VIRY.CZ

Jo muzete, nic se nestane...

Má test trvat pouze 25 sekund? Po každém spuštění mi to ohlásí jeden suspicious, ponechám v nabídce skip a dyž dám continue, tak se test zastaví a mám tam zase položku Start Scan. Takto se to pořád opakuje. Log teda vypadá nějak takto .....


11:41:57.0195 2096 TDSS rootkit removing tool 2.6.23.0 Dec 13 2011 10:39:31
11:41:57.0367 2096 ============================================================
11:41:57.0367 2096 Current date / time: 2011/12/17 11:41:57.0367
11:41:57.0367 2096 SystemInfo:
11:41:57.0367 2096
11:41:57.0367 2096 OS Version: 6.0.6002 ServicePack: 2.0
11:41:57.0367 2096 Product type: Workstation
11:41:57.0367 2096 ComputerName: ADMIN-PC
11:41:57.0367 2096 UserName: admin
11:41:57.0367 2096 Windows directory: C:\Windows
11:41:57.0367 2096 System windows directory: C:\Windows
11:41:57.0367 2096 Processor architecture: Intel x86
11:41:57.0367 2096 Number of processors: 1
11:41:57.0367 2096 Page size: 0x1000
11:41:57.0367 2096 Boot type: Normal boot
11:41:57.0367 2096 ============================================================
11:41:57.0913 2096 Initialize success
11:42:03.0887 2592 ============================================================
11:42:03.0887 2592 Scan started
11:42:03.0887 2592 Mode: Manual;
11:42:03.0887 2592 ============================================================
11:42:04.0605 2592 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
11:42:04.0605 2592 ACPI - ok
11:42:04.0730 2592 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
11:42:04.0730 2592 adp94xx - ok
11:42:04.0855 2592 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
11:42:04.0855 2592 adpahci - ok
11:42:04.0933 2592 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
11:42:04.0933 2592 adpu160m - ok
11:42:05.0026 2592 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
11:42:05.0026 2592 adpu320 - ok
11:42:05.0167 2592 AFD (a201207363aa900abf1a388468688570) C:\Windows\system32\drivers\afd.sys
11:42:05.0167 2592 AFD - ok
11:42:05.0198 2592 agp440 - ok
11:42:05.0245 2592 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
11:42:05.0245 2592 aic78xx - ok
11:42:05.0338 2592 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
11:42:05.0338 2592 aliide - ok
11:42:05.0416 2592 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
11:42:05.0416 2592 amdagp - ok
11:42:05.0479 2592 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
11:42:05.0479 2592 amdide - ok
11:42:05.0572 2592 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
11:42:05.0572 2592 AmdK7 - ok
11:42:05.0650 2592 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
11:42:05.0650 2592 AmdK8 - ok
11:42:05.0713 2592 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
11:42:05.0713 2592 arc - ok
11:42:05.0806 2592 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
11:42:05.0822 2592 arcsas - ok
11:42:05.0869 2592 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
11:42:05.0884 2592 AsyncMac - ok
11:42:05.0978 2592 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
11:42:05.0978 2592 atapi - ok
11:42:06.0087 2592 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
11:42:06.0087 2592 Beep - ok
11:42:06.0134 2592 blbdrive - ok
11:42:06.0212 2592 bowser (74b442b2be1260b7588c136177ceac66) C:\Windows\system32\DRIVERS\bowser.sys
11:42:06.0227 2592 bowser - ok
11:42:06.0305 2592 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
11:42:06.0305 2592 BrFiltLo - ok
11:42:06.0352 2592 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
11:42:06.0352 2592 BrFiltUp - ok
11:42:06.0415 2592 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
11:42:06.0430 2592 Brserid - ok
11:42:06.0524 2592 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
11:42:06.0524 2592 BrSerWdm - ok
11:42:06.0586 2592 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
11:42:06.0602 2592 BrUsbMdm - ok
11:42:06.0680 2592 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
11:42:06.0680 2592 BrUsbSer - ok
11:42:06.0820 2592 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
11:42:06.0820 2592 BTHMODEM - ok
11:42:06.0945 2592 catchme - ok
11:42:07.0101 2592 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
11:42:07.0101 2592 cdfs - ok
11:42:07.0179 2592 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
11:42:07.0195 2592 cdrom - ok
11:42:07.0304 2592 CFcatchme - ok
11:42:07.0413 2592 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
