VIRY.CZ

Zdravím prosím o radu zase se mi nějak spomalil PC všechno je spomaleny všechno se mi seka mam hrozně vytíženej CPU
VIZ Skreen pravdě podobně je tam nějakej Vir. Nejsem si jistej jestli to je virem? pokud ano tak prosím a pomoc.





Logfile of random's system information tool 1.08 (written by random/random)
Run by Lukas at 2010-08-15 16:48:24
Microsoft Windows 7 Ultimate
System drive C: has 4 GB (23%) free of 19 GB
Total RAM: 1783 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 4:48:56 PM, on 8/15/2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Lukas\Desktop\RSIT.exe
C:\Program Files\trend micro\Lukas.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O10 - Unknown file in Winsock LSP: c:\windows\system32\hmipcore.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\hmipcore.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\hmipcore.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\hmipcore.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\hmipcore.dll
O16 - DPF: {E55FD215-A32E-43FE-A777-A7E8F165F560} (Flatcast Viewer 5.2) - http://92.51.137.94/objects/NpFv522.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: FSPro Filter Service (fsproflt) - FSPro Labs - C:\Windows\system32\fsproflt.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HideMyIpSRV - HideMyIP - C:\Program Files\Hide My IP\HideMyIpSrv.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

--
End of file - 3557 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2010-07-24 341600]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2010-07-24 202256]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2010-04-16 3872080]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FixCamera]
C:\Windows\FixCamera.exe [2007-07-11 20480]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mylbx]
C:\Program Files\My Lockbox\mylbx.exe [2010-05-24 1614048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\snpstd3]
C:\Windows\vsnpstd3.exe [2007-05-10 835584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2010-07-24 202256]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tsnpstd3]
C:\Windows\tsnpstd3.exe [2007-04-21 270336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UnlockerAssistant]
C:\Program Files\Unlocker\UnlockerAssistant.exe [2008-05-01 15872]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\FlashFXP\FlashFXP.exe"="C:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\Program Files\FlashFXP\FlashFXP.exe"="C:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3"

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-11-08 03:21:18 ----D---- C:\Windows\SoftwareDistribution
2010-11-08 03:19:11 ----D---- C:\Windows\Prefetch
2010-11-08 03:18:08 ----ASH---- C:\pagefile.sys
2010-11-08 03:18:07 ----SHD---- C:\System Volume Information
2010-11-08 03:18:07 ----ASH---- C:\hiberfil.sys
2010-11-08 03:17:36 ----D---- C:\Windows\Panther
2010-08-15 16:41:59 ----D---- C:\rsit
2010-08-15 12:58:41 ----D---- C:\32788R22FWJFW
2010-08-02 14:45:22 ----A---- C:\Windows\system32\shell32.dll
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\zh-TW
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\zh-CN
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\tr-TR
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\th-TH
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\sv-SE
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\ru-RU
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\ro-RO
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\pt-PT
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\pt-BR
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\pl-PL
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\nl-NL
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\nb-NO
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\ko-KR
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\ja-JP
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\it-IT
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\hu-HU
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\he-IL
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\fr-FR
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\fi-FI
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\es-ES
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\el-GR
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\de-DE
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\da-DK
2010-07-27 21:02:05 ----D---- C:\Windows\system32\drivers\ar-SA
2010-07-27 21:02:05 ----D---- C:\Program Files\Windows Virtual PC
2010-07-27 20:48:26 ----A---- C:\Windows\system32\vpchbuspipe.dll
2010-07-27 20:48:16 ----A---- C:\Windows\system32\drivers\vpcusb.sys
2010-07-27 20:48:16 ----A---- C:\Windows\system32\drivers\vpchbus.sys
2010-07-27 20:48:14 ----A---- C:\Windows\system32\drivers\vpcvmm.sys
2010-07-27 20:48:14 ----A---- C:\Windows\system32\drivers\vpcnfltr.sys
2010-07-27 20:48:11 ----A---- C:\Windows\system32\VPCWizard.exe
2010-07-27 20:48:11 ----A---- C:\Windows\system32\VPCSettings.exe
2010-07-27 20:48:11 ----A---- C:\Windows\system32\VMWindow.exe
2010-07-27 20:48:11 ----A---- C:\Windows\system32\VMCPropertyHandler.dll
2010-07-27 20:48:10 ----A---- C:\Windows\system32\vpc.exe
2010-07-27 20:48:10 ----A---- C:\Windows\system32\vmsal.exe
2010-07-24 21:29:38 ----D---- C:\Avenger
2010-07-24 21:29:38 ----A---- C:\avenger.txt
2010-07-24 08:10:25 ----A---- C:\Windows\system32\rmoc3260.dll
2010-07-24 08:10:13 ----A---- C:\Windows\system32\pndx5032.dll
2010-07-24 08:10:13 ----A---- C:\Windows\system32\pndx5016.dll
2010-07-24 08:09:56 ----D---- C:\Program Files\Common Files\xing shared
2010-07-24 08:09:13 ----A---- C:\Windows\system32\pncrt.dll
2010-07-24 08:09:12 ----D---- C:\Program Files\Real
2010-07-24 08:09:09 ----D---- C:\Program Files\Common Files\Real
2010-07-24 08:09:07 ----D---- C:\ProgramData\Real
2010-07-24 08:09:06 ----D---- C:\Users\Lukas\AppData\Roaming\Real
2010-07-24 05:51:19 ----D---- C:\Program Files\CCleaner

