Prosím o preventivní kontrolu logu Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Zamčeno
Uživatelský avatar
Dymon
Level 2.5
Level 2.5
Příspěvky: 266
Registrován: květen 09
Pohlaví: Muž
Stav:
Offline

Re: Prosím o preventivní kontrolu logu

Příspěvekod Dymon » 17 úno 2014 16:16

Jak jsem psal výše, problém s Originem stále přetrvává.

ComboFix

ComboFix 14-02-16.01 - Petr 17.02.2014 15:40:39.4.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.8189.6698 [GMT 1:00]
Spuštěný z: i:\users\Petr\Downloads\ComboFix.exe
Použité ovládací přepínače :: i:\users\Petr\Downloads\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"i:\windows\system32\drivers\avgtpx64.sys"
"i:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"i:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
i:\program files (x86)\Google\Update
i:\program files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe
i:\program files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe
i:\program files (x86)\Google\Update\1.3.22.3\GoogleUpdate.exe
i:\program files (x86)\Google\Update\1.3.22.3\GoogleUpdateBroker.exe
i:\program files (x86)\Google\Update\1.3.22.3\GoogleUpdateHelper.msi
i:\program files (x86)\Google\Update\1.3.22.3\GoogleUpdateOnDemand.exe
i:\program files (x86)\Google\Update\1.3.22.3\GoogleUpdateSetup.exe
i:\program files (x86)\Google\Update\1.3.22.3\goopdate.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_am.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_ar.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_bg.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_bn.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_ca.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_cs.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_da.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_de.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_el.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_en-GB.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_en.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_es-419.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_es.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_et.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_fa.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_fi.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_fil.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_fr.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_gu.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_hi.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_hr.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_hu.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_id.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_is.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_it.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_iw.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_ja.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_kn.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_ko.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_lt.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_lv.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_ml.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_mr.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_ms.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_nl.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_no.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_pl.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_pt-BR.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_pt-PT.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_ro.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_ru.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_sk.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_sl.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_sr.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_sv.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_sw.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_ta.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_te.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_th.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_tr.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_uk.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_ur.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_vi.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_zh-CN.dll
