Virus?

[LosSmartos]

Dobrý den,poslední dobou když jdu na internet (kamkoliv) při zapnutí internetu prostě vždy tak mi Antivirus nahlásí todle:(viz.obrázek)

Nevíte co to je popř.jak to odstranit?

Děkuji za vaše odpovědi...

[Rudy]

Toto je jen informace, že NOD zablokoval přístup škodlivého skriptu z uvedené IP. Do PC by tudíž nemělo nic proniknout. Dejte log z RSIT: http://www.viry.cz/forum/viewtopic.php?f=13&t=105895 .

[LosSmartos]

Tady je:
Logfile of random's system information tool 1.08 (written by random/random)
Run by Vlastnik at 2011-03-30 21:00:51
Microsoft Windows 7 Home Premium
System drive C: has 417 GB (88%) free of 477 GB
Total RAM: 4094 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:00:52, on 30.3.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16722)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Program Files (x86)\Metin2\New metin2 start.exe
C:\Program Files (x86)\Metin2\metin2client.bin
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files\trend micro\Vlastnik.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/hypercam/{EBA ... 173E578D18}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/hypercam/{EBA ... 173E578D18}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - (no file)
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ToolbarURLSearchHook Class - {CA3EB689-8F09-4026-AA10-B9534C691CE0} - C:\Program Files (x86)\HyperCam Toolbar\tbhelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SMTTB2009 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files (x86)\HyperCam Toolbar\tbcore3.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: HyperCam Toolbar - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files (x86)\HyperCam Toolbar\tbcore3.dll
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8711 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe"
"taskhost.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\SysWOW64\PnkBstrB.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-ab5d736f-bfa4-47bd-b045-11856b0c5e9c -SystemEventPortName:HostProcess-4fd31e09-5a92-4f54-9e4c-e7d4d6a4c65a -IoCancelEventPortName:HostProcess-3636ffe7-5b91-44bb-9037-b58828ee2218 -NonStateChangingEventPortName:HostProcess-ed1bc75c-c55a-434c-ad05-6f4dde3ffc80 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:b020a82a-3cd7-47aa-bcb6-3d2f3bddc704
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Windows Media Player\wmplayer.exe" /Play -Embedding
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Metin2\New metin2 start.exe"
metin2client.bin
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=2508.514e600.48376487 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll" "Mozilla.Firefox.4.0" -omnijar C:\Program Files (x86)\Mozilla Firefox\omni.jar 2508 \\.\pipe\gecko-crash-server-pipe.2508 plugin
"C:\Windows\system32\NOTEPAD.EXE" C:\rsit\log.txt
C:\Windows\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Vlastnik\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 6722448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 688528]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Plug-In - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-11-22 1242504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-02-10 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}]
SMTTB2009 Class - C:\Program Files (x86)\HyperCam Toolbar\tbcore3.dll [2010-02-16 2495488]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{855F3B16-6D32-4FE6-8A56-BBB695989046} - ICQToolBar - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll [2010-09-06 1048888]
{338B4DFE-2E2C-4338-9E41-E176D497299E} - HyperCam Toolbar - C:\Program Files (x86)\HyperCam Toolbar\tbcore3.dll [2010-02-16 2495488]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-07-06 11057768]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2011-01-12 2918656]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
C:\Program Files (x86)\ICQ7.4\ICQ.exe [2011-03-17 119608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2009-07-14 290304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 6722448]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2011-03-30 13:04:23 ----AD---- C:\3590F75ABA9E485486C100C1A9D4FF06Z...ZZZZZZZZZ.ZZ
