Kontrola výpisu Vyřešeno

[Terentius]

Log z Roguekilleru:

RogueKiller V8.5.4 _x64_ [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Adam [Práva správce]
Mód : Odebrat -- Datum : 04/23/2013 16:09:53
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[DNS] HKLM\[...]\ControlSet001\Services\Tcpip\Interfaces\{EF89853D-59A5-44D3-B9D9-23930968A117} : NameServer (213.46.172.36,77.93.199.35) -> NEBYLO ODSTRANĚNO, POUŽIJTE DNSFIX
[DNS] HKLM\[...]\ControlSet002\Services\Tcpip\Interfaces\{EF89853D-59A5-44D3-B9D9-23930968A117} : NameServer (213.46.172.36,77.93.199.35) -> NEBYLO ODSTRANĚNO, POUŽIJTE DNSFIX
[HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ] HKLM\[...]\System : EnableLUA (0) -> NAHRAZENO (1)
[HJ DESK] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: SAMSUNG HD322HJ ATA Device +++++
--- User ---
[MBR] 250c248e47c8edfc40117c1e3b4d48ea
[BSP] b0ea12477357fbee44396559e8503bcf : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 20001 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 40965813 | Size: 134756 Mo
2 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 316946385 | Size: 150483 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[3]_D_04232013_02d1609.txt >>
RKreport[1]_S_04082013_02d1254.txt ; RKreport[2]_S_04232013_02d1608.txt ; RKreport[3]_D_04232013_02d1609.txt

[Reklama]

[Terentius]

Výpis z Combofixu:

