Kontrola HJT - nákaza v MBAM

CZechBoY · Příspěvekod **CZechBoY** » 08 zář 2013 13:14

ComboFix 13-09-06.01 - czech_000 . 09. 2013 13:02:01.2.4 - x64
Microsoft Windows 8 Pro 6.2.9200.0.1250.420.1029.18.3956.2742 [GMT 2:00]
Spuštěný z: c:\users\czech_000\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\czech_000\Desktop\CFScript.txt
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Skype\Updater
c:\program files (x86)\Skype\Updater\Updater.dll
c:\program files (x86)\Skype\Updater\Updater.exe
c:\users\czech_000\AppData\Local\Conduit
c:\windows\is-TAGGB.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_SkypeUpdate
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-08-08 do 2013-09-08 )))))))))))))))))))))))))))))))
.
.
2013-09-08 11:07 . 2013-09-08 11:07 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-09-08 11:07 . 2013-09-08 11:07 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-09-03 18:25 . 2013-09-03 18:42 -------- d-----w- c:\users\czech_000\AppData\Roaming\Apple Computer
2013-09-03 18:25 . 2013-09-03 18:25 -------- d-----w- c:\users\czech_000\AppData\Local\Apple Computer
2013-09-03 18:24 . 2012-08-21 11:01 33240 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2013-09-03 18:24 . 2013-09-03 18:24 -------- d-----w- d:\program files (x86)\iTunes
2013-09-03 18:24 . 2013-09-03 18:24 -------- d-----w- c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-09-03 18:24 . 2013-09-03 18:24 -------- d-----w- c:\programdata\Apple Computer
2013-09-03 18:13 . 2013-09-03 18:13 -------- d-----w- c:\users\czech_000\AppData\Local\Apple
2013-09-03 18:13 . 2013-09-03 18:13 -------- d-----w- c:\program files\Common Files\Apple
2013-09-03 18:13 . 2013-09-03 18:24 -------- d-----w- c:\program files (x86)\Common Files\Apple
2013-09-03 18:13 . 2013-09-03 18:13 -------- d-----w- c:\programdata\Apple
2013-09-02 18:23 . 2013-09-02 18:23 -------- d-----w- C:\AdwCleaner
2013-09-02 13:33 . 2013-09-02 13:36 -------- d-----w- c:\users\czech_000\AppData\Roaming\HandBrake
2013-09-01 20:42 . 2013-09-01 20:42 -------- d-----w- C:\NvidiaLogging
2013-09-01 12:52 . 2013-08-17 18:07 54728 ----a-w- c:\windows\system32\drivers\Soluto.sys
2013-09-01 12:48 . 2013-09-01 12:48 -------- d-----w- c:\windows\system32\appmgmt
2013-08-31 23:27 . 2013-09-02 01:44 1496704 ----a-w- c:\programdata\Microsoft\VisualStudio\11.0\1029\ResourceCache.dll
2013-08-31 23:25 . 2013-08-31 23:25 -------- d-----w- d:\program files (x86)\Common7
2013-08-31 23:25 . 2013-08-31 23:25 -------- d-----w- d:\program files (x86)\Team Tools
2013-08-31 23:25 . 2013-08-31 23:25 -------- d-----w- c:\windows\SysWow64\1029
2013-08-31 23:24 . 2013-08-31 23:24 -------- d-----w- c:\windows\system32\1029
2013-08-31 23:20 . 2013-08-31 23:20 -------- d-----w- c:\program files (x86)\Common Files\DirectX
2013-08-31 23:07 . 2013-09-02 01:44 1488160 ----a-w- c:\programdata\Microsoft\VisualStudio\11.0\1033\ResourceCache.dll
2013-08-31 23:04 . 2013-08-31 23:25 -------- d-----w- d:\program files (x86)\Microsoft SQL Server Compact Edition
2013-08-31 23:04 . 2013-08-31 23:16 -------- d-----w- c:\programdata\Windows App Certification Kit
2013-08-31 23:03 . 2013-08-31 23:03 -------- d-----w- c:\program files (x86)\Common Files\Microsoft
2013-08-31 23:03 . 2013-08-31 23:03 -------- d-----w- c:\programdata\PreEmptive Solutions
2013-08-31 23:00 . 2013-08-31 23:01 -------- d-----w- c:\windows\SysWow64\1033
2013-08-31 22:58 . 2013-09-02 01:42 -------- d-----w- c:\program files (x86)\Common Files\Merge Modules
2013-08-31 22:57 . 2013-08-31 23:05 -------- d-----w- d:\program files (x86)\Microsoft Visual Studio 11.0
2013-08-31 22:57 . 2013-08-31 22:57 -------- d-----w- c:\windows\system32\1033
2013-08-31 22:56 . 2013-08-31 22:56 -------- d-----w- c:\windows\symbols
2013-08-31 21:21 . 2013-08-31 21:21 -------- d-----w- d:\program files (x86)\Secure Download Manager(onthehub)
2013-08-31 21:21 . 2013-08-31 21:21 -------- d-----w- c:\users\czech_000\AppData\Roaming\e-academy Inc
2013-08-31 20:42 . 2013-08-31 22:08 -------- d-----w- c:\users\czech_000\AppData\Local\NFS Underground 2
2013-08-30 12:08 . 2013-08-30 12:10 -------- d-----w- c:\users\czech_000\.VirtualBox
2013-08-30 12:07 . 2013-07-04 13:58 238352 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2013-08-30 12:07 . 2013-07-04 13:57 120080 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2013-08-29 13:29 . 2013-09-03 18:24 -------- dc----w- c:\windows\system32\DRVSTORE
2013-08-29 13:28 . 2013-09-01 13:02 -------- d-----w- c:\programdata\Soluto
