Mizí mi soubory z počítače po stažení

Zpráva

Lastie · #1 Příspěvek od **Lastie** » 31 črc 2011 11:54

Prosím o pomoc, protože se mi stalo už ve více případech že jsem stáhla soubor přes operu a následně nebyl k nalezení, když jsem se k němu snažila dostat přímo přes operu hlásil mi počítač že soubor neexistuje... nic jsem nemazal nefragmentovala ani podobně.

Logfile of random's system information tool 1.09 (written by random/random)
Run by karol at 2011-07-31 12:43:21
Microsoft® Windows Vista™ Home Premium
System drive C: has 96 GB (69%) free of 139 GB
Total RAM: 1023 MB (11% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:45:06, on 31.7.2011
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16982)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ASUS\ATK Media\DMedia.exe
C:\Program Files\PowerForPhone\PowerForPhone.exe
C:\Windows\ASScrPro.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\karol\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\conime.exe
C:\Windows\explorer.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Opera\opera.exe
C:\Windows\system32\wuauclt.exe
C:\Users\karol\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\karol\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\karol\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\karol\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\rundll32.exe
C:\Users\karol\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\karol\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\karol\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\karol\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\karol\Downloads\RSIT.exe
C:\Program Files\trend micro\karol.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [IaNvSrv] C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
O4 - HKLM\..\Run: [PowerForPhone] C:\Program Files\PowerForPhone\PowerForPhone.exe
O4 - HKLM\..\Run: [ASUS Camera ScreenSaver] C:\Windows\ASScrProlog.exe
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\ASScrPro.exe
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Google Update] "C:\Users\karol\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ7.5\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: ADSM Service (ADSMService) - Unknown owner - C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Unknown owner - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe (file missing)
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Unknown owner - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe (file missing)
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek America Inc. - C:\Windows\System32\StkCSrv.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe

--
End of file - 9213 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4104234605-4083723421-2848960959-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4104234605-4083723421-2848960959-1000UA.job
C:\Windows\tasks\Norton Internet Security - Run Full System Scan - karol.job
C:\Windows\tasks\User_Feed_Synchronization-{7A4EB90C-07C3-4872-BD2F-BB811749C26D}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1E8A6170-7264-4D0F-BEAE-D42A53123C75}]
C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll [2007-01-12 96936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-05-23 115072]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-07-01 1901960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{90222687-F593-4738-B738-FBEE9C7B26DF} - Show Norton Toolbar - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll [2007-01-12 607888]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2011-04-13 1006264]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2007-05-08 174872]
"ccApp"=C:\Program Files\Common Files\Symantec Shared\ccApp.exe [2007-01-09 115816]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-03-23 4423680]
"SMSERIAL"=C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2006-11-22 630784]
"IaNvSrv"=C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe [2007-05-08 33048]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2007-03-20 36864]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-03-01 857648]
"ATKMEDIA"=C:\Program Files\ASUS\ATK Media\DMEDIA.EXE [2006-11-02 61440]
"PowerForPhone"=C:\Program Files\PowerForPhone\PowerForPhone.exe [2007-06-26 778240]
"ASUS Camera ScreenSaver"=C:\Windows\ASScrProlog.exe [2011-03-06 37232]
"ASUS Screen Saver Protector"=C:\Windows\ASScrPro.exe [2011-03-06 33136]
"Symantec PIF AlertEng"=C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe [2008-01-29 583048]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-03-21 1230704]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-07-02 13789728]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2011-04-12 1232896]
"Google Update"=C:\Users\karol\AppData\Local\Google\Update\GoogleUpdate.exe [2011-03-06 136176]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2006-11-02 125440]
"ICQ"=C:\Program Files\ICQ7.5\ICQ.exe [2011-07-02 124216]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-06-15 15141768]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
Adobe Reader Synchronizer.lnk - C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.I420"=MSh263.drv
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=serwvdrv.dll
"MSVideo8"=VfWWDM32.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"VIDC.FFDS"=ff_vfw.dll

======List of files/folders created in the last 1 month======

2011-07-31 12:43:21 ----D---- C:\rsit
2011-07-31 12:43:21 ----D---- C:\Program Files\trend micro
2011-07-28 16:31:11 ----D---- C:\Users\karol\AppData\Roaming\Opera
2011-07-28 16:30:52 ----D---- C:\Program Files\Opera
2011-07-28 16:02:56 ----D---- C:\Downloads
2011-07-28 15:10:11 ----D---- C:\Program Files\The KMPlayer
2011-07-25 09:55:31 ----A---- C:\ProgramData\nvModes.dat
2011-07-25 09:52:55 ----D---- C:\ProgramData\NVIDIA
2011-07-24 21:22:01 ----SHD---- C:\Config.Msi
2011-07-24 20:58:02 ----A---- C:\Windows\system32\msshsq.dll
2011-07-24 14:47:46 ----D---- C:\Users\karol\AppData\Roaming\Media Control
2011-07-16 12:35:25 ----D---- C:\Windows\Minidump
2011-07-11 11:12:17 ----D---- C:\SPDISK
2011-07-05 10:58:12 ----A---- C:\Windows\system32\pthreadGC2.dll
2011-07-05 10:58:12 ----A---- C:\Windows\system32\ff_vfw.dll
2011-07-05 10:58:11 ----D---- C:\Program Files\ffdshow
2011-07-04 11:49:32 ----A---- C:\Windows\system32\icardres.dll
2011-07-04 11:49:32 ----A---- C:\Windows\system32\icardagt.exe
2011-07-04 11:49:31 ----A---- C:\Windows\system32\infocardapi.dll
2011-07-04 11:49:04 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2011-07-04 11:48:54 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2011-07-04 11:48:54 ----A---- C:\Windows\system32\PresentationHost.exe
2011-07-04 11:48:53 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2011-07-03 12:44:19 ----D---- C:\Users\karol\AppData\Roaming\DivX
2011-07-03 12:43:54 ----D---- C:\Program Files\Common Files\PX Storage Engine
2011-07-03 12:42:57 ----D---- C:\Program Files\Common Files\DivX Shared
2011-07-03 12:34:24 ----D---- C:\Program Files\DivX
2011-07-03 12:28:34 ----D---- C:\ProgramData\DivX
2011-07-02 20:24:35 ----D---- C:\Users\karol\AppData\Roaming\Skype
2011-07-02 20:23:51 ----RD---- C:\Program Files\Skype
2011-07-02 20:23:39 ----D---- C:\ProgramData\Skype
2011-07-02 18:47:39 ----D---- C:\Users\karol\AppData\Roaming\ICQ
2011-07-02 18:47:28 ----D---- C:\Program Files\ICQ7.5

======List of files/folders modified in the last 1 month======

2011-07-31 12:44:08 ----D---- C:\Windows\Prefetch
2011-07-31 12:43:36 ----D---- C:\Windows\Temp
2011-07-31 12:43:21 ----RD---- C:\Program Files
2011-07-31 12:40:14 ----D---- C:\Windows\System32
2011-07-31 12:35:21 ----SD---- C:\Users\karol\AppData\Roaming\Microsoft
2011-07-31 09:29:01 ----SHD---- C:\System Volume Information
2011-07-28 16:11:51 ----HD---- C:\ProgramData
2011-07-27 16:08:52 ----D---- C:\Windows\system32\drivers
2011-07-26 19:08:49 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-07-26 19:08:48 ----D---- C:\Windows\inf
2011-07-26 18:22:53 ----A---- C:\Windows\system32\acovcnt.exe
2011-07-26 03:00:49 ----D---- C:\Windows\system32\catroot2
2011-07-24 21:30:11 ----D---- C:\Windows
2011-07-24 21:23:35 ----SHD---- C:\Windows\Installer
2011-07-24 21:17:20 ----D---- C:\Windows\system32\catroot
2011-07-24 20:58:09 ----D---- C:\Windows\winsxs
2011-07-24 20:38:32 ----RSD---- C:\Windows\assembly
2011-07-24 14:46:37 ----D---- C:\Program Files\Common Files\microsoft shared
2011-07-14 19:13:27 ----D---- C:\Users\karol\AppData\Roaming\Adobe
2011-07-14 09:54:12 ----A---- C:\Windows\system32\mrt.exe
2011-07-09 14:00:22 ----D---- C:\Windows\system32\Tasks
2011-07-09 14:00:21 ----D---- C:\Windows\Tasks
2011-07-06 20:19:17 ----D---- C:\Windows\Microsoft.NET
2011-07-05 13:16:48 ----D---- C:\Windows\Debug
2011-07-05 08:27:36 ----D---- C:\Windows\rescache
2011-07-04 12:18:54 ----D---- C:\Windows\system32\el-GR
2011-07-04 12:18:54 ----D---- C:\Windows\system32\cs-CZ
2011-07-04 11:51:07 ----D---- C:\Windows\system32\XPSViewer
2011-07-04 11:51:07 ----D---- C:\Windows\system32\wbem
2011-07-04 11:51:07 ----D---- C:\Windows\system32\en-US
2011-07-03 12:43:54 ----D---- C:\Program Files\Common Files
2011-07-02 18:48:02 ----HD---- C:\Program Files\InstallShield Installation Information
2011-07-02 17:06:32 ----D---- C:\Windows\system32\NDF

