Prosim o kontrolu logu(tema:Hardware-Zamrzání PC)

[jaro3]

Doinstaluj SP1.

Vlož nový log z HJT + info o problémech

[Reklama]

[CFM252]

SP1 nainstalováno a tady log z HJT:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:45:26, on 12.5.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Users\Pete\Desktop\hijackthis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (file missing)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [EasyTuneVI] C:\Program Files (x86)\GIGABYTE\ET6\ETcall.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: DES2 Service for Energy Saving. (DES2 Service) - Unknown owner - C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Smart TimeLock Service (Smart TimeLock) - Gigabyte Technology CO., LTD. - C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7225 bytes

[jaro3]

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (file missing)
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

Aktualizuj javu:
Java SE Runtime Environment 7

Klikni na Accept License Agreement
Vyber si OS (Windows nebo Windows x64, Offline Installation)
jre-7-windows-i586-p.exe nebo
jre-7-windows-x64.exe
Stáhni ( download) a nainstaluj.
Ostatní javy odeber v přidat/odebrat programy.



Co problémy?

[CFM252]

Tak jsem to udělal a jen sem spustil klienta na LoL(league of legends) tak se PC začlo sekat(zamrzat) tak po 2sekundách..tak sem zajel na start a odhlásit sme se zkusil ale jak sem nato klikl tak zčernala obrazovka a musel sem jít restart..

[jaro3]

Stáhni si Memtest:

Do políčka vlož největší velikost Tvé jednotlivé paměti RAM (256,512 nebo 1024,2048) dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.


Je třeba zkontrolovat HDD na chyby , zkusit jeho defragmentaci ..

Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.

[CFM252]

Tak jsem udělal test RAM a nechal jsem to do 230% což bylo kolem 2 hodinek a 0 errors..A ještě předtím než sem začal dělat test tak pc zamrzlo..musel sem restart..Každopádně tady je log z CrystalDiskInfo:

----------------------------------------------------------------------------
CrystalDiskInfo 6.1.10 (C) 2008-2014 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Ultimate SP1 [6.1 Build 7601] (x64)
Date : 2014/05/13 13:25:20

-- Controller Map ----------------------------------------------------------
+ Intel(R) ICH10 Family 4 port Serial ATA Storage Controller 1 - 3A20 [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ Intel(R) ICH10 Family 2 port Serial ATA Storage Controller 2 - 3A26 [ATA]
+ ATA Channel 0 (0)
- WDC WD10EALS-00Z8A0 ATA Device
+ ATA Channel 1 (1)
- HL-DT-ST DVDRAM GH22NS50 ATA Device

-- Disk List ---------------------------------------------------------------
(1) WDC WD10EALS-00Z8A0 : 1000,2 GB [0/0/0, pd1] - wd

----------------------------------------------------------------------------
(1) WDC WD10EALS-00Z8A0
----------------------------------------------------------------------------
Model : WDC WD10EALS-00Z8A0
Firmware : 05.01D05
Serial Number : WD-WCATR5378425
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : 32767 KB
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : ---- | SATA/300
Power On Hours : 8892 hod.
Power On Count : 2648 krát
Temperature : 32 C (89 F)
Health Status : Dobrý
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : 80FEh [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 174 172 _21 0000000010A2 Čas na roztočení ploten
04 _98 _98 __0 000000000A67 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 __0 000000000000 Počet chybných hledání
09 _88 _88 __0 0000000022BC Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _98 _98 __0 000000000A58 Počet cyklů zapnutí zařízení
C0 200 200 __0 00000000007F Počet vypnutí disku
C1 200 200 __0 0000000009E7 Počet cyklů načítání/vymazání
C2 115 107 __0 000000000020 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 00000000000A Počet chyb v kontrolním součtu UltraDMA
C8 200 200 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 5743 4154 5235 3337 3834 3235
020: 0000 FFFF 0032 3035 2E30 3144 3035 5744 4320 5744
030: 3130 4541 4C53 2D30 305A 3841 3020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1706 0000 0044 0040
080: 01FE 0000 746B 7F61 4123 7469 BC41 4123 207F 005B
090: 005B 0000 FFFE 0000 80FE 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 0000 0000 5001 4EE2
110: B011 8D84 0000 0000 0000 0000 0000 0000 0000 4018
120: 4018 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 16E2 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 3037 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 101E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 1000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 3BA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 C8 C8 00 00 00 00 00 00 00 03 27
010: 00 AE AC A2 10 00 00 00 00 00 04 32 00 62 62 67
020: 0A 00 00 00 00 00 05 33 00 C8 C8 00 00 00 00 00
030: 00 00 07 2E 00 C8 C8 00 00 00 00 00 00 00 09 32
040: 00 58 58 BC 22 00 00 00 00 00 0A 32 00 64 64 00
050: 00 00 00 00 00 00 0B 32 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 62 62 58 0A 00 00 00 00 00 C0 32
070: 00 C8 C8 7F 00 00 00 00 00 00 C1 32 00 C8 C8 E7
080: 09 00 00 00 00 00 C2 22 00 73 6B 20 00 00 00 00
090: 00 00 C4 32 00 C8 C8 00 00 00 00 00 00 00 C5 32
0A0: 00 C8 C8 00 00 00 00 00 00 00 C6 30 00 C8 C8 00
0B0: 00 00 00 00 00 00 C7 32 00 C8 C8 0A 00 00 00 00
0C0: 00 00 C8 08 00 C8 C8 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 84 00 D8 45 01 7B
170: 03 00 01 00 02 CF 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 04 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 F4

