» Poradna » Notebooky

Keylogger

 |   |  Microsoft Windows 7 Chrome 47.0.2526.73

Zdravim Dnes Jsem Si omylem naistaloval KeyLogger .. Spise Stranka na Kterou jsem kliknul ... Potreboval bych pomoc... Pouzil jsem Combofix Ktery Po dokonceni Vytvoril Notepad S Tady Tim .. a chcu se zeptat jestli je ten Keylogger Pryc Nebo ne :] ComboFix 16-01-07.01 - LUky 01/11/2016 13:53:34.1.2 - x64 NETWORKMicrosoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.4000.2428 [GMT 2:00]Running from: c:\users\LUky\Downloads\ComboFix.exeAV: AVG AntiVirus Free Edition *Disabled/Outdated* {4D41356F-32AD-7C42-C820-63775EE4F413}AV: Trend Micro Titanium Internet Security *Disabled/Updated* {68F968AC-2AA0-091D-848C-803E83E35902}SP: AVG AntiVirus Free Edition *Disabled/Outdated* {F620D48B-1497-73CC-F290-58052563BEAE}SP: Trend Micro Titanium Internet Security *Disabled/Updated* {D3988948-0C9A-0693-BE3C-BB4CF86413BF}SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Created a new restore point..((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))..c:\programdata\SetWallpaper.exec:\windows\msdownld.tmpc:\windows\msvcr71.dllc:\windows\SysWow64\logsc:\windows\SysWow64\logs\console.log..((((((((((((((((((((((((( Files Created from 2015-12-11 to 2016-01-11 )))))))))))))))))))))))))))))))..2016-01-11 12:01 . 2016-01-11 12:01 -------- d-----w- c:\users\Default\AppData\Local\temp2016-01-11 12:01 . 2016-01-11 12:01 -------- d-----w- c:\users\Administrator\AppData\Local\temp2016-01-08 20:52 . 2016-01-08 21:09 -------- d-----w- c:\users\LUky\AppData\Local\osu!2016-01-06 16:58 . 2016-01-06 16:58 -------- d-----w- c:\users\LUky\AppData\Roaming\gd.sos.McPixel2016-01-06 16:06 . 2016-01-06 16:06 -------- d-----w- c:\users\LUky\AppData\Local\Macromedia2016-01-06 16:00 . 2016-01-06 16:00 -------- d-----w- c:\users\LUky\AppData\Local\Mozilla2016-01-05 21:07 . 2016-01-05 21:08 -------- d-----w- c:\program files (x86)\Battle.net2016-01-05 21:06 . 2016-01-05 21:06 -------- d-----w- c:\programdata\Battle.net2016-01-04 20:13 . 2016-01-04 20:13 -------- d-----w- c:\users\LUky\AppData\Roaming\RotMG.Production2016-01-02 09:50 . 2016-01-02 09:50 -------- d-----w- C:\found.0002016-01-01 12:25 . 2016-01-01 12:25 -------- d-----w- c:\program files (x86)\Overwolf2016-01-01 12:25 . 2016-01-01 12:25 -------- d-----w- c:\program files (x86)\Common Files\Overwolf2016-01-01 12:25 . 2016-01-01 12:25 -------- d-----w- c:\programdata\Overwolf2016-01-01 12:25 . 2016-01-01 12:26 -------- d-----w- c:\users\LUky\AppData\Local\Overwolf2016-01-01 12:25 . 2016-01-10 00:48 -------- d-----w- c:\users\LUky\AppData\Roaming\TS3Client2016-01-01 12:24 . 2016-01-01 12:24 -------- d-----w- c:\program files\TeamSpeak 3 Client2015-12-31 16:37 . 2015-12-31 16:37 -------- d-----w- C:\$Windows.~WS2015-12-31 12:35 . 2015-12-31 12:35 -------- d-----w- c:\users\LUky\AppData\Roaming\BANDISOFT2015-12-31 12:34 . 2015-12-31 12:34 -------- d-----w- c:\program files (x86)\Bandicam2015-12-31 12:34 . 2015-12-31 12:34 -------- d-----w- c:\program files (x86)\BandiMPEG12015-12-26 22:05 . 2015-12-26 22:05 -------- d-----w- c:\users\LUky\AppData\Roaming\obs-studio2015-12-26 22:05 . 2015-12-26 22:05 -------- d-----w- c:\program files (x86)\obs-studio...(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))).2016-01-06 16:06 . 2015-10-05 17:26 796864 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe2016-01-06 16:06 . 2015-10-05 17:26 142528 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl2015-10-24 09:12 . 2015-10-24 09:12 940032 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe2015-10-24 09:12 . 2015-10-24 09:12 194048 ----a-w- c:\windows\SysWow64\elshyph.dll2015-10-24 09:12 . 2015-10-24 09:12 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe2015-10-24 09:12 . 2015-10-24 09:12 645120 ----a-w- c:\windows\SysWow64\jsIntl.dll2015-10-24 09:12 . 