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AsDsm;AsDsm; C:\Windows\system32\drivers\AsDsm.sys [2007-04-25 27504]
R0 iaNvStor;Intel(R) Turbo Memory Technology NAND Controller; C:\Windows\system32\DRIVERS\iaNvStor.sys [2007-05-04 208896]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2007-02-12 277784]
R0 JGOGO;JMicron Hot-Plug Driver; C:\Windows\system32\DRIVERS\JGOGO.sys [2006-02-07 6912]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2007-04-11 48000]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2011-05-12 374392]
R1 IDSvix86;Symantec Intrusion Prevention Driver; \??\C:\PROGRA~2\Symantec\DEFINI~1\SymcData\idsdefs\20110629.001\IDSvix86.sys [2011-02-23 287792]
R1 SPBBCDrv;SPBBCDrv; \??\C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys [2007-01-03 417592]
R1 SRTSPX;SRTSPX; C:\Windows\System32\Drivers\SRTSPX.SYS [2007-01-11 25400]
R1 SYMTDI;SYMTDI; C:\Windows\System32\Drivers\SYMTDI.SYS [2007-01-09 191544]
R2 ASMMAP;ASMMAP; \??\C:\Program Files\ATKGFNEX\ASMMAP.sys [2007-02-05 11632]
R2 ghaio;ghaio; \??\C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [2006-12-28 18688]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-02-25 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-01-24 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-03-22 37376]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller; C:\Windows\system32\DRIVERS\atl01v32.sys [2007-03-15 48128]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-05-12 105592]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-03-26 1761696]
R3 itecir;ITECIR Infrared Receiver; C:\Windows\system32\DRIVERS\itecir.sys [2007-04-21 47616]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2007-01-24 5632]
R3 Ltn_hyd7700pc;TV tuner device ; C:\Windows\System32\Drivers\Ltn_hyd7700pc.sys [2007-04-16 373888]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\Windows\system32\drivers\MODEMCSA.sys [2006-11-02 18432]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATKACPI.sys [2006-12-14 7680]
R3 NAVENG;NAVENG; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20110702.002\NAVENG.SYS [2011-06-15 86008]
R3 NAVEX15;NAVEX15; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20110702.002\NAVEX15.SYS [2011-06-15 1542392]
R3 NETw4v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-04-30 2219520]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-07-02 9786752]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2011-04-13 82432]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2006-11-22 982272]
R3 SRTSP;SRTSP; C:\Windows\System32\Drivers\SRTSP.SYS [2007-01-11 247608]
R3 StkCMini;Syntek AVStream USB2.0 1.3M WebCam; C:\Windows\System32\Drivers\StkCMini.sys [2007-05-30 1260672]
R3 SYMDNS;SYMDNS; C:\Windows\System32\Drivers\SYMDNS.SYS [2007-01-09 12984]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [2011-03-06 115000]
R3 SYMFW;SYMFW; C:\Windows\System32\Drivers\SYMFW.SYS [2007-01-09 145976]
R3 SYMIDS;SYMIDS; C:\Windows\System32\Drivers\SYMIDS.SYS [2007-01-09 40120]
R3 SYMNDISV;SYMNDISV; C:\Windows\System32\Drivers\SYMNDISV.SYS [2007-01-09 38200]
R3 SYMREDRV;SYMREDRV; C:\Windows\System32\Drivers\SYMREDRV.SYS [2007-01-09 27576]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-03-01 182456]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2011-04-13 19456]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2006-11-02 92160]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-13 220160]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-13 29184]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2006-11-02 5632]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2006-11-02 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2006-11-02 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2006-11-02 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2006-11-02 6016]
S3 NETw3v32;Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2006-11-02 49664]
S3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2006-11-02 44544]
S3 SRTSPL;SRTSPL; C:\Windows\System32\Drivers\SRTSPL.SYS [2007-01-11 276792]
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2006-11-02 41064]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2006-11-02 82560]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ADSMService;ADSM Service; C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe [2007-05-18 73728]
R2 ASLDRService;ASLDR Service; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [2007-02-06 94208]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-05-15 94208]
R2 Automatic LiveUpdate Scheduler;Automatic LiveUpdate Scheduler; C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe [2007-09-12 554352]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2006-11-02 22016]
R2 ccEvtMgr;Symantec Event Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2007-01-09 108648]
R2 ccSetMgr;Symantec Settings Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2007-01-09 108648]
R2 CLTNetCnService;Symantec Lic NetConnect service; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2007-01-09 108648]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2007-05-08 355096]
R2 LiveUpdate Notice Ex;LiveUpdate Notice Service Ex; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2007-01-09 108648]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-07-02 211488]
R2 spmgr;spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [2006-12-29 123248]
R2 StkSSrv;Syntek AVStream USB2.0 WebCam Service; C:\Windows\System32\StkCSrv.exe [2007-04-19 24576]
R2 SymAppCore;Symantec AppCore Service; C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe [2007-01-05 47712]
R3 Symantec Core LC;Symantec Core LC; C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe [2011-03-06 1174664]
S2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe []
S2 LiveUpdate Notice Service;LiveUpdate Notice Service; C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe [2008-01-29 583048]
S2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe []
S3 comHost;COM Host; C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe [2007-01-12 49248]
S3 ISPwdSvc;Symantec IS Password Validation; C:\Program Files\Norton Internet Security\isPwdSvc.exe [2007-01-14 80504]
S3 LiveUpdate;LiveUpdate; C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE [2007-09-12 2999664]

-----------------EOF-----------------

#2 Příspěvek od **Rudy** » 31 črc 2011 11:58

Log vypadá čistý. Máte nastaveno ve stahování, kam ukládat stažené soubory?

Lastie · #3 Příspěvek od **Lastie** » 31 črc 2011 12:04

Mám všechny se mi stahují do jedné složky... zajímavý je že ostatní tam jsou ale pouze některé zmizely...

Lastie · #4 Příspěvek od **Lastie** » 31 črc 2011 12:07

Konkrétně tam mám stažené díly seriálu a paradoxně, jak na to koukám zmizel každý sudý díl...

#5 Příspěvek od **Rudy** » 31 črc 2011 17:45

Poprosím o log z ComboFix:

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware

Lastie · #6 Příspěvek od **Lastie** » 31 črc 2011 21:00

Nevím jestli je to normální ale už dvě hodiny mi ComboFix v okně správce píše, že se připravuje ke spuštění.

#7 Příspěvek od **Rudy** » 31 črc 2011 21:04

Sken zrušte a zkuste ho v nouz. režimu.

