Prosím o kontrolu - zamrzání PC

TraCkerCZE · Příspěvekod **TraCkerCZE** » 21 čer 2013 13:39

ComboFix 13-06-21.01 - pat 21.06.2013 13:26:14.2.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.8172.6270 [GMT 2:00]
Spuštěný z: c:\users\pat\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\pat\Desktop\CFScript.txt
AV: Microsoft Security Essentials *Disabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
SP: Microsoft Security Essentials *Disabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\system32\drivers\cpuz135_x64.sys"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Ad-Aware Antivirus
c:\program files (x86)\Ad-Aware Antivirus\Definitions\acertdefs0.std
c:\program files (x86)\Ad-Aware Antivirus\Definitions\adsrules.dat
c:\program files (x86)\Ad-Aware Antivirus\Definitions\AdviceTx.vdx
c:\program files (x86)\Ad-Aware Antivirus\Definitions\api0.std
c:\program files (x86)\Ad-Aware Antivirus\Definitions\apincl.dat
c:\program files (x86)\Ad-Aware Antivirus\Definitions\apprules.dat
c:\program files (x86)\Ad-Aware Antivirus\Definitions\bhmem.vtd
c:\program files (x86)\Ad-Aware Antivirus\Definitions\bhsl.vtd
c:\program files (x86)\Ad-Aware Antivirus\Definitions\bmem.vtd
c:\program files (x86)\Ad-Aware Antivirus\Definitions\CatDesc.vdx
c:\program files (x86)\Ad-Aware Antivirus\Definitions\CatID.vdx
c:\program files (x86)\Ad-Aware Antivirus\Definitions\cblk.vtd
c:\program files (x86)\Ad-Aware Antivirus\Definitions\cmem.vtd
c:\program files (x86)\Ad-Aware Antivirus\Definitions\cname.wtd
c:\program files (x86)\Ad-Aware Antivirus\Definitions\comp0.std
c:\program files (x86)\Ad-Aware Antivirus\Definitions\Cookies.vdx
c:\program files (x86)\Ad-Aware Antivirus\Definitions\CoreVer.txt
c:\program files (x86)\Ad-Aware Antivirus\Definitions\ctid.vtd
c:\program files (x86)\Ad-Aware Antivirus\Definitions\defs0.std
c:\program files (x86)\Ad-Aware Antivirus\Definitions\DefVer.txt
c:\program files (x86)\Ad-Aware Antivirus\Definitions\dex_hash.dat
c:\program files (x86)\Ad-Aware Antivirus\Definitions\dexmem.vtd
c:\program files (x86)\Ad-Aware Antivirus\Definitions\dnrl.vdx
c:\program files (x86)\Ad-Aware Antivirus\Definitions\elf_hash.dat
c:\program files (x86)\Ad-Aware Antivirus\Definitions\EPSigs.vdx
c:\program files (x86)\Ad-Aware Antivirus\Definitions\FastSigs.vdx
c:\program files (x86)\Ad-Aware Antivirus\Definitions\FileDT.vdx
c:\program files (x86)\Ad-Aware Antivirus\Definitions\FolderDT.vdx
c:\program files (x86)\Ad-Aware Antivirus\Definitions\fsigs.vdx
c:\program files (x86)\Ad-Aware Antivirus\Definitions\gfiark.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\gfiark32.sys
c:\program files (x86)\Ad-Aware Antivirus\Definitions\gfiark64.sys
c:\program files (x86)\Ad-Aware Antivirus\Definitions\gfiarkup.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\gfiutil.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\gfiutl32.sys
c:\program files (x86)\Ad-Aware Antivirus\Definitions\gfiutl64.sys
c:\program files (x86)\Ad-Aware Antivirus\Definitions\hcol.wtd
c:\program files (x86)\Ad-Aware Antivirus\Definitions\heur0.std
c:\program files (x86)\Ad-Aware Antivirus\Definitions\HistoryCleaner.xml
c:\program files (x86)\Ad-Aware Antivirus\Definitions\hstn.vtd
c:\program files (x86)\Ad-Aware Antivirus\Definitions\idsrules.dat
c:\program files (x86)\Ad-Aware Antivirus\Definitions\ih.vdx
c:\program files (x86)\Ad-Aware Antivirus\Definitions\IncompatiblePrograms.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\incompats.dat
c:\program files (x86)\Ad-Aware Antivirus\Definitions\ip.vtd
c:\program files (x86)\Ad-Aware Antivirus\Definitions\JSSigs.vdx
c:\program files (x86)\Ad-Aware Antivirus\Definitions\kbu.dat