11:42:07.0413 2592 circlass - ok
11:42:07.0491 2592 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
11:42:07.0491 2592 CLFS - ok
11:42:07.0600 2592 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
11:42:07.0600 2592 cmdide - ok
11:42:07.0647 2592 Compbatt (82b8c91d327cfecf76cb58716f7d4997) C:\Windows\system32\drivers\compbatt.sys
11:42:07.0663 2592 Compbatt - ok
11:42:07.0756 2592 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
11:42:07.0756 2592 crcdisk - ok
11:42:07.0819 2592 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
11:42:07.0819 2592 Crusoe - ok
11:42:07.0928 2592 DfsC (218d8ae46c88e82014f5d73d0236d9b2) C:\Windows\system32\Drivers\dfsc.sys
11:42:07.0928 2592 DfsC - ok
11:42:08.0021 2592 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
11:42:08.0021 2592 disk - ok
11:42:08.0177 2592 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
11:42:08.0177 2592 drmkaud - ok
11:42:08.0287 2592 DXGKrnl (fb85f7f69e9b109820409243f578cc4d) C:\Windows\System32\drivers\dxgkrnl.sys
11:42:08.0302 2592 DXGKrnl - ok
11:42:08.0380 2592 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
11:42:08.0380 2592 E1G60 - ok
11:42:08.0474 2592 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
11:42:08.0474 2592 Ecache - ok
11:42:08.0536 2592 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
11:42:08.0552 2592 elxstor - ok
11:42:08.0677 2592 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
11:42:08.0692 2592 exfat - ok
11:42:08.0786 2592 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
11:42:08.0786 2592 fastfat - ok
11:42:08.0817 2592 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
11:42:08.0833 2592 fdc - ok
11:42:08.0895 2592 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
11:42:08.0895 2592 FileInfo - ok
11:42:08.0957 2592 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
11:42:08.0957 2592 Filetrace - ok
11:42:09.0004 2592 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
11:42:09.0004 2592 flpydisk - ok
11:42:09.0113 2592 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
11:42:09.0113 2592 FltMgr - ok
11:42:09.0191 2592 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
11:42:09.0191 2592 Fs_Rec - ok
11:42:09.0238 2592 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
11:42:09.0238 2592 gagp30kx - ok
11:42:09.0301 2592 hamachi (7929a161f9951d173ca9900fe7067391) C:\Windows\system32\DRIVERS\hamachi.sys
11:42:09.0301 2592 hamachi - ok
11:42:09.0347 2592 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
11:42:09.0347 2592 HdAudAddService - ok
11:42:09.0410 2592 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
11:42:09.0425 2592 HDAudBus - ok
11:42:09.0472 2592 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
11:42:09.0472 2592 HidBth - ok
11:42:09.0519 2592 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
11:42:09.0519 2592 HidIr - ok
11:42:09.0613 2592 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
11:42:09.0613 2592 HidUsb - ok
11:42:09.0706 2592 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
11:42:09.0722 2592 HpCISSs - ok
11:42:09.0815 2592 HTTP (4d6eb87dcabfd66221822f49cfd79077) C:\Windows\system32\drivers\HTTP.sys
11:42:09.0831 2592 HTTP - ok
11:42:09.0909 2592 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
11:42:09.0909 2592 i2omp - ok
11:42:09.0987 2592 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
11:42:09.0987 2592 i8042prt - ok
11:42:10.0081 2592 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
11:42:10.0096 2592 iaStorV - ok
11:42:10.0159 2592 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
11:42:10.0159 2592 iirsp - ok
11:42:10.0237 2592 int15 - ok
11:42:10.0393 2592 IntcAzAudAddService (aef2fa29204056b81bc4cbf30260dee1) C:\Windows\system32\drivers\RTKVHDA.sys
11:42:10.0408 2592 IntcAzAudAddService - ok
11:42:10.0486 2592 intelide (97469037714070e45194ed318d636401) C:\Windows\system32\drivers\intelide.sys
11:42:10.0486 2592 intelide - ok
11:42:10.0564 2592 intelppm (ce44cc04262f28216dd4341e9e36a16f) C:\Windows\system32\DRIVERS\intelppm.sys
11:42:10.0564 2592 intelppm - ok
11:42:10.0658 2592 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:42:10.0658 2592 IpFilterDriver - ok
11:42:10.0705 2592 IpInIp - ok
11:42:10.0767 2592 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
11:42:10.0767 2592 IPMIDRV - ok
11:42:10.0845 2592 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
