VIRY.CZ

Dobrý den, mám problém s facebookem už asi 5den.. vůbec se nenačítá a když se načte tak jen hlavní stránka a pak už nic .. všechny ostatní stránky jdou.. zde je muj log z combofixu

ComboFix 15-03-14.03 - Mara 15.03.2015 20:40:14.1.8 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.8091.5809 [GMT 1:00]
Spuštěný z: c:\users\Mara\Downloads\ComboFix.exe
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\ntuser.pol
c:\users\Mara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\6fc2d99249534d5cb5ecc4ecc0c8f5a1.exe
c:\users\Mara\AppData\Roaming\projector.exe
c:\users\Mara\AppData\Roaming\projector.exe.tmp
c:\windows\msdownld.tmp
c:\windows\SysWow64\local.txt
D:\Autorun.inf
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-02-15 do 2015-03-15 )))))))))))))))))))))))))))))))
.
.
2015-03-15 19:36 . 2015-03-15 19:36 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0DB0D6DD-363E-4548-8AB6-381E8982A477}\offreg.dll
2015-03-15 19:30 . 2015-03-15 19:30 20160 ----a-w- c:\windows\system32\drivers\GUBootStartup.sys
2015-03-15 19:30 . 2015-03-15 19:30 -------- d-----w- c:\program files (x86)\Glary Utilities 5
2015-03-15 19:30 . 2015-03-15 19:30 -------- d-----w- c:\program files (x86)\Glary Utilities Pro
2015-03-13 19:17 . 2015-03-13 19:18 -------- d-----w- c:\users\Mara\AppData\Local\PAYDAY 2
2015-03-13 19:17 . 2015-03-13 19:17 -------- d-----w- c:\program files (x86)\NVIDIA Corporation
2015-03-13 19:17 . 2015-03-13 19:17 -------- d-----w- c:\program files (x86)\AGEIA Technologies
2015-03-04 17:23 . 2015-03-04 17:23 -------- d-----w- c:\users\Mara\AppData\Local\SKIDROW
2015-03-04 17:22 . 2015-03-04 17:22 -------- d-----w- c:\users\Mara\AppData\Roaming\Trine2
2015-03-04 16:37 . 2015-03-04 16:37 -------- d-----w- c:\program files (x86)\Frozenbyte
2015-03-04 00:11 . 2015-03-04 00:12 -------- d-----w- C:\mličnak
2015-03-02 11:59 . 2015-03-02 11:59 -------- d-----w- c:\users\Mara\AppData\Local\Big Fish
2015-03-02 11:59 . 2015-03-02 11:59 -------- d-----w- C:\BigFishCache
2015-02-21 13:42 . 2015-02-21 14:07 -------- d-----w- c:\users\Mara\AppData\Roaming\MedievalEngineers
2015-02-21 11:59 . 2015-02-21 11:59 324608 ----a-w- c:\windows\SysWow64\DAC.exe
2015-02-20 09:44 . 2015-02-20 09:44 -------- d-----w- c:\program files (x86)\LogMeIn Hamachi
2015-02-18 22:40 . 2015-02-18 22:40 -------- d-----w- c:\users\Mara\AppData\Roaming\MKKE
2015-02-17 13:50 . 2015-02-17 13:51 -------- d-----w- c:\users\Mara\AppData\Roaming\PhotoFiltre 7
2015-02-17 13:50 . 2015-02-17 13:50 -------- d-----w- c:\program files (x86)\PhotoFiltre 7
2015-02-17 13:38 . 2015-02-17 13:38 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin5.dll
2015-02-17 13:38 . 2015-02-17 13:38 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin4.dll
2015-02-17 13:38 . 2015-02-17 13:38 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin3.dll
2015-02-17 13:38 . 2015-02-17 13:38 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin2.dll
2015-02-17 13:38 . 2015-02-17 13:38 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin.dll
2015-02-17 13:38 . 2015-02-17 13:38 -------- d-----w- c:\program files (x86)\QuickTime
2015-02-17 13:36 . 2015-02-17 13:36 -------- d-----w- c:\users\Mara\AppData\Roaming\Publish Providers
2015-02-17 13:32 . 2015-02-17 13:36 -------- d-----w- c:\users\Mara\AppData\Roaming\Sony
2015-02-17 13:32 . 2015-02-17 13:32 -------- d-----w- c:\users\Mara\AppData\Local\Sony