2015-10-24 09:12 235008 ----a-w- c:\windows\system32\elshyph.dll2015-10-24 09:12 . 2015-10-24 09:12 1950720 ----a-w- c:\windows\SysWow64\wininet.dll2015-10-24 09:12 . 2015-10-24 09:12 182272 ----a-w- c:\windows\SysWow64\msls31.dll2015-10-24 09:12 . 2015-10-24 09:12 62464 ----a-w- c:\windows\SysWow64\tdc.ocx2015-10-24 09:12 . 2015-10-24 09:12 62464 ----a-w- c:\windows\SysWow64\iesetup.dll2015-10-24 09:12 . 2015-10-24 09:12 60416 ----a-w- c:\windows\SysWow64\JavaScriptCollectionAgent.dll2015-10-24 09:12 . 2015-10-24 09:12 503808 ----a-w- c:\windows\SysWow64\vbscript.dll2015-10-24 09:12 . 2015-10-24 09:12 341504 ----a-w- c:\windows\SysWow64\html.iec2015-10-24 09:12 . 2015-10-24 09:12 24576 ----a-w- c:\windows\SysWow64\licmgr10.dll2015-10-24 09:12 . 2015-10-24 09:12 2052608 ----a-w- c:\windows\SysWow64\inetcpl.cpl2015-10-24 09:12 . 2015-10-24 09:12 151552 ----a-w- c:\windows\SysWow64\iexpress.exe2015-10-24 09:12 . 2015-10-24 09:12 139264 ----a-w- c:\windows\SysWow64\wextract.exe2015-10-24 09:12 . 2015-10-24 09:12 1155072 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll2015-10-24 09:12 . 2015-10-24 09:12 86016 ----a-w- c:\windows\SysWow64\iesysprep.dll2015-10-24 09:12 . 2015-10-24 09:12 74240 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe2015-10-24 09:12 . 2015-10-24 09:12 64000 ----a-w- c:\windows\SysWow64\MshtmlDac.dll2015-10-24 09:12 . 2015-10-24 09:12 620032 ----a-w- c:\windows\SysWow64\jscript9diag.dll2015-10-24 09:12 . 2015-10-24 09:12 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll2015-10-24 09:12 . 2015-10-24 09:12 47616 ----a-w- c:\windows\SysWow64\ieetwproxystub.dll2015-10-24 09:12 . 2015-10-24 09:12 4305920 ----a-w- c:\windows\SysWow64\jscript9.dll2015-10-24 09:12 . 2015-10-24 09:12 36352 ----a-w- c:\windows\SysWow64\imgutil.dll2015-10-24 09:12 . 2015-10-24 09:12 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb2015-10-24 09:12 . 2015-10-24 09:12 13312 ----a-w- c:\windows\SysWow64\mshta.exe2015-10-24 09:12 . 2015-10-24 09:12 115712 ----a-w- c:\windows\SysWow64\ieUnatt.exe2015-10-24 09:12 . 2015-10-24 09:12 111616 ----a-w- c:\windows\SysWow64\IEAdvpack.dll2015-10-24 09:12 . 2015-10-24 09:12 942592 ----a-w- c:\windows\system32\jsIntl.dll2015-10-24 09:12 . 2015-10-24 09:12 90112 ----a-w- c:\windows\system32\SetIEInstalledDate.exe2015-10-24 09:12 . 2015-10-24 09:12 86016 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe2015-10-24 09:12 . 2015-10-24 09:12 814080 ----a-w- c:\windows\system32\jscript9diag.dll2015-10-24 09:12 . 2015-10-24 09:12 633856 ----a-w- c:\windows\system32\ieui.dll2015-10-24 09:12 . 2015-10-24 09:12 6026240 ----a-w- c:\windows\system32\jscript9.dll2015-10-24 09:12 . 2015-10-24 09:12 54784 ----a-w- c:\windows\system32\jsproxy.dll2015-10-24 09:12 . 2015-10-24 09:12 52224 ----a-w- c:\windows\system32\msfeedsbs.dll2015-10-24 09:12 . 2015-10-24 09:12 48640 ----a-w- c:\windows\system32\mshtmler.dll2015-10-24 09:12 . 2015-10-24 09:12 2885632 ----a-w- c:\windows\system32\iertutil.dll2015-10-24 09:12 . 2015-10-24 09:12 247808 ----a-w- c:\windows\system32\msls31.dll2015-10-24 09:12 . 2015-10-24 09:12 2426880 ----a-w- c:\windows\system32\wininet.dll2015-10-24 09:12 . 2015-10-24 09:12 199680 ----a-w- c:\windows\system32\msrating.dll2015-10-24 09:12 . 2015-10-24 09:12 1545728 ----a-w- c:\windows\system32\urlmon.dll2015-10-24 09:12 . 2015-10-24 09:12 13312 ----a-w- c:\windows\system32\msfeedssync.exe2015-10-24 09:12 . 2015-10-24 09:12 131072 ----a-w- c:\windows\system32\IEAdvpack.dll2015-10-24 09:12 . 2015-10-24 09:12 105984 ----a-w- c:\windows\system32\iesysprep.dll2015-10-24 09:12 . 2015-10-24 09:12 14404096 ----a-w- c:\windows\system32\ieframe.dll2015-10-24 09:12 . 2015-10-24 09:12 92160 ----a-w- c:\windows\system32\mshtmled.dll2015-10-24 09:12 . 