2011-03-27 10:44:36 ----A---- C:\Windows\WPE PRO.INI
2011-03-22 16:51:31 ----D---- C:\Program Files (x86)\Gameforge4D
2011-03-19 14:25:12 ----D---- C:\Program Files (x86)\Jasc Software Inc
2011-03-19 14:15:32 ----D---- C:\Program Files (x86)\AmitySource
2011-03-18 22:00:31 ----D---- C:\ProgramData\Symantec
2011-03-18 22:00:25 ----D---- C:\ProgramData\Norton
2011-03-18 22:00:24 ----D---- C:\ProgramData\NortonInstaller
2011-03-18 18:59:53 ----D---- C:\Windows\SYSWOW64\Adobe
2011-03-18 13:27:10 ----D---- C:\Program Files (x86)\HyperCam Toolbar
2011-03-18 13:27:08 ----D---- C:\Program Files (x86)\HyCam2
2011-03-18 13:21:51 ----D---- C:\Program Files (x86)\CamStudio
2011-03-17 13:50:33 ----D---- C:\Program Files (x86)\Zrychleni Pocitace
2011-03-17 08:23:08 ----D---- C:\Program Files (x86)\ICQ6Toolbar
2011-03-17 08:22:56 ----D---- C:\ProgramData\ICQ
2011-03-17 08:12:35 ----D---- C:\Users\Vlastnik\AppData\Roaming\ICQ
2011-03-17 08:12:31 ----D---- C:\Program Files (x86)\ICQ7.4
2011-03-16 11:48:42 ----D---- C:\Program Files\ESET
2011-03-15 14:45:50 ----D---- C:\Program Files (x86)\Cheat Engine
2011-03-15 13:50:09 ----SHD---- C:\$RECYCLE.BIN
2011-03-15 13:36:27 ----A---- C:\Windows\wpe.INI
2011-03-15 12:27:39 ----D---- C:\ProgramData\TrackMania
2011-03-15 12:12:09 ----D---- C:\Program Files (x86)\TmNationsForever
2011-03-15 11:04:44 ----D---- C:\Windows\temp
2011-03-15 11:04:43 ----A---- C:\ComboFix.txt
2011-03-15 10:59:18 ----A---- C:\Windows\zip.exe
2011-03-15 10:59:18 ----A---- C:\Windows\SWSC.exe
2011-03-15 10:59:18 ----A---- C:\Windows\SWREG.exe
2011-03-15 10:59:18 ----A---- C:\Windows\sed.exe
2011-03-15 10:59:18 ----A---- C:\Windows\PEV.exe
2011-03-15 10:59:18 ----A---- C:\Windows\NIRCMD.exe
2011-03-15 10:59:18 ----A---- C:\Windows\MBR.exe
2011-03-15 10:59:18 ----A---- C:\Windows\grep.exe
2011-03-15 10:58:57 ----A---- C:\Windows\SWXCACLS.exe
2011-03-15 10:57:45 ----D---- C:\Windows\ERDNT
2011-03-15 10:56:00 ----D---- C:\Qoobox
2011-03-14 21:53:19 ----D---- C:\rsit
2011-03-14 21:53:19 ----D---- C:\Program Files\trend micro
2011-03-14 16:03:56 ----D---- C:\Tmp
2011-03-14 15:59:57 ----D---- C:\Users\Vlastnik\AppData\Roaming\River Past G4
2011-03-14 15:59:57 ----D---- C:\ProgramData\River Past G4
2011-03-14 15:45:52 ----A---- C:\Windows\SYSWOW64\MPG4C32.dll
2011-03-14 15:40:10 ----D---- C:\Fraps
2011-03-12 11:24:22 ----D---- C:\Users\Vlastnik\AppData\Roaming\Malwarebytes
2011-03-12 11:24:19 ----D---- C:\ProgramData\Malwarebytes
2011-03-12 11:24:17 ----A---- C:\Windows\system32\drivers\mbam.sys
2011-03-11 23:18:21 ----D---- C:\Program Files (x86)\Ultimate Process Manager
2011-03-11 18:39:46 ----D---- C:\Program Files (x86)\GameSpy Arcade
2011-03-11 18:39:28 ----D---- C:\ProgramData\InstallShield
2011-03-11 18:36:21 ----D---- C:\Program Files (x86)\Codemasters
2011-03-11 18:02:26 ----D---- C:\ProgramData\Electronic Arts
2011-03-11 18:02:26 ----D---- C:\ProgramData\EA Core
2011-03-11 14:48:18 ----RHD---- C:\Users\Vlastnik\AppData\Roaming\SecuROM
2011-03-11 14:47:30 ----A---- C:\Windows\SYSWOW64\CmdLineExt_x64.dll
2011-03-11 14:47:12 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2011-03-11 14:47:12 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2011-03-11 14:47:12 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2011-03-11 14:47:12 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2011-03-11 14:47:12 ----A---- C:\Windows\system32\XAudio2_1.dll
2011-03-11 14:47:12 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2011-03-11 14:47:12 ----A---- C:\Windows\system32\xactengine3_1.dll
2011-03-11 14:47:12 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2011-03-11 14:47:11 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2011-03-11 14:47:11 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2011-03-11 14:47:11 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2011-03-11 14:47:11 ----A---- C:\Windows\system32\D3DX9_38.dll
2011-03-11 14:47:11 ----A---- C:\Windows\system32\d3dx10_38.dll