Lastie · #8 Příspěvek od **Lastie** » 31 črc 2011 21:36

ComboFix 11-07-31.04 - karol 31.07.2011 22:23:51.1.2 - x86 MINIMAL
Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1250.420.1029.18.1023.718 [GMT 2:00]
Spuštěný z: c:\users\karol\Downloads\ComboFix.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-06-28 do 2011-07-31 )))))))))))))))))))))))))))))))
.
.
2011-07-31 20:27 . 2011-07-31 20:28 -------- d-----w- c:\users\karol\AppData\Local\temp
2011-07-31 20:27 . 2011-07-31 20:27 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-07-31 10:43 . 2011-07-31 10:45 -------- d-----w- C:\rsit
2011-07-31 10:43 . 2011-07-31 10:45 -------- d-----w- c:\program files\trend micro
2011-07-28 14:31 . 2011-07-28 14:31 -------- d-----w- c:\users\karol\AppData\Local\Opera
2011-07-28 14:30 . 2011-07-28 14:31 -------- d-----w- c:\program files\Opera
2011-07-28 14:02 . 2011-07-28 14:02 -------- d-----w- C:\Downloads
2011-07-28 13:10 . 2011-07-28 13:12 -------- d-----w- c:\program files\The KMPlayer
2011-07-25 07:52 . 2011-07-25 07:55 -------- d-----w- c:\programdata\NVIDIA
2011-07-24 18:58 . 2011-07-24 18:58 229888 ----a-w- c:\windows\system32\msshsq.dll
2011-07-24 12:47 . 2011-07-24 12:49 -------- d-----w- c:\users\karol\AppData\Roaming\Media Control
2011-07-14 10:41 . 2011-07-14 17:13 -------- d-----w- c:\users\karol\AppData\Local\Adobe
2011-07-14 08:36 . 2011-07-29 21:11 -------- d-----w- c:\users\karol\AppData\Local\Microsoft Games
2011-07-11 09:12 . 2011-07-11 09:12 -------- d-----w- C:\SPDISK
2011-07-06 18:34 . 2011-07-06 18:34 515848 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2011-07-05 08:58 . 2009-07-05 19:33 85504 ----a-w- c:\windows\system32\ff_vfw.dll
2011-07-05 08:58 . 2009-07-05 19:33 60273 ----a-w- c:\windows\system32\pthreadGC2.dll
2011-07-05 08:58 . 2011-07-05 08:58 -------- d-----w- c:\program files\ffdshow
2011-07-04 09:49 . 2011-07-04 09:49 622080 ----a-w- c:\windows\system32\icardagt.exe
2011-07-04 09:49 . 2011-07-04 09:49 11264 ----a-w- c:\windows\system32\icardres.dll
2011-07-04 09:49 . 2011-07-04 09:49 97800 ----a-w- c:\windows\system32\infocardapi.dll
2011-07-04 09:49 . 2011-07-04 09:49 37384 ----a-w- c:\windows\system32\infocardcpl.cpl
2011-07-04 09:49 . 2011-07-04 09:49 105016 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2011-07-04 09:48 . 2011-07-04 09:48 43544 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2011-07-04 09:48 . 2011-07-04 09:48 326160 ----a-w- c:\windows\system32\PresentationHost.exe
2011-07-04 09:48 . 2011-07-04 09:48 781344 ----a-w- c:\windows\system32\PresentationNative_v0300.dll
2011-07-03 11:21 . 2011-07-03 11:21 -------- d-----w- c:\users\karol\AppData\Local\DDMSettings
2011-07-03 10:44 . 2011-07-05 08:41 -------- d-----w- c:\users\karol\AppData\Roaming\DivX
2011-07-03 10:43 . 2011-07-03 10:43 -------- d-----w- c:\program files\Common Files\PX Storage Engine
2011-07-03 10:42 . 2011-07-03 10:43 -------- d-----w- c:\program files\Common Files\DivX Shared
2011-07-03 10:34 . 2011-07-03 10:44 -------- d-----w- c:\program files\DivX
2011-07-03 10:28 . 2011-07-03 10:44 -------- d-----w- c:\programdata\DivX
2011-07-02 18:24 . 2011-07-31 17:59 -------- d-----w- c:\users\karol\AppData\Roaming\Skype
2011-07-02 18:23 . 2011-07-02 18:24 -------- d-----r- c:\program files\Skype
2011-07-02 18:23 . 2011-07-02 18:23 -------- d-----w- c:\programdata\Skype
2011-07-02 16:47 . 2011-07-30 16:44 -------- d-----w- c:\users\karol\AppData\Roaming\ICQ
2011-07-02 16:47 . 2011-07-02 16:48 -------- d-----w- c:\program files\ICQ7.5
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-07-26 16:22 . 2011-03-06 15:24 45056 ----a-w- c:\windows\system32\acovcnt.exe
2011-06-30 10:31 . 2011-06-30 10:31 8192 ----a-w- c:\windows\system32\riched32.dll
2011-06-30 10:31 . 2011-06-30 10:31 48640 ----a-w- c:\windows\system32\drivers\ndproxy.sys
2011-06-30 10:31 . 2011-06-30 10:31 38400 ----a-w- c:\windows\system32\kmddsp.tsp
2011-06-30 10:31 . 2011-06-30 10:31 22016 ----a-w- c:\windows\system32\rasser.dll
2011-06-30 10:31 . 2011-06-30 10:31 20480 ----a-w- c:\windows\system32\drivers\ndistapi.sys
2011-06-30 10:31 . 2011-06-30 10:31 77824 ----a-w- c:\windows\system32\rascfg.dll
2011-06-30 10:31 . 2011-06-30 10:31 61952 ----a-w- c:\windows\system32\drivers\wanarp.sys
2011-06-30 10:31 . 2011-06-30 10:31 52736 ----a-w- c:\windows\system32\rasdiag.dll
2011-06-30 10:31 . 2011-06-30 10:31 49664 ----a-w- c:\windows\system32\ndptsp.tsp
2011-06-30 10:31 . 2011-06-30 10:31 384000 ----a-w- c:\windows\system32\netcfgx.dll
2011-06-30 10:31 . 2011-06-30 10:31 32768 ----a-w- c:\windows\system32\rasmxs.dll
2011-06-30 10:31 . 2011-06-30 10:31 286208 ----a-w- c:\windows\system32\ipnathlp.dll
2011-06-30 10:31 . 2011-06-30 10:31 13824 ----a-w- c:\windows\system32\icsunattend.exe
2011-06-30 10:30 . 2011-06-30 10:30 70144 ----a-w- c:\windows\system32\drivers\pacer.sys
2011-06-30 10:30 . 2011-06-30 10:30 619008 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2011-06-30 10:30 . 2011-06-30 10:30 36864 ----a-w- c:\windows\system32\cdd.dll
2011-06-30 10:30 . 2011-06-30 10:30 33280 ----a-w- c:\windows\system32\traffic.dll
2011-06-30 10:30 . 2011-06-30 10:30 15360 ----a-w- c:\windows\system32\pacerprf.dll
2011-06-30 10:30 . 2011-06-30 10:30 13824 ----a-w- c:\windows\system32\wshqos.dll
2011-06-30 10:30 . 2011-06-30 10:30 134656 ----a-w- c:\windows\system32\dps.dll
2011-06-30 10:28 . 2011-06-30 10:28 1808896 ----a-w- c:\windows\system32\NlsLexicons0046.dll
2011-06-30 10:28 . 2011-06-30 10:28 1793536 ----a-w- c:\windows\system32\NlsLexicons0045.dll
2011-06-30 10:28 . 2011-06-30 10:28 1558016 ----a-w- c:\windows\system32\NlsLexicons0049.dll
2011-06-30 10:28 . 2011-06-30 10:28 1411072 ----a-w- c:\windows\system32\NlsLexicons0047.dll
2011-06-30 10:28 . 2011-06-30 10:28 1782272 ----a-w- c:\windows\system32\NlsLexicons0039.dll
2011-06-30 10:28 . 2011-06-30 10:28 1236992 ----a-w- c:\windows\system32\NlsLexicons0020.dll
2011-06-30 10:28 . 2011-06-30 10:28 2136064 ----a-w- c:\windows\system32\NlsLexicons0021.dll
2011-06-30 10:28 . 2011-06-30 10:28 5499904 ----a-w- c:\windows\system32\NlsLexicons0022.dll
2011-06-30 10:28 . 2011-06-30 10:28 7964672 ----a-w- c:\windows\system32\NlsLexicons0024.dll
2011-06-30 10:28 . 2011-06-30 10:28 5791232 ----a-w- c:\windows\system32\NlsLexicons0026.dll
2011-06-30 10:28 . 2011-06-30 10:28 6224896 ----a-w- c:\windows\system32\NlsLexicons0027.dll
2011-06-30 10:28 . 2011-06-30 10:28 4175872 ----a-w- c:\windows\system32\NlsLexicons0010.dll
2011-06-30 10:28 . 2011-06-30 10:28 2466816 ----a-w- c:\windows\system32\NlsLexicons0011.dll
2011-06-30 10:28 . 2011-06-30 10:28 6781440 ----a-w- c:\windows\system32\NlsLexicons0019.dll
2011-06-30 10:28 . 2011-06-30 10:28 4981248 ----a-w- c:\windows\system32\NlsLexicons0013.dll
2011-06-30 10:28 . 2011-06-30 10:28 3331072 ----a-w- c:\windows\system32\NlsLexicons0018.dll
2011-06-30 10:28 . 2011-06-30 10:28 11722752 ----a-w- c:\windows\system32\NlsLexicons0001.dll
2011-06-30 10:28 . 2011-06-30 10:28 4164096 ----a-w- c:\windows\system32\NlsLexicons0002.dll
2011-06-30 10:28 . 2011-06-30 10:28 2644480 ----a-w- c:\windows\system32\NlsLexicons0009.dll
2011-06-30 10:28 . 2011-06-30 10:28 1452544 ----a-w- c:\windows\system32\NlsLexicons0003.dll
2011-06-30 10:28 . 2011-06-30 10:28 12240896 ----a-w- c:\windows\system32\NlsLexicons0007.dll
2011-06-30 10:28 . 2011-06-30 10:28 4093440 ----a-w- c:\windows\system32\NlsLexicons004c.dll
2011-06-30 10:28 . 2011-06-30 10:28 3419136 ----a-w- c:\windows\system32\NlsLexicons004a.dll
2011-06-30 10:28 . 2011-06-30 10:28 1972736 ----a-w- c:\windows\system32\NlsLexicons004e.dll
2011-06-30 10:28 . 2011-06-30 10:28 1702912 ----a-w- c:\windows\system32\NlsLexicons004b.dll
2011-06-30 10:28 . 2011-06-30 10:28 4096 ----a-w- c:\windows\system32\NlsLexicons002a.dll
2011-06-30 10:28 . 2011-06-30 10:28 4045824 ----a-w- c:\windows\system32\NlsLexicons003e.dll
2011-06-30 10:28 . 2011-06-30 10:28 6014976 ----a-w- c:\windows\system32\NlsLexicons001a.dll
2011-06-30 10:28 . 2011-06-30 10:28 6585856 ----a-w- c:\windows\system32\NlsLexicons001b.dll
2011-06-30 10:28 . 2011-06-30 10:28 6346240 ----a-w- c:\windows\system32\NlsLexicons001d.dll
2011-06-30 10:28 . 2011-06-30 10:28 9892864 ----a-w- c:\windows\system32\NlsLexicons000a.dll
2011-06-30 10:28 . 2011-06-30 10:28 6237696 ----a-w- c:\windows\system32\NlsLexicons000c.dll
2011-06-30 10:28 . 2011-06-30 10:28 1722368 ----a-w- c:\windows\system32\NlsLexicons000d.dll
2011-06-30 10:28 . 2011-06-30 10:28 5654528 ----a-w- c:\windows\system32\NlsLexicons000f.dll