2013-08-28 21:34 . 2013-08-28 22:16 -------- d-----w- c:\users\czech_000\AppData\Roaming\CodeBlocks
2013-08-28 21:33 . 2013-08-28 21:34 -------- d-----w- d:\program files (x86)\CodeBlocks
2013-08-27 23:36 . 2013-09-04 09:51 -------- d-----w- c:\users\czech_000\AppData\Local\gtk-2.0
2013-08-27 23:35 . 2013-08-27 23:35 -------- d-----w- c:\users\czech_000\.thumbnails
2013-08-27 23:24 . 2013-09-04 09:51 -------- d-----w- c:\users\czech_000\.gimp-2.8
2013-08-27 23:24 . 2013-08-27 23:24 -------- d-----w- c:\users\czech_000\AppData\Local\gegl-0.2
2013-08-27 17:32 . 2013-08-27 17:32 -------- d-----w- c:\users\czech_000\AppData\Roaming\ParetoLogic
2013-08-27 17:32 . 2013-08-27 17:32 -------- d-----w- c:\users\czech_000\AppData\Roaming\DriverCure
2013-08-27 15:42 . 2013-08-06 08:58 9515512 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{A24B45D3-B93C-44FD-8E36-4F747A822D77}\mpengine.dll
2013-08-27 01:41 . 2013-08-27 01:41 -------- d-----w- c:\users\czech_000\AppData\Local\CRE
2013-08-27 01:40 . 2013-08-27 01:40 -------- d-----w- c:\users\czech_000\AppData\Roaming\Free CUDA Movie Converter
2013-08-27 01:40 . 2002-01-05 14:37 344064 ----a-w- c:\windows\SysWow64\msvcr70.dll
2013-08-27 01:06 . 2013-08-27 01:06 -------- d-----w- c:\users\czech_000\AppData\Roaming\AnvSoft
2013-08-27 01:06 . 2011-11-28 12:51 33872 ----a-w- c:\windows\system32\drivers\anvsnddrv.sys
2013-08-27 00:10 . 2013-08-27 00:10 -------- d-----w- c:\users\czech_000\AppData\Local\SplitMediaLabs
2013-08-27 00:10 . 2013-09-01 12:53 -------- d-sh--w- c:\windows\SysWow64\AI_RecycleBin
2013-08-27 00:10 . 2013-08-27 00:10 -------- d-----w- c:\programdata\SplitMediaLabs
2013-08-27 00:10 . 2013-08-27 00:10 -------- d-----w- c:\users\czech_000\AppData\Roaming\SplitMediaLabs
2013-08-26 15:49 . 2013-08-31 20:21 -------- d-----w- d:\program files (x86)\Passware
2013-08-25 14:50 . 2013-08-25 14:50 -------- d-----w- c:\users\czech_000\AppData\Roaming\Thunderbird
2013-08-25 14:50 . 2013-08-25 14:50 -------- d-----w- c:\users\czech_000\AppData\Local\Thunderbird
2013-08-21 23:07 . 2013-08-21 23:31 -------- d-----w- c:\programdata\NFS Underground
2013-08-21 22:56 . 2013-08-21 23:03 -------- d-----w- d:\program files (x86)\JDownloader
2013-08-21 22:50 . 2013-08-31 20:36 -------- d-----w- d:\program files (x86)\EA GAMES
2013-08-20 18:41 . 2013-08-20 18:41 -------- d--h--w- c:\windows\system32\WLANProfiles
2013-08-20 18:41 . 2013-08-20 18:41 -------- d-----w- c:\users\czech_000\AppData\Roaming\Intel
2013-08-20 18:40 . 2013-08-20 18:40 -------- d-----w- c:\users\UpdatusUser\Roaming
2013-08-20 18:40 . 2013-08-20 18:40 -------- d-----w- c:\users\Public\Roaming
2013-08-20 18:40 . 2013-08-20 18:40 -------- d-----w- c:\users\Default\Roaming
2013-08-20 18:40 . 2013-08-20 18:40 -------- d-----w- c:\users\czech_000\Roaming
2013-08-20 18:40 . 2013-08-20 18:40 -------- d-----w- c:\program files\Common Files\Intel
2013-08-20 18:40 . 2013-08-20 18:40 -------- d-----w- c:\programdata\Intel.sav
2013-08-20 18:39 . 2013-09-02 01:44 -------- d-----w- c:\programdata\Package Cache
2013-08-18 10:05 . 2013-08-18 10:05 -------- d-----w- c:\users\czech_000\AppData\Roaming\LibreOffice
2013-08-18 10:05 . 2013-09-03 19:32 -------- d-----w- d:\program files (x86)\LibreOffice 4
2013-08-17 15:27 . 2013-08-17 15:27 -------- d-----w- d:\program files (x86)\Windows Defender
2013-08-17 14:03 . 2013-07-26 05:13 2241024 ----a-w- c:\windows\system32\wininet.dll
2013-08-17 14:03 . 2013-07-26 05:12 136704 ----a-w- c:\windows\system32\iesysprep.dll
2013-08-17 14:03 . 2013-07-26 05:13 1084928 ----a-w- c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-08-17 14:03 . 2013-07-26 05:12 15405056 ----a-w- c:\windows\system32\ieframe.dll
2013-08-17 14:03 . 2013-07-26 05:12 855552 ----a-w- c:\windows\system32\jscript.dll
2013-08-17 14:03 . 2013-07-26 05:12 19239424 ----a-w- c:\windows\system32\mshtml.dll
2013-08-17 14:03 . 2013-07-26 05:12 2647040 ----a-w- c:\windows\system32\iertutil.dll
2013-08-17 14:03 . 2013-07-26 05:12 3958784 ----a-w- c:\windows\system32\jscript9.dll
2013-08-17 14:02 . 2013-07-26 03:12 2877440 ----a-w- c:\windows\SysWow64\jscript9.dll
2013-08-17 14:02 . 2013-07-13 06:16 1889280 ----a-w- c:\windows\system32\crypt32.dll
2013-08-17 14:02 . 2013-07-13 06:18 337408 ----a-w- c:\windows\system32\wintrust.dll
2013-08-17 14:02 . 2013-07-13 04:23 1568256 ----a-w- c:\windows\SysWow64\crypt32.dll
2013-08-17 14:02 . 2013-07-13 06:16 68096 ----a-w- c:\windows\system32\cryptsvc.dll
2013-08-17 14:02 . 2013-07-13 06:15 124416 ----a-w- c:\windows\system32\apprepapi.dll
2013-08-17 14:02 . 2013-07-13 04:24 261120 ----a-w- c:\windows\SysWow64\wintrust.dll