11:42:10.0861 2592 IPNAT - ok
11:42:10.0954 2592 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
11:42:10.0954 2592 IRENUM - ok
11:42:11.0048 2592 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
11:42:11.0048 2592 isapnp - ok
11:42:11.0141 2592 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
11:42:11.0141 2592 iScsiPrt - ok
11:42:11.0204 2592 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
11:42:11.0219 2592 iteatapi - ok
11:42:11.0266 2592 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
11:42:11.0266 2592 iteraid - ok
11:42:11.0329 2592 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
11:42:11.0329 2592 kbdclass - ok
11:42:11.0391 2592 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
11:42:11.0391 2592 kbdhid - ok
11:42:11.0453 2592 kl1 (ce3958f58547454884e97bda78cd7040) C:\Windows\system32\DRIVERS\kl1.sys
11:42:11.0453 2592 kl1 - ok
11:42:11.0563 2592 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
11:42:11.0578 2592 KSecDD - ok
11:42:11.0703 2592 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
11:42:11.0703 2592 lltdio - ok
11:42:11.0797 2592 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
11:42:11.0797 2592 LSI_FC - ok
11:42:11.0859 2592 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
11:42:11.0859 2592 LSI_SAS - ok
11:42:11.0921 2592 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
11:42:11.0921 2592 LSI_SCSI - ok
11:42:11.0984 2592 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
11:42:11.0984 2592 luafv - ok
11:42:12.0077 2592 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
11:42:12.0077 2592 megasas - ok
11:42:12.0155 2592 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
11:42:12.0155 2592 Modem - ok
11:42:12.0233 2592 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
11:42:12.0233 2592 monitor - ok
11:42:12.0311 2592 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
11:42:12.0311 2592 mouclass - ok
11:42:12.0374 2592 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
11:42:12.0374 2592 mouhid - ok
11:42:12.0467 2592 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
11:42:12.0467 2592 MountMgr - ok
11:42:12.0514 2592 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
11:42:12.0530 2592 mpio - ok
11:42:12.0608 2592 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
11:42:12.0608 2592 mpsdrv - ok
11:42:12.0701 2592 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
11:42:12.0701 2592 Mraid35x - ok
11:42:12.0811 2592 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
11:42:12.0811 2592 MRxDAV - ok
11:42:12.0904 2592 mrxsmb (66de1a2b389a1969ca1751b276108e45) C:\Windows\system32\DRIVERS\mrxsmb.sys
11:42:12.0904 2592 mrxsmb - ok
11:42:12.0951 2592 mrxsmb10 (346611d7523b520faa86b76753cc9874) C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:42:12.0967 2592 mrxsmb10 - ok
11:42:12.0998 2592 mrxsmb20 (c70c50d101b92b45c42ba11ea9fe6cd1) C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:42:13.0013 2592 mrxsmb20 - ok
11:42:13.0060 2592 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
11:42:13.0060 2592 msahci - ok
11:42:13.0138 2592 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
11:42:13.0138 2592 msdsm - ok
11:42:13.0201 2592 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
11:42:13.0201 2592 Msfs - ok
11:42:13.0232 2592 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
11:42:13.0232 2592 msisadrv - ok
11:42:13.0279 2592 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
11:42:13.0279 2592 MSKSSRV - ok
11:42:13.0325 2592 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
11:42:13.0325 2592 MSPCLOCK - ok
11:42:13.0357 2592 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
11:42:13.0357 2592 MSPQM - ok
11:42:13.0403 2592 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
11:42:13.0403 2592 MsRPC - ok
11:42:13.0481 2592 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
11:42:13.0481 2592 mssmbios - ok
11:42:13.0513 2592 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
11:42:13.0513 2592 MSTEE - ok
11:42:13.0637 2592 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
11:42:13.0637 2592 Mup - ok
11:42:13.0715 2592 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
11:42:13.0715 2592 NativeWifiP - ok
11:42:13.0809 2592 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
11:42:13.0809 2592 NDIS - ok
11:42:13.0871 2592 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