2011-06-30 10:28 . 2011-06-30 10:28 4616192 ----a-w- c:\windows\system32\NlsLexicons0414.dll
2011-06-30 10:28 . 2011-06-30 10:28 5090816 ----a-w- c:\windows\system32\NlsLexicons0416.dll
2011-06-30 10:28 . 2011-06-30 10:28 7042560 ----a-w- c:\windows\system32\NlsLexicons081a.dll
2011-06-30 10:28 . 2011-06-30 10:28 5031936 ----a-w- c:\windows\system32\NlsLexicons0816.dll
2011-06-30 10:28 . 2011-06-30 10:28 5071872 ----a-w- c:\windows\system32\NlsModels0011.dll
2011-06-30 10:28 . 2011-06-30 10:28 3102720 ----a-w- c:\windows\system32\NlsData0045.dll
2011-06-30 10:28 . 2011-06-30 10:28 3102720 ----a-w- c:\windows\system32\NlsData0046.dll
2011-06-30 10:28 . 2011-06-30 10:28 3102720 ----a-w- c:\windows\system32\NlsData0049.dll
2011-06-30 10:28 . 2011-06-30 10:28 3102720 ----a-w- c:\windows\system32\NlsData0047.dll
2011-06-30 10:28 . 2011-06-30 10:28 3102720 ----a-w- c:\windows\system32\NlsData0039.dll
2011-06-30 10:28 . 2011-06-30 10:28 3102720 ----a-w- c:\windows\system32\NlsData0020.dll
2011-06-30 10:28 . 2011-06-30 10:28 1963520 ----a-w- c:\windows\system32\NlsData0024.dll
2011-06-30 10:28 . 2011-06-30 10:28 1799168 ----a-w- c:\windows\system32\NlsData0022.dll
2011-06-30 10:28 . 2011-06-30 10:28 1799168 ----a-w- c:\windows\system32\NlsData0021.dll
2011-06-30 10:28 . 2011-06-30 10:28 1963520 ----a-w- c:\windows\system32\NlsData0026.dll
2011-06-30 10:28 . 2011-06-30 10:28 4493312 ----a-w- c:\windows\system32\NlsData0010.dll
2011-06-30 10:28 . 2011-06-30 10:28 2655232 ----a-w- c:\windows\system32\NlsData0011.dll
2011-06-30 10:28 . 2011-06-30 10:28 1965056 ----a-w- c:\windows\system32\NlsData0027.dll
2011-06-30 10:28 . 2011-06-30 10:28 3464704 ----a-w- c:\windows\system32\NlsData0013.dll
2011-06-30 10:28 . 2011-06-30 10:28 4495360 ----a-w- c:\windows\system32\NlsData0019.dll
2011-06-30 10:28 . 2011-06-30 10:28 1963520 ----a-w- c:\windows\system32\NlsData0018.dll
2011-06-30 10:28 . 2011-06-30 10:28 1523200 ----a-w- c:\windows\system32\NlsData0000.dll
2011-06-30 10:28 . 2011-06-30 10:28 2597888 ----a-w- c:\windows\system32\NlsData0001.dll
2011-06-30 10:28 . 2011-06-30 10:28 2241024 ----a-w- c:\windows\system32\NlsData0007.dll
2011-06-30 10:28 . 2011-06-30 10:28 1963520 ----a-w- c:\windows\system32\NlsData0003.dll
2011-06-30 10:28 . 2011-06-30 10:28 1963520 ----a-w- c:\windows\system32\NlsData0002.dll
2011-06-30 10:28 . 2011-06-30 10:28 4874240 ----a-w- c:\windows\system32\NlsData0009.dll
2011-06-30 10:28 . 2011-06-30 10:28 3102720 ----a-w- c:\windows\system32\NlsData004a.dll
2011-06-30 10:28 . 2011-06-30 10:28 3102720 ----a-w- c:\windows\system32\NlsData004b.dll
2011-06-30 10:28 . 2011-06-30 10:28 3102720 ----a-w- c:\windows\system32\NlsData004e.dll
2011-06-30 10:28 . 2011-06-30 10:28 3102720 ----a-w- c:\windows\system32\NlsData004c.dll
2011-06-30 10:28 . 2011-06-30 10:28 1799168 ----a-w- c:\windows\system32\NlsData003e.dll
2011-06-30 10:28 . 2011-06-30 10:28 4493312 ----a-w- c:\windows\system32\NlsData001d.dll
2011-06-30 10:28 . 2011-06-30 10:28 1963520 ----a-w- c:\windows\system32\NlsData001b.dll
2011-06-30 10:28 . 2011-06-30 10:28 1963520 ----a-w- c:\windows\system32\NlsData001a.dll
2011-06-30 10:28 . 2011-06-30 10:28 1799168 ----a-w- c:\windows\system32\NlsData002a.dll
2011-06-30 10:28 . 2011-06-30 10:28 9845248 ----a-w- c:\windows\system32\NlsData000a.dll
2011-06-30 10:28 . 2011-06-30 10:28 2641408 ----a-w- c:\windows\system32\NlsData000c.dll
2011-06-30 10:28 . 2011-06-30 10:28 2340864 ----a-w- c:\windows\system32\NlsData000d.dll
2011-06-30 10:28 . 2011-06-30 10:28 1963520 ----a-w- c:\windows\system32\NlsData000f.dll
2011-06-30 10:28 . 2011-06-30 10:28 797696 ----a-w- c:\windows\system32\NaturalLanguage6.dll
2011-06-30 10:28 . 2011-06-30 10:28 4493312 ----a-w- c:\windows\system32\NlsData0416.dll
2011-06-30 10:28 . 2011-06-30 10:28 4493312 ----a-w- c:\windows\system32\NlsData0414.dll
2011-06-30 10:28 . 2011-06-30 10:28 4493312 ----a-w- c:\windows\system32\NlsData0816.dll
2011-06-30 10:28 . 2011-06-30 10:28 1963520 ----a-w- c:\windows\system32\NlsData081a.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 01:08 143360 ----a-w- c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2011-04-12 1232896]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2006-11-02 125440]
"ICQ"="c:\program files\ICQ7.5\ICQ.exe" [2011-07-02 124216]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-06-15 15141768]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2007-05-08 174872]
"ccApp"="c:\program files\Common Files\Symantec Shared\ccApp.exe" [2007-01-09 115816]
"RtHDVCpl"="RtHDVCpl.exe" [2007-03-23 4423680]
"SMSERIAL"="c:\program files\Motorola\SMSERIAL\sm56hlpr.exe" [2006-11-22 630784]
"IaNvSrv"="c:\program files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe" [2007-05-08 33048]
"JMB36X IDE Setup"="c:\windows\RaidTool\xInsIDE.exe" [2007-03-20 36864]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-03-01 857648]
"ATKMEDIA"="c:\program files\ASUS\ATK Media\DMEDIA.EXE" [2006-11-02 61440]
"PowerForPhone"="c:\program files\PowerForPhone\PowerForPhone.exe" [2007-06-26 778240]
"ASUS Camera ScreenSaver"="c:\windows\ASScrProlog.exe" [2011-03-06 37232]
"ASUS Screen Saver Protector"="c:\windows\ASScrPro.exe" [2011-03-06 33136]
"Symantec PIF AlertEng"="c:\program files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [2008-01-29 583048]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2011-03-21 1230704]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-07-01 13789728]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe [2006-10-23 40048]
Adobe Reader Synchronizer.lnk - c:\program files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2006-10-23 734872]
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
R1 IDSvix86;Symantec Intrusion Prevention Driver;c:\progra~2\Symantec\DEFINI~1\SymcData\idsdefs\20110629.001\IDSvix86.sys [2011-02-23 287792]
R2 StkSSrv;Syntek AVStream USB2.0 WebCam Service;c:\windows\System32\StkCSrv.exe [2007-04-19 24576]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller;c:\windows\system32\DRIVERS\atl01v32.sys [2007-03-15 48128]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-05-12 105592]
R3 Ltn_hyd7700pc;TV tuner device ;c:\windows\system32\Drivers\Ltn_hyd7700pc.sys [2007-04-16 373888]
R3 StkCMini;Syntek AVStream USB2.0 1.3M WebCam;c:\windows\system32\Drivers\StkCMini.sys [2007-05-30 1260672]
R3 SYMNDISV;SYMNDISV;c:\windows\System32\Drivers\SYMNDISV.SYS [2007-01-09 38200]
S0 iaNvStor;Intel(R) Turbo Memory Technology NAND Controller;c:\windows\system32\DRIVERS\iaNvStor.sys [2007-05-04 208896]
S3 itecir;ITECIR Infrared Receiver;c:\windows\system32\DRIVERS\itecir.sys [2007-04-21 47616]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - COMHOST
*NewlyCreated* - ECACHE
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ
.
Obsah adresáře 'Naplánované úlohy'
.
2011-07-31 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4104234605-4083723421-2848960959-1000Core.job
- c:\users\karol\AppData\Local\Google\Update\GoogleUpdate.exe [2011-03-06 15:38]
.
2011-07-31 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4104234605-4083723421-2848960959-1000UA.job
- c:\users\karol\AppData\Local\Google\Update\GoogleUpdate.exe [2011-03-06 15:38]
.
2011-07-25 c:\windows\Tasks\Norton Internet Security - Run Full System Scan - karol.job
- c:\program files\Norton Internet Security\Norton AntiVirus\Navw32.exe [2007-01-14 01:09]
.
2011-07-31 c:\windows\Tasks\User_Feed_Synchronization-{7A4EB90C-07C3-4872-BD2F-BB811749C26D}.job
- c:\windows\system32\msfeedssync.exe [2006-11-02 09:45]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.asus.com
IE: {{7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - c:\program files\ICQ7.5\ICQ.exe
TCP: DhcpNameServer = 195.34.133.21 195.34.133.22
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-07-31 22:28
Windows 6.0.6000 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
.
c:\users\karol\AppData\Local\Temp\catchme.dll 53248 bytes executable
C:\ADSM_PData_0150
.
sken byl úspešně dokončen
skryté soubory: 2
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'Explorer.exe'(1848)
c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt.dll
c:\program files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll
.
Celkový čas: 2011-07-31 22:29:17
ComboFix-quarantined-files.txt 2011-07-31 20:29
.
Před spuštěním: Volných bajtů: 101 024 301 056
Po spuštění: Volných bajtů: 101 359 411 200
.
- - End Of File - - 48646141FBC2190EEA5A2B900F9E438C

