Prosím si o kontrolu logu

Zpráva

Thooty · #1 Příspěvek od **Thooty** » 29 zář 2011 16:42

Dobrý den,
Chtěl bych poprosit o kontrolu logu, nefungují mi některé webové stránky (konkrétně joj.tv, huste.tv , csmatalent.tv apod.), zkoušel jsem to řešit už jiným způsoby a pořád to nefunguje, tak jsem vybral možnost že to může být virem a jako poslední možnost blokace od providera.
Předem děkuji za kontrolu.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Padrigo at 2011-09-29 17:24:38
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 12 GB (15%) free of 76 GB
Total RAM: 3071 MB (67% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:24:40, on 29.9.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Padrigo\Desktop\RSIT.exe
C:\Program Files\trend micro\Padrigo.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://toolbar.inbox.com/search/dispatc ... &%language
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.inbox.com/homepage.aspx?tbid=80329&lng=cs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-21-312933911-612511698-3685517910-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-312933911-612511698-3685517910-1003\..\Run: [Google Update] "C:\Users\Padrigo\AppData\Local\Google\Update\GoogleUpdate.exe" /c (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-312933911-612511698-3685517910-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

--
End of file - 5097 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-312933911-612511698-3685517910-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-312933911-612511698-3685517910-1001UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2011-09-18 56712]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2011-01-12 2219184]
"Malwarebytes' Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2011-08-31 1047208]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2011-08-31 449608]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-08-02 4910912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-06-06 937920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15 499608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5.5ServiceManager]
C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Padrigo\AppData\Local\Google\Update\GoogleUpdate.exe [2011-08-17 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes' Anti-Malware]
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2011-08-31 449608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes' Anti-Malware (reboot)]
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2011-08-31 1047208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2011-06-16 1500160]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2011-07-29 17361032]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files\Steam\Steam.exe [2011-09-17 1242448]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-05-04 252136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2011-06-17 66328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2011-08-17 203776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"VIDC.FPS1"=frapsvid.dll
"vidc.x264"=C:\PROGRA~1\x264vfw\x264vfw.dll
"msacm.l3fhg"=mp3fhg.acm
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"VIDC.FFDS"=ff_vfw.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2011-09-29 17:24:38 ----D---- C:\rsit
2011-09-29 15:50:24 ----D---- C:\ProgramData\EA Core
2011-09-29 15:49:39 ----HD---- C:\Program Files\Common Files\EAInstaller
2011-09-29 15:47:00 ----D---- C:\Program Files\Battlelog Web Plugins
2011-09-28 21:35:59 ----A---- C:\Windows\isRS-000.tmp
2011-09-28 16:20:28 ----D---- C:\Users\Padrigo\AppData\Roaming\Glory of the Roman Empire
2011-09-28 16:19:29 ----D---- C:\Program Files\Glory of the Roman Empire
2011-09-28 11:57:22 ----SHD---- C:\Config.Msi
2011-09-27 16:25:28 ----D---- C:\Users\Padrigo\AppData\Roaming\Origin
2011-09-27 16:25:04 ----D---- C:\ProgramData\Origin