11:42:13.0871 2592 NdisTapi - ok
11:42:13.0934 2592 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
11:42:13.0934 2592 Ndisuio - ok
11:42:14.0121 2592 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
11:42:14.0121 2592 NdisWan - ok
11:42:14.0230 2592 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
11:42:14.0230 2592 NDProxy - ok
11:42:14.0308 2592 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
11:42:14.0308 2592 NetBIOS - ok
11:42:14.0402 2592 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
11:42:14.0402 2592 netbt - ok
11:42:14.0542 2592 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
11:42:14.0542 2592 nfrd960 - ok
11:42:14.0714 2592 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
11:42:14.0714 2592 Npfs - ok
11:42:14.0854 2592 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
11:42:14.0854 2592 nsiproxy - ok
11:42:14.0948 2592 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
11:42:14.0963 2592 Ntfs - ok
11:42:15.0041 2592 NTIDrvr - ok
11:42:15.0166 2592 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
11:42:15.0166 2592 ntrigdigi - ok
11:42:15.0307 2592 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
11:42:15.0307 2592 Null - ok
11:42:15.0743 2592 nvlddmkm (4152708c0c24e30dae7fa87d5afe1d7b) C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:42:15.0821 2592 nvlddmkm - ok
11:42:15.0931 2592 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
11:42:15.0931 2592 nvraid - ok
11:42:15.0977 2592 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
11:42:15.0977 2592 nvstor - ok
11:42:16.0024 2592 nvstor32 (dc5f166422beebf195e3e4bb8ab4ee22) C:\Windows\system32\drivers\nvstor32.sys
11:42:16.0024 2592 nvstor32 - ok
11:42:16.0071 2592 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
11:42:16.0071 2592 nv_agp - ok
11:42:16.0102 2592 NwlnkFlt - ok
11:42:16.0118 2592 NwlnkFwd - ok
11:42:16.0165 2592 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
11:42:16.0165 2592 ohci1394 - ok
11:42:16.0243 2592 Parport (8a79fdf04a73428597e2caf9d0d67850) C:\Windows\system32\DRIVERS\parport.sys
11:42:16.0243 2592 Parport - ok
11:42:16.0336 2592 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
11:42:16.0336 2592 partmgr - ok
11:42:16.0414 2592 Parvdm (6c580025c81caf3ae9e3617c22cad00e) C:\Windows\system32\DRIVERS\parvdm.sys
11:42:16.0414 2592 Parvdm - ok
11:42:16.0461 2592 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\Windows\system32\DRIVERS\pccsmcfd.sys
11:42:16.0461 2592 pccsmcfd - ok
11:42:16.0492 2592 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
11:42:16.0492 2592 pci - ok
11:42:16.0539 2592 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
11:42:16.0539 2592 pciide - ok
11:42:16.0586 2592 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
11:42:16.0601 2592 pcmcia - ok
11:42:16.0633 2592 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\Windows\system32\Drivers\pcouffin.sys
11:42:16.0633 2592 pcouffin - ok
11:42:16.0742 2592 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
11:42:16.0757 2592 PEAUTH - ok
11:42:16.0851 2592 Ph3xIB32 (9f2f541c52cd7a452e235e885f7d95de) C:\Windows\system32\DRIVERS\Ph3xIB32.sys
11:42:16.0867 2592 Ph3xIB32 - ok
11:42:17.0023 2592 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
11:42:17.0023 2592 PptpMiniport - ok
11:42:17.0116 2592 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
11:42:17.0132 2592 Processor - ok
11:42:17.0288 2592 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
11:42:17.0288 2592 PSched - ok
11:42:17.0413 2592 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
11:42:17.0428 2592 ql2300 - ok
11:42:17.0584 2592 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
11:42:17.0584 2592 ql40xx - ok
11:42:17.0709 2592 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
11:42:17.0709 2592 QWAVEdrv - ok
11:42:17.0818 2592 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
11:42:17.0818 2592 RasAcd - ok
11:42:17.0927 2592 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
11:42:17.0927 2592 Rasl2tp - ok
11:42:18.0021 2592 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
11:42:18.0037 2592 RasPppoe - ok
11:42:18.0130 2592 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
11:42:18.0130 2592 RasSstp - ok
11:42:18.0255 2592 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
11:42:18.0255 2592 rdbss - ok