2013-08-17 14:02 . 2013-07-13 04:23 87040 ----a-w- c:\windows\SysWow64\apprepapi.dll
2013-08-17 14:02 . 2013-07-13 06:15 98304 ----a-w- c:\windows\system32\apprepsync.dll
2013-08-17 14:02 . 2013-07-13 04:23 74240 ----a-w- c:\windows\SysWow64\apprepsync.dll
2013-08-12 16:01 . 2013-08-12 17:11 -------- d-----w- d:\program files (x86)\Battlefield 2
2013-08-10 17:54 . 2013-08-10 17:54 -------- d-----w- c:\programdata\GARMIN
2013-08-10 08:21 . 2013-08-10 08:21 -------- d-----w- d:\program files (x86)\LAN Voice Chat
2013-08-10 07:47 . 2013-08-10 07:53 102912 ----a-w- c:\windows\system32\dfboottime.exe
2013-08-10 06:33 . 2013-08-27 17:18 -------- d-----w- c:\users\czech_000\AppData\Local\Opera Software
2013-08-09 19:45 . 2013-08-09 19:45 310368 ----a-w- c:\windows\system32\drivers\snapman.sys
2013-08-09 19:45 . 2013-08-09 19:45 132704 ----a-w- c:\windows\system32\drivers\fltsrv.sys
2013-08-09 19:44 . 2013-08-09 19:45 -------- d-----w- c:\program files (x86)\Common Files\Acronis
2013-08-09 19:44 . 2013-08-09 19:44 -------- d-----w- d:\program files (x86)\Acronis
2013-08-09 19:40 . 2013-08-09 19:46 -------- d-----w- d:\program files (x86)\StuntGP
2013-08-09 19:40 . 2013-08-10 10:37 -------- d-----w- c:\program files (x86)\Common Files\InstallShield
2013-08-09 19:03 . 2013-09-07 23:41 -------- d-----w- c:\users\czech_000\AppData\Roaming\uTorrent
2013-08-09 17:31 . 2013-08-09 17:45 -------- d---a-w- d:\program files (x86)\Tennis Critters
2013-08-09 15:51 . 2009-04-24 10:14 39424 ----a-w- c:\windows\SysWow64\cdrvxf32.dll
2013-08-09 15:51 . 2009-04-24 10:14 31744 ----a-w- c:\windows\SysWow64\cdrvhf32.dll
2013-08-09 15:51 . 2009-04-24 10:14 28672 ----a-w- c:\windows\SysWow64\cdrvdl32.dll
2013-08-09 15:51 . 2009-04-24 10:14 18432 ----a-w- c:\windows\SysWow64\commsc32.dll
2013-08-09 15:51 . 2009-04-24 10:14 109248 ----a-w- c:\windows\SysWow64\mswinsck.ocx
2013-08-09 15:51 . 2009-04-24 10:13 499712 ----a-w- c:\windows\SysWow64\msvcp71.dll
2013-08-09 15:51 . 2009-04-24 10:13 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll
2013-08-09 15:51 . 2009-04-24 10:13 1060864 ----a-w- c:\windows\SysWow64\mfc71.dll
2013-08-09 15:51 . 2009-04-24 10:13 1047552 ----a-w- c:\windows\SysWow64\mfc71u.dll
2013-08-09 15:51 . 2013-08-09 15:51 -------- d-----w- c:\program files (x86)\Common Files\WildPackets
2013-08-09 15:48 . 2013-08-09 15:48 89088 ----a-w- c:\windows\SysWow64\NWKL2_64.DLL
2013-08-09 15:48 . 2013-08-09 15:48 89088 ----a-w- c:\windows\system32\NWKL2_64.DLL
2013-08-09 15:48 . 2013-08-09 15:48 86016 ----a-w- c:\windows\SysWow64\KL2DLL32.DLL
2013-08-09 15:48 . 2013-08-09 15:48 86016 ----a-w- c:\windows\system32\KL2DLL32.DLL
2013-08-09 15:48 . 2013-08-09 15:48 74240 ----a-w- c:\windows\SysWow64\KL2DLL64.DLL
2013-08-09 15:48 . 2013-08-09 15:48 74240 ----a-w- c:\windows\system32\KL2DLL64.DLL
2013-08-09 15:48 . 2013-08-09 15:48 143360 ----a-w- c:\windows\SysWow64\NWKL2_32.DLL
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-08-17 15:22 . 2013-07-14 23:28 78161360 ----a-w- c:\windows\system32\MRT.exe
2013-08-17 07:49 . 2013-07-14 16:00 17536 ----a-w- c:\programdata\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin
2013-07-28 09:02 . 2013-07-28 09:02 388096 ----a-r- c:\users\czech_000\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-07-24 12:52 . 2013-07-24 12:52 224016 --s---r- c:\windows\SysWow64\TABCTL32.OCX
2013-07-24 12:52 . 2013-07-24 12:52 152848 --s---r- c:\windows\SysWow64\COMDLG32.OCX
2013-07-24 12:52 . 2013-07-24 12:52 1010720 --s---r- c:\windows\SysWow64\MSCHRT20.OCX
2013-07-24 12:52 . 2013-07-24 12:52 1081616 --s---r- c:\windows\SysWow64\MSCOMCTL.OCX
2013-07-18 21:52 . 2013-07-14 13:50 6656 ----a-w- c:\windows\system32\lpcio.dll
2013-07-17 09:52 . 2013-07-17 09:52 4262128 ----a-w- c:\windows\system32\wlihvui.dll
2013-07-17 09:52 . 2013-07-17 09:52 2353904 ----a-w- c:\windows\system32\iwmssvc.dll
2013-07-14 22:30 . 2013-07-14 22:30 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-07-14 22:30 . 2013-07-14 22:30 867240 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-07-14 22:30 . 2013-07-14 22:30 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-07-14 14:27 . 2013-07-14 14:27 19872 ----a-w- c:\windows\system32\LenovoSDKEmSubSystem.dll
2013-07-14 14:27 . 2012-06-19 23:12 66560 ----a-w- c:\windows\system32\drivers\UMDF\LenovoVhid.dll
2013-07-14 14:27 . 2012-02-21 03:48 1511280 ----a-w- c:\windows\system32\WudfUpdate_01011.dll
2013-07-14 14:27 . 2013-07-14 14:27 39008 ----a-w- c:\windows\system32\drivers\LhdX64.sys