2011-09-27 16:25:04 ----D---- C:\Program Files\Origin Games
2011-09-27 16:24:44 ----D---- C:\Program Files\Origin
2011-09-26 22:56:49 ----D---- C:\Program Files\SystemRequirementsLab
2011-09-26 15:58:42 ----A---- C:\Windows\system32\OpenCL.dll
2011-09-26 15:58:42 ----A---- C:\Windows\system32\nvoglv32.dll
2011-09-26 15:58:42 ----A---- C:\Windows\system32\nvhdap32.dll
2011-09-26 15:58:42 ----A---- C:\Windows\system32\nvhdagenco3220102.dll
2011-09-26 15:58:42 ----A---- C:\Windows\system32\nvd3dum.dll
2011-09-26 15:58:42 ----A---- C:\Windows\system32\nvcuvid.dll
2011-09-26 15:58:42 ----A---- C:\Windows\system32\nvcuvenc.dll
2011-09-26 15:58:42 ----A---- C:\Windows\system32\nvcuda.dll
2011-09-26 15:58:42 ----A---- C:\Windows\system32\nvcompiler.dll
2011-09-26 15:58:42 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2011-09-26 15:58:42 ----A---- C:\Windows\system32\drivers\nvhda32v.sys
2011-09-25 01:19:40 ----A---- C:\Windows\system32\nvRegDev.dll
2011-09-25 00:53:37 ----D---- C:\adobeTemp
2011-09-22 17:29:54 ----D---- C:\Users\Padrigo\AppData\Roaming\.minecraft
2011-09-22 12:29:58 ----A---- C:\Windows\system32\nvStreaming.exe
2011-09-21 18:24:41 ----D---- C:\Users\Padrigo\AppData\Roaming\Rovio
2011-09-21 18:23:57 ----D---- C:\Program Files\Rovio
2011-09-19 11:06:42 ----A---- C:\Windows\system32\unrar.dll
2011-09-19 11:06:41 ----A---- C:\Windows\avisplitter.ini
2011-09-19 11:06:39 ----A---- C:\Windows\system32\xvidvfw.dll
2011-09-19 11:06:39 ----A---- C:\Windows\system32\xvidcore.dll
2011-09-19 11:06:39 ----A---- C:\Windows\system32\ff_vfw.dll
2011-09-19 11:06:36 ----D---- C:\Program Files\K-Lite Codec Pack
2011-09-19 00:17:06 ----D---- C:\Windows\cs
2011-09-19 00:16:08 ----D---- C:\Program Files\The KMPlayer
2011-09-19 00:15:19 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2011-09-19 00:13:45 ----D---- C:\Program Files\Windows Live
2011-09-19 00:10:21 ----D---- C:\Program Files\Common Files\Windows Live
2011-09-18 23:59:57 ----D---- C:\Program Files\x264vfw
2011-09-18 23:45:44 ----D---- C:\Program Files\AviSynth 2.5
2011-09-18 18:36:08 ----D---- C:\Windows\system32\world_nether
2011-09-18 18:36:07 ----D---- C:\Windows\system32\world
2011-09-18 18:36:07 ----D---- C:\Windows\system32\plugins
2011-09-18 18:36:07 ----A---- C:\Windows\system32\white-list.txt
2011-09-18 18:36:07 ----A---- C:\Windows\system32\ops.txt
2011-09-18 18:36:07 ----A---- C:\Windows\system32\banned-players.txt
2011-09-18 18:36:07 ----A---- C:\Windows\system32\banned-ips.txt
2011-09-18 11:58:55 ----D---- C:\Users\Padrigo\AppData\Roaming\.craftbukkit
2011-09-18 11:58:49 ----D---- C:\Program Files\Common Files\Java
2011-09-18 11:58:22 ----A---- C:\Windows\system32\javaws.exe
2011-09-18 11:58:22 ----A---- C:\Windows\system32\javaw.exe
2011-09-18 11:58:22 ----A---- C:\Windows\system32\java.exe
2011-09-17 13:31:18 ----D---- C:\Program Files\Dead Island
2011-09-17 11:34:51 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2011-09-17 11:27:01 ----D---- C:\Program Files\Microsoft
2011-09-17 10:39:27 ----D---- C:\Program Files\Common Files\Steam
2011-09-17 10:39:26 ----D---- C:\Program Files\Steam
2011-09-15 16:45:04 ----D---- C:\Users\Padrigo\AppData\Roaming\PC Suite
2011-09-15 16:45:04 ----D---- C:\Users\Padrigo\AppData\Roaming\Nokia
2011-09-15 16:45:04 ----D---- C:\ProgramData\PC Suite
2011-09-15 16:44:51 ----D---- C:\Program Files\Common Files\PCSuite
2011-09-15 16:44:51 ----D---- C:\Program Files\Common Files\Nokia
2011-09-15 16:44:46 ----D---- C:\Program Files\DIFX
2011-09-15 16:44:46 ----A---- C:\Windows\system32\drivers\pccsmcfd.sys
2011-09-15 16:44:43 ----DC---- C:\Windows\system32\DRVSTORE
2011-09-15 16:44:39 ----D---- C:\Program Files\PC Connectivity Solution
2011-09-15 16:44:25 ----D---- C:\Program Files\Nokia
2011-09-15 16:44:25 ----A---- C:\Windows\system32\nmwcdcls.dll
2011-09-15 16:43:49 ----D---- C:\ProgramData\Installations
2011-09-07 19:26:34 ----A---- C:\Windows\game.ini

