.dll
2011-10-27 21:00 . 2011-10-27 21:00 6346240 ----a-w- c:\windows\system32\NlsLexicons001d.dll
2011-10-27 21:00 . 2011-10-27 21:00 9892864 ----a-w- c:\windows\system32\NlsLexicons000a.dll
2011-10-27 21:00 . 2011-10-27 21:00 6237696 ----a-w- c:\windows\system32\NlsLexicons000c.dll
2011-10-27 21:00 . 2011-10-27 21:00 1722368 ----a-w- c:\windows\system32\NlsLexicons000d.dll
2011-10-27 21:00 . 2011-10-27 21:00 5654528 ----a-w- c:\windows\system32\NlsLexicons000f.dll
2011-10-27 21:00 . 2011-10-27 21:00 5090816 ----a-w- c:\windows\system32\NlsLexicons0416.dll
2011-10-27 21:00 . 2011-10-27 21:00 4616192 ----a-w- c:\windows\system32\NlsLexicons0414.dll
2011-10-27 21:00 . 2011-10-27 21:00 5031936 ----a-w- c:\windows\system32\NlsLexicons0816.dll
2011-10-27 21:00 . 2011-10-27 21:00 7042560 ----a-w- c:\windows\system32\NlsLexicons081a.dll
2011-10-27 21:00 . 2011-10-27 21:00 5071872 ----a-w- c:\windows\system32\NlsModels0011.dll
2011-10-27 21:00 . 2011-10-27 21:00 3104768 ----a-w- c:\windows\system32\NlsData0047.dll
2011-10-27 21:00 . 2011-10-27 21:00 3104768 ----a-w- c:\windows\system32\NlsData0046.dll
2011-10-27 21:00 . 2011-10-27 21:00 3104768 ----a-w- c:\windows\system32\NlsData0045.dll
2011-10-27 21:00 . 2011-10-27 21:00 3104768 ----a-w- c:\windows\system32\NlsData0049.dll
2011-10-27 21:00 . 2011-10-27 21:00 3104768 ----a-w- c:\windows\system32\NlsData0039.dll
2011-10-27 21:00 . 2011-10-27 21:00 3104768 ----a-w- c:\windows\system32\NlsData0020.dll
2011-10-27 21:00 . 2011-10-27 21:00 1801216 ----a-w- c:\windows\system32\NlsData0021.dll
2011-10-27 21:00 . 2011-10-27 21:00 1965056 ----a-w- c:\windows\system32\NlsData0026.dll
2011-10-27 21:00 . 2011-10-27 21:00 1965056 ----a-w- c:\windows\system32\NlsData0024.dll
2011-10-27 21:00 . 2011-10-27 21:00 1801216 ----a-w- c:\windows\system32\NlsData0022.dll
2011-10-27 21:00 . 2011-10-27 21:00 4495360 ----a-w- c:\windows\system32\NlsData0010.dll
2011-10-27 21:00 . 2011-10-27 21:00 1966592 ----a-w- c:\windows\system32\NlsData0027.dll
2011-10-27 21:00 . 2011-10-27 21:00 2657280 ----a-w- c:\windows\system32\NlsData0011.dll
2011-10-27 21:00 . 2011-10-27 21:00 3466752 ----a-w- c:\windows\system32\NlsData0013.dll
2011-10-27 21:00 . 2011-10-27 21:00 1965056 ----a-w- c:\windows\system32\NlsData0018.dll
2011-10-27 21:00 . 2011-10-27 21:00 1523712 ----a-w- c:\windows\system32\NlsData0000.dll
2011-10-27 21:00 . 2011-10-27 21:00 4497408 ----a-w- c:\windows\system32\NlsData0019.dll
2011-10-27 21:00 . 2011-10-27 21:00 2599936 ----a-w- c:\windows\system32\NlsData0001.dll
2011-10-27 21:00 . 2011-10-27 21:00 1965056 ----a-w- c:\windows\system32\NlsData0002.dll
2011-10-27 21:00 . 2011-10-27 21:00 1965056 ----a-w- c:\windows\system32\NlsData0003.dll
2011-10-27 21:00 . 2011-10-27 21:00 4875776 ----a-w- c:\windows\system32\NlsData0009.dll
2011-10-27 21:00 . 2011-10-27 21:00 2243072 ----a-w- c:\windows\system32\NlsData0007.dll
2011-10-27 21:00 . 2011-10-27 21:00 3104768 ----a-w- c:\windows\system32\NlsData004a.dll
2011-10-27 21:00 . 2011-10-27 21:00 3104768 ----a-w- c:\windows\system32\NlsData004e.dll
2011-10-27 21:00 . 2011-10-27 21:00 3104768 ----a-w- c:\windows\system32\NlsData004c.dll
2011-10-27 21:00 . 2011-10-27 21:00 3104768 ----a-w- c:\windows\system32\NlsData004b.dll
2011-10-27 21:00 . 2011-10-27 21:00 1801216 ----a-w- c:\windows\system32\NlsData003e.dll
2011-10-27 21:00 . 2011-10-27 21:00 1801216 ----a-w- c:\windows\system32\NlsData002a.dll
2011-10-27 21:00 . 2011-10-27 21:00 1965056 ----a-w- c:\windows\system32\NlsData001b.dll
2011-10-27 21:00 . 2011-10-27 21:00 1965056 ----a-w- c:\windows\system32\NlsData001a.dll
2011-10-27 21:00 . 2011-10-27 21:00 4495360 ----a-w- c:\windows\system32\NlsData001d.dll
2011-10-27 21:00 . 2011-10-27 21:00 9847296 ----a-w- c:\windows\system32\NlsData000a.dll
2011-10-27 21:00 . 2011-10-27 21:00 2643456 ----a-w- c:\windows\system32\NlsData000c.dll