2013-07-14 14:27 . 2012-05-15 07:22 33560 ----a-w- c:\windows\system32\drivers\AcpiVpc.sys
2013-07-14 13:38 . 2012-07-26 08:13 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-07-04 13:57 . 2013-07-04 13:57 146704 ----a-w- c:\windows\system32\drivers\VBoxNetFlt.sys
2013-07-04 13:57 . 2013-07-04 13:57 131856 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
2013-07-04 13:56 . 2013-07-04 13:56 204048 ----a-w- c:\windows\system32\VBoxNetFltNobj.dll
2013-06-27 22:04 . 2012-07-26 08:14 78200 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-27 22:04 . 2012-07-26 08:14 693112 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-21 12:06 . 2013-07-14 22:41 925648 ----a-w- c:\windows\SysWow64\nvumdshim.dll
2013-06-21 12:06 . 2013-07-14 22:41 9239344 ----a-w- c:\windows\system32\nvcuda.dll
2013-06-21 12:06 . 2013-07-14 22:41 7687592 ----a-w- c:\windows\SysWow64\nvcuda.dll
2013-06-21 12:06 . 2013-07-14 22:41 7641832 ----a-w- c:\windows\system32\nvopencl.dll
2013-06-21 12:06 . 2013-07-14 22:41 6324360 ----a-w- c:\windows\SysWow64\nvopencl.dll
2013-06-21 12:06 . 2013-07-14 22:41 572704 ----a-w- c:\windows\system32\NvFBC64.dll
2013-06-21 12:06 . 2013-07-14 22:41 570656 ----a-w- c:\windows\system32\NvIFR64.dll
2013-06-21 12:06 . 2013-07-14 22:41 467232 ----a-w- c:\windows\SysWow64\NvIFR.dll
2013-06-21 12:06 . 2013-07-14 22:41 465184 ----a-w- c:\windows\SysWow64\NvFBC.dll
2013-06-21 12:06 . 2013-07-14 22:41 432928 ----a-w- c:\windows\system32\nvEncodeAPI64.dll
2013-06-21 12:06 . 2013-07-14 22:41 372000 ----a-w- c:\windows\SysWow64\nvEncodeAPI.dll
2013-06-21 12:06 . 2013-07-14 22:41 30496 ----a-w- c:\windows\system32\drivers\nvpciflt.sys
2013-06-21 12:06 . 2013-07-14 22:41 2953504 ----a-w- c:\windows\system32\nvcuvid.dll
2013-06-21 12:06 . 2013-07-14 22:41 2936208 ----a-w- c:\windows\system32\nvapi64.dll
2013-06-21 12:06 . 2013-07-14 22:41 27781920 ----a-w- c:\windows\system32\nvoglv64.dll
2013-06-21 12:06 . 2013-07-14 22:41 2777888 ----a-w- c:\windows\SysWow64\nvcuvid.dll
2013-06-21 12:06 . 2013-07-14 22:41 266448 ----a-w- c:\windows\system32\nvinitx.dll
2013-06-21 12:06 . 2013-07-14 22:41 2597856 ----a-w- c:\windows\SysWow64\nvapi.dll
2013-06-21 12:06 . 2013-07-14 22:41 25256224 ----a-w- c:\windows\system32\nvcompiler.dll
2013-06-21 12:06 . 2013-07-14 22:41 2363680 ----a-w- c:\windows\system32\nvcuvenc.dll
2013-06-21 12:06 . 2013-07-14 22:41 218592 ----a-w- c:\windows\system32\nvoglshim64.dll
2013-06-21 12:06 . 2013-07-14 22:41 214448 ----a-w- c:\windows\SysWow64\nvinit.dll
2013-06-21 12:06 . 2013-07-14 22:41 21102368 ----a-w- c:\windows\SysWow64\nvoglv32.dll
2013-06-21 12:06 . 2013-07-14 22:41 2002720 ----a-w- c:\windows\SysWow64\nvcuvenc.dll
2013-06-21 12:06 . 2013-07-14 22:41 1832224 ----a-w- c:\windows\system32\nvdispco6432049.dll
2013-06-21 12:06 . 2013-07-14 22:41 181488 ----a-w- c:\windows\SysWow64\nvoglshim32.dll
2013-06-21 12:06 . 2013-07-14 22:41 17560352 ----a-w- c:\windows\SysWow64\nvcompiler.dll
2013-06-21 12:06 . 2013-07-14 22:41 15920536 ----a-w- c:\windows\system32\nvwgf2umx.dll
2013-06-21 12:06 . 2013-07-14 22:41 15144928 ----a-w- c:\windows\system32\nvd3dumx.dll
2013-06-21 12:06 . 2013-07-14 22:41 1511712 ----a-w- c:\windows\system32\nvdispgenco6432049.dll
2013-06-21 12:06 . 2013-07-14 22:41 13411896 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
2013-06-21 12:06 . 2013-07-14 22:41 12427240 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2013-06-21 12:06 . 2013-07-14 22:41 11235104 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2013-06-21 12:06 . 2013-07-14 22:41 1059560 ----a-w- c:\windows\system32\nvumdshimx.dll
2013-06-21 10:23 . 2013-07-14 22:43 6496544 ----a-w- c:\windows\system32\nvcpl.dll
2013-06-21 10:23 . 2013-07-14 22:43 3514656 ----a-w- c:\windows\system32\nvsvc64.dll
2013-06-21 10:23 . 2013-07-14 22:43 884512 ----a-w- c:\windows\system32\nvvsvc.exe
2013-06-21 10:23 . 2013-07-14 22:43 67072 ----a-w- c:\windows\system32\nv3dappshextr.dll
2013-06-21 10:23 . 2013-07-14 22:43 63776 ----a-w- c:\windows\system32\nvshext.dll
2013-06-21 10:23 . 2013-07-14 22:43 2555680 ----a-w- c:\windows\system32\nvsvcr.dll
2013-06-21 10:23 . 2013-07-14 22:43 237856 ----a-w- c:\windows\system32\nvmctray.dll
2013-06-21 10:23 . 2013-07-14 22:43 1025312 ----a-w- c:\windows\system32\nv3dappshext.dll
2013-06-21 10:23 . 2013-07-14 22:42 575264 ----a-w- c:\windows\SysWow64\oemdspif.dll
2013-06-20 04:17 . 2013-07-14 22:43 3253909 ----a-w- c:\windows\system32\nvcoproc.bin
2013-06-16 22:41 . 2013-07-17 11:22 997632 ----a-w- c:\windows\system32\drivers\ndis.sys
