rundll32.exe

[martin.skrobanek]

Mám problém, že vždy když zapnu PC tak mi po chvíli najede v procesech rundll32.exe, je tam 2x. Jeden znázorněn jako hostitelský proces systému windows(ten nevytěžuje procesor a druhý ) a druhý jako rundll32.exe a ten vytěžuje procesor 25 procenty což je dost. Vždy když ho v procesech ukončím, tak jž nenaběhne ale napíše mi to: Ovladač zobrazení Nvidia windows Kernel Mode Driver, Version 301.42 přestal odpovídat a byl úspěšně obnoven. Potřebuji poradit zda s tím jde něco dělat.

[Márty84]

Zdravim

Podivejte se kousek nahoru, do toho barevne odliseneho obdelniku, co je tam napsano...

Pravidla fóra

Pokud chcete pomoc, vložte log z RSIT dle tohoto návodu....

Nejsme jasnovidci, ani nevime, jaky mate windows, nic. Bez logu to proste nepujde http://forum.viry.cz/viewtopic.php?f=24&t=130784

[martin.skrobanek]

Snažil jsem se ale při spuštění i jako administrátor mi to hodí Error: The requested action with this object has failed. Jinak systém mám windows 7 home premium 64bit, napiště co potřebujete vědět dál, myslím že je to podobný problém jako je zde http://www.zive.cz/poradna/rundll32exe/ ... tanswers=1

[Márty84]

Zkuste RSIT spustit jeste v nouzovem rezimu.

[martin.skrobanek]

Logfile of random's system information tool 1.08 (written by random/random)
Run by Martin at 2013-08-26 16:18:52
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 61 GB (9%) free of 695 GB
Total RAM: 5996 MB (81% free)