#9 Příspěvek od **Rudy** » 31 črc 2011 21:47

Přesuňte ComboFix na plochu. Otevřte poznámkový blok a zkopírujte do něj:

Collect::
c:\windows\system32\acovcnt.exe
C:\ADSM_PData_0150

Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

Obrázek

Lastie · #10 Příspěvek od **Lastie** » 31 črc 2011 22:12

Nevím jestli je to normální, ale když jsem se snažila zpracovat ComboFixem ten Script, ComboFix se zase sekl a Script zmizel z obrazovky... jdu to zkusit znovu.

Lastie · #11 Příspěvek od **Lastie** » 31 črc 2011 22:57

Prosím rychle o pomoc, poté co jsem provedla vše dle návodu restartoval se mi počítač a při zapnutí naběhl ComboFix a dokola mi běhá přes obrazovku zavírá se a otevírá, přičemž počítač jede na plný výkon, co teď? Píši z mobilu protože na počítači teď nejde napsat ani tečka.

Lastie · #12 Příspěvek od **Lastie** » 31 črc 2011 23:24

Super tak se mi podařilo znovu restartovat počítač a dokončit úkon ComboFixu.

ComboFix 11-07-31.04 - karol 31.07.2011 23:20:25.2.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1250.420.1029.18.1023.227 [GMT 2:00]
Spuštěný z: C:\Users\karol\Desktop\ComboFix.exe
Použité ovládací přepínače :: C:\Users\karol\Desktop\CFScript.txt

file zipped: c:\windows\system32\acovcnt.exe

((((((((((((((((((((((((( Soubory vytvořené od 2011-06-28 do 2011-07-31 )))))))))))))))))))))))))))))))

