Diskuze

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 1:22:23, on 4.3.2014

Platform: Windows Vista SP2 (WinNT 6.00.1906)

MSIE: Internet Explorer v7.00 (7.00.6002.18005)

Boot mode: Normal

Running processes:

C:\Program Files\DigitalPersona\Bin\DpAgent.exe

C:\Windows\system32\taskeng.exe

C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\HP\QuickPlay\QPService.exe

C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe

C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe

C:\Program Files\HP\HP Software Update\hpwuSchd2.exe

C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE

C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE

C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe

C:\Program Files\ACD Systems\ACDSee Pro\6.0\ACDSeePro6InTouch2.exe

C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe

C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe

C:\Program Files\AVG\AVG2013\avgui.exe

C:\Program Files\Samsung\Kies\KiesTrayAgent.exe

C:\Program Files\IDT\WDM\sttray.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\Program Files\Samsung\Kies\Kies.exe

C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe

C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe

C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe

C:\Program Files\Allway Sync\Bin\syncappw.exe

C:\Users\Marfy007\AppData\Roaming\Dropbox\bin\Dropbox.exe

C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE

C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Program Files\Common Files\Apple\Internet Services\APSDaemon.exe

C:\Program Files\Canon\Solution Menu EX\CNSEUPDT.EXE

C:\Users\Marfy007\AppData\Roaming\Seznam.cz\bin\szndesktop.exe

C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE

C:\Program Files\AVG\AVG2013\avgcsrvx.exe

C:\Program Files\totalcmd\TOTALCMD.EXE

C:\Program Files\Winamp\winamp.exe

C:\Program Files\Maxthon\Bin\Maxthon.exe

C:\Program Files\Maxthon\Bin\Maxthon.exe

C:\Program Files\Maxthon\Bin\Maxthon.exe

C:\Program Files\AVG Secure Search\vprot.exe

C:\Program Files\Maxthon\Bin\Maxthon.exe

C:\Program Files\Maxthon\Bin\Maxthon.exe

C:\Users\Marfy007\AppData\Local\Temp\hijackthis.exe

R1 - HKCU\Software\Microsof

Nějak se mi nenakopíroval celý Log , tak ještě jednou!

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 1:22:23, on 4.3.2014

Platform: Windows Vista SP2 (WinNT 6.00.1906)

MSIE: Internet Explorer v7.00 (7.00.6002.18005)

Boot mode: Normal

Running processes:

C:\Program Files\DigitalPersona\Bin\DpAgent.exe

C:\Windows\system32\taskeng.exe

C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\HP\QuickPlay\QPService.exe

C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe

C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe

C:\Program Files\HP\HP Software Update\hpwuSchd2.exe

C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE

C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE

C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe

C:\Program Files\ACD Systems\ACDSee Pro\6.0\ACDSeePro6InTouch2.exe

C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe

C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe

C:\Program Files\AVG\AVG2013\avgui.exe

C:\Program Files\Samsung\Kies\KiesTrayAgent.exe

C:\Program Files\IDT\WDM\sttray.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\Program Files\Samsung\Kies\Kies.exe

C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe

C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe

C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe

C:\Program Files\Allway Sync\Bin\syncappw.exe

C:\Users\Marfy007\AppData\Roaming\Dropbox\bin\Dropbox.exe

C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE

C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Program Files\Common Files\Apple\Internet Services\APSDaemon.exe

C:\Program Files\Canon\Solution Menu EX\CNSEUPDT.EXE

C:\Users\Marfy007\AppData\Roaming\Seznam.cz\bin\szndesktop.exe

C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE

C:\Program Files\AVG\AVG2013\avgcsrvx.exe

C:\Program Files\totalcmd\TOTALCMD.EXE

C:\Program Files\Winamp\winamp.exe

C:\Program Files\Maxthon\Bin\Maxthon.exe

C:\Program Files\Maxthon\Bin\Maxthon.exe

C:\Program Files\Maxthon\Bin\Maxthon.exe

C:\Program Files\AVG Secure Search\vprot.exe

C:\Program Files\Maxthon\Bin\Maxthon.exe

C:\Program Files\Maxthon\Bin\Maxthon.exe

C:\Users\Marfy007\AppDat

Log je rozhodně lepší poslat emailem na adresu podpora@amenit.cz, příspěvěk do diskuse má omezenou délku a logy se sem prostě nevejdou...

Moc prosím o kontrolu logu, díky předem:

ComboFix 14-03-24.01 - Darča 26.03.2014  22:51:22.2.2 - x86

Spuštěný z: c:\users\Darča\Downloads\ComboFix.exe

.

.

(((((((((((((((((((((((((((((((((((((((   Ostatní výmazy   )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\programdata\A88A390D02.sys

c:\windows\system32\oem14.inf

.

.

(((((((((((((((((((((((((   Soubory vytvořené od 2014-02-26 do 2014-03-26  )))))))))))))))))))))))))))))))

.

.

2014-03-26 20:06 . 2014-03-07 04:357969936----a-w-c:\programdata\Microsoft\Windows Defender\Definition Updates\{EF3BFED9-C395-4223-A897-1488764C24BC}\mpengine.dll

2014-03-26 15:05 . 2014-03-26 15:05--------d-----w-c:\users\Darča\AppData\Roaming\hpqLog

2014-03-20 20:11 . 2014-03-23 17:34--------d-----w-c:\users\Darča\AppData\Local\CrashDumps

2014-03-16 16:53 . 2014-02-23 05:362382848----a-w-c:\windows\system32\mshtml.tlb

2014-03-13 23:27 . 2014-02-07 10:382050560----a-w-c:\windows\system32\win32k.sys

2014-03-13 23:26 . 2014-02-03 10:37505344----a-w-c:\windows\system32\qedit.dll

2014-03-13 23:26 . 2014-01-30 07:46876032----a-w-c:\windows\system32\wer.dll

2014-03-13 23:26 . 2013-11-13 00:302048----a-w-c:\windows\system32\tzres.dll

2014-03-10 18:41 . 2014-03-10 18:41--------d-----w-c:\users\Darča\AppData\Local\Skype

2014-03-02 20:03 . 2014-03-26 15:12--------d-----w-c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1

2014-02-28 00:49 . 2014-02-28 00:49--------d-----w-c:\windows\Migration

.

.

.

((((((((((((((((((((((((((((((((((((((((   Find3M výpis   ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2014-03-16 17:03 . 2012-04-12 20:04692616----a-w-c:\windows\system32\FlashPlayerApp.exe

2014-03-16 17:03 . 2012-02-05 21:2071048----a-w-c:\windows\system32\FlashPlayerCPLApp.cpl

.

.

((((((((((((((((((((((((((((((((((   Spouštěcí body v registru   )))))))))))))))))))))))))))))))))))))))))))))

.

.

*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny. 

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]

"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-09-03 39408]

"Zoner Photo Studio Autoupdate"="c:\program files\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE" [2013-06-07 774680]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-02-06 1430824]

"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576]

"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Sta

Na strance hnedle nad diskusemi je CERVENYM TUCNYM PISMEM napsano - NEVKLADEJTE LOGY DO DISKUZE, POSLETE JE MEJLEM... Ma to svuj duvod - log se sem nevejde a analyzovat nakouskovane logy rozhodne nebudeme - je potreba mit log pekne pohromade a vcelku...