2013-06-12 08:56 . 2013-06-12 08:56 3343840 ----a-w- c:\windows\system32\drivers\NETwew00.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-08-18 08:20 222832 ----a-w- c:\users\czech_000\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-08-18 08:20 222832 ----a-w- c:\users\czech_000\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-08-18 08:20 222832 ----a-w- c:\users\czech_000\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll c:\progra~2\NVIDIA~1\NVSTRE~1\rxinput.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ dfboottime \??\c:\windows\System32\dfboottime.cfg\0autocheck autochk *
.
R0 sfdrv01a;StarForce Protection Environment Driver (version 1.x.a);c:\windows\system32\drivers\sfdrv01a.sys;c:\windows\SYSNATIVE\drivers\sfdrv01a.sys [x]
R3 AcuWVSSchedulerv8;Acunetix WVS Scheduler v8;d:\program files (x86)\Acunetix\Web Vulnerability Scanner 8\WVSScheduler.exe;d:\program files (x86)\Acunetix\Web Vulnerability Scanner 8\WVSScheduler.exe [x]
R3 anvsnddrv;AnvSoft Virtual Sound Device;c:\windows\system32\drivers\anvsnddrv.sys;c:\windows\SYSNATIVE\drivers\anvsnddrv.sys [x]
R3 cpuz136;cpuz136;c:\windows\TEMP\cpuz136\cpuz136_x64.sys;c:\windows\TEMP\cpuz136\cpuz136_x64.sys [x]
R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe;c:\program files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [x]
R3 IAStorDataMgrSvc;Úložná technologie Intel® Rapid;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;d:\program files\Intel\WiFi\bin\PanDhcpDns.exe;d:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]
R3 NvStreamSvc;NVIDIA Streamer Service;d:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;d:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;c:\windows\System32\Drivers\RtsUVStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUVStor.sys [x]
R3 SolutoRemoteService;Soluto Remote Service;d:\program files\Soluto\SolutoRemoteService.exe;d:\program files\Soluto\SolutoRemoteService.exe [x]
R3 Speechsrv;Glasovne poruke;d:\program files (x86)\LAN Voice Chat\Speechs.exe;d:\program files (x86)\LAN Voice Chat\Speechs.exe [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 Te.Service;Te.Service;c:\program files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe;c:\program files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [x]
R3 TeamViewer8;TeamViewer 8;d:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe;d:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\System32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 vmicheartbeat;Služba prezenčního signálu technologie Hyper-V;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;d:\program files\Intel\WiFi\bin\ZeroConfigService.exe;d:\program files\Intel\WiFi\bin\ZeroConfigService.exe [x]
S0 fltsrv;Acronis Storage Filter Management;c:\windows\system32\DRIVERS\fltsrv.sys;c:\windows\SYSNATIVE\DRIVERS\fltsrv.sys [x]
S0 iaStorA;iaStorA;c:\windows\System32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]
S0 LHDmgr;LHDmgr;c:\windows\System32\DRIVERS\LhdX64.sys;c:\windows\SYSNATIVE\DRIVERS\LhdX64.sys [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S0 Soluto;Soluto;c:\windows\system32\DRIVERS\Soluto.sys;c:\windows\SYSNATIVE\DRIVERS\Soluto.sys [x]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxDrv.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxUSBMon.sys [x]
S2 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [x]
S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe [x]
S2 SolutoLauncherService;Soluto Launcher Service;d:\program files\Soluto\SolutoLauncherService.exe;d:\program files\Soluto\SolutoLauncherService.exe [x]
S2 SolutoService;Soluto PCGenome Core Service;d:\program files\Soluto\SolutoService.exe;d:\program files\Soluto\SolutoService.exe [x]
S3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\System32\drivers\AcpiVpc.sys;c:\windows\SYSNATIVE\drivers\AcpiVpc.sys [x]
S3 BthLEEnum;Ovladač úspory energie technologie Bluetooth;c:\windows\system32\DRIVERS\BthLEEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x]
S3 btmaux;Intel Bluetooth Auxiliary Service;c:\windows\system32\DRIVERS\btmaux.sys;c:\windows\SYSNATIVE\DRIVERS\btmaux.sys [x]
S3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys;c:\windows\SYSNATIVE\DRIVERS\btmhsf.sys [x]
S3 ibtfltcoex;ibtfltcoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys;c:\windows\SYSNATIVE\DRIVERS\iBtFltCoex.sys [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 NETwNe64;@oem56.inf,___ %NIC_Service_DispName_WIN8_64%;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 8 64 Bit;c:\windows\system32\DRIVERS\NETwew00.sys;c:\windows\SYSNATIVE\DRIVERS\NETwew00.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8168;Realtek 8168 NT Driver;c:\windows\system32\DRIVERS\Rt630x64.sys;c:\windows\SYSNATIVE\DRIVERS\Rt630x64.sys [x]