i:\program files (x86)\Google\Update\1.3.22.3\goopdateres_zh-TW.dll
i:\program files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll
i:\program files (x86)\Google\Update\1.3.22.3\psmachine.dll
i:\program files (x86)\Google\Update\1.3.22.3\psuser.dll
i:\program files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.22.3\GoogleUpdateSetup.exe
i:\program files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\31.0.1650.63\31.0.1650.63_31.0.1650.57_chrome_updater.exe
i:\program files (x86)\Google\Update\GoogleUpdate.exe
i:\program files (x86)\Skype\Updater
i:\program files (x86)\Skype\Updater\Updater.dll
i:\program files (x86)\Skype\Updater\Updater.exe
i:\users\Petr\AppData\Local\AVG SafeGuard toolbar
i:\users\Petr\AppData\Local\AVG SafeGuard toolbar\DNT\dt.dat
i:\users\Petr\AppData\Local\AVG SafeGuard toolbar\Chrome\Default\Preferences
i:\users\Petr\AppData\Local\AVG SafeGuard toolbar\Chrome\Default\Web Data
i:\users\Petr\AppData\Local\AVG SafeGuard toolbar\SiteSafety\l_2014_02_02_11_50_08.db
i:\users\Petr\AppData\Local\AVG SafeGuard toolbar\SiteSafety\l_2014_02_04_05_52_20.db
i:\windows\system32\drivers\avgtpx64.sys
i:\windows\Tasks\GoogleUpdateTaskMachineCore.job
i:\windows\Tasks\GoogleUpdateTaskMachineUA.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_AVGTP
-------\Service_avgtp
-------\Service_SkypeUpdate
-------\Service_gupdate
-------\Service_gupdatem
-------\Service_gupdate
-------\Service_gupdatem
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-01-17 do 2014-02-17 )))))))))))))))))))))))))))))))
.
.
2014-02-17 14:54 . 2014-02-17 14:54 -------- d-----w- i:\users\Public\AppData\Local\temp
2014-02-17 14:54 . 2014-02-17 14:54 -------- d-----w- i:\users\Default\AppData\Local\temp
2014-02-15 22:21 . 2014-02-15 22:21 -------- d-----w- i:\users\Petr\AppData\Local\Octodad Dadliest Catch
2014-02-14 07:14 . 2013-12-04 03:28 10315576 ----a-w- i:\programdata\Microsoft\Windows Defender\Definition Updates\{E6D50D4E-2485-4C7B-829D-48284EDEDCAC}\mpengine.dll
2014-02-12 16:29 . 2013-12-21 09:53 548864 ----a-w- i:\windows\system32\vbscript.dll
2014-02-12 16:29 . 2013-12-21 08:56 454656 ----a-w- i:\windows\SysWow64\vbscript.dll
2014-02-12 08:56 . 2013-12-06 02:30 2048 ----a-w- i:\windows\system32\msxml3r.dll
2014-02-11 23:22 . 2014-02-16 19:41 -------- d-----w- i:\users\Petr\AppData\Local\CrashDumps
2014-02-10 18:45 . 2014-02-10 18:45 -------- d-----w- i:\users\Petr\AppData\Local\Adobe
2014-02-09 15:33 . 2014-02-09 15:36 -------- d-----w- i:\users\Petr\AppData\Roaming\.minecraft
2014-02-08 15:31 . 2007-04-04 17:53 81768 ----a-w- i:\windows\SysWow64\xinput1_3.dll
2014-02-08 14:24 . 2014-02-16 20:26 -------- d-----w- i:\users\Petr\AppData\Local\Origin
2014-02-08 14:24 . 2014-02-17 14:16 -------- d-----w- i:\program files (x86)\Origin
2014-02-08 14:16 . 2014-02-08 14:21 -------- d-----w- i:\users\oiuj
2014-02-06 20:25 . 2014-02-06 20:25 -------- d-----w- i:\users\Petr\AppData\Roaming\AVCWare
2014-02-02 11:53 . 2014-02-02 11:53 -------- d-----w- i:\program files (x86)\Unified Remote
2014-01-23 20:24 . 2014-01-23 20:24 -------- d-----w- i:\users\Petr\AppData\Local\Blizzard
2014-01-23 17:57 . 2014-01-23 17:57 -------- d-----w- i:\users\Petr\AppData\Local\Blizzard Entertainment
2014-01-23 17:57 . 2014-02-16 17:40 -------- d-----w- i:\users\Petr\AppData\Local\Battle.net
2014-01-23 17:57 . 2014-01-23 17:58 -------- d-----w- i:\users\Petr\AppData\Roaming\Battle.net
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-02-16 08:54 . 2013-06-24 18:18 88567024 ----a-w- i:\windows\system32\MRT.exe
2014-02-05 15:44 . 2013-06-25 06:30 71048 ----a-w- i:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-02-05 15:44 . 2013-06-25 06:30 692616 ----a-w- i:\windows\SysWow64\FlashPlayerApp.exe
2013-12-28 08:55 . 2013-06-26 20:24 48648 ----a-w- i:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2013-12-26 10:12 . 2013-12-26 10:12 48648 ----a-w- i:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2013-12-26 10:11 . 2013-12-26 10:11 483952 ----a-w- i:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2013-12-18 20:09 . 2013-10-07 12:39 96168 ----a-w- i:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-12-18 05:13 . 2013-06-24 18:48 270496 ------w- i:\windows\system32\MpSigStub.exe
2013-12-03 08:22 . 2013-12-03 08:22 940032 ----a-w- i:\windows\system32\MsSpellCheckingFacility.exe