HijackThis download failed

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\Explorer.EXE
ctfmon.exe
C:\Windows\helppane.exe -Embedding
"C:\Users\Martin\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-08-14 6311296]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\coIEPlg.dll [2013-02-02 512408]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64335A5F-8DC7-94A8-D639-356066503B5C}]
Browse2save - C:\ProgramData\Browse2save\5106d7a28fb28.dll [2013-01-28 120832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\IPS\IPSBHO.DLL [2012-06-21 210400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72A1B02E-8294-ACE1-560B-5C2E2086D31B}]
Search-NewTab - C:\ProgramData\Search-NewTab\5106d90d118b2.dll [2013-01-28 120832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-03-12 461216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-08-14 4533120]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-03-12 170912]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\coIEPlg.dll [2013-02-02 512408]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-07-29 2280232]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-03-10 11785832]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15 499608]
"Power Management"=C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [2011-05-10 1831528]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-05-21 170304]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-05-21 398656]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-05-21 440128]
"Windows Mobile-based device management"=C:\Windows\WindowsMobile\wmdcBase.exe [2007-05-31 660360]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EPSON SX420W Series"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGCE.EXE [2009-09-14 224768]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-04-17 3671872]
"AdobeBridge"= []
"Steam"=C:\Program Files (x86)\Steam\Steam.exe [2013-07-27 1807272]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Norton Online Backup"=C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [2010-06-02 1155928]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2011-07-01 1103440]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"AdobeCS5.5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-10-11 59280]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2012-10-25 421888]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
"Skype"=C:\ProgramData\Skype\Skype.vbs [2012-09-18 103]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-05-21 436224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2013-08-26 16:18:53 ----D---- C:\Program Files\trend micro
2013-08-26 16:18:06 ----A---- C:\Windows\ntbtlog.txt
2013-08-25 12:26:08 ----D---- C:\rsit
2013-08-24 19:34:41 ----D---- C:\Users\Martin\AppData\Roaming\ParetoLogic
2013-08-24 19:34:41 ----D---- C:\Users\Martin\AppData\Roaming\DriverCure
2013-08-24 19:34:19 ----D---- C:\ProgramData\ParetoLogic
2013-08-22 09:53:47 ----D---- C:\Program Files (x86)\Activision
2013-08-21 12:25:20 ----D---- C:\Users\Martin\AppData\Roaming\ArcSoft
2013-08-21 12:25:09 ----D---- C:\ProgramData\ArcSoft
2013-08-21 12:24:45 ----D---- C:\Program Files (x86)\ArcSoft
2013-08-17 21:13:47 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-08-15 20:38:39 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-08-15 20:38:39 ----A---- C:\Windows\system32\ieui.dll
2013-08-15 20:38:38 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-08-15 20:38:38 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-08-15 20:38:38 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-08-15 20:38:38 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-08-15 20:38:38 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-08-15 20:38:38 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-15 20:38:38 ----A---- C:\Windows\system32\iesysprep.dll
2013-08-15 20:38:38 ----A---- C:\Windows\system32\iesetup.dll
2013-08-15 20:38:38 ----A---- C:\Windows\system32\iernonce.dll
2013-08-15 20:38:38 ----A---- C:\Windows\system32\ie4uinit.exe
2013-08-15 20:38:37 ----A---- C:\Windows\system32\iertutil.dll
2013-08-15 20:38:36 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-08-15 20:38:36 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-08-15 20:38:36 ----A---- C:\Windows\system32\msfeeds.dll
2013-08-15 20:38:36 ----A---- C:\Windows\system32\jscript9.dll
2013-08-15 20:38:36 ----A---- C:\Windows\system32\jscript.dll
2013-08-15 20:38:35 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-08-15 20:38:35 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-08-15 20:38:34 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-08-15 20:38:34 ----A---- C:\Windows\system32\urlmon.dll
2013-08-15 20:38:34 ----A---- C:\Windows\system32\jsproxy.dll
2013-08-15 20:38:33 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-08-15 20:38:33 ----A---- C:\Windows\system32\wininet.dll
2013-08-15 20:38:32 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-08-15 20:38:31 ----A---- C:\Windows\system32\ieframe.dll
2013-08-15 20:38:30 ----A---- C:\Windows\system32\mshtml.dll
2013-08-15 20:38:28 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-08-15 12:39:45 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2013-08-15 12:39:45 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2013-08-15 12:39:45 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-08-15 12:39:45 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-08-15 12:39:45 ----A---- C:\Windows\system32\wintrust.dll
2013-08-15 12:39:45 ----A---- C:\Windows\system32\cryptsvc.dll
2013-08-15 12:39:45 ----A---- C:\Windows\system32\cryptnet.dll
2013-08-15 12:39:45 ----A---- C:\Windows\system32\crypt32.dll
2013-08-15 12:38:36 ----A---- C:\Windows\SYSWOW64\tzres.dll
2013-08-15 12:38:36 ----A---- C:\Windows\system32\tzres.dll
2013-08-15 12:38:29 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2013-08-15 12:38:29 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-08-15 12:38:24 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2013-08-15 12:38:24 ----A---- C:\Windows\system32\rpcrt4.dll
2013-08-15 12:38:17 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-08-15 12:38:16 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-08-15 12:38:16 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-08-15 12:38:16 ----A---- C:\Windows\system32\wow64.dll
2013-08-15 12:38:16 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-08-15 12:38:16 ----A---- C:\Windows\system32\ntdll.dll
2013-08-15 12:38:15 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-08-15 12:38:15 ----A---- C:\Windows\SYSWOW64\user.exe
2013-08-15 12:38:15 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-08-15 12:38:15 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-08-15 12:38:15 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-08-15 12:37:51 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2013-08-15 12:37:50 ----A---- C:\Windows\system32\drivers\tcpip.sys