S3 rtsuvc;Lenovo EasyCamera;c:\windows\system32\DRIVERS\rtsuvc.sys;c:\windows\SYSNATIVE\DRIVERS\rtsuvc.sys [x]
S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetAdp.sys [x]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetFlt.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-09-04 10:20 1177552 ----a-w- c:\program files (x86)\Google\Chrome\Application\29.0.1547.66\Installer\chrmstp.exe
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-08-18 08:20 261744 ----a-w- c:\users\czech_000\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-08-18 08:20 261744 ----a-w- c:\users\czech_000\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-08-18 08:20 261744 ----a-w- c:\users\czech_000\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshellex.dll" [2012-08-27 11577216]
"SynLenovoGestureMgr"="d:\program files (x86)\Synaptics\SynTP\SynLenovoGestureMgr.exe" [BU]
"RtsFT"="RTFTrack.exe" [2012-08-27 6334096]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-07-27 1028896]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-12-19 172168]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-12-19 441992]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"IntelPROSet"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2013-07-17 4791024]
"Soluto"="d:\program files\soluto\soluto.exe" [2013-08-17 1252896]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Doplňkový sken -------
.
uLocal Page = %SystemRoot%\system32\blank.htm
mLocal Page = c:\windows\SYSTEM32\blank.htm
IE: Inspect Element with DebugBar - d:\program files (x86)\Core Services\DebugBar\DebugInfoBar.dll/247
IE: Odeslat do Bluetooth - c:\program files (x86)\Intel\Bluetooth\btSendToObject.htm
TCP: DhcpNameServer = 10.0.0.100 10.0.0.200
FF - ProfilePath - c:\users\czech_000\AppData\Roaming\Mozilla\Firefox\Profiles\qtewduse.default-1376041014175\
FF - ExtSQL: 2013-08-09 11:44; firebug@software.joehewitt.com; c:\users\czech_000\AppData\Roaming\Mozilla\Firefox\Profiles\qtewduse.default-1376041014175\extensions\firebug@software.joehewitt.com.xpi
FF - ExtSQL: 2013-08-09 11:44; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\czech_000\AppData\Roaming\Mozilla\Firefox\Profiles\qtewduse.default-1376041014175\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2013-08-09 11:45; {d49a148e-817e-4025-bee3-5d541376de3b}; c:\users\czech_000\AppData\Roaming\Mozilla\Firefox\Profiles\qtewduse.default-1376041014175\extensions\{d49a148e-817e-4025-bee3-5d541376de3b}.xpi
FF - ExtSQL: 2013-08-09 11:45; firegestures@xuldev.org; c:\users\czech_000\AppData\Roaming\Mozilla\Firefox\Profiles\qtewduse.default-1376041014175\extensions\firegestures@xuldev.org.xpi
FF - ExtSQL: 2013-08-09 11:45; firefinder@robertnyman.com; c:\users\czech_000\AppData\Roaming\Mozilla\Firefox\Profiles\qtewduse.default-1376041014175\extensions\firefinder@robertnyman.com.xpi
FF - ExtSQL: 2013-08-24 14:18; {3c6e1eed-a07e-4c80-9cf3-66ea0bf40b37}; c:\users\czech_000\AppData\Roaming\Mozilla\Firefox\Profiles\qtewduse.default-1376041014175\extensions\{3c6e1eed-a07e-4c80-9cf3-66ea0bf40b37}
FF - ExtSQL: 2013-09-07 23:10; {e3f6c2cc-d8db-498c-af6c-499fb211db97}; c:\users\czech_000\AppData\Roaming\Mozilla\Firefox\Profiles\qtewduse.default-1376041014175\extensions\{e3f6c2cc-d8db-498c-af6c-499fb211db97}
FF - ExtSQL: 2013-09-07 23:10; yslow@yahoo-inc.com; c:\users\czech_000\AppData\Roaming\Mozilla\Firefox\Profiles\qtewduse.default-1376041014175\extensions\yslow@yahoo-inc.com.xpi
FF - ExtSQL: 2013-09-07 23:10; wmf@javascriptrules.com; c:\users\czech_000\AppData\Roaming\Mozilla\Firefox\Profiles\qtewduse.default-1376041014175\extensions\wmf@javascriptrules.com.xpi
FF - ExtSQL: 2013-09-07 23:10; gwif-quality@goodwebsiteinspector.com; c:\users\czech_000\AppData\Roaming\Mozilla\Firefox\Profiles\qtewduse.default-1376041014175\extensions\gwif-quality@goodwebsiteinspector.com.xpi
.
Binary file temp00 matches
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\program files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
.
**************************************************************************
.
Celkový čas: 2013-09-08 13:13:38 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-09-08 11:13
ComboFix2.txt 2013-09-07 15:32
.
Před spuštěním: 94 857 183 232 bytes free
Po spuštění: 94 495 776 768 bytes free
.
- - End Of File - - 1B05ABC2C87ABCA0EE43CF9464598170
Nahr nˇ probŘhlo ŁspŘçnŘ

aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-09-08 13:16:38
-----------------------------
13:16:38.192 OS Version: Windows x64 6.2.9200
13:16:38.192 Number of processors: 4 586 0x2A07
13:16:38.192 ComputerName: NTB UserName:
13:16:38.504 Initialize success
13:16:47.307 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000003d
13:16:47.307 Disk 0 Vendor: ST1000LM024_HN-M101MBB 2AR20002 Size: 953869MB BusType: 11
13:16:47.463 Disk 0 MBR read successfully
13:16:47.463 Disk 0 MBR scan
13:16:47.463 Disk 0 Windows 7 default MBR code
13:16:47.479 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 350 MB offset 2048
13:16:47.479 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 150775 MB offset 718848
13:16:47.494 Disk 0 Partition 3 00 12 Compaq diag NTFS 1500 MB offset 309506048
13:16:47.510 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 801242 MB offset 312578048
13:16:47.525 Disk 0 scanning C:\Windows\system32\drivers
13:16:52.860 Service scanning
13:17:05.437 Modules scanning
13:17:05.437 Disk 0 trace - called modules:
13:17:05.469 ntoskrnl.exe CLASSPNP.SYS disk.sys storport.sys hal.dll iaStorA.sys
13:17:05.469 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8006304740]
13:17:05.484 3 CLASSPNP.SYS[fffff88002161fea] -> nt!IofCallDriver -> \Device\0000003d[0xfffffa8004a297f0]
13:17:05.484 Scan finished successfully
13:17:12.537 Disk 0 MBR has been saved successfully to "C:\Users\czech_000\Desktop\MBR.dat"
13:17:12.537 The log file has been saved successfully to "C:\Users\czech_000\Desktop\aswMBR.txt"