2015-10-24 09:12 81408 ----a-w- c:\windows\system32\icardie.dll2015-10-24 09:12 . 2015-10-24 09:12 801280 ----a-w- c:\windows\system32\msfeeds.dll2015-10-24 09:12 . 2015-10-24 09:12 800768 ----a-w- c:\windows\system32\ieapfltr.dll2015-10-24 09:12 . 2015-10-24 09:12 77824 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll2015-10-24 09:12 . 2015-10-24 09:12 77312 ----a-w- c:\windows\system32\tdc.ocx2015-10-24 09:12 . 2015-10-24 09:12 720384 ----a-w- c:\windows\system32\ie4uinit.exe2015-10-24 09:12 . 2015-10-24 09:12 66560 ----a-w- c:\windows\system32\iesetup.dll2015-10-24 09:12 . 2015-10-24 09:12 616104 ----a-w- c:\windows\system32\ieapfltr.dat2015-10-24 09:12 . 2015-10-24 09:12 584192 ----a-w- c:\windows\system32\vbscript.dll2015-10-24 09:12 . 2015-10-24 09:12 490496 ----a-w- c:\windows\system32\dxtmsft.dll2015-10-24 09:12 . 2015-10-24 09:12 417792 ----a-w- c:\windows\system32\html.iec2015-10-24 09:12 . 2015-10-24 09:12 389840 ----a-w- c:\windows\system32\iedkcs32.dll2015-10-24 09:12 . 2015-10-24 09:12 34304 ----a-w- c:\windows\system32\iernonce.dll2015-10-24 09:12 . 2015-10-24 09:12 316928 ----a-w- c:\windows\system32\dxtrans.dll2015-10-24 09:12 . 2015-10-24 09:12 30208 ----a-w- c:\windows\system32\licmgr10.dll2015-10-24 09:12 . 2015-10-24 09:12 243200 ----a-w- c:\windows\system32\webcheck.dll2015-10-24 09:12 . 2015-10-24 09:12 235520 ----a-w- c:\windows\system32\url.dll2015-10-24 09:12 . 2015-10-24 09:12 2125824 ----a-w- c:\windows\system32\inetcpl.cpl2015-10-24 09:12 . 2015-10-24 09:12 167424 ----a-w- c:\windows\system32\iexpress.exe2015-10-24 09:12 . 2015-10-24 09:12 143872 ----a-w- c:\windows\system32\wextract.exe2015-10-24 09:12 . 2015-10-24 09:12 1359360 ----a-w- c:\windows\system32\mshtmlmedia.dll2015-10-24 09:12 . 2015-10-24 09:12 101376 ----a-w- c:\windows\system32\inseng.dll2015-10-24 09:12 . 2015-10-24 09:12 24917504 ----a-w- c:\windows\system32\mshtml.dll2015-10-24 09:12 . 2015-10-24 09:12 88064 ----a-w- c:\windows\system32\MshtmlDac.dll2015-10-24 09:12 . 2015-10-24 09:12 816640 ----a-w- c:\windows\system32\jscript.dll2015-10-24 09:12 . 2015-10-24 09:12 62464 ----a-w- c:\windows\system32\pngfilt.dll2015-10-24 09:12 . 2015-10-24 09:12 48640 ----a-w- c:\windows\system32\ieetwproxystub.dll2015-10-24 09:12 . 2015-10-24 09:12 48128 ----a-w- c:\windows\system32\imgutil.dll2015-10-24 09:12 . 2015-10-24 09:12 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll2015-10-24 09:12 . 2015-10-24 09:12 2724864 ----a-w- c:\windows\system32\mshtml.tlb2015-10-24 09:12 . 2015-10-24 09:12 147968 ----a-w- c:\windows\system32\occache.dll2015-10-24 09:12 . 2015-10-24 09:12 144384 ----a-w- c:\windows\system32\ieUnatt.exe2015-10-24 09:12 . 2015-10-24 09:12 13824 ----a-w- c:\windows\system32\mshta.exe2015-10-24 09:12 . 2015-10-24 09:12 135680 ----a-w- c:\windows\system32\iepeers.dll2015-10-24 09:12 . 2015-10-24 09:12 114688 ----a-w- c:\windows\system32\ieetwcollector.exe2015-10-24 09:10 . 2015-10-24 09:10 878080 ----a-w- c:\windows\system32\advapi32.dll2015-10-24 09:10 . 2015-10-24 09:10 859648 ----a-w- c:\windows\system32\tdh.dll2015-10-24 09:10 . 2015-10-24 09:10 7680 ----a-w- c:\windows\SysWow64\instnm.exe2015-10-24 09:10 . 2015-10-24 09:10 640512 ----a-w- c:\windows\SysWow64\advapi32.dll2015-10-24 09:10 . 2015-10-24 09:10 619520 ----a-w- c:\windows\SysWow64\tdh.dll2015-10-24 09:10 . 2015-10-24 09:10 6144 ---ha-w- c:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll2015-10-24 09:10 . 2015-10-24 09:10 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll2015-10-24 09:10 . 2015-10-24 09:10 5120 ---ha-w- c:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll2015-10-24 09:10 . 2015-10-24 09:10 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll2015-10-24 09:10 . 2015-10-24 09:10 5120 ----a-w- c:\windows\SysWow64\wow32.dll2015-10-24 09:10 . 