======List of files/folders modified in the last 1 months======

2013-08-26 16:18:53 ----RD---- C:\Program Files
2013-08-26 16:18:06 ----D---- C:\Windows
2013-08-26 16:16:42 ----D---- C:\Windows\Temp
2013-08-26 16:14:54 ----SHD---- C:\System Volume Information
2013-08-26 16:14:48 ----A---- C:\Windows\SYSWOW64\log.txt
2013-08-26 15:35:46 ----D---- C:\Windows\system32\config
2013-08-26 15:33:38 ----D---- C:\Windows\Prefetch
2013-08-26 15:31:25 ----D---- C:\Program Files (x86)\Steam
2013-08-26 09:19:34 ----D---- C:\Windows\system32\catroot2
2013-08-25 13:09:06 ----D---- C:\Windows\Minidump
2013-08-24 19:51:32 ----RD---- C:\Program Files (x86)
2013-08-24 19:51:29 ----D---- C:\Windows\system32\Tasks
2013-08-24 19:51:29 ----D---- C:\Program Files (x86)\Common Files
2013-08-24 19:51:28 ----D---- C:\Windows\Tasks
2013-08-24 19:34:19 ----HD---- C:\ProgramData
2013-08-23 09:35:07 ----SHD---- C:\Windows\Installer
2013-08-23 09:35:03 ----RD---- C:\Program Files (x86)\Skype
2013-08-23 09:35:03 ----D---- C:\ProgramData\Skype
2013-08-22 16:10:19 ----D---- C:\Users\Martin\AppData\Roaming\uTorrent
2013-08-22 10:01:37 ----D---- C:\Users\Martin\AppData\Roaming\NVIDIA
2013-08-21 15:46:31 ----D---- C:\Windows\System32
2013-08-21 15:46:31 ----D---- C:\Windows\inf
2013-08-21 15:46:31 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-08-21 10:25:35 ----D---- C:\Windows\SysWOW64
2013-08-21 10:25:32 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-08-19 19:45:13 ----D---- C:\Windows\rescache
2013-08-19 13:23:49 ----D---- C:\Users\Martin\AppData\Roaming\My The Lord of the Rings, The Rise of the Witch-king Files
2013-08-19 11:48:08 ----D---- C:\Program Files (x86)\Rockstar Games
2013-08-19 11:47:06 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-08-18 08:16:39 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-17 11:13:24 ----D---- C:\Users\Martin\AppData\Roaming\Skype
2013-08-16 20:29:14 ----RSD---- C:\Windows\assembly
2013-08-16 20:29:14 ----D---- C:\Windows\Microsoft.NET
2013-08-15 21:42:30 ----D---- C:\Windows\winsxs
2013-08-15 21:39:48 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-08-15 21:39:48 ----D---- C:\Windows\system32\cs-CZ
2013-08-15 21:39:46 ----D---- C:\Program Files (x86)\Internet Explorer
2013-08-15 21:39:44 ----D---- C:\Program Files\Internet Explorer
2013-08-15 21:39:41 ----D---- C:\Windows\AppPatch
2013-08-15 21:39:40 ----D---- C:\Windows\system32\drivers
2013-08-15 20:39:08 ----D---- C:\Windows\system32\catroot
2013-08-15 20:38:03 ----D---- C:\ProgramData\Microsoft Help
2013-08-15 20:32:43 ----D---- C:\Windows\system32\MRT
2013-08-15 20:29:50 ----A---- C:\Windows\system32\MRT.exe
2013-07-31 14:34:19 ----D---- C:\Windows\Registration
2013-07-28 15:34:46 ----D---- C:\Program Files (x86)\Google

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys [2011-04-26 557848]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2012-05-15 28992]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 SymDS;Symantec Data Store; C:\Windows\system32\drivers\NISx64\1309010.00E\SYMDS64.SYS [2011-05-16 451192]
R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\NISx64\1309010.00E\SYMEFA64.SYS [2012-05-22 1129120]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-07-08 283200]
R3 b57xdbd;Broadcom xD Picture Bus Driver Service; C:\Windows\system32\DRIVERS\b57xdbd.sys [2011-01-21 67624]
R3 b57xdmp;Broadcom xD Picture vstorp client drv; C:\Windows\system32\DRIVERS\b57xdmp.sys [2011-01-21 19496]
R3 bScsiMSa;bScsiMSa; C:\Windows\system32\DRIVERS\bScsiMSa.sys [2011-05-16 51240]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-07-29 1383472]
S1 BHDrvx64;BHDrvx64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\BASHDefs\20130715.001\BHDrvx64.sys [2013-05-31 1393240]
S1 ccSet_NIS;Norton Internet Security Settings Manager; C:\Windows\system32\drivers\NISx64\1309010.00E\ccSetx64.sys [2012-06-07 167072]
S1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2013-08-21 484512]
S1 IDSVia64;IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\IPSDefs\20130823.001\IDSvia64.sys [2013-08-14 520280]
S1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\NISx64\1309010.00E\SRTSPX64.SYS [2012-07-06 37536]
S1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\NISx64\1309010.00E\Ironx64.SYS [2012-04-18 190072]
S1 SymNetS;Symantec Network Security WFP Driver; C:\Windows\System32\Drivers\NISx64\1309010.00E\SYMNETS.SYS [2012-04-18 405624]
S1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2011-06-08 4729408]
S3 bScsiSDa;bScsiSDa; C:\Windows\system32\DRIVERS\bScsiSDa.sys [2011-05-06 86056]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 BTWAMPFL;btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [2011-01-10 349736]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2011-01-24 107560]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\drivers\btwavdt.sys [2010-09-14 138280]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2011-02-15 39464]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2010-09-14 21416]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2013-08-21 138912]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-05-21 14759520]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-03-15 2814952]
S3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2011-05-10 425000]
S3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\VirusDefs\20130825.019\ENG64.SYS [2013-07-30 126040]
S3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\VirusDefs\20130825.019\EX64.SYS [2013-07-30 2098776]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\System32\Drivers\NISx64\1309010.00E\SRTSP64.SYS [2012-07-06 737952]
S3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2012-07-09 175736]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 WINUSB;Ovladač WinUsb; C:\Windows\system32\DRIVERS\WinUSB.SYS [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