c:\program files (x86)\Ad-Aware Antivirus\Definitions\kbu.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\lgpl.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\lib7zip.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\libBase64.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\libEmail.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\libCHM.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\libMachoUniv.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\libMsCab.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\libMsi.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\libNSIS.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\libOleA.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\libRar.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\libRTF.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\libtd.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\libVvs.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\libZip.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\macroptn.std
c:\program files (x86)\Ad-Aware Antivirus\Definitions\MFastSigs.vdx
c:\program files (x86)\Ad-Aware Antivirus\Definitions\mime0.std
c:\program files (x86)\Ad-Aware Antivirus\Definitions\networkrules.dat
c:\program files (x86)\Ad-Aware Antivirus\Definitions\pack0.std
c:\program files (x86)\Ad-Aware Antivirus\Definitions\patchw32.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\qscnf.vdx
c:\program files (x86)\Ad-Aware Antivirus\Definitions\qscnr.vdx
c:\program files (x86)\Ad-Aware Antivirus\Definitions\RegDT.vdx
c:\program files (x86)\Ad-Aware Antivirus\Definitions\rem0.std
c:\program files (x86)\Ad-Aware Antivirus\Definitions\remediation.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\RootCA.wtd
c:\program files (x86)\Ad-Aware Antivirus\Definitions\RTmem.vdx
c:\program files (x86)\Ad-Aware Antivirus\Definitions\SBFC.dat
c:\program files (x86)\Ad-Aware Antivirus\Definitions\SBTS.dat
c:\program files (x86)\Ad-Aware Antivirus\Definitions\script0.std
c:\program files (x86)\Ad-Aware Antivirus\Definitions\sdll0.std
c:\program files (x86)\Ad-Aware Antivirus\Definitions\sel.dat
c:\program files (x86)\Ad-Aware Antivirus\Definitions\smim0.std
c:\program files (x86)\Ad-Aware Antivirus\Definitions\ThreatCategoryGlossary.xml
c:\program files (x86)\Ad-Aware Antivirus\Definitions\ThreatCategoryGlossary.xsd
c:\program files (x86)\Ad-Aware Antivirus\Definitions\ThreatDT.vdx
c:\program files (x86)\Ad-Aware Antivirus\Definitions\ThreatID.vdx
c:\program files (x86)\Ad-Aware Antivirus\Definitions\TImem.vdx
c:\program files (x86)\Ad-Aware Antivirus\Definitions\unpck0.std
c:\program files (x86)\Ad-Aware Antivirus\Definitions\updater.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\vcore.dll
c:\program files (x86)\Ad-Aware Antivirus\Definitions\VVSSigs.vdx
c:\program files (x86)\Ad-Aware Antivirus\Definitions\WebFilterExceptions.dat
c:\program files (x86)\Ad-Aware Antivirus\Definitions\white.wtd
c:\program files (x86)\Ad-Aware Antivirus\Definitions\white0.std
c:\program files (x86)\Ad-Aware Antivirus\Definitions\whsl.wtd
c:\program files (x86)\Skype\Updater
c:\program files (x86)\Skype\Updater\Updater.dll
c:\program files (x86)\Skype\Updater\Updater.exe
c:\programdata\Ad-Aware Antivirus
c:\programdata\Ad-Aware Antivirus\Logs\20130612T211221.958145PID224\Service.log
c:\programdata\Ad-Aware Antivirus\Logs\20130612T213525.290875PID1832\Service.log
c:\programdata\Ad-Aware Antivirus\Logs\20130613T070317.246055PID1808\Service.log
c:\programdata\Ad-Aware Antivirus\Logs\20130613T083718.283648PID1836\Service.log
c:\programdata\Ad-Aware Antivirus\Logs\20130613T085353.129246PID1796\Service.log
c:\programdata\Ad-Aware Antivirus\Logs\20130613T090142.458445PID1772\Service.log
c:\programdata\Ad-Aware Antivirus\Logs\20130613T152538.020046PID1944\Service.log
c:\programdata\Ad-Aware Antivirus\Logs\20130613T165934.286845PID2032\Service.log
c:\programdata\Lavasoft
c:\programdata\Lavasoft\AntiMalware\APConfig.xml
c:\programdata\Lavasoft\AntiMalware\context-menu-settings.xml