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 C8 C8 C8 00 00 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 00 C8 C8 C8 C8 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 00 00 00 00 00
050: 00 00 00 00 00 00 0B 00 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 C0 00
070: 00 00 00 00 00 00 00 00 00 00 C1 00 00 00 00 00
080: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
090: 00 00 C4 00 00 00 00 00 00 00 00 00 00 00 C5 00
0A0: 00 00 00 00 00 00 00 00 00 00 C6 00 00 00 00 00
0B0: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
0C0: 00 00 C8 00 C8 C8 C8 C8 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 5D

[Orcus]

Disk i paměti OK, na viry to je čistý. Zde to můžeš označit jako vyřešené a založit téma v sekci Windows či Hry, kde Ti bude dále porazeno nejen námi.

[CFM252]

Nedělá to jen u hry..Počítač to dělá sám o sobě..Jsem na ploše a zamrzne to..už nevím co stim vyzkoušel sem snad vše co mě napadlo + rady lidí

[jaro3]

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

[CFM252]

ComboFix 14-05-13.01 - Pete 14.05.2014 12:18:37.1.8 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.6142.4590 [GMT 2:00]
Spuštěný z: c:\users\Pete\Desktop\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\security\Database\tmp.edb
.
Nakažená kopie c:\windows\SysWow64\userinit.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-04-14 do 2014-05-14 )))))))))))))))))))))))))))))))
.
.
2014-05-12 21:33 . 2014-05-12 21:33 252296 ----a-w- c:\windows\system32\javaws.exe
2014-05-12 21:33 . 2014-05-12 21:33 188808 ----a-w- c:\windows\system32\javaw.exe
2014-05-12 21:33 . 2014-05-12 21:33 188808 ----a-w- c:\windows\system32\java.exe
2014-05-12 21:33 . 2014-05-12 21:33 627600 ----a-w- c:\windows\system32\deployJava1.dll
2014-05-12 21:33 . 2014-05-12 21:33 -------- d-----w- c:\program files\Java
2014-05-11 10:44 . 2014-05-11 10:44 -------- d-----w- c:\windows\ERUNT
2014-05-09 13:00 . 2014-05-09 13:00 -------- d-----w- c:\windows\system32\SPReview
2014-05-09 12:35 . 2010-11-20 03:33 6656 ----a-w- c:\windows\system32\drivers\cs-CZ\rdvgkmd.sys.mui
2014-05-09 12:35 . 2010-11-20 03:32 2560 ----a-w- c:\windows\system32\drivers\cs-CZ\rdpwd.sys.mui
2014-05-09 12:35 . 2010-11-20 03:26 3584 ----a-w- c:\windows\system32\drivers\cs-CZ\tsusbflt.sys.mui
2014-05-09 12:35 . 2010-11-20 03:25 4096 ----a-w- c:\windows\system32\drivers\cs-CZ\tsusbhub.sys.mui
2014-05-09 12:35 . 2010-11-20 03:32 4608 ----a-w- c:\windows\system32\drivers\cs-CZ\kbdclass.sys.mui
2014-05-09 12:35 . 2010-11-20 03:32 3072 ----a-w- c:\windows\system32\drivers\cs-CZ\GAGP30KX.SYS.mui
2014-05-09 12:32 . 2010-11-20 03:27 63488 ----a-w- c:\windows\system32\setbcdlocale.dll
2014-05-09 12:30 . 2014-05-09 12:30 -------- d-----w- c:\windows\system32\EventProviders
2014-05-09 12:05 . 2014-05-09 12:05 -------- d-----w- c:\program files (x86)\Microsoft.NET
2014-05-09 12:04 . 2014-05-09 12:08 -------- d-----w- C:\6d91a31aa9e361c941478912fa35
2014-05-09 08:47 . 2010-08-30 06:34 536576 ----a-w- c:\windows\SysWow64\sqlite3.dll
2014-05-09 08:47 . 2014-05-11 10:08 -------- d-----w- C:\AdwCleaner
2014-05-09 08:46 . 2014-05-14 10:24 119512 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-05-09 08:45 . 2014-05-09 08:45 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2014-05-09 08:45 . 2014-05-09 08:45 -------- d-----w- c:\programdata\Malwarebytes
