Cześć,
ostatnio nie byłem jedynym użytkownikiem mojego konta i chciałbym się upewnić czy nic nie pojawiło się pod moją nieobecność
SECURITY CHECK:
Results of screen317's Security Check version 0.99.87
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Microsoft Security Essentials
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Google Chrome 37.0.2062.103
Google Chrome 37.0.2062.120
````````Process Check: objlist.exe by Laurent````````
Microsoft Security Essentials MSMpEng.exe
Microsoft Security Essentials msseces.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 11% Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log``````````````````````
GMER:
GMER 2.1.19357 - http://www.gmer.net
Rootkit scan 2014-09-17 19:29:14
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 Samsung_ rev.DXM0 119,24GB
Running: zhex8ubz.exe; Driver: C:\Users\ctarx\AppData\Local\Temp\fwliifoc.sys
---- User code sections - GMER 2.1 ----
.text C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe[2272] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076e81465 2 bytes [E8, 76]
.text C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe[2272] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076e814bb 2 bytes [E8, 76]
.text ... * 2
---- Processes - GMER 2.1 ----
Library C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F78B4F97-65A7-4367-ADB5-C767F233A98E}\offreg.dll (*** suspicious ***) @ C:\Program Files\Microsoft Security Client\MsMpEng.exe [1008](2014-09-17 17:12:35) 000007fefa5c0000
Library C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\sqlite3.dll (*** suspicious ***) @ C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe [3588](2009-06-27 10:11:12) 0000000060900000
Library c:\users\ctarx\appdata\roaming\.wtw\profiles\ctarx\Plugins64\Emots.plug (*** suspicious ***) @ C:\Program Files\K2T\WTW\wtw.exe [5616] (WTW Plugin/adrian_007)(2014-02-03 20:27:42) 000007fedd0d0000
Library c:\users\ctarx\appdata\roaming\.wtw\profiles\ctarx\Plugins64\sounds.plug (*** suspicious ***) @ C:\Program Files\K2T\WTW\wtw.exe [5616](2014-02-03 20:22:24) 000007fedd060000
---- EOF - GMER 2.1 ----
Pozostałe logi w załacznikach.
Pozdrawiam
Addition.txt
FRST.txt
Shortcut.txt
OTL.Txt
Extras.Txt