c:\programdata\Lavasoft\AntiMalware\EmailAVConfig.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061223122200.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061223122401.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061223172302.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061223361900.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061223370301.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061223370502.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061223413103.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061309041100.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061309051101.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061309092702.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061309185503.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061309185704.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061310375400.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061310430301.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061310542700.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061310593301.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061311021700.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061311072601.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061312121302.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061312121503.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061317261500.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061317271801.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061317313202.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061318273503.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061319001400.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061319052001.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061320005802.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061320171403.xml
c:\programdata\Lavasoft\AntiMalware\Events\EV2013061320171804.xml
c:\programdata\Lavasoft\AntiMalware\FirewallConfig.xml
c:\programdata\Lavasoft\AntiMalware\HIPSConfig.xml
c:\programdata\Lavasoft\AntiMalware\History\20130612231215.xml
c:\programdata\Lavasoft\AntiMalware\Logs\SBAMSvcLog.csv
c:\programdata\Lavasoft\AntiMalware\Logs\SBAMThreatEngineLog.csv
c:\programdata\Lavasoft\AntiMalware\RegistrationConfig.xml
c:\programdata\Lavasoft\AntiMalware\ScanConfig.xml
c:\programdata\Lavasoft\AntiMalware\SoftwareUpdateConfig.xml
c:\programdata\Lavasoft\AntiMalware\ThreatDefinitionsConfig.xml
c:\programdata\Lavasoft\AntiMalware\WebFilterConfig.xml
c:\programdata\Lavasoft\AntiMalware\WSCConfig.xml
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\application-settings.xml
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\definitions-date.xml
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\gaming-mode.xml
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\id-watch-dog.xml
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\language.xml
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130612T210838.018337PID3496\GlamorousInstaller.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130612T210838.018337PID3496\GuiFramework.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130612T211222.013149PID4028\AdAware.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130612T211222.013149PID4028\GuiFramework.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130612T211222.013149PID4028\Sunbelt.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130612T213557.582456PID2820\AdAware.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130612T213557.582456PID2820\GuiFramework.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130612T213557.582456PID2820\Sunbelt.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130613T070350.503610PID2568\AdAware.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130613T070350.503610PID2568\GuiFramework.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130613T070350.503610PID2568\Sunbelt.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130613T083745.302215PID3424\AdAware.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130613T083745.302215PID3424\GuiFramework.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130613T083745.302215PID3424\Sunbelt.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130613T085420.420919PID2636\AdAware.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130613T085420.420919PID2636\GuiFramework.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130613T085420.420919PID2636\Sunbelt.