11:42:18.0395 2592 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
11:42:18.0395 2592 RDPCDD - ok
11:42:18.0520 2592 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
11:42:18.0536 2592 rdpdr - ok
11:42:18.0692 2592 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
11:42:18.0692 2592 RDPENCDD - ok
11:42:18.0863 2592 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
11:42:18.0863 2592 RDPWD - ok
11:42:19.0082 2592 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
11:42:19.0082 2592 rspndr - ok
11:42:19.0191 2592 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
11:42:19.0207 2592 sbp2port - ok
11:42:19.0316 2592 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
11:42:19.0316 2592 secdrv - ok
11:42:19.0441 2592 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
11:42:19.0456 2592 Serenum - ok
11:42:19.0565 2592 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
11:42:19.0565 2592 Serial - ok
11:42:19.0643 2592 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
11:42:19.0643 2592 sermouse - ok
11:42:19.0862 2592 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
11:42:19.0862 2592 sffdisk - ok
11:42:19.0940 2592 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
11:42:19.0940 2592 sffp_mmc - ok
11:42:20.0065 2592 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
11:42:20.0080 2592 sffp_sd - ok
11:42:20.0158 2592 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
11:42:20.0158 2592 sfloppy - ok
11:42:20.0314 2592 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
11:42:20.0314 2592 sisagp - ok
11:42:20.0423 2592 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
11:42:20.0423 2592 SiSRaid2 - ok
11:42:20.0564 2592 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
11:42:20.0564 2592 SiSRaid4 - ok
11:42:20.0735 2592 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
11:42:20.0735 2592 Smb - ok
11:42:20.0891 2592 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
11:42:20.0891 2592 spldr - ok
11:42:21.0188 2592 sptd (cdddec541bc3c96f91ecb48759673505) C:\Windows\system32\Drivers\sptd.sys
11:42:21.0188 2592 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505
11:42:21.0188 2592 sptd ( LockedFile.Multi.Generic ) - warning
11:42:21.0188 2592 sptd - detected LockedFile.Multi.Generic (1)
11:42:21.0281 2592 srv (0debafcc0e3591fca34f077cab62f7f7) C:\Windows\system32\DRIVERS\srv.sys
11:42:21.0297 2592 srv - ok
11:42:21.0484 2592 srv2 (6b6f3658e0a58c6c50c5f7fbdf3df633) C:\Windows\system32\DRIVERS\srv2.sys
11:42:21.0484 2592 srv2 - ok
11:42:21.0609 2592 srvnet (0c5ab1892ae0fa504218db094bf6d041) C:\Windows\system32\DRIVERS\srvnet.sys
11:42:21.0625 2592 srvnet - ok
11:42:21.0734 2592 StarOpen - ok
11:42:21.0827 2592 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
11:42:21.0827 2592 swenum - ok
11:42:21.0921 2592 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
11:42:21.0921 2592 Symc8xx - ok
11:42:21.0968 2592 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
11:42:21.0983 2592 Sym_hi - ok
11:42:22.0046 2592 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
11:42:22.0046 2592 Sym_u3 - ok
11:42:22.0233 2592 Tcpip (cc9993701ac57f995554c696dda49c12) C:\Windows\system32\drivers\tcpip.sys
11:42:22.0249 2592 Tcpip - ok
11:42:22.0373 2592 Tcpip6 (cc9993701ac57f995554c696dda49c12) C:\Windows\system32\DRIVERS\tcpip.sys
11:42:22.0389 2592 Tcpip6 - ok
11:42:22.0467 2592 tcpipreg (d554dd10f655c9246b2d52f8aebe29b1) C:\Windows\system32\drivers\tcpipreg.sys
11:42:22.0467 2592 tcpipreg - ok
11:42:22.0514 2592 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
11:42:22.0514 2592 TDPIPE - ok
11:42:22.0592 2592 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
11:42:22.0592 2592 TDTCP - ok
11:42:22.0654 2592 tdx (27cde4095ab722dce6a17c4e7cfad046) C:\Windows\system32\DRIVERS\tdx.sys
11:42:22.0654 2592 tdx - ok
11:42:22.0701 2592 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
11:42:22.0701 2592 TermDD - ok
11:42:22.0841 2592 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
11:42:22.0841 2592 tssecsrv - ok
11:42:22.0904 2592 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
11:42:22.0904 2592 tunmp - ok
11:42:22.0982 2592 tunnel (119b8184e106baedc83fce5ddf3950da) C:\Windows\system32\DRIVERS\tunnel.sys
11:42:22.0982 2592 tunnel - ok
11:42:23.0044 2592 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
11:42:23.0044 2592 uagp35 - ok
11:42:23.0107 2592 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