2013-12-03 08:22 . 2013-12-03 08:22 194048 ----a-w- i:\windows\SysWow64\elshyph.dll
2013-12-03 08:22 . 2013-12-03 08:22 71680 ----a-w- i:\windows\SysWow64\RegisterIEPKEYs.exe
2013-12-03 08:22 . 2013-12-03 08:22 645120 ----a-w- i:\windows\SysWow64\jsIntl.dll
2013-12-03 08:22 . 2013-12-03 08:22 62464 ----a-w- i:\windows\SysWow64\tdc.ocx
2013-12-03 08:22 . 2013-12-03 08:22 61952 ----a-w- i:\windows\SysWow64\MshtmlDac.dll
2013-12-03 08:22 . 2013-12-03 08:22 36352 ----a-w- i:\windows\SysWow64\imgutil.dll
2013-12-03 08:22 . 2013-12-03 08:22 34816 ----a-w- i:\windows\SysWow64\JavaScriptCollectionAgent.dll
2013-12-03 08:22 . 2013-12-03 08:22 337408 ----a-w- i:\windows\SysWow64\html.iec
2013-12-03 08:22 . 2013-12-03 08:22 24576 ----a-w- i:\windows\SysWow64\licmgr10.dll
2013-12-03 08:22 . 2013-12-03 08:22 235008 ----a-w- i:\windows\system32\elshyph.dll
2013-12-03 08:22 . 2013-12-03 08:22 182272 ----a-w- i:\windows\SysWow64\msls31.dll
2013-12-03 08:22 . 2013-12-03 08:22 151552 ----a-w- i:\windows\SysWow64\iexpress.exe
2013-12-03 08:22 . 2013-12-03 08:22 139264 ----a-w- i:\windows\SysWow64\wextract.exe
2013-12-03 08:22 . 2013-12-03 08:22 13312 ----a-w- i:\windows\SysWow64\mshta.exe
2013-12-03 08:22 . 2013-12-03 08:22 1051136 ----a-w- i:\windows\SysWow64\mshtmlmedia.dll
2013-12-03 08:22 . 2013-12-03 08:22 942592 ----a-w- i:\windows\system32\jsIntl.dll
2013-12-03 08:22 . 2013-12-03 08:22 90112 ----a-w- i:\windows\system32\SetIEInstalledDate.exe
2013-12-03 08:22 . 2013-12-03 08:22 86016 ----a-w- i:\windows\SysWow64\iesysprep.dll
2013-12-03 08:22 . 2013-12-03 08:22 86016 ----a-w- i:\windows\system32\RegisterIEPKEYs.exe
2013-12-03 08:22 . 2013-12-03 08:22 84992 ----a-w- i:\windows\system32\mshtmled.dll
2013-12-03 08:22 . 2013-12-03 08:22 83968 ----a-w- i:\windows\system32\MshtmlDac.dll
2013-12-03 08:22 . 2013-12-03 08:22 81408 ----a-w- i:\windows\system32\icardie.dll
2013-12-03 08:22 . 2013-12-03 08:22 774144 ----a-w- i:\windows\system32\jscript.dll
2013-12-03 08:22 . 2013-12-03 08:22 77312 ----a-w- i:\windows\system32\tdc.ocx
2013-12-03 08:22 . 2013-12-03 08:22 74240 ----a-w- i:\windows\SysWow64\SetIEInstalledDate.exe
2013-12-03 08:22 . 2013-12-03 08:22 62464 ----a-w- i:\windows\system32\pngfilt.dll
2013-12-03 08:22 . 2013-12-03 08:22 616104 ----a-w- i:\windows\system32\ieapfltr.dat
2013-12-03 08:22 . 2013-12-03 08:22 52224 ----a-w- i:\windows\system32\msfeedsbs.dll
2013-12-03 08:22 . 2013-12-03 08:22 48640 ----a-w- i:\windows\SysWow64\mshtmler.dll
2013-12-03 08:22 . 2013-12-03 08:22 48640 ----a-w- i:\windows\system32\mshtmler.dll
2013-12-03 08:22 . 2013-12-03 08:22 48128 ----a-w- i:\windows\system32\imgutil.dll
2013-12-03 08:22 . 2013-12-03 08:22 453120 ----a-w- i:\windows\system32\dxtmsft.dll
2013-12-03 08:22 . 2013-12-03 08:22 413696 ----a-w- i:\windows\system32\html.iec
2013-12-03 08:22 . 2013-12-03 08:22 40448 ----a-w- i:\windows\system32\JavaScriptCollectionAgent.dll
2013-12-03 08:22 . 2013-12-03 08:22 30208 ----a-w- i:\windows\system32\licmgr10.dll
2013-12-03 08:22 . 2013-12-03 08:22 296960 ----a-w- i:\windows\system32\dxtrans.dll
2013-12-03 08:22 . 2013-12-03 08:22 263376 ----a-w- i:\windows\system32\iedkcs32.dll
2013-12-03 08:22 . 2013-12-03 08:22 247808 ----a-w- i:\windows\system32\msls31.dll
2013-12-03 08:22 . 2013-12-03 08:22 243200 ----a-w- i:\windows\system32\webcheck.dll
2013-12-03 08:22 . 2013-12-03 08:22 235520 ----a-w- i:\windows\system32\url.dll
2013-12-03 08:22 . 2013-12-03 08:22 167424 ----a-w- i:\windows\system32\iexpress.exe
2013-12-03 08:22 . 2013-12-03 08:22 147968 ----a-w- i:\windows\system32\occache.dll
2013-12-03 08:22 . 2013-12-03 08:22 143872 ----a-w- i:\windows\system32\wextract.exe
2013-12-03 08:22 . 2013-12-03 08:22 13824 ----a-w- i:\windows\system32\mshta.exe
2013-12-03 08:22 . 2013-12-03 08:22 135680 ----a-w- i:\windows\system32\iepeers.dll
2013-12-03 08:22 . 2013-12-03 08:22 13312 ----a-w- i:\windows\system32\msfeedssync.exe
2013-12-03 08:22 . 2013-12-03 08:22 131072 ----a-w- i:\windows\system32\IEAdvpack.dll
2013-12-03 08:22 . 2013-12-03 08:22 1228800 ----a-w- i:\windows\system32\mshtmlmedia.dll
2013-12-03 08:22 . 2013-12-03 08:22 111616 ----a-w- i:\windows\SysWow64\IEAdvpack.dll
2013-12-03 08:22 . 2013-12-03 08:22 105984 ----a-w- i:\windows\system32\iesysprep.dll
2013-12-03 08:22 . 2013-12-03 08:22 101376 ----a-w- i:\windows\system32\inseng.dll
2013-11-27 01:41 . 2014-01-15 16:48 343040 ----a-w- i:\windows\system32\drivers\usbhub.sys