2015-10-24 09:10 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll2015-10-24 09:10 . 2015-10-24 09:10 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll2015-10-24 09:10 . 2015-10-24 09:10 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll2015-10-24 09:10 . 2015-10-24 09:10 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll2015-10-24 09:10 . 2015-10-24 09:10 44032 ----a-w- c:\windows\apppatch\acwow64.dll..((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))..*Note* empty entries & legit default entries are not shown REGEDIT4.[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]2011-04-01 08:58 433648 ----a-w- c:\programdata\Partner\Partner.dll.[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"BingSvc"="c:\users\LUky\AppData\Local\Microsoft\BingSvc\BingSvc.exe" [2015-04-07 144008].[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]"SonicMasterTray"="c:\program files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe" [2010-07-10 984400]"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2011-07-21 5716608]"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]"AvgUi"="c:\program files (x86)\AVG\Framework\Common\avguix.exe" [2015-10-16 1130408]"AVG_UI"="c:\program files (x86)\AVG\Av\avgui.exe" [2015-10-12 3812264].c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\FancyStart daemon.lnk - c:\windows\Installer\{C944B4C5-1C4D-4D95-8AC0-7CEF13914131}\_77B5857C27147149171BE7.exe -d [2015-10-4 12862].[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]"ConsentPromptBehaviorUser"= 3 (0x3)"EnableUIADesktopToggle"= 0 (0x0).[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]"midi2"=wdmaud.drv.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]"Nuance PDF Reader-reminder"="c:\program files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "c:\programdata\Nuance\PDF Reader\Ereg\Ereg.ini""ASUSWebStorage"=c:\program files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S"ATKMEDIA"=c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"UpdateLBPShortCut"="c:\program files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "c:\program files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5""UpdateP2GoShortCut"="c:\program files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "c:\program files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0""Wireless Console 3"=c:\program files (x86)\ASUS\Wireless Console 3\wcourier.exe.R0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x]R1 ATKWMIACPIIO;ATKWMIACPI Driver;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [x]R1 Avgdiska;AVG Disk Driver;c:\windows\system32\DRIVERS\avgdiska.sys;c:\windows\SYSNATIVE\DRIVERS\avgdiska.sys [x]R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x]R1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x]R2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe;c:\windows\SYSNATIVE\FBAgent.exe [x]R2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [x]R2 ASUS InstantOn;ASUS InstantOn Service;c:\program files (x86)\Common Files\InstantOn\InsOnSrv.exe;c:\program files (x86)\Common Files\InstantOn\InsOnSrv.exe [x]R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [x]R2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Bluetooth Suite\adminservice.exe [x]R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\Av\avgidsagent.exe;c:\program files (x86)\AVG\Av\avgidsagent.exe [x]R2 avgsvc;AVG Service;c:\program files (x86)\AVG\Framework\Common\avgsvca.exe;c:\program files (x86)\AVG\Framework\Common\avgsvca.exe [x]R2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\Av\avgwdsvcx.exe;c:\program files (x86)\AVG\Av\avgwdsvcx.exe [x]R2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [x]R2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [x]R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]R2 