11:42:23.0107 2592 udfs - ok
11:42:23.0263 2592 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
11:42:23.0263 2592 uliagpkx - ok
11:42:23.0356 2592 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
11:42:23.0372 2592 uliahci - ok
11:42:23.0419 2592 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
11:42:23.0419 2592 UlSata - ok
11:42:23.0497 2592 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
11:42:23.0497 2592 ulsata2 - ok
11:42:23.0637 2592 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
11:42:23.0637 2592 umbus - ok
11:42:23.0715 2592 upperdev - ok
11:42:23.0809 2592 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
11:42:23.0809 2592 usbccgp - ok
11:42:23.0902 2592 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
11:42:23.0902 2592 usbcir - ok
11:42:23.0980 2592 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
11:42:23.0980 2592 usbehci - ok
11:42:24.0074 2592 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
11:42:24.0089 2592 usbhub - ok
11:42:24.0167 2592 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
11:42:24.0167 2592 usbohci - ok
11:42:24.0245 2592 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
11:42:24.0245 2592 usbprint - ok
11:42:24.0339 2592 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:42:24.0339 2592 USBSTOR - ok
11:42:24.0386 2592 usbuhci (325dbbacb8a36af9988ccf40eac228cc) C:\Windows\system32\DRIVERS\usbuhci.sys
11:42:24.0386 2592 usbuhci - ok
11:42:24.0464 2592 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
11:42:24.0464 2592 vga - ok
11:42:24.0526 2592 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
11:42:24.0526 2592 VgaSave - ok
11:42:24.0573 2592 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
11:42:24.0573 2592 viaagp - ok
11:42:24.0620 2592 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
11:42:24.0620 2592 ViaC7 - ok
11:42:24.0667 2592 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
11:42:24.0667 2592 viaide - ok
11:42:24.0713 2592 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
11:42:24.0713 2592 volmgr - ok
11:42:24.0776 2592 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
11:42:24.0776 2592 volmgrx - ok
11:42:24.0916 2592 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
11:42:24.0916 2592 volsnap - ok
11:42:24.0979 2592 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
11:42:24.0979 2592 vsmraid - ok
11:42:25.0025 2592 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
11:42:25.0025 2592 WacomPen - ok
11:42:25.0088 2592 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
11:42:25.0088 2592 Wanarp - ok
11:42:25.0103 2592 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
11:42:25.0103 2592 Wanarpv6 - ok
11:42:25.0228 2592 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
11:42:25.0228 2592 Wd - ok
11:42:25.0291 2592 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
11:42:25.0306 2592 Wdf01000 - ok
11:42:25.0603 2592 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys
11:42:25.0603 2592 WmiAcpi - ok
11:42:25.0727 2592 WpdUsb (0cec23084b51b8288099eb710224e955) C:\Windows\system32\DRIVERS\wpdusb.sys
11:42:25.0727 2592 WpdUsb - ok
11:42:25.0805 2592 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
11:42:25.0805 2592 ws2ifsl - ok
11:42:25.0961 2592 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
11:42:25.0961 2592 WUDFRd - ok
11:42:26.0102 2592 yukonwlh (bfab14d10543963dbda7128adabfa51d) C:\Windows\system32\DRIVERS\yk60x86.sys
11:42:26.0102 2592 yukonwlh - ok
11:42:26.0180 2592 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
11:42:26.0383 2592 \Device\Harddisk0\DR0 - ok
11:42:26.0398 2592 Boot (0x1200) (fb12cd3aa4ef5aa87cf419b377fb9502) \Device\Harddisk0\DR0\Partition0
11:42:26.0398 2592 \Device\Harddisk0\DR0\Partition0 - ok
11:42:26.0429 2592 Boot (0x1200) (6d832221f676c28d2bd207ccff384d37) \Device\Harddisk0\DR0\Partition1
11:42:26.0429 2592 \Device\Harddisk0\DR0\Partition1 - ok
11:42:26.0429 2592 ============================================================
11:42:26.0429 2592 Scan finished
11:42:26.0429 2592 ============================================================
11:42:26.0461 3356 Detected object count: 1
11:42:26.0461 3356 Actual detected object count: 1
11:42:29.0721 3356 sptd ( LockedFile.Multi.Generic ) - skipped by user
11:42:29.0721 3356 sptd ( LockedFile.Multi.Generic ) - User select action: Skip