2015-02-17 13:30 . 2015-02-17 13:30 -------- d-----w- c:\programdata\Sony
2015-02-17 13:30 . 2015-02-17 13:30 -------- d-----w- c:\program files (x86)\Sony
2015-02-17 13:30 . 2015-02-17 13:30 -------- d-----w- c:\program files\Sony
2015-02-15 16:11 . 2015-02-15 16:11 -------- d-----w- c:\users\Mara\AppData\Roaming\TaiG
2015-02-15 12:40 . 2015-02-15 12:51 -------- d-----w- c:\program files (x86)\Lucius II
2015-02-14 21:21 . 2015-02-14 21:21 -------- d-----w- c:\program files (x86)\Microsoft
2015-02-14 21:13 . 2015-02-14 21:13 -------- d-----w- c:\program files (x86)\Disney Interactive Studios
2015-02-14 19:58 . 2015-02-14 19:58 -------- d-----w- c:\program files (x86)\Capcom
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-02-16 15:20 . 2015-01-25 10:08 33856 ---ha-w- c:\windows\system32\hamachi.sys
2015-02-13 04:54 . 2015-02-13 04:54 14952728 ----a-w- c:\windows\SysWow64\Glary.Utilities.Pro.5.19.0.32.exe
2015-02-06 22:40 . 2009-08-18 11:49 564632 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2015-02-06 22:40 . 2009-08-18 10:24 23256 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2015-01-16 11:36 . 2015-01-16 11:36 189248 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2015-01-16 11:36 . 2015-01-16 11:36 75136 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2015-01-15 10:35 . 2015-01-15 23:21 48784 ----a-w- c:\windows\system32\drivers\{cad8ac99-1831-4a75-b758-e4235c95af75}Gw64.sys
2015-01-14 18:48 . 2015-01-01 14:07 1048576 ----a-w- c:\windows\PE_Rom.dll
2015-01-14 16:39 . 2015-01-14 16:39 283064 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2015-01-13 19:34 . 2015-01-14 16:48 48784 ----a-w- c:\windows\system32\drivers\{549b1cd8-769f-468a-ad93-f57bfc8402c2}Gw64.sys
2015-01-06 13:42 . 2015-01-06 13:56 174112 ----a-w- c:\windows\SysWow64\EasyAntiCheat.exe
2015-01-02 23:30 . 2015-01-02 23:30 194048 ----a-w- c:\windows\SysWow64\elshyph.dll
2015-01-02 23:30 . 2015-01-02 23:30 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2015-01-02 23:30 . 2015-01-02 23:30 645120 ----a-w- c:\windows\SysWow64\jsIntl.dll
2015-01-02 23:30 . 2015-01-02 23:30 64000 ----a-w- c:\windows\SysWow64\MshtmlDac.dll
2015-01-02 23:30 . 2015-01-02 23:30 62464 ----a-w- c:\windows\SysWow64\tdc.ocx
2015-01-02 23:30 . 2015-01-02 23:30 62464 ----a-w- c:\windows\SysWow64\iesetup.dll
2015-01-02 23:30 . 2015-01-02 23:30 60416 ----a-w- c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2015-01-02 23:30 . 2015-01-02 23:30 501248 ----a-w- c:\windows\SysWow64\vbscript.dll
2015-01-02 23:30 . 2015-01-02 23:30 47616 ----a-w- c:\windows\SysWow64\ieetwproxystub.dll
2015-01-02 23:30 . 2015-01-02 23:30 36352 ----a-w- c:\windows\SysWow64\imgutil.dll
2015-01-02 23:30 . 2015-01-02 23:30 337408 ----a-w- c:\windows\SysWow64\html.iec
2015-01-02 23:30 . 2015-01-02 23:30 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb
2015-01-02 23:30 . 2015-01-02 23:30 24576 ----a-w- c:\windows\SysWow64\licmgr10.dll
2015-01-02 23:30 . 2015-01-02 23:30 235008 ----a-w- c:\windows\system32\elshyph.dll
2015-01-02 23:30 . 2015-01-02 23:30 2052096 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2015-01-02 23:30 . 2015-01-02 23:30 1888256 ----a-w- c:\windows\SysWow64\wininet.dll
2015-01-02 23:30 . 2015-01-02 23:30 182272 ----a-w- c:\windows\SysWow64\msls31.dll
2015-01-02 23:30 . 2015-01-02 23:30 151552 ----a-w- c:\windows\SysWow64\iexpress.exe