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130613T090206.464034PID2308\AdAware.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130613T090206.464034PID2308\GuiFramework.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130613T090206.464034PID2308\Sunbelt.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130613T152557.750067PID2748\AdAware.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130613T152557.750067PID2748\GuiFramework.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130613T152557.750067PID2748\Sunbelt.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130613T165957.265720PID3232\AdAware.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130613T165957.265720PID3232\GuiFramework.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130613T165957.265720PID3232\Sunbelt.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\Logs\20130613T182904.369557PID5968\AdAwareLauncher.log
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\protection-status.xml
c:\users\pat\AppData\Roaming\Ad-Aware Antivirus\update-parameters.xml
c:\users\pat\AppData\Roaming\LavasoftStatistics
c:\users\pat\AppData\Roaming\LavasoftStatistics\adaware.xml
c:\windows\system32\drivers\cpuz135_x64.sys
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_CPUZ135
-------\Service_cpuz135
-------\Service_SkypeUpdate
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-05-21 do 2013-06-21 )))))))))))))))))))))))))))))))
.
.
2013-06-21 11:29 . 2013-06-21 11:29 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-06-21 08:08 . 2013-06-12 03:08 9552976 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{72E9E407-3143-44D1-9FD0-04CEA6D469F1}\mpengine.dll
2013-06-20 20:40 . 2013-06-20 20:40 964552 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{FD18CA2E-A1F5-4DF3-89DE-D5F8EF5F42AB}\gapaengine.dll
2013-06-20 10:20 . 2013-06-20 10:20 -------- d-----w- c:\users\UpdatusUser
2013-06-19 10:24 . 2013-06-12 03:08 9552976 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-06-14 11:48 . 2013-06-14 11:48 -------- d-----w- c:\users\pat\AppData\Roaming\Malwarebytes
2013-06-14 11:48 . 2013-06-14 11:48 -------- d-----w- c:\programdata\Malwarebytes
2013-06-14 11:48 . 2013-06-14 11:48 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-06-14 11:48 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-06-13 09:39 . 2013-06-13 09:39 -------- d-----w- c:\program files (x86)\HD Tune
2013-06-13 09:18 . 2013-06-13 09:18 -------- d-----w- c:\users\pat\AppData\Roaming\TuneUp Software
2013-06-13 09:18 . 2013-06-13 09:18 -------- d-----w- c:\programdata\TuneUp Software
2013-06-13 09:17 . 2013-06-13 09:21 -------- d-sh--w- c:\programdata\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-06-13 09:17 . 2013-06-13 09:17 -------- d--h--w- c:\programdata\Common Files
2013-06-13 09:17 . 2013-06-13 09:17 -------- d-----w- c:\program files (x86)\CrystalDiskInfo
2013-06-13 09:17 . 2013-06-13 09:17 -------- d-----w- c:\users\pat\AppData\Local\Programs
2013-06-12 21:09 . 2013-06-12 21:09 -------- d-----w- c:\programdata\Downloaded Installations
2013-06-12 21:08 . 2013-06-12 21:08 14456 ----a-w- c:\windows\system32\drivers\gfibto.sys
2013-06-12 08:38 . 2013-05-08 06:39 1910632 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-06-12 08:37 . 2013-05-13 05:50 52224 ----a-w- c:\windows\system32\certenc.dll
2013-06-12 08:37 . 2013-05-13 03:08 43008 ----a-w- c:\windows\SysWow64\certenc.dll
2013-06-12 08:37 . 2013-04-25 23:30 1505280 ----a-w- c:\windows\SysWow64\d3d11.dll
2013-06-12 08:37 . 2013-03-31 22:52 1887232 ----a-w- c:\windows\system32\d3d11.dll
2013-06-11 21:03 . 2013-06-11 21:03 388096 ----a-r- c:\users\pat\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-06-11 21:03 . 2013-06-11 21:03 -------- d-----w- c:\program files (x86)\Trend Micro
2013-06-10 15:42 . 2013-05-12 21:42 550176 ----a-w- c:\windows\system32\NvFBC64.dll
2013-06-10 15:42 . 2013-05-12 21:42 518944 ----a-w- c:\windows\system32\NvIFR64.dll
2013-06-10 15:42 . 2013-05-12 21:42 443168 ----a-w- c:\windows\SysWow64\NvFBC.dll