Log z TDSS je OK

Pokud nemate, tak presunte Combofix na plochu

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  KillAll::
  
  File::
  C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-1.xml
  C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-10.xml
  C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-2.xml
  C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-3.xml
  C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-4.xml
  C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-5.xml
  C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-6.xml
  C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-7.xml
  C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-8.xml
  C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-9.xml
  C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin.xml
  c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2079160467-2419755917-1975986866-1000Core.job
  c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2079160467-2419755917-1975986866-1000UA.job
  
  Folder::
  C:\Program Files\Zrychleni Pocitace
  C:\Users\admin\AppData\Roaming\1C704
  c:\users\admin\AppData\Local\e3b8c0b2
  c:\program files\04C02
  
  Registry::
  [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
  "ehTray.exe"=-
  "DAEMON Tools Lite"=-
  "Google Update"=-
  "PCSpeedUp"=-
  "WMPNSCFG"=-
  [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
  "DisableMonitoring"=dword:00000000
  
  Driver::
  gupdate
  gupdatem
  
  DDS::
  uStart Page = hxxp://www.centrum.cz/#utm_source=icq&u ... um=centrum
  uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
  uInternet Settings,ProxyOverride = plimus.com,www.plimus.com,regnow.com,www.regnow.com,
  
  Firefox::
  FF - ProfilePath - c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\
  FF - prefs.js: browser.search.defaulturl - hxxp://search.icq.com/search/afe_result ... r=1.2.9&q=
  FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_result ... r=1.2.9&q=
  
  AtJob::
  
  ClearJavaCache::
  
  Replicator::
  
  Reboot::

• Ulozte vytvoreny TXT jako CFScript.txt
• Pretahnete vytvoreny CFScript.txt nad Combofix a pustte (viz obrazek nize)
  
• Po aplikaci skriptu (a pripadnem restartu) na Vas vypadne log, jeho obsah sem vlozte

Muze se stat, ze po aplikaci skriptu nenabehnou windows, v tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci

OK. V kolik budeš mít prosím večer čas? Ten CF dodělám pozdějc, teď mi to už nevyjde ....

Díky.

Bohuzel cas nedokazu urcit Ale log sem mrsknete potom, ja na nej mrknu a napisu dalsi postup

Takže, se scriptem sem to udělal. Opět se po použití CF nenačetla plocha, dokonce ani přes F8 a "Poslední známá funkční konfigurace".

Zapl sem teda nouzový, kde se mi udělal log ....



ComboFix 11-12-16.03 - admin 17.12.2011 13:09:12.10.1 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.767.131 [GMT 1:00]
Spuštěný z: c:\users\admin\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\admin\Desktop\CFScript.txt
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-1.xml"
"c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-10.xml"
"c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-2.xml"
"c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-3.xml"
"c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-4.xml"
"c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-5.xml"
"c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-6.xml"
"c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-7.xml"
"c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-8.xml"
"c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-9.xml"
"c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin.xml"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2079160467-2419755917-1975986866-1000Core.job"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2079160467-2419755917-1975986866-1000UA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\04C02
c:\program files\04C02\lvvm.exe
c:\program files\Zrychleni Pocitace
c:\program files\Zrychleni Pocitace\PCSpeedUp.lnk
c:\program files\Zrychleni Pocitace\PCSUService.log
c:\users\admin\AppData\Local\e3b8c0b2
c:\users\admin\AppData\Local\e3b8c0b2\@
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-1.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-10.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-2.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-3.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-4.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-5.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-6.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-7.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-8.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin-9.xml
c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\searchplugins\icqplugin.xml
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2079160467-2419755917-1975986866-1000Core.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2079160467-2419755917-1975986866-1000UA.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_GUPDATE
-------\Legacy_GUPDATEM
-------\Service_gupdate
-------\Service_gupdatem
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-11-17 do 2011-12-17 )))))))))))))))))))))))))))))))
.
.
2011-12-17 12:17 . 2011-12-17 12:17 -------- d-----w- c:\users\QIP Infium\AppData\Local\temp
2011-12-17 12:17 . 2011-12-17 12:17 -------- d-----w- c:\users\Public\AppData\Local\temp
2011-12-17 12:17 . 2011-12-17 12:17 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-12-17 12:17 . 2011-12-17 12:17 -------- d-----w- c:\users\admin\AppData\Local\temp
2011-12-16 14:30 . 2011-12-16 14:31 -------- d-----w- C:\rsit
2011-11-27 07:52 . 2011-12-05 06:40 -------- d-----w- c:\programdata\NVIDIA
2011-11-27 07:52 . 2011-11-27 07:52 -------- d-----w- c:\users\UpdatusUser
2011-11-27 07:52 . 2011-08-03 11:50 66664 ----a-w- c:\windows\system32\nvshext.dll
2011-11-27 07:52 . 2011-08-03 11:50 599144 ----a-w- c:\windows\system32\nvvsvc.exe
2011-11-27 07:52 . 2011-08-03 11:50 3730024 ----a-w- c:\windows\system32\nvcpl.dll
2011-11-27 07:52 . 2011-08-03 11:50 2560616 ----a-w- c:\windows\system32\nvsvcr.dll
2011-11-27 07:52 . 2011-08-03 11:50 2558568 ----a-w- c:\windows\system32\nvsvc.dll
2011-11-27 07:52 . 2011-08-03 11:50 111208 ----a-w- c:\windows\system32\nvmctray.dll
2011-11-27 07:51 . 2011-08-03 11:50 600680 ----a-w- c:\windows\system32\easyupdatusapiu.dll
2011-11-27 07:51 . 2011-11-27 07:51 -------- d-----w- c:\programdata\NVIDIA Corporation
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-19 04:33 . 2009-01-21 20:07 181064 ----a-w- c:\windows\PSEXESVC.EXE
2011-10-18 01:28 . 2011-11-17 00:54 6668624 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{CEA67EDE-A3BB-4E61-8B95-DF89600684A9}\mpengine.dll
2011-11-05 07:07 . 2011-03-27 08:17 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="RtHDVCpl.exe" [2007-02-15 4390912]
"eDSMSNfix"="c:\acer\Empowering Technology\eDSMSNfix.exe" [2007-02-08 13312]
"WarReg_PopUp"="c:\acer\WR_PopUp\WarReg_PopUp.exe" [2006-11-05 57344]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Empowering Technology Launcher.lnk - c:\acer\Empowering Technology\eAPLauncher.exe [2007-5-3 528384]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer1"=wdmaud.drv
.
R3 CFcatchme;CFcatchme;c:\users\admin\AppData\Local\Temp\CFcatchme.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - ECACHE
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: Interfaces\{98F178C4-DBEC-4468-A176-2C093E8879F4}: NameServer = 192.168.14.1,80.78.144.6
FF - ProfilePath - c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\eib58ae6.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.idnes.cz/
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-12-17 13:27
Windows 6.0.6002 Service Pack 2 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\helppane.exe
c:\program files\Windows Media Player\wmpnscfg.exe
.
**************************************************************************
.
Celkový čas: 2011-12-17 13:29:33 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-12-17 12:29
ComboFix2.txt 2011-12-17 08:08
.
Před spuštěním: Volných bajtů: 82 163 372 032
Po spuštění: Volných bajtů: 82 598 039 552
.
- - End Of File - - 39BD341DE6784A76E62112FE03C1F6DD