2014-05-09 08:45 . 2014-04-03 07:51 63192 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-05-09 08:45 . 2014-04-03 07:51 88280 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-05-09 08:45 . 2014-04-03 07:50 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-05-08 17:15 . 2014-05-08 17:15 512 ----a-w- C:\PhysicalMBR.bin
2014-05-08 07:23 . 2014-05-08 07:23 -------- d-----w- c:\program files (x86)\CrystalDiskInfo
2014-05-08 02:19 . 2014-05-08 02:19 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{2CC71CB6-3CC6-4DD3-895C-9FD1FB422248}\offreg.dll
2014-05-06 19:30 . 2014-05-06 19:30 -------- d-----w- c:\program files (x86)\FinalWire
2014-05-06 17:10 . 2011-08-23 09:00 603984 ----a-w- c:\windows\system32\KAAPORT64.dll
2014-05-06 17:08 . 2011-09-29 09:30 74272 ----a-w- c:\windows\system32\RtNicProp64.dll
2014-05-06 17:08 . 2011-09-29 09:30 646248 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2014-05-06 17:04 . 2011-09-16 07:12 32360 ----a-w- c:\windows\system32\drivers\RtVlan620.sys
2014-05-06 17:04 . 2011-06-15 13:11 58472 ----a-w- c:\windows\system32\drivers\RtTeam60.sys
2014-05-06 17:04 . 2011-06-15 13:11 27136 ----a-w- c:\windows\system32\drivers\RtNdPt60.sys
2014-05-06 17:01 . 2014-05-06 17:01 -------- d-----w- c:\program files (x86)\Renesas Electronics
2014-05-06 15:43 . 2014-05-12 21:34 -------- d-----w- c:\program files (x86)\RADS
2014-05-06 11:19 . 2014-05-06 11:19 -------- d-----w- c:\program files (x86)\Geeks3D
2014-05-06 10:31 . 2014-05-06 10:31 -------- d-----w- c:\program files\NVIDIA Corporation
2014-05-05 20:32 . 2014-05-05 20:32 -------- d-----w- c:\windows\system32\appmgmt
2014-05-05 08:31 . 2006-02-03 06:43 3830992 ----a-w- c:\windows\system32\d3dx9_29.dll
2014-05-05 08:31 . 2005-12-05 16:09 3815120 ----a-w- c:\windows\system32\d3dx9_28.dll
2014-05-05 08:31 . 2005-07-22 17:59 3807440 ----a-w- c:\windows\system32\d3dx9_27.dll
2014-05-05 08:31 . 2005-05-26 13:34 3767504 ----a-w- c:\windows\system32\d3dx9_26.dll
2014-05-05 08:31 . 2005-05-26 13:34 2297552 ----a-w- c:\windows\SysWow64\d3dx9_26.dll
2014-05-05 08:31 . 2005-03-18 15:19 3823312 ----a-w- c:\windows\system32\d3dx9_25.dll
2014-05-05 08:31 . 2005-02-05 17:45 3544272 ----a-w- c:\windows\system32\d3dx9_24.dll
2014-05-05 07:38 . 2014-05-05 07:38 -------- d-----w- c:\programdata\WarThunder
2014-05-05 07:37 . 2014-05-08 22:27 -------- d-----w- c:\program files (x86)\WarThunder
2014-05-04 18:34 . 2014-05-04 18:34 -------- d-----w- c:\program files\WinRAR
2014-05-04 18:29 . 2014-05-04 18:29 -------- d-----w- c:\program files (x86)\Common Files\Skype
2014-05-04 18:29 . 2014-05-04 18:29 -------- d-----r- c:\program files (x86)\Skype
2014-05-04 18:29 . 2014-05-04 18:29 -------- d-----w- c:\programdata\Skype
2014-05-04 18:25 . 2014-05-04 18:37 -------- d-----w- c:\program files (x86)\Config
2014-05-04 18:20 . 2014-05-06 10:36 30528 ----a-w- c:\windows\GVTDrv64.sys
2014-05-04 16:10 . 2014-05-04 18:37 -------- d-----w- c:\program files (x86)\Logs
2014-05-04 16:08 . 2008-07-31 08:41 68616 ----a-w- c:\windows\SysWow64\XAPOFX1_1.dll
2014-05-04 16:08 . 2008-07-31 08:40 509448 ----a-w- c:\windows\SysWow64\XAudio2_2.dll
2014-05-04 16:08 . 2008-07-12 06:18 467984 ----a-w- c:\windows\SysWow64\d3dx10_39.dll
2014-05-04 16:08 . 2008-07-12 06:18 3851784 ----a-w- c:\windows\SysWow64\D3DX9_39.dll
2014-05-04 16:08 . 2008-07-12 06:18 1493528 ----a-w- c:\windows\SysWow64\D3DCompiler_39.dll
2014-05-04 16:03 . 2014-05-09 13:35 -------- d-----w- c:\programdata\PMB Files
2014-05-04 16:03 . 2014-05-04 16:03 -------- d-----w- c:\program files (x86)\Pando Networks