2013-06-10 15:42 . 2013-05-12 21:42 421152 ----a-w- c:\windows\SysWow64\NvIFR.dll
2013-06-10 15:42 . 2013-05-12 21:42 218592 ----a-w- c:\windows\system32\nvoglshim64.dll
2013-06-10 15:42 . 2013-05-12 21:42 1832224 ----a-w- c:\windows\system32\nvdispco6432018.dll
2013-06-10 15:42 . 2013-05-12 21:42 181488 ----a-w- c:\windows\SysWow64\nvoglshim32.dll
2013-06-10 15:42 . 2013-05-12 21:42 1511712 ----a-w- c:\windows\system32\nvdispgenco6432018.dll
2013-06-02 15:28 . 2013-06-02 16:04 -------- d-----w- c:\programdata\Tunngle
2013-06-02 15:28 . 2013-06-02 15:30 -------- d-----w- c:\program files (x86)\Tunngle
2013-06-02 14:37 . 2013-06-21 11:21 -------- d-----w- c:\users\pat\AppData\Local\LogMeIn Hamachi
2013-06-02 14:37 . 2013-06-02 14:37 -------- d-----w- c:\program files (x86)\LogMeIn Hamachi
2013-05-29 11:24 . 2013-05-29 11:24 -------- d-----w- c:\users\pat\AppData\Roaming\OpenOffice.org
2013-05-29 11:23 . 2013-05-29 11:23 -------- d-----w- c:\program files (x86)\OpenOffice.org 3
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-06-12 10:46 . 2012-01-17 20:25 75825640 ----a-w- c:\windows\system32\MRT.exe
2013-06-12 08:38 . 2012-03-29 07:47 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-12 08:38 . 2012-01-17 17:09 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-29 15:30 . 2012-01-17 21:27 281688 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-05-29 15:30 . 2012-01-17 18:57 281688 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-05-21 12:17 . 2012-02-11 09:34 964552 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2013-05-12 21:42 . 2013-01-25 16:32 61216 ----a-w- c:\windows\system32\OpenCL.dll
2013-05-12 21:42 . 2013-01-25 16:32 53024 ----a-w- c:\windows\SysWow64\OpenCL.dll
2013-05-12 20:34 . 2013-01-25 16:33 2555680 ----a-w- c:\windows\system32\nvsvcr.dll
2013-05-02 15:29 . 2012-01-17 17:06 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-04-21 19:54 . 2012-01-17 18:57 291088 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2013-04-13 05:49 . 2013-05-15 18:15 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-15 18:15 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-15 18:15 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-15 18:15 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-15 18:15 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-15 18:15 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-04-12 14:45 . 2013-04-24 20:31 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-10 06:01 . 2013-05-15 18:15 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2013-04-10 06:01 . 2013-05-15 18:15 983400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2013-04-10 03:30 . 2013-05-15 18:14 3153920 ----a-w- c:\windows\system32\win32k.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{6B5863A0-C43F-4C0A-982B-CC0E9125783F}]
c:\users\pat\AppData\Roaming\Microsoft\Internet Explorer\qstatsrv.dll [BU]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QIP Internet Guardian"="c:\users\pat\AppData\Roaming\QipGuard\QipGuard.exe" [2010-06-09 187904]
"QIP2005"="c:\program files (x86)\QIP\qip.exe" [2010-06-28 3332608]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-01-19 3477312]
"Steam"="d:\steam\steam.exe" [2013-06-06 1641896]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-04-19 18678376]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"amd_dc_opt"="c:\program files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2013-05-15 2255184]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"Search Protection"=c:\programdata\Search Protection\SearchProtection.exe
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 athur;Wireless Network Adapter Service;c:\windows\system32\DRIVERS\athurx.sys;c:\windows\SYSNATIVE\DRIVERS\athurx.sys [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RivaTuner64;RivaTuner64;c:\program files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys;c:\program files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys [x]
R3 RTCore64;RTCore64;c:\program files (x86)\MSI Afterburner\RTCore64.sys;c:\program files (x86)\MSI Afterburner\RTCore64.sys [x]