2011-03-11 14:47:11 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2011-03-11 14:47:10 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2011-03-11 14:47:10 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2011-03-11 14:47:10 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2011-03-11 14:47:10 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2011-03-11 14:47:10 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2011-03-11 14:47:10 ----A---- C:\Windows\system32\XAudio2_0.dll
2011-03-11 14:47:10 ----A---- C:\Windows\system32\xactengine3_0.dll
2011-03-11 14:47:10 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2011-03-11 14:47:10 ----A---- C:\Windows\system32\d3dx10_37.dll
2011-03-11 14:47:10 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2011-03-11 14:47:09 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2011-03-11 14:47:09 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2011-03-11 14:47:09 ----A---- C:\Windows\system32\xactengine2_10.dll
2011-03-11 14:47:09 ----A---- C:\Windows\system32\D3DX9_37.dll
2011-03-11 14:47:08 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2011-03-11 14:47:08 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2011-03-11 14:47:08 ----A---- C:\Windows\system32\d3dx10_36.dll
2011-03-11 14:47:08 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2011-03-11 14:47:07 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2011-03-11 14:47:07 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2011-03-11 14:47:07 ----A---- C:\Windows\system32\xactengine2_9.dll
2011-03-11 14:47:07 ----A---- C:\Windows\system32\d3dx9_36.dll
2011-03-11 14:47:06 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2011-03-11 14:47:06 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2011-03-11 14:47:06 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2011-03-11 14:47:06 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2011-03-11 14:47:06 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2011-03-11 14:47:06 ----A---- C:\Windows\system32\xactengine2_8.dll
2011-03-11 14:47:06 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2011-03-11 14:47:06 ----A---- C:\Windows\system32\d3dx9_35.dll
2011-03-11 14:47:06 ----A---- C:\Windows\system32\d3dx10_35.dll
2011-03-11 14:47:06 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2011-03-11 14:47:05 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2011-03-11 14:47:05 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2011-03-11 14:47:05 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2011-03-11 14:47:05 ----A---- C:\Windows\system32\d3dx9_34.dll
2011-03-11 14:47:05 ----A---- C:\Windows\system32\d3dx10_34.dll
2011-03-11 14:47:05 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2011-03-11 14:47:04 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2011-03-11 14:47:04 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2011-03-11 14:47:04 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2011-03-11 14:47:04 ----A---- C:\Windows\system32\xactengine2_7.dll
2011-03-11 14:47:04 ----A---- C:\Windows\system32\d3dx10_33.dll
2011-03-11 14:47:04 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2011-03-11 14:47:03 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2011-03-11 14:47:03 ----A---- C:\Windows\system32\d3dx9_33.dll
2011-03-11 14:47:02 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2011-03-11 14:47:02 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2011-03-11 14:47:02 ----A---- C:\Windows\system32\xactengine2_6.dll
2011-03-11 14:47:02 ----A---- C:\Windows\system32\xactengine2_5.dll
2011-03-11 14:47:01 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2011-03-11 14:47:01 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2011-03-11 14:47:01 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2011-03-11 14:47:01 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2011-03-11 14:47:01 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2011-03-11 14:47:01 ----A---- C:\Windows\system32\xactengine2_4.dll
2011-03-11 14:47:01 ----A---- C:\Windows\system32\x3daudio1_1.dll
2011-03-11 14:47:01 ----A---- C:\Windows\system32\d3dx9_32.dll
2011-03-11 14:47:01 ----A---- C:\Windows\system32\d3dx9_31.dll
2011-03-11 14:47:01 ----A---- C:\Windows\system32\d3dx10.dll