S2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
S2 ADExchange;ArcSoft Exchange Service; C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [2013-07-08 44064]
S2 AdobeActiveFileMonitor9.0;Adobe Active File Monitor V9; C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe [2010-09-30 169408]
S2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
S2 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2012-12-19 79360]
S2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2011-05-10 956192]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2011-07-01 353360]
S2 ePowerSvc;Acer ePower Service; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [2011-05-10 872552]
S2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [2009-09-14 166400]
S2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2009-09-14 128512]
S2 GREGService;GREGService; C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe [2011-01-18 39528]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-08-21 136176]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-04-30 13592]
S2 Live Updater Service;Live Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2011-04-22 244624]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-22 325656]
S2 mi-raysat_3dsMax2009_32;mental ray 3.6 Satellite for Autodesk 3ds Max 2009 32-bit 32-bit; C:\Program Files (x86)\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_32server.exe [2008-03-10 65536]
S2 mi-raysat_3dsMax2009_64;mental ray 3.6 Satellite for Autodesk 3ds Max 2009 64-bit 64-bit; C:\Program Files\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_64server.exe []
S2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-03-30 598312]
S2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccSvcHst.exe [2012-06-16 138272]
S2 NOBU;Norton Online Backup; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2010-06-02 2804568]
S2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-05-15 889664]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400]
S2 PanService;PandoraService; C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [2011-12-21 578264]
S2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-06-17 76888]
S2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-08-14 3291008]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-22 2656280]
S2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-21 257416]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-05-21 276288]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-08-21 136176]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-08-17 117656]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-07-27 563624]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-07-08 1255736]
S3 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]

-----------------EOF-----------------
Stačí tohle?

[Márty84]

No, je to sice stara verze RSIT, ale lepsi nez nic.


Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

[martin.skrobanek]

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2013.08.27.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16660
Martin :: MARTIN-PC [administrátor]

Ochrana: Povolena

27.8.2013 12:45:26
MBAM-log-2013-08-27 (14-43-28).txt

Typ: Kompletní kontrola (C:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 625822
Uplynulý čas: 1 hodin, 52 minut, 35 sekund

Nalezené procesy v paměti: 1
C:\ProgramData\Skype\rundll32.exe (PUP.Optional.BitCoinMiner) -> 4568 -> Nebyla provedena žádná instrukce.

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 12
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C3F3165C-74D3-6FDB-3274-14FDA8698CFA} (PUP.Optional.SilentInstall.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD} (PUP.Optional.SilentInstall.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{72A1B02E-8294-ACE1-560B-5C2E2086D31B} (PUP.Optional.SearchNewTab) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72A1B02E-8294-ACE1-560B-5C2E2086D31B} (PUP.Optional.SearchNewTab) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{72A1B02E-8294-ACE1-560B-5C2E2086D31B} (PUP.Optional.SearchNewTab) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{72A1B02E-8294-ACE1-560B-5C2E2086D31B} (PUP.Optional.SearchNewTab) -> Nebyla provedena žádná instrukce.
HKCR\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755} (PUP.Optional.SearchNewTab) -> Nebyla provedena žádná instrukce.
HKCR\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F} (PUP.Optional.SearchNewTab) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{64335A5F-8DC7-94A8-D639-356066503B5C} (PUP.Optional.BrowseToSave) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64335A5F-8DC7-94A8-D639-356066503B5C} (PUP.Optional.BrowseToSave) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{64335A5F-8DC7-94A8-D639-356066503B5C} (PUP.Optional.BrowseToSave) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{64335A5F-8DC7-94A8-D639-356066503B5C} (PUP.Optional.BrowseToSave) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 3
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|AppInit_DLLs (PUP.Optional.SProtect.A) -> Špatný: (c:\progra~2\browse~1\sprote~1.dll) Dobrý: () -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|AppInit_DLLs (PUP.Optional.SProtect.A) -> Špatný: (c:\progra~2\websea~1\sprote~1.dll) Dobrý: () -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (PUP.Optional.Websearch) -> Špatný: (http://websearch.good-results.info/) Dobrý: (http://www.google.com) -> Nebyla provedena žádná instrukce.