2015-01-02 23:30 . 2015-01-02 23:30 139264 ----a-w- c:\windows\SysWow64\wextract.exe
2015-01-02 23:30 . 2015-01-02 23:30 13312 ----a-w- c:\windows\SysWow64\mshta.exe
2015-01-02 23:30 . 2015-01-02 23:30 1155072 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2015-01-02 23:30 . 2015-01-02 23:30 942592 ----a-w- c:\windows\system32\jsIntl.dll
2015-01-02 23:30 . 2015-01-02 23:30 92160 ----a-w- c:\windows\system32\mshtmled.dll
2015-01-02 23:30 . 2015-01-02 23:30 90112 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2015-01-02 23:30 . 2015-01-02 23:30 88064 ----a-w- c:\windows\system32\MshtmlDac.dll
2015-01-02 23:30 . 2015-01-02 23:30 86016 ----a-w- c:\windows\SysWow64\iesysprep.dll
2015-01-02 23:30 . 2015-01-02 23:30 86016 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2015-01-02 23:30 . 2015-01-02 23:30 814080 ----a-w- c:\windows\system32\jscript9diag.dll
2015-01-02 23:30 . 2015-01-02 23:30 81408 ----a-w- c:\windows\system32\icardie.dll
2015-01-02 23:30 . 2015-01-02 23:30 800768 ----a-w- c:\windows\system32\msfeeds.dll
2015-01-02 23:30 . 2015-01-02 23:30 800768 ----a-w- c:\windows\system32\ieapfltr.dll
2015-01-02 23:30 . 2015-01-02 23:30 77824 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2015-01-02 23:30 . 2015-01-02 23:30 774144 ----a-w- c:\windows\system32\jscript.dll
2015-01-02 23:30 . 2015-01-02 23:30 77312 ----a-w- c:\windows\system32\tdc.ocx
2015-01-02 23:30 . 2015-01-02 23:30 74240 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2015-01-02 23:30 . 2015-01-02 23:30 718848 ----a-w- c:\windows\system32\ie4uinit.exe
2015-01-02 23:30 . 2015-01-02 23:30 66560 ----a-w- c:\windows\system32\iesetup.dll
2015-01-02 23:30 . 2015-01-02 23:30 633856 ----a-w- c:\windows\system32\ieui.dll
2015-01-02 23:30 . 2015-01-02 23:30 62464 ----a-w- c:\windows\system32\pngfilt.dll
2015-01-02 23:30 . 2015-01-02 23:30 620032 ----a-w- c:\windows\SysWow64\jscript9diag.dll
2015-01-02 23:30 . 2015-01-02 23:30 616104 ----a-w- c:\windows\system32\ieapfltr.dat
2015-01-02 23:30 . 2015-01-02 23:30 6039552 ----a-w- c:\windows\system32\jscript9.dll
2015-01-02 23:30 . 2015-01-02 23:30 580096 ----a-w- c:\windows\system32\vbscript.dll
2015-01-02 23:30 . 2015-01-02 23:30 54784 ----a-w- c:\windows\system32\jsproxy.dll
2015-01-02 23:30 . 2015-01-02 23:30 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2015-01-02 23:30 . 2015-01-02 23:30 490496 ----a-w- c:\windows\system32\dxtmsft.dll
2015-01-02 23:30 . 2015-01-02 23:30 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2015-01-02 23:30 . 2015-01-02 23:30 48640 ----a-w- c:\windows\system32\mshtmler.dll
2015-01-02 23:30 . 2015-01-02 23:30 48640 ----a-w- c:\windows\system32\ieetwproxystub.dll
2015-01-02 23:30 . 2015-01-02 23:30 48128 ----a-w- c:\windows\system32\imgutil.dll
2015-01-02 23:30 . 2015-01-02 23:30 4299264 ----a-w- c:\windows\SysWow64\jscript9.dll
2015-01-02 23:30 . 2015-01-02 23:30 413696 ----a-w- c:\windows\system32\html.iec
2015-01-02 23:30 . 2015-01-02 23:30 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2015-01-02 23:30 . 2015-01-02 23:30 389296 ----a-w- c:\windows\system32\iedkcs32.dll
2015-01-02 23:30 . 2015-01-02 23:30 34304 ----a-w- c:\windows\system32\iernonce.dll
2015-01-02 23:30 . 2015-01-02 23:30 316928 ----a-w- c:\windows\system32\dxtrans.dll
2015-01-02 23:30 . 2015-01-02 23:30 30208 ----a-w- c:\windows\system32\licmgr10.dll