Reklama

Příspěvekod **memphisto** » 08 zář 2013 15:41

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

+ Nový log z HJT

Jak se chová PC?

CZechBoY · Příspěvekod **CZechBoY** » 08 zář 2013 16:37

pc celkem dobrý :-)

OTC nevyčistilo MBR.dat z toho posledního souboru

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:36:05, on 8. 9. 2013
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal

Running processes:
D:\Program Files (x86)\Opera\16.0.1196.73\opera.exe
D:\Program Files (x86)\Opera\16.0.1196.73\opera_crashreporter.exe
D:\Program Files (x86)\Opera\16.0.1196.73\opera.exe
D:\Program Files (x86)\Opera\16.0.1196.73\opera.exe
D:\Program Files (x86)\Opera\16.0.1196.73\opera.exe
D:\Program Files (x86)\Opera\16.0.1196.73\opera.exe
D:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: DebugBar BHO - {69FC0024-10EB-480A-BBF2-3BF4E78E17B1} - D:\Program Files (x86)\Core Services\DebugBar\DebugInfoBar.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Microsoft Web Test Recorder 10.0 Helper - {876d9f09-c6d6-4324-a2cc-04dd9a4de12f} - D:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O8 - Extra context menu item: Inspect Element with DebugBar - res://D:\Program Files (x86)\Core Services\DebugBar\DebugInfoBar.dll/247
O8 - Extra context menu item: Odeslat do Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
O9 - Extra button: Odeslat do Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O9 - Extra 'Tools' menuitem: Odeslat do Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.co ... 5.15.0.cab
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll C:\PROGRA~2\NVIDIA~1\NVSTRE~1\rxinput.dll
O23 - Service: Acunetix WVS Scheduler v8 (AcuWVSSchedulerv8) - Unknown owner - D:\Program Files (x86)\Acunetix\Web Vulnerability Scanner 8\WVSScheduler.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Bonjour Service - Apple Inc. - D:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - D:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Úložná technologie Intel® Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: iPod Service - Apple Inc. - D:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - D:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - D:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SF FrontLine Drivers Auto Removal (v1) (sfrem01) - Unknown owner - C:\Windows\system32\sfrem01.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Soluto Launcher Service (SolutoLauncherService) - Soluto - D:\Program Files\Soluto\SolutoLauncherService.exe
O23 - Service: Soluto Remote Service (SolutoRemoteService) - GlavSoft LLC. - D:\Program Files\Soluto\SolutoRemoteService.exe
O23 - Service: Soluto PCGenome Core Service (SolutoService) - Soluto - D:\Program Files\Soluto\SolutoService.exe
O23 - Service: Glasovne poruke (Speechsrv) - Unknown owner - D:\Program Files (x86)\LAN Voice Chat\Speechs.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Aktivátor Správce výběru OS Acronis (Správce výběru OS) - Unknown owner - D:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - D:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - D:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - D:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - D:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 9284 bytes

Příspěvekod **jaro3** » 08 zář 2013 20:40

pc celkem dobrý
OTC nevyčistilo MBR.dat z toho posledního souboru

OTC čistí Combofix ap.

Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.

CZechBoY · Příspěvekod **CZechBoY** » 08 zář 2013 21:35

no já jen, že mi to ten exáč a log smazalo tak jsem myslel, že to má mazat i MBR.dat

jojo díky oběma

Kontrola HJT - nákaza v MBAM Vyřešeno

Re: Kontrola HJT - nákaza v MBAM

Re: Kontrola HJT - nákaza v MBAM

Re: Kontrola HJT - nákaza v MBAM

Re: Kontrola HJT - nákaza v MBAM Vyřešeno

Re: Kontrola HJT - nákaza v MBAM

Kdo je online