2011-03-11 14:47:00 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2011-03-11 14:47:00 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2011-03-11 14:47:00 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2011-03-11 14:47:00 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2011-03-11 14:47:00 ----A---- C:\Windows\system32\xinput1_2.dll
2011-03-11 14:47:00 ----A---- C:\Windows\system32\xinput1_1.dll
2011-03-11 14:47:00 ----A---- C:\Windows\system32\xactengine2_3.dll
2011-03-11 14:47:00 ----A---- C:\Windows\system32\xactengine2_2.dll
2011-03-11 14:46:59 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2011-03-11 14:46:59 ----A---- C:\Windows\system32\xactengine2_1.dll
2011-03-11 14:46:55 ----A---- C:\Windows\system32\d3dx9_30.dll
2011-03-11 14:46:54 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2011-03-11 14:46:54 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2011-03-11 14:46:54 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2011-03-11 14:46:54 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2011-03-11 14:46:54 ----A---- C:\Windows\system32\xactengine2_0.dll
2011-03-11 14:46:54 ----A---- C:\Windows\system32\x3daudio1_0.dll
2011-03-11 14:46:54 ----A---- C:\Windows\system32\d3dx9_29.dll
2011-03-11 14:46:54 ----A---- C:\Windows\system32\d3dx9_28.dll
2011-03-11 14:46:53 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2011-03-11 14:46:53 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2011-03-11 14:46:53 ----A---- C:\Windows\system32\d3dx9_27.dll
2011-03-11 14:46:53 ----A---- C:\Windows\system32\d3dx9_26.dll
2011-03-11 14:46:52 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2011-03-11 14:46:52 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2011-03-11 14:46:52 ----A---- C:\Windows\system32\d3dx9_25.dll
2011-03-11 14:46:52 ----A---- C:\Windows\system32\d3dx9_24.dll
2011-03-11 14:44:37 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2011-03-11 14:44:20 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2011-03-11 14:44:19 ----A---- C:\Windows\SYSWOW64\pbsvc.exe
2011-03-11 14:13:06 ----D---- C:\Program Files (x86)\Electronic Arts
2011-03-11 14:13:05 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2011-03-11 14:13:05 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2011-03-11 14:13:05 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2011-03-11 14:13:05 ----A---- C:\Windows\system32\d3dx11_42.dll
2011-03-11 14:13:05 ----A---- C:\Windows\system32\d3dcsx_42.dll
2011-03-11 14:13:05 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2011-03-11 14:13:04 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2011-03-11 14:13:04 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2011-03-11 14:13:04 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2011-03-11 14:13:04 ----A---- C:\Windows\system32\xinput1_3.dll
2011-03-11 14:13:04 ----A---- C:\Windows\system32\D3DX9_42.dll
2011-03-11 14:13:04 ----A---- C:\Windows\system32\d3dx10_42.dll
2011-03-10 19:04:56 ----D---- C:\Users\Vlastnik\AppData\Roaming\Dev-Cpp
2011-03-09 16:38:11 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2011-03-09 16:38:11 ----A---- C:\Windows\system32\FntCache.dll
2011-03-09 16:38:10 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2011-03-09 16:38:10 ----A---- C:\Windows\system32\DWrite.dll
2011-03-09 16:38:10 ----A---- C:\Windows\system32\d2d1.dll
2011-03-09 16:38:09 ----A---- C:\Windows\system32\EncDec.dll
2011-03-09 16:38:09 ----A---- C:\Windows\system32\CPFilters.dll
2011-03-09 16:38:08 ----A---- C:\Windows\SYSWOW64\sbe.dll
2011-03-09 16:38:08 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2011-03-09 16:38:08 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2011-03-09 16:38:08 ----A---- C:\Windows\system32\sbe.dll
2011-03-09 16:38:06 ----A---- C:\Windows\system32\mstscax.dll
2011-03-09 16:38:05 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2011-03-09 16:38:05 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2011-03-09 16:38:05 ----A---- C:\Windows\system32\mstsc.exe
2011-03-09 11:35:55 ----D---- C:\Program Files\CCleaner
2011-03-09 10:27:54 ----A---- C:\Windows\SYSWOW64\frapsvid.dll
2011-03-09 10:27:50 ----A---- C:\Windows\system32\frapsv64.dll