2014-05-04 15:28 . 2014-05-04 14:38 -------- d-----w- c:\windows\Panther
2014-05-04 15:23 . 2014-05-04 15:23 85328 ----a-w- c:\windows\system32\drivers\aswStm.sys
2014-05-04 15:23 . 2014-05-04 15:23 79184 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-05-04 15:23 . 2014-05-04 15:23 65776 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-05-04 15:23 . 2014-05-04 15:23 423240 ----a-w- c:\windows\system32\drivers\aswSP.sys
2014-05-04 15:23 . 2014-05-04 15:23 29208 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-05-04 15:23 . 2014-05-04 15:23 208416 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-05-04 15:23 . 2014-05-04 15:23 1039096 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2014-05-04 15:23 . 2014-05-04 15:23 93568 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2014-05-04 15:23 . 2014-05-04 15:23 334648 ----a-w- c:\windows\system32\aswBoot.exe
2014-05-04 15:23 . 2014-05-04 15:23 43152 ----a-w- c:\windows\avastSS.scr
2014-05-04 15:22 . 2014-05-04 15:22 -------- d-----w- c:\program files\AVAST Software
2014-05-04 15:20 . 2014-05-04 15:20 -------- d-----w- c:\programdata\AVAST Software
2014-05-04 15:14 . 2014-05-04 15:15 -------- d-----w- c:\program files (x86)\Google
2014-05-04 15:11 . 2014-05-14 10:24 25640 ----a-w- c:\windows\gdrv.sys
2014-05-04 15:09 . 2010-01-28 14:25 86120 ----a-w- c:\windows\system32\drivers\nvhda64v.sys
2014-05-04 15:09 . 2010-01-28 14:24 22528 ----a-w- c:\windows\system32\nvhdap64.dll
2014-05-04 15:09 . 2010-01-27 04:07 238696 ----a-w- c:\windows\system32\nvcohda6.dll
2014-05-04 15:09 . 2014-05-05 20:33 -------- d-----w- C:\NVIDIA
2014-05-04 15:09 . 2014-05-14 10:24 -------- d-----w- c:\programdata\NVIDIA
2014-05-04 15:08 . 2014-05-06 10:31 -------- d-----w- c:\program files (x86)\NVIDIA Corporation
2014-05-04 15:01 . 2009-06-18 17:43 208896 ----a-w- c:\windows\SysWow64\CommCmd.dll
2014-05-04 15:01 . 2009-05-22 20:03 267264 ----a-w- c:\windows\system32\CommCmd.dll
2014-05-04 15:01 . 2009-05-19 12:34 69944 ----a-w- c:\windows\SysWow64\vhdmount.dll
2014-05-04 15:01 . 2009-05-19 12:34 214920 ----a-w- c:\windows\system32\vhdmount.dll
2014-05-04 15:01 . 2014-04-17 03:31 10651704 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{2CC71CB6-3CC6-4DD3-895C-9FD1FB422248}\mpengine.dll
2014-05-04 15:01 . 2014-03-31 07:35 270496 ------w- c:\windows\system32\MpSigStub.exe
2014-05-04 14:58 . 2014-05-06 17:03 -------- d-----w- c:\programdata\InstallShield
2014-05-04 14:58 . 2014-05-04 15:02 -------- d-----w- c:\program files (x86)\GIGABYTE
2014-05-04 14:58 . 2014-05-04 15:01 -------- d-----w- c:\program files\GIGABYTE
2014-05-04 14:58 . 2010-04-22 13:08 21544 ----a-w- c:\windows\system32\drivers\AppleCharger.sys
2014-05-04 14:58 . 2010-04-06 14:30 31272 ----a-w- c:\windows\system32\AppleChargerSrv.exe
2014-05-04 14:58 . 2005-02-17 05:15 73728 ----a-w- c:\windows\SysWow64\ISUSPM.cpl
2014-05-04 14:57 . 2011-09-29 09:30 107552 ----a-w- c:\windows\system32\RTNUninst64.dll
2014-05-04 14:56 . 2014-05-04 14:56 -------- d-----w- c:\program files\Realtek
2014-05-04 14:56 . 2014-05-06 17:08 -------- d-----w- c:\program files (x86)\Realtek
2014-05-04 14:56 . 2014-05-06 17:11 -------- d--h--w- c:\program files (x86)\Temp
2014-05-04 14:56 . 2014-05-06 17:10 -------- d--h--w- c:\program files (x86)\InstallShield Installation Information
2014-05-04 14:56 . 2012-05-25 10:06 1706640 ----a-w- c:\windows\RtlExUpd.dll