2015-01-02 23:30 . 2015-01-02 23:30 2885120 ----a-w- c:\windows\system32\iertutil.dll
2015-01-02 23:30 . 2015-01-02 23:30 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2015-01-02 23:30 . 2015-01-02 23:30 25059840 ----a-w- c:\windows\system32\mshtml.dll
2015-01-02 23:30 . 2015-01-02 23:30 247808 ----a-w- c:\windows\system32\msls31.dll
2015-01-02 23:30 . 2015-01-02 23:30 243200 ----a-w- c:\windows\system32\webcheck.dll
2015-01-02 23:30 . 2015-01-02 23:30 2358272 ----a-w- c:\windows\system32\wininet.dll
2015-01-02 23:30 . 2015-01-02 23:30 235520 ----a-w- c:\windows\system32\url.dll
2015-01-02 23:30 . 2015-01-02 23:30 2125312 ----a-w- c:\windows\system32\inetcpl.cpl
2015-01-02 23:30 . 2015-01-02 23:30 199680 ----a-w- c:\windows\system32\msrating.dll
2015-01-02 23:30 . 2015-01-02 23:30 167424 ----a-w- c:\windows\system32\iexpress.exe
2015-01-02 23:30 . 2015-01-02 23:30 1548288 ----a-w- c:\windows\system32\urlmon.dll
2015-01-02 23:30 . 2015-01-02 23:30 147968 ----a-w- c:\windows\system32\occache.dll
2015-01-02 23:30 . 2015-01-02 23:30 14412800 ----a-w- c:\windows\system32\ieframe.dll
2015-01-02 23:30 . 2015-01-02 23:30 143872 ----a-w- c:\windows\system32\wextract.exe
2015-01-02 23:30 . 2015-01-02 23:30 13824 ----a-w- c:\windows\system32\mshta.exe
2015-01-02 23:30 . 2015-01-02 23:30 1359360 ----a-w- c:\windows\system32\mshtmlmedia.dll
2015-01-02 23:30 . 2015-01-02 23:30 135680 ----a-w- c:\windows\system32\iepeers.dll
2015-01-02 23:30 . 2015-01-02 23:30 13312 ----a-w- c:\windows\system32\msfeedssync.exe
2015-01-02 23:30 . 2015-01-02 23:30 131072 ----a-w- c:\windows\system32\IEAdvpack.dll
2015-01-02 23:30 . 2015-01-02 23:30 114688 ----a-w- c:\windows\system32\ieetwcollector.exe
2015-01-02 23:30 . 2015-01-02 23:30 111616 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2015-01-02 23:30 . 2015-01-02 23:30 105984 ----a-w- c:\windows\system32\iesysprep.dll
2015-01-02 23:30 . 2015-01-02 23:30 101376 ----a-w- c:\windows\system32\inseng.dll
2015-01-02 23:25 . 2015-01-02 23:25 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-01-02 23:25 . 2015-01-02 23:25 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-01-02 23:25 . 2015-01-02 23:25 648192 ----a-w- c:\windows\system32\d3d10level9.dll
2015-01-02 23:25 . 2015-01-02 23:25 604160 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2015-01-02 23:25 . 2015-01-02 23:25 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-01-02 23:25 . 2015-01-02 23:25 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-01-02 23:25 . 2015-01-02 23:25 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-01-02 23:25 . 2015-01-02 23:25 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-01-02 23:25 . 2015-01-02 23:25 522752 ----a-w- c:\windows\system32\XpsGdiConverter.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2015-02-18 2874048]
"GUDelayStartup"="c:\program files (x86)\Glary Utilities 5\StartupManager.exe" [2015-02-12 37152]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
SteelSeries Engine 3.lnk - c:\program files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe -dataPath="c:\programdata\SteelSeries\SteelSeries Engine 3" -dbEnv=production -auto=true [2015-1-8 17833984]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-disabled]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"ASUS AiChargerPlus Execute"="c:\program files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe"