======List of files/folders modified in the last 1 months======

2011-03-30 20:58:29 ----D---- C:\Windows\Prefetch
2011-03-30 20:44:45 ----SHD---- C:\System Volume Information
2011-03-30 20:39:28 ----D---- C:\Windows\System32
2011-03-30 20:39:27 ----D---- C:\Windows\inf
2011-03-30 20:39:27 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-03-30 20:33:19 ----D---- C:\Windows
2011-03-30 20:27:17 ----D---- C:\Users\Vlastnik\AppData\Roaming\Skype
2011-03-30 19:56:14 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-03-30 19:09:41 ----SHD---- C:\Windows\Installer
2011-03-30 19:09:41 ----D---- C:\Config.Msi
2011-03-30 19:09:37 ----D---- C:\ProgramData\Microsoft Help
2011-03-30 17:26:08 ----D---- C:\Windows\system32\config
2011-03-30 17:22:24 ----D---- C:\Users\Vlastnik\AppData\Roaming\skypePM
2011-03-30 14:15:26 ----RD---- C:\Program Files (x86)
2011-03-27 13:23:33 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-03-26 15:19:35 ----D---- C:\Program Files (x86)\Metin2
2011-03-24 08:02:32 ----D---- C:\Windows\system32\catroot
2011-03-24 08:02:19 ----D---- C:\Windows\system32\catroot2
2011-03-23 14:00:10 ----D---- C:\Windows\system32\drivers
2011-03-18 22:53:13 ----D---- C:\Windows\system32\drivers\UMDF
2011-03-18 22:07:32 ----D---- C:\Windows\Tasks
2011-03-18 22:07:32 ----D---- C:\Windows\system32\Tasks
2011-03-18 22:00:31 ----D---- C:\ProgramData
2011-03-18 19:00:11 ----D---- C:\Windows\SysWOW64
2011-03-17 23:06:08 ----D---- C:\Windows\system32\wdi
2011-03-17 23:03:16 ----D---- C:\Windows\system32\NDF
2011-03-16 11:49:03 ----D---- C:\Windows\system32\DriverStore
2011-03-16 11:48:42 ----RD---- C:\Program Files
2011-03-16 11:43:23 ----D---- C:\Program Files\Google
2011-03-16 11:43:23 ----D---- C:\Program Files (x86)\Google
2011-03-16 11:33:21 ----D---- C:\ProgramData\Google
2011-03-15 16:30:10 ----D---- C:\Windows\system32\wfp
2011-03-15 16:30:07 ----D---- C:\Windows\system32\wbem
2011-03-15 16:28:29 ----D---- C:\Windows\registration
2011-03-15 14:50:33 ----D---- C:\Windows\Logs
2011-03-15 14:49:32 ----D---- C:\Program Files (x86)\Common Files
2011-03-15 12:28:04 ----D---- C:\Windows\LiveKernelReports
2011-03-15 12:13:53 ----RSD---- C:\Windows\assembly
2011-03-15 11:03:10 ----A---- C:\Windows\system.ini
2011-03-15 11:03:06 ----D---- C:\Windows\system32\drivers\etc
2011-03-15 11:01:39 ----D---- C:\Windows\SYSWOW64\drivers
2011-03-15 11:01:39 ----D---- C:\Windows\AppPatch
2011-03-15 11:01:38 ----D---- C:\Program Files\Common Files
2011-03-14 16:05:35 ----D---- C:\Windows\winsxs
2011-03-14 16:04:59 ----SD---- C:\Users\Vlastnik\AppData\Roaming\Microsoft
2011-03-14 15:55:40 ----D---- C:\Program Files (x86)\OpenOffice.org 3
2011-03-14 15:47:13 ----SD---- C:\ProgramData\Microsoft
2011-03-11 23:23:29 ----D---- C:\Windows\debug
2011-03-11 18:39:17 ----D---- C:\Windows\Downloaded Program Files
2011-03-11 14:46:56 ----D---- C:\Windows\Microsoft.NET
2011-03-11 14:44:19 ----D---- C:\Windows\system32\LogFiles
2011-03-09 21:26:15 ----A---- C:\Windows\system32\MRT.exe
2011-03-09 11:40:20 ----D---- C:\Program Files (x86)\Crawler
2011-03-09 11:37:00 ----D---- C:\Users\Vlastnik\AppData\Roaming\Media Player Classic
2011-03-09 09:49:59 ----D---- C:\Program Files (x86)\SystemRequirementsLab

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-05 16440]
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-12-21 141264]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-12-21 170640]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2010-12-21 125296]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-07-07 7195648]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-07-07 265728]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-07-06 2419176]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-06-23 344680]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-12-22 38456]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 injectDLL;injectDLL; \??\C:\Users\Vlastnik\Desktop\injectDLL.sys []
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-07-07 203264]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2011-01-12 810144]
R2 ICQ Service;ICQ Service; C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe [2010-09-06 247096]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-10-13 935208]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2011-03-11 66872]
R2 PnkBstrB;PnkBstrB; C:\Windows\syswow64\PnkBstrB.exe [2011-03-11 107832]
R2 TeamViewer6;TeamViewer 6; C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-01-25 2253176]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-02-09 136176]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2011-01-12 42360]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-02-09 182768]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-02-15 1255736]

-----------------EOF-----------------

[Rudy]

Nic nebezpečného nevidím. 15.3. jste dělal sken ComboFix. Mohu vidět log? Měl by být v C:\combofix.txt .