2014-05-04 14:55 . 2014-05-04 14:59 -------- d-----w- c:\program files (x86)\Common Files\InstallShield
2014-05-04 14:55 . 2014-05-06 17:03 -------- d-----w- c:\program files (x86)\Intel
2014-05-04 14:55 . 2010-03-02 08:04 53248 ----a-w- c:\windows\SysWow64\CSVer.dll
2014-05-04 14:55 . 2014-05-04 14:55 -------- d-----w- C:\Intel
2014-05-04 14:48 . 2014-05-12 21:33 -------- d-sh--w- c:\windows\Installer
2014-05-04 14:39 . 2014-05-08 06:20 -------- d-----w- c:\users\Pete
2014-04-17 11:44 . 2014-04-17 11:44 97496 ----a-w- c:\program files (x86)\lol.launcher.exe
2014-04-17 11:44 . 2014-04-17 11:44 97496 ----a-w- c:\program files (x86)\lol.launcher.admin.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-05-09 12:56 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2014-05-09 12:56 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM Startup"="c:\progra~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2005-02-17 221184]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2014-02-10 20922016]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"EasyTuneVI"="c:\program files (x86)\GIGABYTE\ET6\ETcall.exe" [2007-07-26 20480]
"ISUSScheduler"="c:\program files (x86)\Common Files\InstallShield\UpdateService\issch.exe" [2005-02-17 81920]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-05-04 3873704]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe;c:\windows\SYSNATIVE\AppleChargerSrv.exe [x]
R3 GVTDrv64;GVTDrv64;c:\windows\GVTDrv64.sys;c:\windows\GVTDrv64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.0);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtVlan620.sys;c:\windows\SYSNATIVE\DRIVERS\RtVlan620.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.0);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys;c:\windows\SYSNATIVE\DRIVERS\AppleCharger.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
S2 DES2 Service;DES2 Service for Energy Saving.;c:\program files (x86)\GIGABYTE\EnergySaver2\des2svr.exe;c:\program files (x86)\GIGABYTE\EnergySaver2\des2svr.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys;c:\windows\SYSNATIVE\DRIVERS\RtNdPt60.sys [x]
S2 Smart TimeLock;Smart TimeLock Service;c:\program files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe;c:\program files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
S3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMSWISSARMY
*NewlyCreated* - MBAMWEBACCESSCONTROL
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-05-04 15:15 1078088 ----a-w- c:\program files (x86)\Google\Chrome\Application\34.0.1847.131\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-05-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-05-04 15:14]
.
2014-05-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-05-04 15:14]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-05-04 15:23 290888 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-06-11 12503184]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SYSTEM32\blank.htm
TCP: DhcpNameServer = 192.168.2.1
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
c:\program files (x86)\Malwarebytes Anti-Malware\mbam.exe
.
**************************************************************************
.
Celkový čas: 2014-05-14 12:26:43 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-05-14 10:26
.
Před spuštěním: Volných bajtů: 894 890 479 616
Po spuštění: Volných bajtů: 894 379 319 296
.
- - End Of File - - 2C1BC217FE8BB9FAECB89F2F363C51CC
A36C5E4F47E84449FF07ED3517B43A31