"ASUS WiFi GO! FileTransfer Execute"="c:\program files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFile\WiFileTransfer.exe"
"StartCCC"="c:\program files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe"
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
R3 AODService;AODService;c:\program files (x86)\AMD\OverDrive\AODAssist.exe;c:\program files (x86)\AMD\OverDrive\AODAssist.exe [x]
R3 asHmComSvc;ASUS HM Com Service;c:\program files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe;c:\program files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [x]
R3 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [x]
R3 AsusFanControlService;AsusFanControlService;c:\program files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe;c:\program files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe [x]
R3 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe [x]
R3 EasyAntiCheat;EasyAntiCheat;c:\windows\system32\EasyAntiCheat.exe;c:\windows\SYSNATIVE\EasyAntiCheat.exe [x]
R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Futuremark\SystemInfo\FMSISvc.exe;c:\program files (x86)\Futuremark\SystemInfo\FMSISvc.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl64.sys;c:\windows\SYSNATIVE\DRIVERS\netaapl64.sys [x]
R3 Origin Client Service;Origin Client Service;c:\program files (x86)\Origin\OriginClientService.exe;c:\program files (x86)\Origin\OriginClientService.exe [x]
R3 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 ssdevfactory;SteelSeries Device Factory Service;c:\windows\system32\DRIVERS\ssdevfactory.sys;c:\windows\SYSNATIVE\DRIVERS\ssdevfactory.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 asahci64;asahci64;c:\windows\system32\DRIVERS\asahci64.sys;c:\windows\SYSNATIVE\DRIVERS\asahci64.sys [x]
S1 {549b1cd8-769f-468a-ad93-f57bfc8402c2}Gw64;{549b1cd8-769f-468a-ad93-f57bfc8402c2}Gw64;c:\windows\system32\drivers\{549b1cd8-769f-468a-ad93-f57bfc8402c2}Gw64.sys;c:\windows\SYSNATIVE\drivers\{549b1cd8-769f-468a-ad93-f57bfc8402c2}Gw64.sys [x]
S1 {cad8ac99-1831-4a75-b758-e4235c95af75}Gw64;{cad8ac99-1831-4a75-b758-e4235c95af75}Gw64;c:\windows\system32\drivers\{cad8ac99-1831-4a75-b758-e4235c95af75}Gw64.sys;c:\windows\SYSNATIVE\drivers\{cad8ac99-1831-4a75-b758-e4235c95af75}Gw64.sys [x]
S1 AsUpIO;AsUpIO;SysWow64\drivers\AsUpIO.sys;SysWow64\drivers\AsUpIO.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 ndisrd;WinpkFilter LightWeight Filter;c:\windows\system32\DRIVERS\ndisrd.sys;c:\windows\SYSNATIVE\DRIVERS\ndisrd.sys [x]
S2 AODDriver4.3.0;AODDriver4.3.0;c:\program files (x86)\AMD\OverDrive\amd64\AODDriver2.sys;c:\program files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [x]
S3 AiChargerPlus;AiChargerPlus;SysWow64\drivers\AiChargerPlus.sys;SysWow64\drivers\AiChargerPlus.sys [x]
S3 asComSvc;ASUS Com Service;c:\program files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe;c:\program files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [x]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]
S3 ASUSFILTER;ASUSFILTER;SysWow64\drivers\ASUSFILTER.sys;SysWow64\drivers\ASUSFILTER.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe [x]
S3 DTSAudioSvc;DTSAudioSvc;c:\program files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe;c:\program files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [x]
S3 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S3 hidkmdf;Filter Driver Service for HID-KMDF Interface layer;c:\windows\system32\DRIVERS\hidkmdf.sys;c:\windows\SYSNATIVE\DRIVERS\hidkmdf.sys [x]