======List of files/folders modified in the last 1 months======

2010-11-08 03:19:07 ----D---- C:\Windows\CSC
2010-08-15 16:48:45 ----D---- C:\Windows\Temp
2010-08-15 16:48:35 ----D---- C:\Program Files\trend micro
2010-08-15 16:33:31 ----D---- C:\Users\Lukas\AppData\Roaming\Skype
2010-08-15 16:03:36 ----D---- C:\Users\Lukas\AppData\Roaming\skypePM
2010-08-15 10:17:33 ----D---- C:\Windows\System32
2010-08-15 10:17:33 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-08-15 10:17:32 ----D---- C:\Windows\inf
2010-08-14 23:59:09 ----D---- C:\Windows\system32\config
2010-08-07 20:17:49 ----D---- C:\historie
2010-08-03 10:41:05 ----D---- C:\Windows\winsxs
2010-08-02 14:44:00 ----D---- C:\Windows\system32\catroot
2010-07-30 14:36:44 ----D---- C:\Windows\Downloaded Program Files
2010-07-28 12:48:35 ----D---- C:\Windows\rescache
2010-07-27 22:43:40 ----D---- C:\Users\Lukas\AppData\Roaming\vlc
2010-07-27 21:07:00 ----D---- C:\Windows\system32\drivers
2010-07-27 21:02:15 ----D---- C:\Windows\system32\tr-TR
2010-07-27 21:02:15 ----D---- C:\Windows\system32\ja-JP
2010-07-27 21:02:15 ----D---- C:\Windows\system32\it-IT
2010-07-27 21:02:15 ----D---- C:\Windows\system32\fr-FR
2010-07-27 21:02:15 ----D---- C:\Windows\system32\el-GR
2010-07-27 21:02:15 ----D---- C:\Windows\system32\de-DE
2010-07-27 21:02:14 ----D---- C:\Windows\system32\zh-TW
2010-07-27 21:02:14 ----D---- C:\Windows\system32\ro-RO
2010-07-27 21:02:14 ----D---- C:\Windows\system32\pt-PT
2010-07-27 21:02:14 ----D---- C:\Windows\system32\pt-BR
2010-07-27 21:02:14 ----D---- C:\Windows\system32\nl-NL
2010-07-27 21:02:14 ----D---- C:\Windows\system32\nb-NO
2010-07-27 21:02:14 ----D---- C:\Windows\system32\fi-FI
2010-07-27 21:02:14 ----D---- C:\Windows\system32\en-US
2010-07-27 21:02:14 ----D---- C:\Windows\system32\cs-CZ
2010-07-27 21:02:13 ----D---- C:\Windows\system32\drivers\en-US
2010-07-27 21:02:13 ----D---- C:\Windows\system32\drivers\cs-CZ
2010-07-27 21:02:12 ----D---- C:\Windows\system32\pl-PL
2010-07-27 21:02:12 ----D---- C:\Windows\system32\ar-SA
2010-07-27 21:02:11 ----D---- C:\Windows\system32\ko-KR
2010-07-27 21:02:10 ----D---- C:\Windows\system32\th-TH
2010-07-27 21:02:10 ----D---- C:\Windows\system32\sv-SE
2010-07-27 21:02:10 ----D---- C:\Windows\system32\hu-HU
2010-07-27 21:02:10 ----D---- C:\Windows\system32\he-IL
2010-07-27 21:02:10 ----D---- C:\Windows\system32\da-DK
2010-07-27 21:02:09 ----D---- C:\Windows\system32\zh-CN
2010-07-27 21:02:09 ----D---- C:\Windows\system32\ru-RU
2010-07-27 21:02:09 ----D---- C:\Windows\system32\es-ES
2010-07-27 21:02:05 ----RD---- C:\Program Files
2010-07-27 21:02:05 ----D---- C:\Windows\system32\DriverStore
2010-07-27 20:50:17 ----D---- C:\Windows\system32\catroot2
2010-07-27 19:34:37 ----D---- C:\Windows\Logs
2010-07-27 10:29:03 ----D---- C:\Windows\system32\NDF
2010-07-24 21:52:56 ----D---- C:\Program Files\Mozilla Firefox
2010-07-24 08:11:10 ----D---- C:\Windows\system32\Tasks
2010-07-24 08:10:09 ----SHD---- C:\Windows\Installer
2010-07-24 08:09:56 ----D---- C:\Program Files\Common Files
2010-07-24 08:09:16 ----D---- C:\Program Files\Internet Explorer
2010-07-24 08:09:14 ----A---- C:\Windows\system32\msvcr71.dll
2010-07-24 08:09:14 ----A---- C:\Windows\system32\msvcp71.dll
2010-07-24 08:09:07 ----HD---- C:\ProgramData
2010-07-21 23:25:56 ----D---- C:\Program Files\Hard Disk Sentinel
2010-07-20 09:57:24 ----SD---- C:\ProgramData\Microsoft
2010-07-16 20:58:46 ----D---- C:\Windows\system32\wfp
2010-07-16 20:58:41 ----D---- C:\Windows\system32\wbem
2010-07-16 20:57:42 ----D---- C:\Users\Lukas\AppData\Roaming\GHISLER
2010-07-16 20:57:25 ----D---- C:\Program Files\Windows Live
2010-07-16 20:57:17 ----D---- C:\Windows\registration
2010-07-16 20:56:53 ----RSD---- C:\Windows\assembly
2010-07-16 20:36:31 ----D---- C:\Windows\debug
2010-07-16 19:59:22 ----D---- C:\Program Files\Common Files\microsoft shared
2010-07-16 10:33:06 ----D---- C:\Windows\system32\appmgmt