R3 RTL85n64;Realtek 8180/8185 Extensible 802.11 Wireless Device Driver;c:\windows\system32\DRIVERS\RTL85n64.sys;c:\windows\SYSNATIVE\DRIVERS\RTL85n64.sys [x]
R3 s1029bus;Sony Ericsson Device 1029 driver (WDM);c:\windows\system32\DRIVERS\s1029bus.sys;c:\windows\SYSNATIVE\DRIVERS\s1029bus.sys [x]
R3 s1029mdfl;Sony Ericsson Device 1029 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s1029mdfl.sys;c:\windows\SYSNATIVE\DRIVERS\s1029mdfl.sys [x]
R3 s1029mdm;Sony Ericsson Device 1029 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s1029mdm.sys;c:\windows\SYSNATIVE\DRIVERS\s1029mdm.sys [x]
R3 s1029mgmt;Sony Ericsson Device 1029 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s1029mgmt.sys;c:\windows\SYSNATIVE\DRIVERS\s1029mgmt.sys [x]
R3 s1029nd5;Sony Ericsson Device 1029 USB Ethernet Emulation (NDIS);c:\windows\system32\DRIVERS\s1029nd5.sys;c:\windows\SYSNATIVE\DRIVERS\s1029nd5.sys [x]
R3 s1029obex;Sony Ericsson Device 1029 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s1029obex.sys;c:\windows\SYSNATIVE\DRIVERS\s1029obex.sys [x]
R3 s1029unic;Sony Ericsson Device 1029 USB Ethernet Emulation (WDM);c:\windows\system32\DRIVERS\s1029unic.sys;c:\windows\SYSNATIVE\DRIVERS\s1029unic.sys [x]
R3 s1039bus;Sony Ericsson Device 1039 driver (WDM);c:\windows\system32\DRIVERS\s1039bus.sys;c:\windows\SYSNATIVE\DRIVERS\s1039bus.sys [x]
R3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s1039mdfl.sys;c:\windows\SYSNATIVE\DRIVERS\s1039mdfl.sys [x]
R3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s1039mdm.sys;c:\windows\SYSNATIVE\DRIVERS\s1039mdm.sys [x]
R3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s1039mgmt.sys;c:\windows\SYSNATIVE\DRIVERS\s1039mgmt.sys [x]
R3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS);c:\windows\system32\DRIVERS\s1039nd5.sys;c:\windows\SYSNATIVE\DRIVERS\s1039nd5.sys [x]
R3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s1039obex.sys;c:\windows\SYSNATIVE\DRIVERS\s1039obex.sys [x]
R3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM);c:\windows\system32\DRIVERS\s1039unic.sys;c:\windows\SYSNATIVE\DRIVERS\s1039unic.sys [x]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 TunngleService;TunngleService;c:\program files (x86)\Tunngle\TnglCtrl.exe;c:\program files (x86)\Tunngle\TnglCtrl.exe [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 asahci64;asahci64;c:\windows\system32\DRIVERS\asahci64.sys;c:\windows\SYSNATIVE\DRIVERS\asahci64.sys [x]
S0 gfibto;gfibto;c:\windows\system32\drivers\gfibto.sys;c:\windows\SYSNATIVE\drivers\gfibto.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys;c:\windows\SYSNATIVE\DRIVERS\tap0901t.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-06-20 21:07 1165776 ----a-w- c:\program files (x86)\Google\Chrome\Application\27.0.1453.116\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-06-21 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-29 08:38]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-01-27 1281512]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/
uDefault_Search_URL = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
uSearchAssistant = hxxp://www.google.com
FF - ProfilePath - c:\users\pat\AppData\Roaming\Mozilla\Firefox\Profiles\tmlihv4x.default\
FF - prefs.js: browser.startup.homepage - www.seznam.cz
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&o ... &gfns=1&q=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
AddRemove-Battlelog Web Plugins - c:\program files (x86)\Battlelog Web Plugins\uninstall.exe
AddRemove-{3D7541A5-4B46-6267-EE16-1897F94B0790} - c:\progra~3\INSTAL~1\{1DABE~1\Setup.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
.
**************************************************************************
.
Celkový čas: 2013-06-21 13:34:47 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-06-21 11:34
ComboFix2.txt 2013-06-21 08:07
.
Před spuštěním: Volných bajtů: 21 397 049 344
Po spuštění: Volných bajtů: 20 987 875 328
.
- - End Of File - - 785DE4460CDF0CC58E515882B159B76E
A36C5E4F47E84449FF07ED3517B43A31