2013-11-27 01:41 . 2014-01-15 16:48 99840 ----a-w- i:\windows\system32\drivers\usbccgp.sys
2013-11-27 01:41 . 2014-01-15 16:48 53248 ----a-w- i:\windows\system32\drivers\usbehci.sys
2013-11-27 01:41 . 2014-01-15 16:48 325120 ----a-w- i:\windows\system32\drivers\usbport.sys
2013-11-27 01:41 . 2014-01-15 16:48 25600 ----a-w- i:\windows\system32\drivers\usbohci.sys
2013-11-27 01:41 . 2014-01-15 16:48 30720 ----a-w- i:\windows\system32\drivers\usbuhci.sys
2013-11-27 01:41 . 2014-01-15 16:48 7808 ----a-w- i:\windows\system32\drivers\usbd.sys
2013-11-26 11:40 . 2014-01-15 16:48 376768 ----a-w- i:\windows\system32\drivers\netio.sys
2013-11-26 10:32 . 2014-01-15 16:48 3156480 ----a-w- i:\windows\system32\win32k.sys
2013-11-23 18:26 . 2013-12-12 17:37 417792 ----a-w- i:\windows\SysWow64\WMPhoto.dll
2013-11-23 17:47 . 2013-12-12 17:37 465920 ----a-w- i:\windows\system32\WMPhoto.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"="z:\software\RocketDock\RocketDock.exe" [2007-09-02 495616]
"Unified Remote v2"="i:\program files (x86)\Unified Remote\RemoteServer.exe" [2014-01-17 332496]
"HydraVisionDesktopManager"="i:\program files (x86)\ATI Technologies\HydraVision\HydraDM.exe" [2012-02-14 393216]
"Sidebar"="i:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"Spotify Web Helper"="i:\users\Petr\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2014-01-18 1171968]
"EADM"="i:\program files (x86)\Origin\Origin.exe" [2014-02-14 3598680]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avast"="z:\software\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
"SunJavaUpdateSched"="i:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"StartCCC"="i:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2013-10-08 766208]
"Adobe ARM"="i:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Autodesk Sync"="i:\program files\Autodesk\Autodesk Sync\AdSync.exe" [2013-02-05 1081224]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux4"=wdmaud.drv
.
R2 Autodesk Content Service;Autodesk Content Service;i:\program files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe;i:\program files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;i:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;i:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 JMB36X;JMB36X;i:\windows\SysWOW64\XSrvSetup.exe;i:\windows\SysWOW64\XSrvSetup.exe [x]
R3 amdiox64;AMD IO Driver;i:\windows\system32\DRIVERS\amdiox64.sys;i:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;i:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe;i:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [x]
R3 epmntdrv;epmntdrv;i:\windows\system32\epmntdrv.sys;i:\windows\SYSNATIVE\epmntdrv.sys [x]
R3 EuGdiDrv;EuGdiDrv;i:\windows\system32\EuGdiDrv.sys;i:\windows\SYSNATIVE\EuGdiDrv.sys [x]
R3 FlexNet Licensing Service 64;FlexNet Licensing Service 64;i:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;i:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;i:\windows\system32\IEEtwCollector.exe;i:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;i:\windows\system32\drivers\rdpvideominiport.sys;i:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;i:\windows\system32\drivers\synth3dvsc.sys;i:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;i:\windows\system32\drivers\tsusbflt.sys;i:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;i:\windows\system32\drivers\tsusbhub.sys;i:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;i:\windows\system32\drivers\rdvgkmd.sys;i:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;i:\windows\system32\Wat\WatAdminSvc.exe;i:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S0 fltsrv;Acronis Storage Filter Management;i:\windows\system32\DRIVERS\fltsrv.sys;i:\windows\SYSNATIVE\DRIVERS\fltsrv.sys [x]
S0 tib;Acronis TIB Manager;i:\windows\system32\DRIVERS\tib.sys;i:\windows\SYSNATIVE\DRIVERS\tib.sys [x]
S0 tib_mounter;Acronis TIB Mounter;i:\windows\system32\DRIVERS\tib_mounter.sys;i:\windows\SYSNATIVE\DRIVERS\tib_mounter.sys [x]
S0 vididr;Acronis Virtual Disk;i:\windows\system32\DRIVERS\vididr.sys;i:\windows\SYSNATIVE\DRIVERS\vididr.sys [x]
S0 vidsflt;Acronis Disk Storage Filter;i:\windows\system32\DRIVERS\vidsflt.sys;i:\windows\SYSNATIVE\DRIVERS\vidsflt.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 FNETURPX;FNETURPX;i:\windows\system32\drivers\FNETURPX.SYS;i:\windows\SYSNATIVE\drivers\FNETURPX.SYS [x]