Nalezené složky: 6
C:\ProgramData\Search-NewTab (PUP.Optional.SearchNewTab) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Search-NewTab\data (PUP.Optional.SearchNewTab) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search-NewTab (PUP.Optional.SearchNewTab) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Browse2save (PUP.Optional.BrowseToSave) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Browse2save\data (PUP.Optional.BrowseToSave) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browse2save (PUP.Optional.BrowseToSave) -> Nebyla provedena žádná instrukce.

Nalezené soubory: 37
C:\Program Files (x86)\BrowseToSave\sprotector.dll (PUP.Optional.SProtect.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\WebSearch\sprotector.dll (PUP.Optional.SProtect.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Skype\rundll32.exe (PUP.Optional.BitCoinMiner) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Codemasters\DiRT 3\paul.dll (PUP.RiskwareTool.CK) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Codemasters\DiRT 3\SKIDROW.dll (Trojan.Downloader.H) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\ubiorbitapi_r2.dll (Trojan.Agent.CK) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\WinRAR\Zip.SFX (Backdoor.Bifrose) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Browse2save\uninstall.exe (PUP.Optional.SilentInstall.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Search-NewTab\uninstall.exe (PUP.Optional.SilentInstall.A) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\AppData\Local\Temp\2mDzU+JB.exe.part (PUP.Optional.Installex) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\AppData\Local\Temp\UpdateCheckerSetup.exe (PUP.Optional.Somoto.A) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Downloads\Adobe\Adobe-Premiere-Elements-9-+-keygen\Adobe Premiere Elements 9\core_keygen.exe (Trojan.Agent.CK) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Downloads\Adobe\Autodesk 3D Studio MAX 9 (2008) FULL + KEYGEN! [ISO]\Autodesk.Keygens\3DS MAX 2009\MAX2009-32bit-Keygen.exe (RiskWare.Tool.HCK) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Downloads\Adobe\Autodesk 3D Studio MAX 9 (2008) FULL + KEYGEN! [ISO]\Autodesk.Keygens\AutoCAD 2009\xf-acad9-32-BITS.exe (RiskWare.Tool.HCK) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Downloads\Adobe\Autodesk 3D Studio MAX 9 (2008) FULL + KEYGEN! [ISO]\Autodesk.Keygens\AutoCAD 2009\xf-acad9-64-BITS.exe (RiskWare.Tool.CK) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Downloads\Adobe\Autodesk 3D Studio MAX 9 (2008) FULL + KEYGEN! [ISO]\Autodesk.Keygens\AutoCAD Architecture 2009\XF-ACADA2k9-32bit-KG.exe (RiskWare.Tool.CK) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Downloads\Adobe\Autodesk 3D Studio MAX 9 (2008) FULL + KEYGEN! [ISO]\Autodesk.Keygens\AutoCAD Architecture 2009\xf-acada2k9-64bit-kg.exe (RiskWare.Tool.CK) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Downloads\Adobe\Autodesk 3D Studio MAX 9 (2008) FULL + KEYGEN! [ISO]\Autodesk.Keygens\AutoCAD Civil 3D 2009\xf-acivil3d2k9-kg.exe (Trojan.Downloader) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Downloads\Adobe\Autodesk 3D Studio MAX 9 (2008) FULL + KEYGEN! [ISO]\Autodesk.Keygens\Inventor Pro 2009\XF-AIP2k9-32bit-KG.exe (RiskWare.Tool.CK) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Downloads\Hry\dirt-3-pc-crack-part1\Dirt 3 (pc) (Crack )\Crack\paul.dll (PUP.RiskwareTool.CK) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Downloads\Hry\dirt-3-pc-crack-part1\Dirt 3 (pc) (Crack )\Crack\SKIDROW.dll (Trojan.Downloader.H) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Downloads\Programy\DTLite4454-0315.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Downloads\Programy\KMPlayer_EN_3.2.0.0.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Downloads\Programy\Norton.Internet.Security.2012.and.Anti-Virus.2012-CRACKED-P2P\Norton.Internet.Security.2012.and.Anti-Virus.2012-CRACKED-P2P\Symantec Activation\Norton Trial Reset-v3.1.0.exe (RiskWare.Tool.CK) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\Downloads\Programy\Norton.Internet.Security.2012.and.Anti-Virus.2012-CRACKED-P2P\Norton.Internet.Security.2012.and.Anti-Virus.2012-CRACKED-P2P\Symantec Activation\Norton Trial Reset-v3.3.1.exe (RiskWare.Tool.CK) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Search-NewTab\5106d90d118b2.dll (PUP.Optional.SearchNewTab) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Search-NewTab\5106d90d118b2.tlb (PUP.Optional.SearchNewTab) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Search-NewTab\settings.ini (PUP.Optional.SearchNewTab) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Search-NewTab\data\Search-NewTab.dat (PUP.Optional.SearchNewTab) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search-NewTab\Search-NewTab.lnk (PUP.Optional.SearchNewTab) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search-NewTab\Uninstall.lnk (PUP.Optional.SearchNewTab) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Browse2save\5106d7a28fb28.dll (PUP.Optional.BrowseToSave) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Browse2save\5106d7a28fb28.tlb (PUP.Optional.BrowseToSave) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Browse2save\settings.ini (PUP.Optional.BrowseToSave) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Browse2save\data\Browse2save.dat (PUP.Optional.BrowseToSave) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browse2save\Browse2save.lnk (PUP.Optional.BrowseToSave) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browse2save\Uninstall.lnk (PUP.Optional.BrowseToSave) -> Nebyla provedena žádná instrukce.