2011-10-27 21:00 . 2011-10-27 21:00 4495360 ----a-w- c:\windows\system32\NlsData0414.dll
2011-10-27 21:00 . 2011-10-27 21:00 2342912 ----a-w- c:\windows\system32\NlsData000d.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-10-13 17351304]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv"="c:\hp\support\hpsysdrv.exe" [2007-04-18 65536]
"KBD"="c:\hp\KBD\KbdStub.EXE" [2006-12-08 65536]
"OsdMaestro"="c:\program files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe" [2007-02-15 118784]
"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2011-10-24 2415456]
"vProt"="c:\program files\AVG Secure Search\vprot.exe" [2011-12-06 218464]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 SWDUMon;SWDUMon;c:\windows\system32\DRIVERS\SWDUMon.sys [2011-12-11 12984]
R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S0 AVGIDSEH;AVGIDSEH;c:\windows\system32\DRIVERS\AVGIDSEH.Sys [2011-07-10 23120]
S0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx86.sys [2011-09-13 32592]
S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6x.sys [2011-05-22 47968]
S1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx86.sys [2011-10-07 230608]
S1 Avgtdix;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdix.sys [2011-07-10 295248]
S2 avgfws;AVG Firewall;c:\program files\AVG\AVG2012\avgfws.exe [2011-10-24 2398512]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2012\AVGIDSAgent.exe [2011-10-12 4433248]
S2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2012\avgwdsvc.exe [2011-08-02 192776]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-15 2253120]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-10-14 381248]
S2 vToolbarUpdater;vToolbarUpdater;c:\program files\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe [2011-10-28 246600]
S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\AVGIDSDriver.Sys [2011-07-10 134736]
S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\AVGIDSFilter.Sys [2011-07-10 24272]
S3 AVGIDSShim;AVGIDSShim;c:\windows\system32\DRIVERS\AVGIDSShim.Sys [2011-10-04 16720]
S3 HCW85BDA;Hauppauge WinTV 885 Video Capture;c:\windows\system32\drivers\HCW85BDA.sys [2007-10-01 1129344]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-08-31 22216]
S3 netr73;USB Wireless 802.11 b/g Adaptor Driver for Vista;c:\windows\system32\DRIVERS\netr73.sys [2008-02-26 493568]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2000-01-01 186912]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Obsah adresáře 'Naplánované úlohy'
.
2011-12-11 c:\windows\Tasks\SlimDrivers Startup.job
- c:\program files\SlimDrivers\SlimDrivers.exe [2011-12-01 13:06]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://isearch.avg.com/?cid={46207A2A-8684-41A6-977F-B2BCD2DE7E86}&mid=f11aab06375347d1a920d157d6ee1917-06050e277f64d1ccca6d2151ed49f9cb1323dc9e&lang=cs&ds=ts024&pr=pr&d=2011-12-05 20:55&v=8.0.0.34&sap=hp
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\Common Files\AVG Secure Search\ViProtocolInstaller\8.0.1\ViProtocol.dll
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
Toolbar-{95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-12-11 08:06
Windows 6.0.6002 Service Pack 2 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\progra~1\AVG\AVG2012\avgrsx.exe
c:\program files\AVG\AVG2012\avgcsrvx.exe
c:\windows\system32\nvvsvc.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\AVG\AVG2012\avgnsx.exe
c:\program files\AVG\AVG2012\avgemcx.exe
c:\windows\system32\conime.exe
c:\program files\AVG\AVG2012\avgcsrvx.exe
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe
c:\windows\servicing\TrustedInstaller.exe
.
**************************************************************************
.
Celkový čas: 2011-12-11 08:13:49 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-12-11 07:13
.
Před spuštěním: Volných bajtů: 190 233 153 536
Po spuštění: Volných bajtů: 187 977 916 416
.
- - End Of File - - 54560D0A8A757433633734E98D50A491