[jaro3]

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

ClearJavaCache::

KillAll::
File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Folder::
c:\program files (x86)\Skype\Updater
c:\program files (x86)\Google\Update

Driver::
SkypeUpdate

RegLock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
c:\windows\system32\msclmd.dll
c:\windows\SysWow64\msclmd.dll

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Nebo na:
http://www.virscan.org/

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

[CFM252]

ComboFix 14-05-13.01 - Pete 14.05.2014 19:08:10.2.8 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.6142.4681 [GMT 2:00]
Spuštěný z: c:\users\Pete\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Pete\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-04-14 do 2014-05-14 )))))))))))))))))))))))))))))))
.
.
2014-05-14 17:11 . 2014-05-14 17:11 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-05-12 21:33 . 2014-05-12 21:33 252296 ----a-w- c:\windows\system32\javaws.exe
2014-05-12 21:33 . 2014-05-12 21:33 188808 ----a-w- c:\windows\system32\javaw.exe
2014-05-12 21:33 . 2014-05-12 21:33 188808 ----a-w- c:\windows\system32\java.exe
2014-05-12 21:33 . 2014-05-12 21:33 627600 ----a-w- c:\windows\system32\deployJava1.dll
2014-05-12 21:33 . 2014-05-12 21:33 -------- d-----w- c:\program files\Java
2014-05-11 10:44 . 2014-05-11 10:44 -------- d-----w- c:\windows\ERUNT
2014-05-09 13:00 . 2014-05-09 13:00 -------- d-----w- c:\windows\system32\SPReview
2014-05-09 12:35 . 2010-11-20 03:33 6656 ----a-w- c:\windows\system32\drivers\cs-CZ\rdvgkmd.sys.mui
2014-05-09 12:35 . 2010-11-20 03:32 2560 ----a-w- c:\windows\system32\drivers\cs-CZ\rdpwd.sys.mui
2014-05-09 12:35 . 2010-11-20 03:26 3584 ----a-w- c:\windows\system32\drivers\cs-CZ\tsusbflt.sys.mui
2014-05-09 12:35 . 2010-11-20 03:25 4096 ----a-w- c:\windows\system32\drivers\cs-CZ\tsusbhub.sys.mui
2014-05-09 12:35 . 2010-11-20 03:32 4608 ----a-w- c:\windows\system32\drivers\cs-CZ\kbdclass.sys.mui
2014-05-09 12:35 . 2010-11-20 03:32 3072 ----a-w- c:\windows\system32\drivers\cs-CZ\GAGP30KX.SYS.mui
2014-05-09 12:32 . 2010-11-20 03:27 63488 ----a-w- c:\windows\system32\setbcdlocale.dll
2014-05-09 12:30 . 2014-05-09 12:30 -------- d-----w- c:\windows\system32\EventProviders
2014-05-09 12:05 . 2014-05-09 12:05 -------- d-----w- c:\program files (x86)\Microsoft.NET
2014-05-09 12:04 . 2014-05-09 12:08 -------- d-----w- C:\6d91a31aa9e361c941478912fa35
2014-05-09 08:47 . 2010-08-30 06:34 536576 ----a-w- c:\windows\SysWow64\sqlite3.dll
2014-05-09 08:47 . 2014-05-11 10:08 -------- d-----w- C:\AdwCleaner
2014-05-09 08:46 . 2014-05-14 17:13 119512 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-05-09 08:45 . 2014-05-09 08:45 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2014-05-09 08:45 . 2014-05-09 08:45 -------- d-----w- c:\programdata\Malwarebytes
2014-05-09 08:45 . 2014-04-03 07:51 63192 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-05-09 08:45 . 2014-04-03 07:51 88280 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-05-09 08:45 . 2014-04-03 07:50 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-05-08 17:15 . 2014-05-08 17:15 512 ----a-w- C:\PhysicalMBR.bin
2014-05-08 07:23 . 2014-05-08 07:23 -------- d-----w- c:\program files (x86)\CrystalDiskInfo
2014-05-08 02:19 . 2014-05-08 02:19 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{2CC71CB6-3CC6-4DD3-895C-9FD1FB422248}\offreg.dll
2014-05-06 19:30 . 2014-05-06 19:30 -------- d-----w- c:\program files (x86)\FinalWire
2014-05-06 17:10 . 2011-08-23 09:00 603984 ----a-w- c:\windows\system32\KAAPORT64.dll
2014-05-06 17:08 . 2011-09-29 09:30 74272 ----a-w- c:\windows\system32\RtNicProp64.dll
2014-05-06 17:08 . 2011-09-29 09:30 646248 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2014-05-06 17:04 . 2011-09-16 07:12 32360 ----a-w- c:\windows\system32\drivers\RtVlan620.sys
2014-05-06 17:04 . 2011-06-15 13:11 58472 ----a-w- c:\windows\system32\drivers\RtTeam60.sys
2014-05-06 17:04 . 2011-06-15 13:11 27136 ----a-w- c:\windows\system32\drivers\RtNdPt60.sys
2014-05-06 17:01 . 2014-05-06 17:01 -------- d-----w- c:\program files (x86)\Renesas Electronics
2014-05-06 15:43 . 2014-05-12 21:34 -------- d-----w- c:\program files (x86)\RADS
2014-05-06 11:19 . 2014-05-06 11:19 -------- d-----w- c:\program files (x86)\Geeks3D
2014-05-06 10:31 . 2014-05-06 10:31 -------- d-----w- c:\program files\NVIDIA Corporation
2014-05-05 20:32 . 2014-05-05 20:32 -------- d-----w- c:\windows\system32\appmgmt