ComboFix 13-04-23.02 - Adam 23.04.2013 16:23:54.2.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4094.2748 [GMT 2:00]
Spuštìný z: d:\downloads\ComboFix.exe
Použité ovládací pøepínaèe :: c:\users\Adam\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-241869209-2515331182-1224375100-1001Core.job"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-241869209-2515331182-1224375100-1001UA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Google\Update
c:\program files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe
c:\program files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
c:\program files (x86)\Google\Update\1.3.21.135\GoogleUpdate.exe
c:\program files (x86)\Google\Update\1.3.21.135\GoogleUpdateBroker.exe
c:\program files (x86)\Google\Update\1.3.21.135\GoogleUpdateHelper.msi
c:\program files (x86)\Google\Update\1.3.21.135\GoogleUpdateOnDemand.exe
c:\program files (x86)\Google\Update\1.3.21.135\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\1.3.21.135\goopdate.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_am.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_ar.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_bg.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_bn.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_ca.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_cs.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_da.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_de.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_el.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_en-GB.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_en.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_es-419.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_es.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_et.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_fa.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_fi.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_fil.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_fr.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_gu.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_hi.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_hr.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_hu.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_id.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_is.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_it.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_iw.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_ja.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_kn.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_ko.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_lt.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_lv.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_ml.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_mr.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_ms.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_nl.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_no.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_pl.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_pt-BR.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_pt-PT.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_ro.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_ru.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_sk.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_sl.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_sr.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_sv.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_sw.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_ta.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_te.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_th.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_tr.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_uk.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_ur.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_vi.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_zh-CN.dll
c:\program files (x86)\Google\Update\1.3.21.135\goopdateres_zh-TW.dll
c:\program files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
c:\program files (x86)\Google\Update\1.3.21.135\psmachine.dll
c:\program files (x86)\Google\Update\1.3.21.135\psuser.dll
c:\program files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.135\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\Download\{74AF07D8-FB8F-4D51-8AC7-927721D56EBB}\0.0.0.0\GoogleEarth-Win-Bundle-7.0.1.8244.exe
c:\program files (x86)\Google\Update\Download\{74AF07D8-FB8F-4D51-8AC7-927721D56EBB}\0.0.0.0\GoogleEarth-Win-Bundle-7.0.2.8415.exe
c:\program files (x86)\Google\Update\Download\{74AF07D8-FB8F-4D51-8AC7-927721D56EBB}\0.0.0.0\GoogleEarth-Win-Bundle-7.0.3.8542.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\program files (x86)\Skype\Updater
c:\program files (x86)\Skype\Updater\Updater.dll
c:\program files (x86)\Skype\Updater\Updater.exe
c:\users\Adam\AppData\Local\Google\Update
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler.exe
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\GoogleUpdate.exe
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\GoogleUpdateBroker.exe
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\GoogleUpdateHelper.msi
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\GoogleUpdateOnDemand.exe
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\GoogleUpdateSetup.exe
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdate.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_am.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_ar.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_bg.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_bn.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_ca.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_cs.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_da.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_de.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_el.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_en-GB.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_en.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_es-419.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_es.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_et.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_fa.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_fi.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_fil.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_fr.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_gu.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_hi.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_hr.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_hu.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_id.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_is.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_it.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_iw.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_ja.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_kn.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_ko.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_lt.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_lv.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_ml.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_mr.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_ms.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_nl.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_no.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_pl.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_pt-BR.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_pt-PT.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_ro.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_ru.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_sk.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_sl.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_sr.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_sv.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_sw.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_ta.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_te.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_th.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_tr.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_uk.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_ur.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_vi.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_zh-CN.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\goopdateres_zh-TW.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\psmachine.dll