S2 afcdpsrv;Acronis Nonstop Backup Service;i:\program files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe;i:\program files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;i:\windows\system32\atiesrxx.exe;i:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;i:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;i:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.2;AODDriver4.2;i:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;i:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;i:\windows\system32\drivers\aswMonFlt.sys;i:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 syncagentsrv;Acronis Sync Agent Service;i:\program files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe;i:\program files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [x]
S2 TeamViewer8;TeamViewer 8;i:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe;i:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [x]
S3 afcdp;afcdp;i:\windows\system32\DRIVERS\afcdp.sys;i:\windows\SYSNATIVE\DRIVERS\afcdp.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;i:\windows\system32\drivers\AtihdW76.sys;i:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;i:\windows\system32\DRIVERS\dtsoftbus01.sys;i:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S3 IT9135BDA;IT9135 BDA Devices;i:\windows\system32\Drivers\IT9135BDA.sys;i:\windows\SYSNATIVE\Drivers\IT9135BDA.sys [x]
S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;i:\windows\system32\DRIVERS\nusb3hub.sys;i:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;i:\windows\system32\DRIVERS\nusb3xhc.sys;i:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 RTL8167;Ovladač Realtek 8167 NT;i:\windows\system32\DRIVERS\Rt64win7.sys;i:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 skfiltv;skfiltv;i:\windows\system32\drivers\skfiltv.sys;i:\windows\SYSNATIVE\drivers\skfiltv.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-12-06 22:27 1210320 ----a-w- i:\program files (x86)\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-02-17 i:\windows\Tasks\Adobe Flash Player Updater.job
- i:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-25 15:44]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BCBAF366-D494-D490-E400-E57190DBD133}]
i:\programdata\UTuberAdeBlocKer\I.x64.dll [BU]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58 133840 ----a-w- z:\software\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncError]
@="{934BC6C0-FEC2-4df5-A100-961DE2C8A0ED}"
[HKEY_CLASSES_ROOT\CLSID\{934BC6C0-FEC2-4df5-A100-961DE2C8A0ED}]
2013-04-18 01:05 2824344 ----a-w- i:\program files (x86)\Acronis\TrueImageHome\tishell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncInProgress]
@="{00F848DC-B1D4-4892-9C25-CAADC86A215D}"
[HKEY_CLASSES_ROOT\CLSID\{00F848DC-B1D4-4892-9C25-CAADC86A215D}]
2013-04-18 01:05 2824344 ----a-w- i:\program files (x86)\Acronis\TrueImageHome\tishell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncOk]
@="{71573297-552E-46fc-BE3D-3DFAF88D47B7}"
[HKEY_CLASSES_ROOT\CLSID\{71573297-552E-46fc-BE3D-3DFAF88D47B7}]
2013-04-18 01:05 2824344 ----a-w- i:\program files (x86)\Acronis\TrueImageHome\tishell64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"itype"="i:\program files\Microsoft IntelliType Pro\itype.exe" [2009-11-05 2345848]
.
------- Doplňkový sken -------
.
uLocal Page = i:\windows\system32\blank.htm
mLocal Page = i:\windows\SYSTEM32\blank.htm
TCP: DhcpNameServer = 192.168.1.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
BHO-{C4EB7CB7-6A7C-8DED-01FD-07C4F49905EB} - (no file)
AddRemove-PunkBusterSvc - i:\windows\system32\pbsvc.exe
AddRemove-{5F189DF5-2D05-472B-9091-84D9848AE48B}{d4fe97e8} - i:\progra~3\PERFOR~1\PERFOR~1.DLL
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="i:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
------------------------ Jiné spuštené procesy ------------------------
.
i:\program files (x86)\Creative\Shared Files\CTAudSvc.exe
z:\software\AVAST Software\Avast\AvastSvc.exe
i:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
i:\program files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe
i:\windows\SysWOW64\PnkBstrA.exe
.
**************************************************************************
.
Celkový čas: 2014-02-17 16:08:58 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-02-17 15:08
ComboFix2.txt 2014-02-16 19:12
.
Před spuštěním: Volných bajtů: 16 895 410 688
Po spuštění: Volných bajtů: 16 661 117 440
.
- - End Of File - - 72CA1FC72ACF77D989A3D33500857936