tmevtmgr;tmevtmgr;c:\windows\system32\DRIVERS\tmevtmgr.sys;c:\windows\SYSNATIVE\DRIVERS\tmevtmgr.sys [x]R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [x]R2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]R3 Amsp;Trend Micro Solution Platform;c:\program files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe;c:\program files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe [x]R3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]R3 AtiDCM;AtiDCM;c:\users\LUky\AppData\Local\Temp\atdcm64a.sys;c:\users\LUky\AppData\Local\Temp\atdcm64a.sys [x]R3 AvgAMPS;AvgAMPS;c:\program files (x86)\AVG\Av\avgamps.exe;c:\program files (x86)\AVG\Av\avgamps.exe [x]R3 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [x]R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]R3 btath_avdt;Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys;c:\windows\SYSNATIVE\drivers\btath_avdt.sys [x]R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_hcrp.sys [x]R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_rcp.sys [x]R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]R3 OverwolfUpdater;Overwolf Updater Windows SCM;c:\program files (x86)\Overwolf\OverwolfUpdater.exe;c:\program files (x86)\Overwolf\OverwolfUpdater.exe [x]R3 Partner Service;Partner Service;c:\programdata\Partner\Partner.exe;c:\programdata\Partner\Partner.exe [x]R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys;c:\windows\SYSNATIVE\DRIVERS\SiSG664.sys [x]R3 TiMiniService;TiMiniService;c:\program files\Trend Micro\Titanium\TiMiniService.exe;c:\program files\Trend Micro\Titanium\TiMiniService.exe [x]R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [x]R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x]S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x]S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x]S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x]S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys;c:\windows\SYSNATIVE\DRIVERS\btath_bus.sys [x]S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x]..[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]2015-10-21 11:19 997704 ----a-w- c:\program files (x86)\Google\Chrome\Application\46.0.2490.71\Installer\chrmstp.exe.Contents of the 'Scheduled Tasks' folder.2015-10-20 c:\windows\Tasks\Adobe Flash Player PPAPI Notifier.job- c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_19_0_0_226_pepper.exe [2015-10-20 15:54].2016-01-06 c:\windows\Tasks\Adobe Flash Player Updater.job- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-05 16:06].2016-01-01 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-01 17:26].2015-10-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-01 17:26].2016-01-01 c:\windows\Tasks\Overwolf Updater Task.job- c:\program files (x86)\Overwolf\OverwolfUpdater.exe [2015-12-15 13:44]..--------- X64 Entries -----------..[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]2011-04-01 08:58 750064 ----a-w- c:\programdata\Partner\Partner64.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]2010-09-02 08:41 220160 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSShellExt64.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]@="{64174815-8D98-4CE6-8646-4C039977D808}"[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]2010-09-02 08:41 220160 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSShellExt64.dll.[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-08-16 2277480].------- Supplementary Scan -------.uLocal Page = c:\windows\system32\blank.htmuStart Page = hxxp://asus.msn.commLocal Page = c:\windows\SysWOW64\blank.htmTCP: DhcpNameServer = 213.46.172.37 213.46.172.36.