Me to prijde ze nam ZA naboril system jako celek Mate instalacni dvd aby se dala udelat opravna instalace, ta nesmaze data jen prepise systemove soubory cistymi a systemovy registr

Instalační DVD bohužel nemám.
Jinak teda internet mi začal fungovat a teď mám i rychlejší start počítače, kvůli těmto problémům sem vlastně založil toto vlákno.

Nebo spíš takto .... já sem počítač před čtyřmi lety kupoval v jednom elektru, kde dělá i známý. DVD sem k systému nedostal, ale na prodejně ho mají. Byl bych možná schopen ho sehnat, pokud ho tam teda ještě budou mít. Zní to divně, ale mít ho tam nemusí, protože měli ke každému PC konkrétní DVD s již nainstalovanými ovladači a programy .....

Odinstalujte Combofix

• Prejmenujte ComboFix na Uninstall
• Spustte jej
• Tohle smaze Combofix a jeho slozky

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

Zkuste udelat jeste MBAM - navod mam v podpise

zdravím, CF smazán.

U MBAM postačí rychlá kontrolu nebo mám zvolit úplnou?

Díky.

Dejte rychlou a pak udelejte i uplnou

Výsledek úplné koktroly dodám dnes večer nebo zítra .....


Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Verze databáze: 8397

Windows 6.0.6002 Service Pack 2
Internet Explorer 7.0.6002.18005

19.12.2011 16:28:00
mbam-log-2011-12-19 (16-27-59).txt

Typ: Rychlá kontrola
Kontrolované objekty: 179610
Uplynulý čas: 4 minut, 37 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

Oki, pockam si tedy jeste i na druhy log

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Verze databáze: 8397

Windows 6.0.6002 Service Pack 2
Internet Explorer 7.0.6002.18005

19.12.2011 17:16:50
mbam-log-2011-12-19 (17-16-50).txt

Typ: Úplná kontrola (C:\|)
Kontrolované objekty: 287533
Uplynulý čas: 44 minut, 5 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

Jeste muzete nekde zkusit od kamarada pujcit dvd se stejnou verzi W7 jako mate a z nej provest opravnou instalaci