Log z HiJackThis:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:17:03, on 11.12.2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\SlimDrivers\SlimDrivers.exe
C:\Windows\system32\conime.exe
C:\hp\support\hpsysdrv.exe
C:\hp\KBD\KbdStub.exe
C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\Explorer.exe
C:\Users\Kajushe\Desktop\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://isearch.avg.com/?cid={46207A2A-8684-41A6-977F-B2BCD2DE7E86}&mid=f11aab06375347d1a920d157d6ee1917-06050e277f64d1ccca6d2151ed49f9cb1323dc9e&lang=cs&ds=ts024&pr=pr&d=2011-12-05 20:55:58&v=8.0.0.34&sap=hp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - (no file)
O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KbdStub.EXE
O4 - HKLM\..\Run: [OsdMaestro] "C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe"
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe"
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-21-2988607695-3891622636-1230986453-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2988607695-3891622636-1230986453-1001\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'UpdatusUser')
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\8.0.1\ViProtocol.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: vToolbarUpdater - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe

--
End of file - 5688 bytes

[Žbeky]

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

vyčisti systém CCleanerem

a použij i T-Cleaner
smaže vše po Combu,MWAVu atd.-stáhneš>spustíš

pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj AVG , Avast,Avira či Microsoft Security Essentials následně T-Cleaner smaž a zapni si AVG , Avast, Avira či Microsoft Security Essentials

V HJT fixni:

Kód: Vybrat vše

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://isearch.avg.com/?cid={46207A2A-8684-41A6-977F-B2BCD2DE7E86}&mid=f11aab06375347d1a920d157d6ee1917-06050e277f64d1ccca6d2151ed49f9cb1323dc9e&lang=cs&ds=ts024&pr=pr&d=2011-12-05 20:55:58&v=8.0.0.34&sap=hp
O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - (no file)
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKUS\S-1-5-21-2988607695-3891622636-1230986453-1001\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'UpdatusUser')

Jak se chová PC?

[karollin]

Combofix jsem oddinstalovala, Fixla ..
Při použití T-Cleaneru sem měla problém :/
Spustila sem, zmáčkla ,,A" a tabulka zmizela, po opětovnym spuštění se mi to stalo taky a všimla sem si, že mi to napsalo chybu
viz obrázek, nepomáhalo ani v nouzovym režimu..
Počítač se chová tak nějak.. Divně, občas má záseky (slyším, jak se zvuk posekává) a nějaký dny v měsíci má ,,svoje dny", kdy zápasím o to, aby vydržel zapnutý.. Momentálně se /v posledním tejdnu/ žádnej Bluescreen nebyl..

[Žbeky]

Místo T-Cleaneru:
Stáhni si ToolsCleaner2( by de A.Rothstein & Dj Quiou )

na plochu a spusť ho.
Klikni na Pt. Restauration (obnova) a poté na OK.
Klikni na Corbeille (koš) a poté na OK.
Klikni na Fichiers temp (temp složky) a poté na OK.
Klikni na Recherche (hledání) a nech Cleaner pracovat. Může se během čištění zastavit , ale nech ho pokračovat.
Když program skončí , klikni na Suppression (odstranění)a odstraň nalezené.
Zavři program.
Program maže i všechny nástroje na odvirování a vytváření logů , které se zde používají (HJT, Combofix, OTM, OTL, OTS atd.)

[karollin]

odstraněno:)

[Žbeky]

Tak tomu dej chvilku čas a pak napiš jak se chová