c:\users\Adam\AppData\Local\Google\Update\1.3.21.135\psuser.dll
c:\users\Adam\AppData\Local\Google\Update\Download\{35E5D545-4761-429B-A6B8-0F944A5B4036}\GoogleUpdateSetup.exe
c:\users\Adam\AppData\Local\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\26.0.1410.64\26.0.1410.64_26.0.1410.43_chrome_updater.exe
c:\users\Adam\AppData\Local\Google\Update\GoogleUpdate.exe
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-241869209-2515331182-1224375100-1001Core.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-241869209-2515331182-1224375100-1001UA.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladaèe/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_SkypeUpdate
-------\Service_gupdate
-------\Service_gupdatem
-------\Service_gupdate
-------\Service_gupdatem
.
.
((((((((((((((((((((((((( Soubory vytvoøené od 2013-03-23 do 2013-04-23 )))))))))))))))))))))))))))))))
.
.
2013-04-23 14:28 . 2013-04-23 14:28 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-04-23 14:16 . 2013-04-23 14:16 -------- d-----w- c:\users\Adam\AppData\Local\VirtualStore
2013-04-23 12:55 . 2013-04-10 03:46 9317456 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{D5320477-85A3-487E-A4DA-F951DB9BBDD3}\mpengine.dll
2013-04-10 08:01 . 2013-04-10 08:01 -------- d-----w- c:\users\Adam\AppData\Local\Macromedia
2013-04-10 08:00 . 2013-04-10 08:00 -------- d-----w- c:\users\Adam\AppData\Local\Mozilla
2013-04-10 08:00 . 2013-04-15 08:45 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
2013-04-08 20:53 . 2013-04-08 20:53 -------- d-----w- c:\program files\Realtek
2013-04-08 20:53 . 2013-04-08 20:53 -------- d-----w- c:\windows\SysWow64\RTCOM
2013-04-06 16:46 . 2013-04-06 16:46 -------- d-----w- c:\users\Adam\AppData\Local\Adobe
2013-04-06 06:23 . 2013-04-06 06:23 -------- d-----w- c:\users\Adam\AppData\Roaming\Malwarebytes
2013-04-06 06:22 . 2013-04-06 06:22 -------- d-----w- c:\programdata\Malwarebytes
2013-04-06 06:22 . 2013-04-06 06:22 -------- d-----w- c:\users\Adam\AppData\Local\Programs
2013-04-06 06:07 . 2013-04-06 06:07 -------- d-----w- c:\users\Adam\AppData\Local\ATI
2013-04-05 13:18 . 2013-04-05 13:18 388096 ----a-r- c:\users\Adam\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-04-05 13:18 . 2013-04-05 13:18 -------- d-----w- c:\program files (x86)\Trend Micro
2013-03-28 22:35 . 2013-03-28 22:35 -------- d-----w- c:\users\Adam\AppData\Roaming\Wargaming.net
2013-03-28 22:33 . 2013-03-28 22:33 -------- d-----w- c:\program files (x86)\Dokan
2013-03-28 06:39 . 2013-04-22 12:26 -------- d-----w- C:\Games
2013-03-27 21:08 . 2013-03-27 21:08 -------- d-----w- c:\users\Adam\AppData\Local\FLT
2013-03-27 19:10 . 2013-03-27 19:10 -------- d-----w- c:\programdata\ATI
2013-03-27 19:10 . 2013-03-27 19:10 -------- d-----w- c:\program files (x86)\AMD AVT
2013-03-27 19:09 . 2013-03-27 19:09 -------- d-----w- c:\program files (x86)\ATI Technologies
2013-03-25 19:08 . 2013-04-11 08:04 -------- d-----w- c:\users\Adam\AppData\Roaming\DAEMON Tools Lite
2013-03-25 19:07 . 2013-03-25 19:16 -------- d-----w- c:\programdata\DAEMON Tools Lite
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-04-22 13:01 . 2012-04-01 10:27 691592 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-04-22 13:01 . 2012-03-28 12:05 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-04-10 08:57 . 2012-03-31 06:40 72702784 ----a-w- c:\windows\system32\MRT.exe
2013-03-11 23:10 . 2012-03-28 05:58 282744 ------w- c:\windows\system32\MpSigStub.exe
2013-03-06 23:33 . 2013-03-17 19:44 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-03-06 23:33 . 2013-03-17 19:44 178624 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-03-06 23:33 . 2012-03-28 11:29 377920 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-03-06 23:33 . 2012-03-28 11:29 70992 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-03-06 23:33 . 2012-03-28 11:29 68920 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-03-06 23:33 . 2012-03-28 11:29 1025808 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-03-06 23:33 . 2012-03-28 11:29 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-03-06 23:33 . 2012-03-28 11:29 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-03-06 23:32 . 2012-03-28 11:28 41664 ----a-w- c:\windows\avastSS.scr
2013-03-06 23:32 . 2012-03-28 11:29 287840 ----a-w- c:\windows\system32\aswBoot.exe
2013-02-23 20:34 . 2013-02-23 20:35 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-02-23 20:34 . 2012-10-12 10:04 861088 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-02-23 20:34 . 2012-10-12 10:04 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-02-12 05:45 . 2013-03-13 06:47 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-02-12 05:45 . 2013-03-13 06:47 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-02-12 05:45 . 2013-03-13 06:47 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-02-12 05:45 . 2013-03-13 06:47 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-02-12 04:48 . 2013-03-13 06:47 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-13 06:47 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-02-12 04:12 . 2013-03-20 20:44 19968 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-02-08 15:15 . 2013-02-08 15:15 723230 ----a-w- c:\windows\unins000.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštìcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-01-08 18705664]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-03-06 4767304]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-11-16 641704]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 aswVmm;aswVmm; [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-03-29 1255736]
S0 aswRvrt;aswRvrt; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-11-16 238080]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-03-06 80816]
S2 Dokan;Dokan;c:\windows\system32\drivers\dokan.sys [2011-01-10 120408]
S2 DokanMounter;DokanMounter;c:\program files (x86)\Dokan\DokanLibrary\mounter.exe [2011-01-10 14848]
S2 HPSIService;HP SI Service;c:\windows\system32\HPSIsvc.exe [2011-05-11 126520]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2012-11-06 96256]
S3 mvusbews;USB EWS Device;c:\windows\system32\Drivers\mvusbews.sys [2012-12-24 20480]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
.
.
Obsah adresáøe 'Naplánované úlohy'
.
2013-04-23 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-01 13:01]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-03-06 23:32 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-06-11 12503184]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
------- Doplòkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.cz/
mLocal Page = c:\windows\SYSTEM32\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
TCP: Interfaces\{EF89853D-59A5-44D3-B9D9-23930968A117}: NameServer = 213.46.172.36,77.93.199.35
FF - ProfilePath - c:\users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\ylmn1o1o.default\
FF - prefs.js: browser.startup.homepage - about:home|hxxp://www.google.cz/
FF - ExtSQL: 2013-03-17 20:43; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
FF - ExtSQL: 2013-04-10 10:05; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\ylmn1o1o.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
.
.
--------------------- ZAMKNUTÉ KLÍÈE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\SysWOW64\PnkBstrA.exe
.
**************************************************************************
.
Celkový èas: 2013-04-23 16:33:50 - poèítaè byl restartován
ComboFix-quarantined-files.txt 2013-04-23 14:33
.
Pøed spuštìním: Volných bajtù: 73 468 137 472
Po spuštìní: Volných bajtù: 72 850 747 392
.
- - End Of File - - 7BC7ACBAC2D19C1E58AB8790B5A5E30B