2011-07-31 21:39:14 . 2011-07-31 21:39:14 -------- d-----w- C:\Users\Default\AppData\Local\temp
2011-07-31 20:57:33 . 2011-07-31 21:13:52 -------- d-----w- C:\32788R22FWJFW
2011-07-31 20:29:19 . 2011-07-31 22:05:30 -------- d-----w- C:\Users\karol\AppData\Local\temp
2011-07-31 10:43:21 . 2011-07-31 10:45:16 -------- d-----w- C:\rsit
2011-07-31 10:43:21 . 2011-07-31 10:45:06 -------- d-----w- C:\Program Files\trend micro
2011-07-28 14:31:11 . 2011-07-28 14:31:11 -------- d-----w- C:\Users\karol\AppData\Local\Opera
2011-07-28 14:30:52 . 2011-07-28 14:31:01 -------- d-----w- C:\Program Files\Opera
2011-07-28 14:02:56 . 2011-07-28 14:02:56 -------- d-----w- C:\Downloads
2011-07-28 13:10:11 . 2011-07-28 13:12:31 -------- d-----w- C:\Program Files\The KMPlayer
2011-07-25 07:52:55 . 2011-07-25 07:55:47 -------- d-----w- C:\ProgramData\NVIDIA
2011-07-24 18:58:02 . 2011-07-24 18:58:02 229888 ----a-w- C:\Windows\system32\msshsq.dll
2011-07-24 12:47:46 . 2011-07-24 12:49:37 -------- d-----w- C:\Users\karol\AppData\Roaming\Media Control
2011-07-14 10:41:21 . 2011-07-14 17:13:32 -------- d-----w- C:\Users\karol\AppData\Local\Adobe
2011-07-14 08:36:14 . 2011-07-29 21:11:11 -------- d-----w- C:\Users\karol\AppData\Local\Microsoft Games
2011-07-11 09:12:17 . 2011-07-11 09:12:18 -------- d-----w- C:\SPDISK
2011-07-06 18:34:37 . 2011-07-06 18:34:37 515848 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2011-07-05 08:58:12 . 2009-07-05 19:33:22 85504 ----a-w- C:\Windows\system32\ff_vfw.dll
2011-07-05 08:58:12 . 2009-07-05 19:33:22 60273 ----a-w- C:\Windows\system32\pthreadGC2.dll
2011-07-05 08:58:11 . 2011-07-05 08:58:13 -------- d-----w- C:\Program Files\ffdshow
2011-07-04 09:49:32 . 2011-07-04 09:49:32 622080 ----a-w- C:\Windows\system32\icardagt.exe
2011-07-04 09:49:32 . 2011-07-04 09:49:32 11264 ----a-w- C:\Windows\system32\icardres.dll
2011-07-04 09:49:31 . 2011-07-04 09:49:31 97800 ----a-w- C:\Windows\system32\infocardapi.dll
2011-07-04 09:49:31 . 2011-07-04 09:49:31 37384 ----a-w- C:\Windows\system32\infocardcpl.cpl
2011-07-04 09:49:04 . 2011-07-04 09:49:04 105016 ----a-w- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2011-07-04 09:48:54 . 2011-07-04 09:48:54 43544 ----a-w- C:\Windows\system32\PresentationHostProxy.dll
2011-07-04 09:48:54 . 2011-07-04 09:48:54 326160 ----a-w- C:\Windows\system32\PresentationHost.exe
2011-07-04 09:48:53 . 2011-07-04 09:48:53 781344 ----a-w- C:\Windows\system32\PresentationNative_v0300.dll
2011-07-03 11:21:52 . 2011-07-03 11:21:52 -------- d-----w- C:\Users\karol\AppData\Local\DDMSettings
2011-07-03 10:44:19 . 2011-07-05 08:41:57 -------- d-----w- C:\Users\karol\AppData\Roaming\DivX
2011-07-03 10:43:54 . 2011-07-03 10:43:58 -------- d-----w- C:\Program Files\Common Files\PX Storage Engine
2011-07-03 10:42:57 . 2011-07-03 10:43:52 -------- d-----w- C:\Program Files\Common Files\DivX Shared
2011-07-03 10:34:24 . 2011-07-03 10:44:42 -------- d-----w- C:\Program Files\DivX
2011-07-03 10:28:34 . 2011-07-03 10:44:42 -------- d-----w- C:\ProgramData\DivX
2011-07-02 18:24:35 . 2011-07-31 21:59:05 -------- d-----w- C:\Users\karol\AppData\Roaming\Skype
2011-07-02 18:23:51 . 2011-07-02 18:24:26 -------- d-----r- C:\Program Files\Skype
2011-07-02 18:23:39 . 2011-07-02 18:23:49 -------- d-----w- C:\ProgramData\Skype
2011-07-02 16:47:39 . 2011-07-31 22:02:05 -------- d-----w- C:\Users\karol\AppData\Roaming\ICQ
2011-07-02 16:47:28 . 2011-07-02 16:48:37 -------- d-----w- C:\Program Files\ICQ7.5
.

(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))