S3 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 sshid;SteelSeries HID Service;c:\windows\system32\DRIVERS\sshid.sys;c:\windows\SYSNATIVE\DRIVERS\sshid.sys [x]
S4 GUBootStartup;GUBootStartup;c:\windows\System32\drivers\GUBootStartup.sys;c:\windows\SYSNATIVE\drivers\GUBootStartup.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-03-12 20:31 1061704 ----a-w- c:\program files (x86)\Google\Chrome\Application\41.0.2272.89\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2015-03-15 c:\windows\Tasks\GlaryInitialize 5.job
- c:\program files (x86)\Glary Utilities 5\Initialize.exe [2015-02-12 08:03]
.
2015-03-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-12-31 17:57]
.
2015-03-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-12-31 17:57]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2012-06-12 6548112]
"RtHDVBg_DTS"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2012-06-13 1212560]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKCU-Run-6fc2d99249534d5cb5ecc4ecc0c8f5a1 - c:\users\Mara\AppData\Roaming\projector.exe
Wow6432Node-HKLM-Run-6fc2d99249534d5cb5ecc4ecc0c8f5a1 - c:\users\Mara\AppData\Roaming\projector.exe
Wow6432Node-HKU-Default-RunOnce-SPReview - c:\windows\System32\SPReview\SPReview.exe
AddRemove-Next Car Game Wreckfest 0.180601 - c:\program files (x86)\Bugbear Entertainment\Next Car Game Wreckfest\Uninstall.exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
AddRemove-Steam - c:\program files (x86)\Steam\uninstall.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-2785583058-1512265402-3444007546-1000\Software\SecuROM\License information*]
"datasecu"=hex:47,7e,05,45,c0,e6,d3,53,62,b1,57,93,ab,b5,ee,c8,65,aa,1e,c1,6e,
bf,2b,e3,58,03,f8,f8,a5,6a,4e,d5,66,63,6d,57,1c,dd,dd,46,97,de,74,72,aa,f6,\
"rkeysecu"=hex:b0,7c,ac,92,ec,6c,33,39,83,3f,33,12,b0,d6,55,31
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10d.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10d.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2015-03-15 20:46:52
ComboFix-quarantined-files.txt 2015-03-15 19:46
.
Před spuštěním: Volných bajtů: 33 539 993 600
Po spuštění: Volných bajtů: 33 370 144 768
.
- - End Of File - - 8A6595F4DA95E79A3A1FB06BB9FF3272
A36C5E4F47E84449FF07ED3517B43A31

Zdravím!
Proč spouštíte ComoboFix, utilitu určenou pouze profesionálům. Hodláte si nabořit systém, nebo některou aplikaci?

Přesuňte ComboFix na plochu. Otevřte poznámkový blok a zkopírujte do něj:

KillAll::

File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Registry::
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-disabled]
"SunJavaUpdateSched"=-

Driver::
BBSvc
BBUpdate

Regnull::
[HKEY_USERS\S-1-5-21-2785583058-1512265402-3444007546-1000\Software\SecuROM\License information*]

RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

Reboot::

Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu combofix a pusťte. CF see spustí a vykoná příkazy ze skriptu.

Obrázek

někdo to radil na internetu tak jsem to vyzkoušel

, tak jsem provedl a FB zatím jede tak uvidím

děkuji moc

Pokud chcete radu od nás, CF použijte jen tehdy, pokud vám to doporučí náš rádce. Nemáme zájem ještě navíc opravovat nokopaný systém. Nemáte zač!

VIRY.CZ

Nejde Facebook

Nejde Facebook

Re: Nejde Facebook

Re: Nejde Facebook

Re: Nejde Facebook