2014-05-05 08:31 . 2006-02-03 06:43 3830992 ----a-w- c:\windows\system32\d3dx9_29.dll
2014-05-05 08:31 . 2005-12-05 16:09 3815120 ----a-w- c:\windows\system32\d3dx9_28.dll
2014-05-05 08:31 . 2005-07-22 17:59 3807440 ----a-w- c:\windows\system32\d3dx9_27.dll
2014-05-05 08:31 . 2005-05-26 13:34 3767504 ----a-w- c:\windows\system32\d3dx9_26.dll
2014-05-05 08:31 . 2005-05-26 13:34 2297552 ----a-w- c:\windows\SysWow64\d3dx9_26.dll
2014-05-05 08:31 . 2005-03-18 15:19 3823312 ----a-w- c:\windows\system32\d3dx9_25.dll
2014-05-05 08:31 . 2005-02-05 17:45 3544272 ----a-w- c:\windows\system32\d3dx9_24.dll
2014-05-05 07:38 . 2014-05-05 07:38 -------- d-----w- c:\programdata\WarThunder
2014-05-05 07:37 . 2014-05-08 22:27 -------- d-----w- c:\program files (x86)\WarThunder
2014-05-04 18:34 . 2014-05-04 18:34 -------- d-----w- c:\program files\WinRAR
2014-05-04 18:29 . 2014-05-04 18:29 -------- d-----w- c:\program files (x86)\Common Files\Skype
2014-05-04 18:29 . 2014-05-04 18:29 -------- d-----r- c:\program files (x86)\Skype
2014-05-04 18:29 . 2014-05-04 18:29 -------- d-----w- c:\programdata\Skype
2014-05-04 18:25 . 2014-05-04 18:37 -------- d-----w- c:\program files (x86)\Config
2014-05-04 18:20 . 2014-05-06 10:36 30528 ----a-w- c:\windows\GVTDrv64.sys
2014-05-04 16:10 . 2014-05-04 18:37 -------- d-----w- c:\program files (x86)\Logs
2014-05-04 16:08 . 2008-07-31 08:41 68616 ----a-w- c:\windows\SysWow64\XAPOFX1_1.dll
2014-05-04 16:08 . 2008-07-31 08:40 509448 ----a-w- c:\windows\SysWow64\XAudio2_2.dll
2014-05-04 16:08 . 2008-07-12 06:18 467984 ----a-w- c:\windows\SysWow64\d3dx10_39.dll
2014-05-04 16:08 . 2008-07-12 06:18 3851784 ----a-w- c:\windows\SysWow64\D3DX9_39.dll
2014-05-04 16:08 . 2008-07-12 06:18 1493528 ----a-w- c:\windows\SysWow64\D3DCompiler_39.dll
2014-05-04 16:03 . 2014-05-09 13:35 -------- d-----w- c:\programdata\PMB Files
2014-05-04 16:03 . 2014-05-04 16:03 -------- d-----w- c:\program files (x86)\Pando Networks
2014-05-04 15:28 . 2014-05-04 14:38 -------- d-----w- c:\windows\Panther
2014-05-04 15:23 . 2014-05-04 15:23 85328 ----a-w- c:\windows\system32\drivers\aswStm.sys
2014-05-04 15:23 . 2014-05-04 15:23 79184 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-05-04 15:23 . 2014-05-04 15:23 65776 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-05-04 15:23 . 2014-05-04 15:23 423240 ----a-w- c:\windows\system32\drivers\aswSP.sys
2014-05-04 15:23 . 2014-05-04 15:23 29208 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-05-04 15:23 . 2014-05-04 15:23 208416 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-05-04 15:23 . 2014-05-04 15:23 1039096 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2014-05-04 15:23 . 2014-05-04 15:23 93568 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2014-05-04 15:23 . 2014-05-04 15:23 334648 ----a-w- c:\windows\system32\aswBoot.exe
2014-05-04 15:23 . 2014-05-04 15:23 43152 ----a-w- c:\windows\avastSS.scr
2014-05-04 15:22 . 2014-05-04 15:22 -------- d-----w- c:\program files\AVAST Software
2014-05-04 15:20 . 2014-05-04 15:20 -------- d-----w- c:\programdata\AVAST Software
2014-05-04 15:14 . 2014-05-04 15:15 -------- d-----w- c:\program files (x86)\Google
2014-05-04 15:11 . 2014-05-14 17:12 25640 ----a-w- c:\windows\gdrv.sys
2014-05-04 15:09 . 2010-01-28 14:25 86120 ----a-w- c:\windows\system32\drivers\nvhda64v.sys
2014-05-04 15:09 . 2010-01-28 14:24 22528 ----a-w- c:\windows\system32\nvhdap64.dll
2014-05-04 15:09 . 2010-01-27 04:07 238696 ----a-w- c:\windows\system32\nvcohda6.dll
2014-05-04 15:09 . 2014-05-05 20:33 -------- d-----w- C:\NVIDIA
2014-05-04 15:09 . 2014-05-14 17:12 -------- d-----w- c:\programdata\NVIDIA
2014-05-04 15:08 . 2014-05-06 10:31 -------- d-----w- c:\program files (x86)\NVIDIA Corporation
2014-05-04 15:01 . 2009-06-18 17:43 208896 ----a-w- c:\windows\SysWow64\CommCmd.dll
2014-05-04 15:01 . 2009-05-22 20:03 267264 ----a-w- c:\windows\system32\CommCmd.dll
2014-05-04 15:01 . 2009-05-19 12:34 69944 ----a-w- c:\windows\SysWow64\vhdmount.dll
2014-05-04 15:01 . 2009-05-19 12:34 214920 ----a-w- c:\windows\system32\vhdmount.dll
2014-05-04 15:01 . 2014-04-17 03:31 10651704 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{2CC71CB6-3CC6-4DD3-895C-9FD1FB422248}\mpengine.dll
2014-05-04 15:01 . 2014-03-31 07:35 270496 ------w- c:\windows\system32\MpSigStub.exe
2014-05-04 14:58 . 2014-05-06 17:03 -------- d-----w- c:\programdata\InstallShield
2014-05-04 14:58 . 2014-05-04 15:02 -------- d-----w- c:\program files (x86)\GIGABYTE