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdxata;amdxata; C:\Windows\system32\DRIVERS\amdxata.sys [2009-07-13 23616]
R0 CNG;CNG; C:\Windows\System32\Drivers\cng.sys [2009-07-13 369568]
R0 FSProFilter;FSPro File Filter; C:\Windows\System32\Drivers\FSPFltd.sys [2008-06-05 43792]
R0 fvevol;@%SystemRoot%\system32\drivers\fvevol.sys,-100; C:\Windows\System32\DRIVERS\fvevol.sys [2009-09-25 194488]
R0 hwpolicy;@%systemroot%\system32\drivers\hwpolicy.sys,-101; C:\Windows\System32\drivers\hwpolicy.sys [2009-07-13 13904]
R0 KSecPkg;KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [2009-12-11 133720]
R0 pcw;Performance Counters for Windows Driver; C:\Windows\System32\drivers\pcw.sys [2009-07-13 43088]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-13 173648]
R0 storflt;@%SystemRoot%\system32\vmstorfltres.dll,-1000; C:\Windows\system32\DRIVERS\vmstorfl.sys [2009-07-13 40896]
R0 vdrvroot;Microsoft Virtual Drive Enumerator Driver; C:\Windows\system32\DRIVERS\vdrvroot.sys [2009-07-13 32832]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2010-03-01 124784]
R1 discache;@%systemroot%\system32\drivers\discache.sys,-102; C:\Windows\System32\drivers\discache.sys [2009-07-13 32256]
R1 RDPREFMP;@%systemroot%\system32\drivers\RdpRefMp.sys,-101; C:\Windows\system32\drivers\rdprefmp.sys [2009-07-13 7168]
R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R1 vpcnfltr;Virtual PC Network Filter Driver; C:\Windows\system32\DRIVERS\vpcnfltr.sys [2009-09-22 55040]
R1 vpcvmm;@%SystemRoot%\system32\drivers\vpcvmm.sys,-100; C:\Windows\system32\drivers\vpcvmm.sys [2009-09-22 294912]
R1 WfpLwf;WFP Lightweight Filter; C:\Windows\system32\DRIVERS\wfplwf.sys [2009-07-13 9728]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2010-02-16 60936]
R3 CompositeBus;Composite Bus Enumerator Driver; C:\Windows\system32\DRIVERS\CompositeBus.sys [2009-07-13 31232]
R3 es1969;ESS ES1946_1938 Audio Driver (WDM); C:\Windows\system32\drivers\ES1969.sys [2007-10-07 96896]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2010-04-29 20952]
R3 RasAgileVpn;WAN Miniport (IKEv2); C:\Windows\system32\DRIVERS\AgileVpn.sys [2009-07-13 49152]
R3 rdpbus;Remote Desktop Device Redirector Bus Driver; C:\Windows\system32\DRIVERS\rdpbus.sys [2009-07-13 18944]
R3 vpcbus;Virtual PC Host Bus Service; C:\Windows\system32\DRIVERS\vpchbus.sys [2009-09-22 165376]
R3 vpcusb;USB Virtualization Connector Service; C:\Windows\system32\DRIVERS\vpcusb.sys [2009-09-22 78336]
R3 WudfPf;User Mode Driver Frameworks Platform Driver; C:\Windows\system32\drivers\WudfPf.sys [2009-07-13 92672]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2009-07-13 132224]
S2 PfModNT;PfModNT; \??\C:\Windows\system32\PfModNT.sys []
S3 1394ohci;1394 OHCI Compliant Host Controller; C:\Windows\system32\DRIVERS\1394ohci.sys [2009-07-13 163328]
S3 AcpiPmi;ACPI Power Meter Driver; C:\Windows\system32\DRIVERS\acpipmi.sys [2009-07-13 9728]
S3 AmdPPM;AMD Processor Driver; C:\Windows\system32\DRIVERS\amdppm.sys [2009-07-13 52736]
S3 amdsata;amdsata; C:\Windows\system32\DRIVERS\amdsata.sys [2009-07-13 79952]
S3 amdsbs;amdsbs; C:\Windows\system32\DRIVERS\amdsbs.sys [2009-07-13 159312]