2011-07-31 22:04:15 . 2011-03-06 15:24:40 45056 ----a-w- C:\Windows\system32\acovcnt.exe
2011-06-30 10:31:03 . 2011-06-30 10:31:03 8192 ----a-w- C:\Windows\system32\riched32.dll
2011-06-30 10:31:02 . 2011-06-30 10:31:02 48640 ----a-w- C:\Windows\system32\drivers\ndproxy.sys
2011-06-30 10:31:02 . 2011-06-30 10:31:02 38400 ----a-w- C:\Windows\system32\kmddsp.tsp
2011-06-30 10:31:02 . 2011-06-30 10:31:02 22016 ----a-w- C:\Windows\system32\rasser.dll
2011-06-30 10:31:02 . 2011-06-30 10:31:02 20480 ----a-w- C:\Windows\system32\drivers\ndistapi.sys
2011-06-30 10:31:01 . 2011-06-30 10:31:01 77824 ----a-w- C:\Windows\system32\rascfg.dll
2011-06-30 10:31:01 . 2011-06-30 10:31:01 61952 ----a-w- C:\Windows\system32\drivers\wanarp.sys
2011-06-30 10:31:01 . 2011-06-30 10:31:01 52736 ----a-w- C:\Windows\system32\rasdiag.dll
2011-06-30 10:31:01 . 2011-06-30 10:31:01 49664 ----a-w- C:\Windows\system32\ndptsp.tsp
2011-06-30 10:31:01 . 2011-06-30 10:31:01 384000 ----a-w- C:\Windows\system32\netcfgx.dll
2011-06-30 10:31:01 . 2011-06-30 10:31:01 32768 ----a-w- C:\Windows\system32\rasmxs.dll
2011-06-30 10:31:00 . 2011-06-30 10:31:00 286208 ----a-w- C:\Windows\system32\ipnathlp.dll
2011-06-30 10:31:00 . 2011-06-30 10:31:00 13824 ----a-w- C:\Windows\system32\icsunattend.exe
2011-06-30 10:30:59 . 2011-06-30 10:30:59 70144 ----a-w- C:\Windows\system32\drivers\pacer.sys
2011-06-30 10:30:59 . 2011-06-30 10:30:59 619008 ----a-w- C:\Windows\system32\drivers\dxgkrnl.sys
2011-06-30 10:30:59 . 2011-06-30 10:30:59 36864 ----a-w- C:\Windows\system32\cdd.dll
2011-06-30 10:30:59 . 2011-06-30 10:30:59 33280 ----a-w- C:\Windows\system32\traffic.dll
2011-06-30 10:30:59 . 2011-06-30 10:30:59 15360 ----a-w- C:\Windows\system32\pacerprf.dll
2011-06-30 10:30:59 . 2011-06-30 10:30:59 13824 ----a-w- C:\Windows\system32\wshqos.dll
2011-06-30 10:30:58 . 2011-06-30 10:30:58 134656 ----a-w- C:\Windows\system32\dps.dll
2011-06-30 10:28:52 . 2011-06-30 10:28:52 1808896 ----a-w- C:\Windows\system32\NlsLexicons0046.dll
2011-06-30 10:28:52 . 2011-06-30 10:28:52 1793536 ----a-w- C:\Windows\system32\NlsLexicons0045.dll
2011-06-30 10:28:52 . 2011-06-30 10:28:52 1558016 ----a-w- C:\Windows\system32\NlsLexicons0049.dll
2011-06-30 10:28:52 . 2011-06-30 10:28:52 1411072 ----a-w- C:\Windows\system32\NlsLexicons0047.dll
2011-06-30 10:28:51 . 2011-06-30 10:28:51 1782272 ----a-w- C:\Windows\system32\NlsLexicons0039.dll
2011-06-30 10:28:51 . 2011-06-30 10:28:51 1236992 ----a-w- C:\Windows\system32\NlsLexicons0020.dll
2011-06-30 10:28:51 . 2011-06-30 10:28:50 2136064 ----a-w- C:\Windows\system32\NlsLexicons0021.dll
2011-06-30 10:28:50 . 2011-06-30 10:28:50 5499904 ----a-w- C:\Windows\system32\NlsLexicons0022.dll
2011-06-30 10:28:49 . 2011-06-30 10:28:49 7964672 ----a-w- C:\Windows\system32\NlsLexicons0024.dll
2011-06-30 10:28:49 . 2011-06-30 10:28:48 5791232 ----a-w- C:\Windows\system32\NlsLexicons0026.dll
2011-06-30 10:28:48 . 2011-06-30 10:28:48 6224896 ----a-w- C:\Windows\system32\NlsLexicons0027.dll
2011-06-30 10:28:48 . 2011-06-30 10:28:48 4175872 ----a-w- C:\Windows\system32\NlsLexicons0010.dll
2011-06-30 10:28:48 . 2011-06-30 10:28:47 2466816 ----a-w- C:\Windows\system32\NlsLexicons0011.dll
2011-06-30 10:28:47 . 2011-06-30 10:28:47 6781440 ----a-w- C:\Windows\system32\NlsLexicons0019.dll
2011-06-30 10:28:47 . 2011-06-30 10:28:47 4981248 ----a-w- C:\Windows\system32\NlsLexicons0013.dll
2011-06-30 10:28:47 . 2011-06-30 10:28:47 3331072 ----a-w- C:\Windows\system32\NlsLexicons0018.dll
2011-06-30 10:28:46 . 2011-06-30 10:28:46 11722752 ----a-w- C:\Windows\system32\NlsLexicons0001.dll
2011-06-30 10:28:45 . 2011-06-30 10:28:44 4164096 ----a-w- C:\Windows\system32\NlsLexicons0002.dll
2011-06-30 10:28:44 . 2011-06-30 10:28:44 2644480 ----a-w- C:\Windows\system32\NlsLexicons0009.dll
2011-06-30 10:28:44 . 2011-06-30 10:28:44 1452544 ----a-w- C:\Windows\system32\NlsLexicons0003.dll
2011-06-30 10:28:44 . 2011-06-30 10:28:44 12240896 ----a-w- C:\Windows\system32\NlsLexicons0007.dll
2011-06-30 10:28:43 . 2011-06-30 10:28:43 4093440 ----a-w- C:\Windows\system32\NlsLexicons004c.dll
2011-06-30 10:28:43 . 2011-06-30 10:28:43 3419136 ----a-w- C:\Windows\system32\NlsLexicons004a.dll
2011-06-30 10:28:43 . 2011-06-30 10:28:43 1972736 ----a-w- C:\Windows\system32\NlsLexicons004e.dll
2011-06-30 10:28:43 . 2011-06-30 10:28:43 1702912 ----a-w- C:\Windows\system32\NlsLexicons004b.dll
2011-06-30 10:28:42 . 2011-06-30 10:28:42 4096 ----a-w- C:\Windows\system32\NlsLexicons002a.dll
2011-06-30 10:28:42 . 2011-06-30 10:28:42 4045824 ----a-w- C:\Windows\system32\NlsLexicons003e.dll
2011-06-30 10:28:42 . 2011-06-30 10:28:41 6014976 ----a-w- C:\Windows\system32\NlsLexicons001a.dll
2011-06-30 10:28:41 . 2011-06-30 10:28:41 6585856 ----a-w- C:\Windows\system32\NlsLexicons001b.dll
2011-06-30 10:28:41 . 2011-06-30 10:28:41 6346240 ----a-w- C:\Windows\system32\NlsLexicons001d.dll
2011-06-30 10:28:41 . 2011-06-30 10:28:40 9892864 ----a-w- C:\Windows\system32\NlsLexicons000a.dll
2011-06-30 10:28:40 . 2011-06-30 10:28:40 6237696 ----a-w- C:\Windows\system32\NlsLexicons000c.dll
2011-06-30 10:28:40 . 2011-06-30 10:28:40 1722368 ----a-w- C:\Windows\system32\NlsLexicons000d.dll
2011-06-30 10:28:39 . 2011-06-30 10:28:39 5654528 ----a-w- C:\Windows\system32\NlsLexicons000f.dll
2011-06-30 10:28:39 . 2011-06-30 10:28:39 4616192 ----a-w- C:\Windows\system32\NlsLexicons0414.dll
2011-06-30 10:28:39 . 2011-06-30 10:28:38 5090816 ----a-w- C:\Windows\system32\NlsLexicons0416.dll
2011-06-30 10:28:38 . 2011-06-30 10:28:38 7042560 ----a-w- C:\Windows\system32\NlsLexicons081a.dll
2011-06-30 10:28:38 . 2011-06-30 10:28:38 5031936 ----a-w- C:\Windows\system32\NlsLexicons0816.dll
2011-06-30 10:28:38 . 2011-06-30 10:28:37 5071872 ----a-w- C:\Windows\system32\NlsModels0011.dll
2011-06-30 10:28:37 . 2011-06-30 10:28:37 3102720 ----a-w- C:\Windows\system32\NlsData0045.dll
2011-06-30 10:28:36 . 2011-06-30 10:28:36 3102720 ----a-w- C:\Windows\system32\NlsData0046.dll
2011-06-30 10:28:35 . 2011-06-30 10:28:35 3102720 ----a-w- C:\Windows\system32\NlsData0049.dll
2011-06-30 10:28:35 . 2011-06-30 10:28:35 3102720 ----a-w- C:\Windows\system32\NlsData0047.dll
2011-06-30 10:28:35 . 2011-06-30 10:28:35 3102720 ----a-w- C:\Windows\system32\NlsData0039.dll
2011-06-30 10:28:34 . 2011-06-30 10:28:34 3102720 ----a-w- C:\Windows\system32\NlsData0020.dll
2011-06-30 10:28:34 . 2011-06-30 10:28:34 1963520 ----a-w- C:\Windows\system32\NlsData0024.dll
2011-06-30 10:28:34 . 2011-06-30 10:28:34 1799168 ----a-w- C:\Windows\system32\NlsData0022.dll
2011-06-30 10:28:34 . 2011-06-30 10:28:34 1799168 ----a-w- C:\Windows\system32\NlsData0021.dll
2011-06-30 10:28:34 . 2011-06-30 10:28:33 1963520 ----a-w- C:\Windows\system32\NlsData0026.dll
2011-06-30 10:28:33 . 2011-06-30 10:28:33 4493312 ----a-w- C:\Windows\system32\NlsData0010.dll
2011-06-30 10:28:33 . 2011-06-30 10:28:33 2655232 ----a-w- C:\Windows\system32\NlsData0011.dll
2011-06-30 10:28:33 . 2011-06-30 10:28:33 1965056 ----a-w- C:\Windows\system32\NlsData0027.dll
2011-06-30 10:28:33 . 2011-06-30 10:28:32 3464704 ----a-w- C:\Windows\system32\NlsData0013.dll
2011-06-30 10:28:32 . 2011-06-30 10:28:32 4495360 ----a-w- C:\Windows\system32\NlsData0019.dll
2011-06-30 10:28:32 . 2011-06-30 10:28:32 1963520 ----a-w- C:\Windows\system32\NlsData0018.dll
2011-06-30 10:28:32 . 2011-06-30 10:28:32 1523200 ----a-w- C:\Windows\system32\NlsData0000.dll
2011-06-30 10:28:32 . 2011-06-30 10:28:31 2597888 ----a-w- C:\Windows\system32\NlsData0001.dll
2011-06-30 10:28:31 . 2011-06-30 10:28:31 2241024 ----a-w- C:\Windows\system32\NlsData0007.dll
2011-06-30 10:28:31 . 2011-06-30 10:28:31 1963520 ----a-w- C:\Windows\system32\NlsData0003.dll
2011-06-30 10:28:31 . 2011-06-30 10:28:31 1963520 ----a-w- C:\Windows\system32\NlsData0002.dll
2011-06-30 10:28:31 . 2011-06-30 10:28:30 4874240 ----a-w- C:\Windows\system32\NlsData0009.dll
2011-06-30 10:28:30 . 2011-06-30 10:28:30 3102720 ----a-w- C:\Windows\system32\NlsData004a.dll
2011-06-30 10:28:30 . 2011-06-30 10:28:29 3102720 ----a-w- C:\Windows\system32\NlsData004b.dll
2011-06-30 10:28:29 . 2011-06-30 10:28:29 3102720 ----a-w- C:\Windows\system32\NlsData004e.dll
2011-06-30 10:28:29 . 2011-06-30 10:28:29 3102720 ----a-w- C:\Windows\system32\NlsData004c.dll
2011-06-30 10:28:29 . 2011-06-30 10:28:29 1799168 ----a-w- C:\Windows\system32\NlsData003e.dll
2011-06-30 10:28:28 . 2011-06-30 10:28:28 4493312 ----a-w- C:\Windows\system32\NlsData001d.dll
2011-06-30 10:28:28 . 2011-06-30 10:28:28 1963520 ----a-w- C:\Windows\system32\NlsData001b.dll
2011-06-30 10:28:28 . 2011-06-30 10:28:28 1963520 ----a-w- C:\Windows\system32\NlsData001a.dll
2011-06-30 10:28:28 . 2011-06-30 10:28:28 1799168 ----a-w- C:\Windows\system32\NlsData002a.dll
2011-06-30 10:28:27 . 2011-06-30 10:28:27 9845248 ----a-w- C:\Windows\system32\NlsData000a.dll
2011-06-30 10:28:27 . 2011-06-30 10:28:27 2641408 ----a-w- C:\Windows\system32\NlsData000c.dll
2011-06-30 10:28:27 . 2011-06-30 10:28:27 2340864 ----a-w- C:\Windows\system32\NlsData000d.dll
2011-06-30 10:28:27 . 2011-06-30 10:28:26 1963520 ----a-w- C:\Windows\system32\NlsData000f.dll
2011-06-30 10:28:26 . 2011-06-30 10:28:26 797696 ----a-w- C:\Windows\system32\NaturalLanguage6.dll
2011-06-30 10:28:26 . 2011-06-30 10:28:26 4493312 ----a-w- C:\Windows\system32\NlsData0416.dll
2011-06-30 10:28:26 . 2011-06-30 10:28:26 4493312 ----a-w- C:\Windows\system32\NlsData0414.dll
2011-06-30 10:28:26 . 2011-06-30 10:28:25 4493312 ----a-w- C:\Windows\system32\NlsData0816.dll
2011-06-30 10:28:25 . 2011-06-30 10:28:25 1963520 ----a-w- C:\Windows\system32\NlsData081a.dll