(konec)

Po naistalování toho programu my pořád vyskakuje: Byl zablokován přístup na podezřelou webovou stránku: 111.111.111.111 Typ: Odchozí, Port: 50295, Proces: pandoraservice.exe

[martin.skrobanek]

Co mám teda dělat teďka? Myslím že je to podobný problém co je popisován zde:http://www.zive.cz/poradna/rundll32exe/ ... tanswers=1

[Márty84]

To je tak, kdyz nekdo pouziva cracknuty antivirus

Vsechny nalezy nechte odstranit. Po restartu pc zopakujte test MBAM a dejte sem log, at vime, jestli se to nevraci

[martin.skrobanek]

Není cracknutý, jen trial verze 60 denní. Ok dělám na tom. Většina těch nálezů je neškodná mám je v Pc už několik měsícu, je to z věrohodného zdroje smažu to co nevím co je.

[vyosek]

Zdravim

Omlouvam se kolegovi za vstup, ale jako MOD musim...

A po kolikate jiz tu 60ti denni zkusebni licenci mate? nebo ji jen pokazde odinstalujete a pak znovu nainstalujete?? Navic ja nasel na oficialnim webu, ze Norton je poskytovan v trial licenci na dobu 30 dni, nikoli 60 jak pisete vy...

Na co pak potrebujete cracky na ten Norton, ktere tedy prave slouzi k resetovani zkusebni licence...

Neskodne cracky, ktera overena spolecnost Vam toto zaruci? A co treba autorsky zakon, nebo licencni podminky programu, to vam nic moc nerika, co


Podivejte, p*del si delejte z plasteliny a ne znas. Takze budte tak mlaskav, prestante tu psat pohadky a my vam potom MOZNA pomuzeme!

[martin.skrobanek]

Tak jsem to odstranil, ale chtělo to restart, a nebyla možnost uložení txt.souboru. Problém s rundll32 už zmizel, tak uvidím zda se v blízké době zase neobjeví. Jinak díky za rady všem.

[vyosek]

A muzete mi prosim odpovedet na me otazky, pokud prijdete priste, tak si hodne rozmyslete s jakym tonem a co vse v PC bude...

[martin.skrobanek]

Já dostal licenci na 60 dní při koupi nooteboku crack co tam je už nepoužívám od té doby co mám nootbook. Data s pc jsem vše zkopíroval tak to tam zůstalo asi. Jinak občas stáhnu i nějaký crack a kdo ne? Pokud se mi pak program, či hra líbí tak ji podpořím koupím pokud ne tak ji ani nehraju.

[vyosek]

A kde mate ty overene zdroje na cracky, jak si muzete byt jist, ze zadny z cracku neobsahuje i nejaky ten bonusek, jakoze 99% cracku\keygenu jej obsahuji...

Jak jsem psal, pozornost je hodne zvysena a je pridana poznamka do interni sekce k vasemu nicku...