S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; C:\Windows\system32\drivers\appid.sys [2009-07-13 50176]
S3 b06bdrv;Broadcom NetXtreme II VBD; C:\Windows\system32\DRIVERS\bxvbdx.sys [2009-07-13 430080]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 drmkaud;Microsoft Trusted Audio Drivers; C:\Windows\system32\drivers\drmkaud.sys [2009-07-13 5120]
S3 ebdrv;Broadcom NetXtreme II 10 GigE VBD; C:\Windows\system32\DRIVERS\evbdx.sys [2009-07-13 3100160]
S3 Envy24HFS;ICE Envy24 Family Audio Controller WDM; C:\Windows\system32\drivers\Envy24HF.sys [2007-03-15 627840]
S3 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\DRIVERS\errdev.sys [2009-07-13 7168]
S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; C:\Windows\System32\drivers\FsDepends.sys [2009-07-13 46160]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-04-28 54632]
S3 hcw85cir;Hauppauge Consumer Infrared Receiver; C:\Windows\system32\drivers\hcw85cir.sys [2009-07-13 26624]
S3 HidBatt;HID UPS Battery Driver; C:\Windows\system32\DRIVERS\HidBatt.sys [2009-07-13 21504]
S3 HpSAMD;HpSAMD; C:\Windows\system32\DRIVERS\HpSAMD.sys [2009-07-13 67152]
S3 LSI_SAS2;LSI_SAS2; C:\Windows\system32\DRIVERS\lsi_sas2.sys [2009-07-13 54864]
S3 MegaSR;MegaSR; C:\Windows\system32\DRIVERS\MegaSR.sys [2009-07-13 235584]
S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; C:\Windows\System32\drivers\mshidkmdf.sys [2009-07-13 4096]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2009-07-13 8320]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2009-07-13 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2009-07-13 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2009-07-13 6144]
S3 MTConfig;Microsoft Input Configuration Driver; C:\Windows\system32\DRIVERS\MTConfig.sys [2009-07-13 12288]
S3 NdisCap;NDIS Capture LightWeight Filter; C:\Windows\system32\DRIVERS\ndiscap.sys [2009-07-13 27136]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-13 5632]
S3 sbpci;SB PCI Family Audio Driver (WDM); C:\Windows\system32\drivers\sbpci.sys [2002-10-22 668160]
S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; C:\Windows\System32\DRIVERS\scfilter.sys [2009-07-13 26624]
S3 smwdm;smwdm; C:\Windows\system32\drivers\smwdm.sys [2005-03-28 220992]
S3 SNPSTD3;USB PC Camera (SNPSTD3); C:\Windows\system32\DRIVERS\snpstd3.sys [2008-03-07 10423680]
S3 stexstor;stexstor; C:\Windows\system32\DRIVERS\stexstor.sys [2009-07-13 21072]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-13 28224]
S3 UmPass;Microsoft UMPass Driver; C:\Windows\system32\DRIVERS\umpass.sys [2009-07-13 8192]
S3 vhdmp;vhdmp; C:\Windows\system32\DRIVERS\vhdmp.sys [2009-07-13 159824]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-13 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-13 17920]
S3 vwifibus;@%SystemRoot%\System32\drivers\vwifibus.sys,-257; C:\Windows\System32\drivers\vwifibus.sys [2009-07-13 19968]
S3 WIMMount;WIMMount; C:\Windows\system32\drivers\wimmount.sys [2009-07-13 19008]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2010-02-24 135336]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2010-04-01 267432]