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))

*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 01:08:18 143360 ----a-w- C:\Program Files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2011-04-12 16:14:05 1232896]
"ehTray.exe"="C:\Windows\ehome\ehTray.exe" [2006-11-02 12:35:32 125440]
"ICQ"="C:\Program Files\ICQ7.5\ICQ.exe" [2011-07-02 16:47:31 124216]
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2011-06-15 13:02:58 15141768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2007-05-08 09:45:26 174872]
"ccApp"="C:\Program Files\Common Files\Symantec Shared\ccApp.exe" [2007-01-09 21:59:00 115816]
"RtHDVCpl"="RtHDVCpl.exe" [2007-03-23 11:04:54 4423680]
"SMSERIAL"="C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe" [2006-11-22 09:31:26 630784]
"IaNvSrv"="C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe" [2007-05-08 09:45:40 33048]
"JMB36X IDE Setup"="C:\Windows\RaidTool\xInsIDE.exe" [2007-03-20 06:36:18 36864]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2007-03-01 13:24:26 857648]
"ATKMEDIA"="C:\Program Files\ASUS\ATK Media\DMEDIA.EXE" [2006-11-02 16:27:32 61440]
"PowerForPhone"="C:\Program Files\PowerForPhone\PowerForPhone.exe" [2007-06-26 18:10:44 778240]
"ASUS Camera ScreenSaver"="C:\Windows\ASScrProlog.exe" [2011-03-06 21:11:01 37232]
"ASUS Screen Saver Protector"="C:\Windows\ASScrPro.exe" [2011-03-06 21:11:21 33136]
"Symantec PIF AlertEng"="C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [2008-01-29 16:38:31 583048]
"DivXUpdate"="C:\Program Files\DivX\DivX Update\DivXUpdate.exe" [2011-03-21 18:56:16 1230704]
"NvCplDaemon"="C:\Windows\system32\NvCpl.dll" [2009-07-01 23:56:10 13789728]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe [2006-10-23 40048]
Adobe Reader Synchronizer.lnk - C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2006-10-23 734872]

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

R3 CFcatchme;CFcatchme;C:\Users\karol\AppData\Local\Temp\CFcatchme.sys [x]
S0 iaNvStor;Intel(R) Turbo Memory Technology NAND Controller;C:\Windows\system32\DRIVERS\iaNvStor.sys [2007-05-04 03:21:48 208896]
S1 IDSvix86;Symantec Intrusion Prevention Driver;C:\PROGRA~2\Symantec\DEFINI~1\SymcData\idsdefs\20110629.001\IDSvix86.sys [2011-02-23 19:17:20 287792]
S2 StkSSrv;Syntek AVStream USB2.0 WebCam Service;C:\Windows\System32\StkCSrv.exe [2007-04-19 06:42:34 24576]
S3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller;C:\Windows\system32\DRIVERS\atl01v32.sys [2007-03-15 06:41:16 48128]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-05-12 08:00:00 105592]
S3 itecir;ITECIR Infrared Receiver;C:\Windows\system32\DRIVERS\itecir.sys [2007-04-21 00:14:32 47616]
S3 Ltn_hyd7700pc;TV tuner device ;C:\Windows\system32\Drivers\Ltn_hyd7700pc.sys [2007-04-16 09:44:56 373888]
S3 StkCMini;Syntek AVStream USB2.0 1.3M WebCam;C:\Windows\system32\Drivers\StkCMini.sys [2007-05-30 07:23:00 1260672]
S3 SYMNDISV;SYMNDISV;C:\Windows\System32\Drivers\SYMNDISV.SYS [2007-01-09 14:32:00 38200]

--- Ostatní služby/ovladače v paměti ---

*NewlyCreated* - COMHOST

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ

Obsah adresáře 'Naplánované úlohy'

2011-07-31 C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4104234605-4083723421-2848960959-1000Core.job
- C:\Users\karol\AppData\Local\Google\Update\GoogleUpdate.exe [2011-03-06 15:38:52 . 2011-03-06 15:38:35]

2011-07-31 C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4104234605-4083723421-2848960959-1000UA.job
- C:\Users\karol\AppData\Local\Google\Update\GoogleUpdate.exe [2011-03-06 15:38:52 . 2011-03-06 15:38:35]

2011-07-25 C:\Windows\Tasks\Norton Internet Security - Run Full System Scan - karol.job
- C:\Program Files\Norton Internet Security\Norton AntiVirus\Navw32.exe [2007-01-14 01:09:00 . 2007-01-14 01:09:00]

2011-07-31 C:\Windows\Tasks\User_Feed_Synchronization-{7A4EB90C-07C3-4872-BD2F-BB811749C26D}.job
- C:\Windows\system32\msfeedssync.exe [2006-11-02 08:49:06 . 2006-11-02 09:45:26]

------- Doplňkový sken -------

uStart Page = hxxp://www.asus.com
IE: {{7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
TCP: DhcpNameServer = 195.34.133.21 195.34.133.22

**************************************************************************
skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory:

**************************************************************************

--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5

--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'Explorer.exe'(3896)
C:\Program Files\ASUS\ASUS Data Security Manager\OverlayIconShlExt.dll
C:\Program Files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll

------------------------ Jiné spuštené procesy ------------------------

C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
C:\Program Files\ATK Hotkey\ASLDRSrv.exe
C:\Program Files\ATKGFNEX\GFNEXSrv.exe
C:\Program Files\ATK Hotkey\Hcontrol.exe
C:\Program Files\ATKOSD2\ATKOSD2.exe
C:\Program Files\Wireless Console 2\wcourier.exe
C:\Program Files\P4G\BatteryLife.exe
C:\Program Files\ASUS\Splendid\ACMON.exe
C:\Windows\System32\ACEngSvr.exe
C:\Program Files\ATK Hotkey\ATKOSD.exe
C:\Program Files\ATK Hotkey\KBFiltr.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
C:\Windows\system32\conime.exe
C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE

**************************************************************************

Celkový čas: 2011-08-01 00:09:39 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-07-31 22:09:23
ComboFix2.txt 2011-07-31 20:29:18

Před spuštěním: Volných bajtů: 101 088 874 496
Po spuštění: Volných bajtů: 100 769 681 408

- - End Of File - - B161E84AC58E03330CB765413B797BA4

#13 Příspěvek od **Rudy** » 01 srp 2011 17:11

Log již vypadá čistý. Nastala nějaká změna?

Lastie · #14 Příspěvek od **Lastie** » 01 srp 2011 20:03

zatím snad vše ok... jen mi dnes nově našel Norton Bloodhound.MalPE, ale hlásí že byl úspěšně odstraněn, takže doufám že je to okej... navíc omlouvám se, že si to kontroluju ale dočetla jsem se že acovcnt.exe má tendence se po restartu vracet, jen by mě laicky zajímalo jestli je to možné a případně jak si ověřím, že se nevrátil? jinak díky moc za pomoc

#15 Příspěvek od **Rudy** » 01 srp 2011 20:23

Ne vždy je tento soubor infikovaný: http://www.viry.cz/forum/viewtopic.php? ... 72&start=0 . Podle mých skušeností systém běží i bez něho. Pokud se vrátí, zkuste ho otestovat online na www.virustotal.com . V případě, že bude čistý, můžete ho ignorovat.

VIRY.CZ

Mizí mi soubory z počítače po stažení

Mizí mi soubory z počítače po stažení

Re: Mizí mi soubory z počítače po stažení

Re: Mizí mi soubory z počítače po stažení

Re: Mizí mi soubory z počítače po stažení

Re: Mizí mi soubory z počítače po stažení

Re: Mizí mi soubory z počítače po stažení

Re: Mizí mi soubory z počítače po stažení

Re: Mizí mi soubory z počítače po stažení

Re: Mizí mi soubory z počítače po stažení

Re: Mizí mi soubory z počítače po stažení

Re: Mizí mi soubory z počítače po stažení

Re: Mizí mi soubory z počítače po stažení

Re: Mizí mi soubory z počítače po stažení

Re: Mizí mi soubory z počítače po stažení

Re: Mizí mi soubory z počítače po stažení