======List of files/folders modified in the last 1 month======

2011-09-29 17:24:40 ----D---- C:\Program Files\trend micro
2011-09-29 17:24:39 ----D---- C:\Windows\Temp
2011-09-29 17:21:05 ----D---- C:\Windows\Prefetch
2011-09-29 17:06:05 ----D---- C:\Windows\System32
2011-09-29 17:06:04 ----A---- C:\Windows\system32\PnkBstrB.exe
2011-09-29 15:52:29 ----D---- C:\ProgramData\Electronic Arts
2011-09-29 15:50:24 ----D---- C:\ProgramData
2011-09-29 15:49:39 ----D---- C:\Program Files\Common Files
2011-09-29 15:48:58 ----A---- C:\Windows\system32\PnkBstrA.exe
2011-09-29 15:48:19 ----RSD---- C:\Windows\assembly
2011-09-29 15:47:14 ----SHD---- C:\System Volume Information
2011-09-29 15:47:00 ----RD---- C:\Program Files
2011-09-29 15:46:40 ----D---- C:\Windows\Logs
2011-09-29 15:37:23 ----D---- C:\Program Files\Activision
2011-09-29 09:42:16 ----D---- C:\Windows\system32\config
2011-09-29 09:02:58 ----D---- C:\Windows\system32\LogFiles
2011-09-29 08:58:06 ----D---- C:\Windows
2011-09-29 08:57:54 ----D---- C:\ProgramData\NVIDIA
2011-09-29 08:57:39 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-09-28 23:39:01 ----D---- C:\Users\Padrigo\AppData\Roaming\Skype
2011-09-28 23:08:15 ----D---- C:\Windows\system32\drivers
2011-09-28 22:23:16 ----D---- C:\Users\Padrigo\AppData\Roaming\uTorrent
2011-09-28 13:52:04 ----D---- C:\Windows\inf
2011-09-28 13:51:19 ----D---- C:\Windows\system32\NDF
2011-09-28 12:14:38 ----D---- C:\Windows\SoftwareDistribution
2011-09-28 12:12:53 ----D---- C:\Windows\debug
2011-09-28 11:57:23 ----SHD---- C:\Windows\Installer
2011-09-28 11:54:46 ----A---- C:\Windows\system32\MRT.exe
2011-09-27 19:36:55 ----D---- C:\Program Files\World of Tanks
2011-09-26 23:39:43 ----D---- C:\Windows\system32\catroot2
2011-09-26 16:02:02 ----D---- C:\Windows\system32\catroot
2011-09-26 16:02:01 ----D---- C:\Windows\system32\DriverStore
2011-09-26 16:00:41 ----D---- C:\Program Files\NVIDIA Corporation
2011-09-25 00:54:00 ----D---- C:\Program Files\Common Files\Adobe
2011-09-25 00:53:58 ----RSD---- C:\Windows\Fonts
2011-09-25 00:53:13 ----D---- C:\Program Files\Adobe
2011-09-25 00:52:31 ----D---- C:\ProgramData\Adobe
2011-09-24 23:58:08 ----D---- C:\Windows\system32\Tasks
2011-09-24 14:48:44 ----SD---- C:\ProgramData\Microsoft
2011-09-23 14:45:59 ----D---- C:\Users\Padrigo\AppData\Roaming\DAEMON Tools Lite
2011-09-23 00:40:00 ----A---- C:\Windows\system32\nvwgf2um.dll
2011-09-23 00:40:00 ----A---- C:\Windows\system32\nvvsvc.exe
2011-09-23 00:40:00 ----A---- C:\Windows\system32\nvsvc.dll
2011-09-23 00:40:00 ----A---- C:\Windows\system32\nvshext.dll
2011-09-23 00:40:00 ----A---- C:\Windows\system32\nvmctray.dll
2011-09-23 00:40:00 ----A---- C:\Windows\system32\nvgenco32.dll
2011-09-23 00:40:00 ----A---- C:\Windows\system32\nvdispco32.dll
2011-09-23 00:40:00 ----A---- C:\Windows\system32\nvcpl.dll
2011-09-23 00:40:00 ----A---- C:\Windows\system32\nvapi.dll
2011-09-23 00:40:00 ----A---- C:\Windows\system32\easyupdatusapiu.dll
2011-09-22 17:47:09 ----D---- C:\Users\Padrigo\AppData\Roaming\Adobe
2011-09-21 19:47:03 ----SD---- C:\Users\Padrigo\AppData\Roaming\Microsoft
2011-09-21 19:46:26 ----D---- C:\Windows\winsxs
2011-09-21 17:22:15 ----D---- C:\Program Files\uTorrent
2011-09-19 19:40:21 ----D---- C:\Program Files\Electronic Arts
2011-09-19 15:47:09 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-09-19 15:39:33 ----HD---- C:\Program Files\InstallShield Installation Information
2011-09-19 00:13:18 ----D---- C:\Program Files\Common Files\microsoft shared
2011-09-18 11:58:07 ----A---- C:\Windows\system32\deployJava1.dll
2011-09-18 11:58:06 ----D---- C:\Program Files\Java
2011-09-17 11:34:47 ----D---- C:\Windows\system32\directx
2011-09-17 11:26:44 ----HD---- C:\Windows\msdownld.tmp
2011-09-15 16:48:34 ----D---- C:\Windows\system32\drivers\UMDF
2011-09-14 14:38:09 ----D---- C:\ProgramData\Microsoft Help
2011-09-04 00:46:56 ----D---- C:\Program Files\Opera
2011-08-30 13:10:30 ----D---- C:\Windows\system32\wdi
2011-08-30 12:57:48 ----D---- C:\Windows\rescache