HJT

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:14:34, on 17.2.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16518)
Boot mode: Normal

Running processes:
I:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - I:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - I:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - I:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - I:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [avast] "Z:\Software\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "I:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "I:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Adobe ARM] "I:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [RocketDock] "Z:\Software\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [Unified Remote v2] I:\Program Files (x86)\Unified Remote\RemoteServer.exe
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "I:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [Sidebar] I:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Spotify Web Helper] "I:\Users\Petr\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [EADM] "I:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O4 - HKUS\S-1-5-18\..\Run: [Autodesk Sync] I:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Autodesk Sync] I:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (User 'Default user')
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - I:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - I:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - I:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - I:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Z:\software\MP3 Skype Recorder\Skype4COM.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - I:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Služba Acronis Scheduler2 (AcrSch2Svc) - Acronis - I:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - I:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - I:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Acronis Nonstop Backup Service (afcdpsrv) - Acronis - I:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - I:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - I:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - I:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Autodesk Content Service - Autodesk, Inc. - I:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: avast! Antivirus - AVAST Software - Z:\Software\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - I:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - I:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - I:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - I:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - I:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - I:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - I:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: JMB36X - Unknown owner - I:\Windows\SysWOW64\XSrvSetup.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - I:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - I:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - I:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - I:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - I:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - I:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - I:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - I:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - I:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - I:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - I:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Acronis Sync Agent Service (syncagentsrv) - Acronis - I:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - I:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - I:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - I:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - I:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - I:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - I:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - I:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - I:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - I:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8717 bytes
Nahoru
Reklama
Top
Uživatelský avatar
Orcus
člen Security týmu
Elite Level 10.5
Elite Level 10.5
Příspěvky: 10645
Registrován: duben 10
Bydliště: Okolo rostou 3 růže =o)
Pohlaví: Muž
Stav:
Offline

Re: Prosím o preventivní kontrolu logu

Příspěvekod Orcus » 17 úno 2014 19:55

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

====================================================

Vyčisti systém CCleanerem

====================================================

Stáhni si zde DelFix
http://general-changelog-team.fr/fr/dow ... e/9-delfix

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem. Jinak je zpráva zde:
v C: \ DelFix.txt

Co problémy?
Láska hřeje, ale uhlí je uhlí. :fire:


Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.

Pár rad k bezpečnosti PC.

Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix

Pokud budete spokojeni , můžete podpořit naše fórum.
Nahoru
Uživatelský avatar
Dymon
Level 2.5
Level 2.5
Příspěvky: 266
Registrován: květen 09
Pohlaví: Muž
Stav:
Offline

Re: Prosím o preventivní kontrolu logu

Příspěvekod Dymon » 17 úno 2014 21:29

Origin stále nejde spustit. Už jsem psal na podporu EA jestli tuto chybí mají i ostatní uživatelé nebo to je pouze můj problém.