R2 fsproflt;FSPro Filter Service; C:\Windows\system32\fsproflt.exe [2010-01-06 142648]
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\Windows\system32\svchost.exe [2009-07-13 20992]
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\Windows\system32\svchost.exe [2009-07-13 20992]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-05-14 249136]
R3 HideMyIpSRV;HideMyIpSRV; C:\Program Files\Hide My IP\HideMyIpSrv.exe [2010-06-07 2941248]
R3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-13 20992]
R3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-13 20992]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2010-04-29 304464]
S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\Windows\system32\sppsvc.exe [2009-07-13 3179520]
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\Windows\system32\svchost.exe [2009-07-13 20992]
S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; C:\Windows\system32\svchost.exe [2009-07-13 20992]
S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-13 20992]
S3 bthserv;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2009-07-13 20992]
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\Windows\system32\svchost.exe [2009-07-13 20992]
S3 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\Windows\System32\lsass.exe [2009-07-13 22528]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2009-07-13 20992]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-04-28 704872]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-12-22 136120]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-13 20992]
S3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; C:\Windows\system32\svchost.exe [2009-07-13 20992]
S3 sppuinotify;@%SystemRoot%\system32\sppuinotify.dll,-103; C:\Windows\system32\svchost.exe [2009-07-13 20992]
S3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; C:\Windows\system32\lsass.exe [2009-07-13 22528]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-05-12 1343400]
S3 WbioSrvc;@%systemroot%\system32\wbiosrvc.dll,-100; C:\Windows\system32\svchost.exe [2009-07-13 20992]
S3 WwanSvc;@%SystemRoot%\System32\wwansvc.dll,-257; C:\Windows\system32\svchost.exe [2009-07-13 20992]

už je to asi dobry Fixnul sem legistry pres hijack sestrelil Explorer.exe nahodil znova a zda se že to funguje

Dobrý večer
Pokud ještě chcete, at na to mrknu, tak mi sem vložte
C:\avenger.txt

Logfile of The Avenger Version 2.0, (c) by Swandog46
http://swandog46.geekstogo.com

Platform: Windows Vista

*******************

Script file opened successfully.
Script file read successfully.

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

Rootkit scan active.
No rootkits found!


Completed script processing.

*******************

Finished! Terminate.


Tohle

Ano, co jste s tím zkoušel?
A spouštěl jste i combofix?

Budu tu večer, pořádně na to kouknu

Ano combofix sem spouštěl, ale nespustil se, ale už to nezlobí jinak log vypada v pohodě?

Log je ok, ale pro jistotu


Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

Kontrolu MBAM dělam pořad ted sem taky dělal hledalo to asi 1hod a nic čisteeeee tak asi to uzavřeme zatím díky
když tak se ještě ozvu

Dobře, není zač.
Hezký den