[Terentius]

Log hijack:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:07:23, on 23.4.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal

Running processes:
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{EF89853D-59A5-44D3-B9D9-23930968A117}: NameServer = 213.46.172.36,77.93.199.35
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: DokanMounter - Unknown owner - C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HP SI Service (HPSIService) - Unknown owner - C:\Windows\system32\HPSIsvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7088 bytes

[Terentius]

log z aswMBR

aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-04-23 19:02:40
-----------------------------
19:02:40.250 OS Version: Windows x64 6.1.7601 Service Pack 1
19:02:40.250 Number of processors: 2 586 0x170A
19:02:40.250 ComputerName: ADAM-PC UserName: Adam
19:02:40.983 Initialize success
19:02:41.092 AVAST engine defs: 13042300
19:03:23.959 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-2
19:03:23.959 Disk 0 Vendor: SAMSUNG_HD322HJ 1AC01113 Size: 305244MB BusType: 3
19:03:24.162 Disk 0 MBR read successfully
19:03:24.162 Disk 0 MBR scan
19:03:24.162 Disk 0 Windows 7 default MBR code
19:03:24.162 Disk 0 Partition 1 00 07 HPFS/NTFS NTFS 20001 MB offset 2048
19:03:24.178 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 134756 MB offset 40965813
19:03:24.178 Disk 0 Partition - 00 0F Extended LBA 150483 MB offset 316946385
19:03:24.193 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 150483 MB offset 316946448
19:03:24.224 Disk 0 scanning C:\Windows\system32\drivers
19:03:31.619 Service scanning
19:03:47.765 Modules scanning
19:03:47.765 Disk 0 trace - called modules:
19:03:47.780 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
19:03:47.780 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80045f7060]
19:03:47.780 3 CLASSPNP.SYS[fffff8800140143f] -> nt!IofCallDriver -> [0xfffffa80043ece40]
19:03:47.796 5 ACPI.sys[fffff88000f367a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-2[0xfffffa80044b3060]
19:03:48.202 AVAST engine scan C:\Windows
19:03:50.464 AVAST engine scan C:\Windows\system32
19:05:52.113 AVAST engine scan C:\Windows\system32\drivers
19:06:00.895 AVAST engine scan C:\Users\Adam
19:06:41.362 Disk 0 MBR has been saved successfully to "C:\Users\Adam\Desktop\MBR.dat"
19:06:41.378 The log file has been saved successfully to "C:\Users\Adam\Desktop\aswMBR.txt"

[jaro3]

Místo HJT si dal 2x CF log...

Spusť znovu RogueKiller
Pokud používáš Win Vista či W7, klikni na RogueKiller pravým a dej spustit jako správce.

Pak klikni na Oprava DNS a Zpráva - otevře se log, ten sem vlož.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
c:\windows\unins000.exe

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Nebo na:
http://www.virscan.org/

[Terentius]

Log z roguekillera:

RogueKiller V8.5.4 _x64_ [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Adam [Práva správce]
Mód : Oprava DNS -- Datum : 04/24/2013 07:51:55
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[DNS] HKLM\[...]\ControlSet001\Services\Tcpip\Interfaces\{EF89853D-59A5-44D3-B9D9-23930968A117} : NameServer (213.46.172.36,77.93.199.35) -> NAHRAZENO ()
[DNS] HKLM\[...]\ControlSet002\Services\Tcpip\Interfaces\{EF89853D-59A5-44D3-B9D9-23930968A117} : NameServer (213.46.172.36,77.93.199.35) -> NAHRAZENO ()

¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤

Dokončeno : << RKreport[4]_DN_04242013_02d0751.txt >>
RKreport[3]_D_04232013_02d1609.txt ; RKreport[4]_DN_04242013_02d0751.txt

[Terentius]

https://www.virustotal.com/cs/file/b4f0 ... 366783103/

[jaro3]

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

Jsou nějaké problémy?

[Terentius]

Vše vypadá v pořádku a nezaznamenávám nějaké neobvyklé problémy ani výkyvy systému. Děkuji za pomoc.

[jaro3]

Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.