# DelFix v10.6 - Logfile created 17/02/2014 at 21:28:05
# Updated 11/11/2013 by Xplode
# Username : Petr - PETR-PC
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)

~ Removing disinfection tools ...

Deleted : I:\AdwCleaner
Deleted : I:\Users\Petr\Desktop\RK_Quarantine
Deleted : I:\Program Files (x86)\Trend Micro\Hijackthis
Deleted : I:\AdwCleaner[R1].txt
Deleted : I:\AdwCleaner[R2].txt
Deleted : I:\AdwCleaner[S1].txt
Deleted : I:\ComboFix.txt
Deleted : I:\TDSSKiller.2.8.16.0_13.02.2014_09.51.31_log.txt
Deleted : I:\TDSSKiller.3.0.0.23_13.02.2014_09.52.02_log.txt
Deleted : I:\Users\Petr\Desktop\JRT.txt
Deleted : I:\Users\Petr\Desktop\HiJackThis.lnk
Deleted : I:\Users\Petr\Desktop\RKreport[0]_D_02132014_095003.txt
Deleted : I:\Users\Petr\Desktop\RKreport[0]_S_02102014_121246.txt
Deleted : I:\Users\Petr\Desktop\RKreport[0]_S_02132014_094843.txt
Deleted : I:\Users\Petr\Downloads\adwcleaner (1).exe
Deleted : I:\Users\Petr\Downloads\adwcleaner (2).exe
Deleted : I:\Users\Petr\Downloads\adwcleaner.exe
Deleted : I:\Users\Petr\Downloads\JRT (1).exe
Deleted : I:\Users\Petr\Downloads\JRT.exe
Deleted : I:\Users\Petr\Downloads\HiJackThis (1).msi
Deleted : I:\Users\Petr\Downloads\hijackthis.log
Deleted : I:\Users\Petr\Downloads\HiJackThis.msi
Deleted : I:\Users\Petr\Downloads\RogueKillerX32.exe
Deleted : I:\Users\Petr\Downloads\RogueKillerX64 (1).exe
Deleted : I:\Users\Petr\Downloads\RogueKillerX64.exe
Deleted : I:\Users\Petr\Downloads\tdsskiller (1).zip
Deleted : I:\Users\Petr\Downloads\TDSSKiller.exe
Deleted : I:\Users\Petr\Downloads\tdsskiller.zip
Deleted : I:\Users\Petr\Downloads\TFC (1).exe
Deleted : I:\Users\Petr\Downloads\TFC.exe
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\Swearware
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
Deleted : HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMBR

~ Cleaning system restore ...

Deleted : RP #167 [ComboFix created restore point | 02/17/2014 20:23:21]

New restore point created !

########## - EOF - ##########
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o preventivní kontrolu logu

Příspěvekod jaro3 » 18 úno 2014 09:42

Origin zkus přeinstalovat, nebo opravit..
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
Uživatelský avatar
Dymon
Level 2.5
Level 2.5
Příspěvky: 266
Registrován: květen 09
Pohlaví: Muž
Stav:
Offline

Re: Prosím o preventivní kontrolu logu

Příspěvekod Dymon » 18 úno 2014 15:02

Tak to byly samozřejmě první kroky které sem provedl. Odinstaloval sem, vyčistil sem Ccleanerem, nainstaloval, ale stále se stává, že se prostě nechce spustit.
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o preventivní kontrolu logu

Příspěvekod jaro3 » 18 úno 2014 16:29

Ten program neznám , takže těžko pomohu.

Tady maj taky ten problém,
http://www.zive.cz/poradna/origin-a-pro ... tanswers=1

Jinak:
Pokud nejsou jiné problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
Uživatelský avatar
Dymon
Level 2.5
Level 2.5
Příspěvky: 266
Registrován: květen 09
Pohlaví: Muž
Stav:
Offline

Re: Prosím o preventivní kontrolu logu  Vyřešeno

Příspěvekod Dymon » 18 úno 2014 16:47

Je to služba podobná Steamu, jen ji provozuje EA. Každopádně děkuju všem za pomoc.
Nahoru
Zamčeno

Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 91 hostů