2014-05-04 14:58 . 2014-05-04 15:01 -------- d-----w- c:\program files\GIGABYTE
2014-05-04 14:58 . 2010-04-22 13:08 21544 ----a-w- c:\windows\system32\drivers\AppleCharger.sys
2014-05-04 14:58 . 2010-04-06 14:30 31272 ----a-w- c:\windows\system32\AppleChargerSrv.exe
2014-05-04 14:58 . 2005-02-17 05:15 73728 ----a-w- c:\windows\SysWow64\ISUSPM.cpl
2014-05-04 14:57 . 2011-09-29 09:30 107552 ----a-w- c:\windows\system32\RTNUninst64.dll
2014-05-04 14:56 . 2014-05-04 14:56 -------- d-----w- c:\program files\Realtek
2014-05-04 14:56 . 2014-05-06 17:08 -------- d-----w- c:\program files (x86)\Realtek
2014-05-04 14:56 . 2014-05-06 17:11 -------- d--h--w- c:\program files (x86)\Temp
2014-05-04 14:56 . 2014-05-06 17:10 -------- d--h--w- c:\program files (x86)\InstallShield Installation Information
2014-05-04 14:56 . 2012-05-25 10:06 1706640 ----a-w- c:\windows\RtlExUpd.dll
2014-05-04 14:55 . 2014-05-04 14:59 -------- d-----w- c:\program files (x86)\Common Files\InstallShield
2014-05-04 14:55 . 2014-05-06 17:03 -------- d-----w- c:\program files (x86)\Intel
2014-05-04 14:55 . 2010-03-02 08:04 53248 ----a-w- c:\windows\SysWow64\CSVer.dll
2014-05-04 14:55 . 2014-05-04 14:55 -------- d-----w- C:\Intel
2014-05-04 14:48 . 2014-05-12 21:33 -------- d-sh--w- c:\windows\Installer
2014-05-04 14:39 . 2014-05-08 06:20 -------- d-----w- c:\users\Pete
2014-04-17 11:44 . 2014-04-17 11:44 97496 ----a-w- c:\program files (x86)\lol.launcher.exe
2014-04-17 11:44 . 2014-04-17 11:44 97496 ----a-w- c:\program files (x86)\lol.launcher.admin.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-05-09 12:56 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2014-05-09 12:56 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM Startup"="c:\progra~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2005-02-17 221184]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2014-02-10 20922016]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"EasyTuneVI"="c:\program files (x86)\GIGABYTE\ET6\ETcall.exe" [2007-07-26 20480]
"ISUSScheduler"="c:\program files (x86)\Common Files\InstallShield\UpdateService\issch.exe" [2005-02-17 81920]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-05-04 3873704]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe;c:\windows\SYSNATIVE\AppleChargerSrv.exe [x]
R3 GVTDrv64;GVTDrv64;c:\windows\GVTDrv64.sys;c:\windows\GVTDrv64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.0);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtVlan620.sys;c:\windows\SYSNATIVE\DRIVERS\RtVlan620.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.0);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys;c:\windows\SYSNATIVE\DRIVERS\AppleCharger.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
S2 DES2 Service;DES2 Service for Energy Saving.;c:\program files (x86)\GIGABYTE\EnergySaver2\des2svr.exe;c:\program files (x86)\GIGABYTE\EnergySaver2\des2svr.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys;c:\windows\SYSNATIVE\DRIVERS\RtNdPt60.sys [x]
S2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
S2 Smart TimeLock;Smart TimeLock Service;c:\program files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe;c:\program files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
S3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMSWISSARMY
*NewlyCreated* - MBAMWEBACCESSCONTROL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-05-04 15:15 1078088 ----a-w- c:\program files (x86)\Google\Chrome\Application\34.0.1847.131\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-05-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-05-04 15:14]
.
2014-05-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-05-04 15:14]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-05-04 15:23 290888 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-06-11 12503184]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SYSTEM32\blank.htm
TCP: DhcpNameServer = 192.168.2.1
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
c:\program files (x86)\Malwarebytes Anti-Malware\mbam.exe
.
**************************************************************************
.
Celkový čas: 2014-05-14 19:15:23 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-05-14 17:15
ComboFix2.txt 2014-05-14 10:26
.
Před spuštěním: Volných bajtů: 891 833 450 496
Po spuštění: Volných bajtů: 891 826 229 248
.
- - End Of File - - F2D4374BD4D5F0D899F526E466F9B2A6
A36C5E4F47E84449FF07ED3517B43A31