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2011-05-23 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-08-17 232512]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-12-21 115008]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-12-21 137144]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2010-12-21 95384]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2010-11-20 117760]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2011-07-07 3531176]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2011-04-30 41240]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2011-04-30 39064]
R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\Windows\System32\Drivers\LUsbFilt.Sys [2011-04-30 30360]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2011-08-31 22216]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2011-07-08 139880]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2011-06-10 394856]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\mbamswissarmy.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2011-05-18 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2011-05-18 23168]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2011-05-18 8192]
S3 usbser;USB Modem Driver; C:\Windows\system32\DRIVERS\usbser.sys [2010-11-20 27648]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2011-01-12 810144]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-09-23 1136448]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-09-23 2253120]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2011-09-29 75136]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-09-22 381248]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2011-01-12 33584]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2011-06-17 295192]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2011-09-25 419624]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-08-19 1343400]

-----------------EOF-----------------

#2 Příspěvek od **Rudy** » 29 zář 2011 17:49

Zdravím!
Log vypadá čistý.

Thooty · #3 Příspěvek od **Thooty** » 29 zář 2011 21:24

Aha děkuji, ale je to celkem zajímavé, protože mi to vyhodí error na stránce nebo mi vůbec nenačte (což jde poznat že to asi providerem nebude (ping a tracer jsem dělal a mělo by to být v pořádku), ale zkusím mu zavolat, nic za to nedám že nebo jedině že by ty stránky blokovali schválně mě, ale to bys nedávalo smysl jelikož jsem nic "nekalého" na jejich stránkách neudělal..

#4 Příspěvek od **Rudy** » 29 zář 2011 21:48

Na zkoušku vypněte Eset a zkuste se připojit. Pokud to nepůjde, udělejte kompletní test MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

Thooty · #5 Příspěvek od **Thooty** » 30 zář 2011 14:38

I s vypnutým Esetem to bohužel nejde a test z MBAM nic nenašel

Malwarebytes' Anti-Malware 1.51.2.1300
http://www.malwarebytes.org

Verze databáze: 7833

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

30.9.2011 15:37:25
mbam-log-2011-09-30 (15-37-25).txt

Typ: Úplná kontrola (C:\|)
Kontrolované objekty: 390629
Uplynulý čas: 1 hodin, 2 minut, 47 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

#6 Příspěvek od **Rudy** » 30 zář 2011 18:07

Tohle vypadá, že jsou blokovány. Dejte dotaz na providera, abychom potvrdili, nebo vyloučili, že jeho firewall něco blokuje.

VIRY.CZ

Prosím si o kontrolu logu

Prosím si o kontrolu logu

Re: Prosím si o kontrolu logu

Re: Prosím si o kontrolu logu

Re: Prosím si o kontrolu logu

Re: Prosím si o kontrolu logu

Re: Prosím si o kontrolu logu