[LosSmartos]

Tady je...
http://www.uloz.to/8485025/combofix-txt

[Rudy]

Log vypadá OK. Vzhledem k tomu, že se jedná pouze o informativní hlášku, zkuste smazat cache prohlížeče. Nemusí ovšem hláška zmizet. Pak budete buď potřebovat osobní firewall, kde nastavíte danou IP mezi zakázané, nebo to zkrátka budete muset tolerovat.

[LosSmartos]

Dobře,skusím to... Taky bych se chtel zeptat čím je to,že se mi sekne PC např dnes... Chtěl jsme sem vložit ten log z combofix a dám CTRL+V a najednou se PC sekne nejde s myší hejbat nic nic se nedeje... Nebo jdu na Aukro a než se mi načte aukro PC se zase Sekne nevýte čím to je? Děkuji
P.S Nevadí že ten logz Combo fix je trošku starší?

[Rudy]

Co jste instaloval těsně před tím, než se problém objevil? Bylo to ještě před tím, než jste provedl sken CF?

[LosSmartos]

Nějaké hry... Např. GTA IV a 4Story Nic více nevím... GTA IV už v PC nemám...
P.S Již dříve jsem měl s PC problém: dyž jsme ho panul sekal se po kousíčkách... Např něco nabýhalo tak se to otočilo seklo a sekalos e to jakov intervalech i při zapínání mám windows 7 a na začátku když jsou ty barvičky tak se sekaly hejbly se sekly hejbly se sekli. Potom jsem tento problém nějakou dobu neběl ale dnes se to opět stalo.

[Rudy]

....mám windows 7 a na začátku když jsou ty barvičky tak se sekaly hejbly se sekly hejbly se sekli....

Tomuhle za mák nerozumím. Je docela možné, že je poškozen systém, případně se také může jednat o chbu hw.

[LosSmartos]

Moc se to nestává... Bejvá to třeba jednou za měsíc ale pak to jede zase v pohodě...

[Rudy]

Moc se to nestává... Bejvá to třeba jednou za měsíc ale pak to jede zase v pohodě...

Něco mu vadí. Abyste zjistil co, musel byste odinstalovávat jednotlivé programy a zkoušet. je to hledání jehly v kupce sena.

[LosSmartos]

Myslíte že by ten problém vyřešil IT odborník?
Popř.kolik by to stálo.

[Rudy]

Myslíte že by ten problém vyřešil IT odborník?
Popř.kolik by to stálo.

I ten by musel odinstalovávat programy (pokud by ovšem neudělal radikální řez a nepřeinstaloval by celé PC). I potom by ještě zůstala možnost, že problém dělá nějaký HW. Pokud jste poslední dobou instaloval pouze hry, bude to možná v nich. V tomhle by vám spíš poradili na některém herním foru. Na tohle tady nejsme odborníci.

[LosSmartos]

Hry můžu určitě odinstalovat... Ale co bych mohl Mýt s HardWare?
Počítač mám dobrý:
procesor AMD Athlon II QuadCore X4 640 3.0GHz, 2MB, socket AM3, 95W, BOX
systém WINDOWS 7 Home Premium 64.bit
zákl.deska MSI 770-C45, s.AM3, AMD770,4DDRIII,6xSATAII,3PCI,GLAN,ATX
pamět Patriot RAM DDR3 4GB (2x2GB) SL PC3-10666 1333MHz CL9, chladič
grafická karta Sapphire Radeon HD 5570 1GB DDR3 PCIE DVI-I HDMI

A při spuštění PC nemám nic jiného než Antivirus a Miniaplikace na ploše a ovladače zvuků.

Muj pc.png (53.17 KiB) Zobrazeno 914 x

Edit:Nyní jsem brouzda po internetu... Najel jsem na stránku http://www.alienware.com/ a najednou se mi zasekl PC nešlo s ním nic dělat.Myš se nedala vládat PC byl zaseklý...
P.S Počítač se často zasekává když si chci přehrát video např.na youtube.com