- - - - ORPHANS REMOVED - - - -.Toolbar-Locked - (no file)HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - startToolbar-Locked - (no file)HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exeAddRemove-ASUS_Screensaver - c:\windows\system32\ASUS_Screensaver.scrAddRemove-Steam App 104200 - c:\program files (x86)\Steam\steam.exeAddRemove-Steam App 107300 - c:\program files (x86)\Steam\steam.exeAddRemove-Steam App 107310 - c:\program files (x86)\Steam\steam.exeAddRemove-Steam App 200210 - c:\program files (x86)\Steam\steam.exeAddRemove-Steam App 220860 - c:\program files (x86)\Steam\steam.exeAddRemove-Steam App 331710 - c:\program files (x86)\Steam\steam.exeAddRemove-Steam App 370190 - c:\program files (x86)\Steam\steam.exeAddRemove-Steam App 385200 - c:\program files (x86)\Steam\steam.exeAddRemove-Steam App 730 - c:\program files (x86)\Steam\steam.exeAddRemove-{F8A9085D-4C7A-41a9-8A77-C8998A96C421} - c:\program files (x86)\Intel\Intel Control Center\uninstaller\SetupICC.exe...--------------------- LOCKED REGISTRY KEYS ---------------------.[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]@Denied: (A 2) (Everyone)@="FlashBroker""LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe,-101".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]"Enabled"=dword:00000001.[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]@Denied: (A 2) (Everyone)@="Shockwave Flash Object".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10k.ocx""ThreadingModel"="Apartment".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]@="0".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]@="ShockwaveFlash.ShockwaveFlash.10".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10k.ocx, 1".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]@="{D27CDB6B-AE6D-11cf-96B8-444553540000}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]@="1.0".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]@="ShockwaveFlash.ShockwaveFlash".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]@Denied: (A 2) (Everyone)@="Macromedia Flash Factory Object".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10k.ocx""ThreadingModel"="Apartment".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]@="FlashFactory.FlashFactory.1".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10k.ocx, 1".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]@="{D27CDB6B-AE6D-11cf-96B8-444553540000}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]@="1.0".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]@="FlashFactory.FlashFactory".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]@Denied: (A 2) (Everyone)@="IFlashBroker4".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]@="{00020424-0000-0000-C000-000000000046}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}""Version"="1.0".[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Control\PCW\Security]@Denied: (Full) (Everyone).Completion time: 2016-01-11 14:04:09ComboFix-quarantined-files.txt 2016-01-11 12:04.Pre-Run: 228,663,181,312 bytes freePost-Run: 229,409,419,264 bytes free.- - End Of File - - D46725EA5697D276CCB6D04C0C1268E1Dekuji za Kazdou Pomoc!

Odpovědi na otázku

 |   |  Microsoft Windows XP Chrome 47.0.2526.106

Pošli to na viry.cz. Nejspíš ti ale tam keylogger zůstal, píše ti to u každého slova první písmeno velké.

Souhlasím  |  Nesouhlasím  |  Odpovědět
 |   |  Microsoft Windows 7 Firefox 43.0

Vypadá to čistéAle k čomu ti je dnes nepríjemý moloch v podobe ComboFix? Skontroluj dáta týmto:AdwcleanerRougeKiller 32/64 - portableNPE.exeSpyHunter4 - portable.

Souhlasím  |  Nesouhlasím  |  Odpovědět

Související témata: Windows, Steam, AVG, Software, Keylogger, Microsoft, 24, Program Files, Files, Program, Microsoft Windows, Partner, Trend Micro, Local, Tasks



Určitě si přečtěte


Aktuální číslo časopisu Computer

Jak rychlé je nabíjení bez drátů?

Test 11 sluchátek pro hráče

Aplikace, které vám zachrání dovolenou

Kompletní přehled datových tarifů