Reklama

Příspěvekod **memphisto** » 21 čer 2013 14:35

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

+ Nový log z HJT
+ znovu AdwCleaner

Jak se chová PC?

TraCkerCZE · Příspěvekod **TraCkerCZE** » 21 čer 2013 14:59

PC zatím šlape. Uvidíme v příštích dnech jak se to projeví. Díky moc za ochotu. Jen se chci zeptat. Vyčet jsi nějáké problémy z těch logů? Byla v PC nějáká infence nebo tak? Ještě jednou díky

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:58:55, on 21.6.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16490)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Users\pat\AppData\Roaming\QipGuard\QipGuard.exe
C:\Program Files (x86)\QIP\qip.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: QIPBHO Class - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\pat\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll (file missing)
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: QipLI - {6B5863A0-C43F-4C0A-982B-CC0E9125783F} - C:\Users\pat\AppData\Roaming\Microsoft\Internet Explorer\qstatsrv.dll (file missing)
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: QIPBHO - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\pat\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll (file missing)
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [QIP Internet Guardian] C:\Users\pat\AppData\Roaming\QipGuard\QipGuard.exe
O4 - HKCU\..\Run: [QIP2005] C:\Program Files (x86)\QIP\qip.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "D:\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-21-1113489539-2111985358-654212850-1009\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1113489539-2111985358-654212850-1009\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O9 - Extra button: (no name) - Cmdmapping - (no file) (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8634 bytes

TraCkerCZE · Příspěvekod **TraCkerCZE** » 21 čer 2013 15:00

# AdwCleaner v2.303 - Log vytvooen 21/06/2013 v 14:59:53
# Aktualizováno 08/06/2013 Xplode
# Operaení systém : Windows 7 Ultimate Service Pack 1 (64 bits)
# Uživatel : pat - PAT-PC
# Spuštin systém : Normální
# Spuštino z : C:\Users\pat\Desktop\adwcleaner.exe
# Volba [Prohledat]

***** [Služby] *****

***** [Soubory / Složky] *****

***** [Registry] *****

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v9.0.8112.16490

[OK] Registry jsou eisté.

-\\ Mozilla Firefox v21.0 (cs)

Soubor : C:\Users\pat\AppData\Roaming\Mozilla\Firefox\Profiles\tmlihv4x.default\prefs.js

[OK] Soubor je eistý.

-\\ Google Chrome v27.0.1453.116

Soubor : C:\Users\pat\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Soubor je eistý.

-\\ Opera v12.2.1578.0

Soubor : C:\Users\pat\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] Soubor je eistý.

*************************

AdwCleaner[R1].txt - [5741 octets] - [14/06/2013 14:00:23]
AdwCleaner[R2].txt - [5801 octets] - [14/06/2013 14:04:52]
AdwCleaner[R3].txt - [5861 octets] - [15/06/2013 21:08:06]
AdwCleaner[R4].txt - [5921 octets] - [15/06/2013 21:08:32]
AdwCleaner[R5].txt - [1174 octets] - [21/06/2013 14:59:53]
AdwCleaner[S1].txt - [5852 octets] - [15/06/2013 21:08:39]

########## EOF - C:\AdwCleaner[R5].txt - [1294 octets] ##########

Příspěvekod **memphisto** » 21 čer 2013 17:21

Nic závažného. Zbytečnosti a zbytky po AdAware Antiviru. Možná bych se poohlídnul po něčem lepším než je antivir od Microsoftu... Třeba takový AVAST nebo AVira ve free verzích budou rozhodně lepší ;-)

V logu HJT fixni:
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: QIPBHO Class - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\pat\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll (file missing)
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: QipLI - {6B5863A0-C43F-4C0A-982B-CC0E9125783F} - C:\Users\pat\AppData\Roaming\Microsoft\Internet Explorer\qstatsrv.dll (file missing)
O2 - BHO: QIPBHO - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\pat\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll (file missing)

JInak to vypadá OK

TraCkerCZE · Příspěvekod **TraCkerCZE** » 22 čer 2013 19:41

OK moc díky... Mě se zase zdál ten jejich antivir jako nejlepší alternativa pro jejich OS. Tak jsem se asi mýlil :-)

Příspěvekod **memphisto** » 22 čer 2013 19:46

Nemá zrovna nejlepší detekci a taky odesílá data Microsoftu... Já používám Avast už X let a bez problému...

Sent from my iPad using Tapatalk

TraCkerCZE · Příspěvekod **TraCkerCZE** » 28 čer 2013 09:51

Takže podle všeho PC šlape bez problémů a jakýchkoliv záseků. Všem moc díky a dávám LOCK.

Prosím o kontrolu - zamrzání PC Vyřešeno

Re: Prosím o kontrolu - zamrzání PC

Re: Prosím o kontrolu - zamrzání PC

Re: Prosím o kontrolu - zamrzání PC

Re: Prosím o kontrolu - zamrzání PC

Re: Prosím o kontrolu - zamrzání PC

Re: Prosím o kontrolu - zamrzání PC

Re: Prosím o kontrolu - zamrzání PC

Re: Prosím o kontrolu - zamrzání PC Vyřešeno

Kdo je online